$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa File: 7777513828C011EDBEC6D287C4F9AE02.roa (raw, json) Hash identifier: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0= Subject key identifier: 35:7B:FD:DF:6B:8F:93:0B:B5:B4:CE:44:B1:AF:36:ED:34:7A:8D:F1 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 022B Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa Signing time: Mon 05 May 2025 01:37:55 +0000 ROA not before: Mon 05 May 2025 01:37:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147309 IP address blocks: 103.18.54.0/23 maxlen: 23 103.18.54.0/24 maxlen: 24 103.18.55.0/24 maxlen: 24 2001:df1:33c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: May 5 01:37:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68181672-1a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bc:c0:67:14:0b:e1:fa:e9:52:64:3d:3e:ba: 5c:88:22:92:e5:56:7f:ed:7f:42:97:86:e9:9e:5d: 25:0e:93:b7:7a:20:68:8c:1a:0a:33:02:31:63:2d: d2:ef:cc:22:93:65:9a:4e:5f:c8:7e:22:43:a8:45: 9a:09:4a:b0:23:a7:34:f5:61:86:c0:69:9e:db:1c: ac:f5:8d:4b:8d:e7:61:b2:ba:59:ef:c0:b8:c4:9a: 19:ff:d0:4c:5d:e1:0e:ff:89:9f:cb:cf:64:8f:99: b5:ee:91:bc:4d:6f:df:ad:44:bf:cb:b0:2f:1a:5d: 94:e4:fc:e5:77:ea:ac:94:79:ee:9e:ab:c7:88:88: cc:94:da:41:c6:d0:c1:f9:40:4f:d0:de:5c:b2:9e: 24:a8:a9:54:ef:22:8c:ce:f2:00:ba:6b:95:66:34: a9:7e:09:ad:e4:68:8c:06:59:34:b8:f6:20:ce:96: ee:a3:8c:86:8c:ca:59:92:69:50:ea:29:0c:ec:3f: e9:cb:db:37:26:8c:6a:ca:ae:ce:a4:96:bf:4c:d7: e4:55:5e:6b:27:a1:e9:ce:0b:55:af:a6:01:08:fe: e6:5a:a0:91:f7:2b:48:61:d9:8c:21:a2:70:fe:1f: 11:f5:a8:e8:c1:3e:18:4a:fa:09:3b:e2:41:ba:56: bf:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7B:FD:DF:6B:8F:93:0B:B5:B4:CE:44:B1:AF:36:ED:34:7A:8D:F1 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/7777513828C011EDBEC6D287C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.54.0/23 IPv6: 2001:df1:33c0::/48 Signature Algorithm: sha256WithRSAEncryption 45:5d:1e:52:46:b2:d2:bb:64:a5:cd:70:84:ad:0f:bd:82:55: 3a:00:ca:f6:eb:c6:0d:6c:7a:14:e8:67:28:7b:55:75:dd:19: bf:95:ab:b0:60:b1:2b:b7:ab:e0:8d:3b:1b:8d:a6:83:62:8f: dd:6a:99:13:bc:e2:30:a8:b6:d9:a0:2c:e0:ca:c4:2f:03:5b: 4f:37:bf:56:a2:e3:e4:dc:eb:85:fc:f3:83:57:98:d2:b0:a6: 07:21:d5:f0:70:06:ad:37:73:6b:90:d6:60:5c:e7:36:1e:75: f1:1c:61:37:71:98:e3:65:6e:b2:4e:fb:bf:89:28:c6:01:30: 49:70:33:4c:69:db:5b:82:3f:88:96:d7:d4:d0:ef:8d:7a:d7: f0:81:c2:0d:b4:ce:4c:6e:c2:4a:d8:81:d3:67:b5:98:cb:5b: e7:c0:b5:a1:67:7b:5d:27:94:ff:8b:9f:46:0e:12:7a:c0:41: 8b:e7:76:04:5c:ab:8b:af:38:00:cc:a8:6f:ca:f7:c9:38:a7: ed:09:f5:0d:36:eb:f3:ec:f2:1c:f8:cd:dd:e4:e7:78:af:c0: 5a:c3:60:c4:ab:07:03:71:d2:28:c4:22:13:44:0d:9c:cc:d5: 3d:14:52:63:1b:ab:1b:43:2f:57:de:df:30:46:24:a3:48:2d: 99:25:27:87 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwNTA1MDEzNzU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MTY3Mi0xYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrzAZxQL4frpUmQ9PrpciCKS5VZ/7X9Cl4bpnl0lDpO3eiBojBoKMwIxYy3S 78wik2WaTl/IfiJDqEWaCUqwI6c09WGGwGme2xys9Y1LjedhsrpZ78C4xJoZ/9BM XeEO/4mfy89kj5m17pG8TW/frUS/y7AvGl2U5Pzld+qslHnunqvHiIjMlNpBxtDB +UBP0N5csp4kqKlU7yKMzvIAumuVZjSpfgmt5GiMBlk0uPYgzpbuo4yGjMpZkmlQ 6ikM7D/py9s3Joxqyq7OpJa/TNfkVV5rJ6HpzgtVr6YBCP7mWqCR9ytIYdmMIaJw /h8R9ajowT4YSvoJO+JBula/EwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDV7/d9r j5MLtbTORLGvNu00eo3xMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg0NjUvRDYwRjAyNzIyOEJCMTFFREE1OUMzMDgxQzRGOUFFMDIvNzc3NzUxMzgy OEMwMTFFREJFQzZEMjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEjYwDwQCAAIwCQMHACABDfEzwDANBgkqhkiG9w0BAQsF AAOCAQEARV0eUkay0rtkpc1whK0PvYJVOgDK9uvGDWx6FOhnKHtVdd0Zv5WrsGCx K7er4I07G42mg2KP3WqZE7ziMKi22aAs4MrELwNbTze/VqLj5Nzrhfzzg1eY0rCm ByHV8HAGrTdza5DWYFznNh518RxhN3GY42Vusk77v4koxgEwSXAzTGnbW4I/iJbX 1NDvjXrX8IHCDbTOTG7CStiB02e1mMtb58C1oWd7XSeU/4ufRg4SesBBi+d2BFyr i684AMyob8r3yTin7Qn1DTbr8+zyHPjN3eTneK/AWsNgxKsHA3HSKMQiE0QNnMzV PRRSYxurG0MvV97fMEYko0gtmSUnhw== -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:23 2025 by rpki-client