$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa File: 172E487A416911ECB6B11742C4F9AE02.roa (raw, json) Hash identifier: jjQzstnlPYenRZWamhU8+OP/S56HuWE5rPwPEoYqLOI= Subject key identifier: E8:87:83:6B:02:62:A3:87:2B:9F:69:81:FD:F0:82:58:6D:42:60:38 Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C2A Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa Signing time: Tue 06 May 2025 18:58:10 +0000 ROA not before: Tue 06 May 2025 18:58:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25478 IP address blocks: 103.111.224.0/22 maxlen: 22 103.111.225.0/24 maxlen: 24 103.111.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: May 6 18:58:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a5bc2-2162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0c:ae:a7:3f:36:80:92:36:f1:b6:ed:e5:59: 96:e6:d1:bb:ae:dc:08:fa:c6:8e:e7:0c:30:3c:95: 4c:1f:86:a2:74:fd:d0:da:36:c5:eb:7c:85:71:3a: 1e:68:c5:d0:cb:78:33:79:d1:a0:f0:0c:fd:81:98: 98:cd:49:39:26:d2:79:18:05:e0:e4:83:f6:c1:cd: cf:fa:be:60:50:e2:7a:19:89:fa:9d:a5:b9:59:5d: 32:94:ea:75:54:58:2b:d4:96:e6:a0:00:67:b5:8a: bf:4a:c2:1e:a6:2f:39:de:00:c7:d9:7c:6e:76:9d: 71:70:fd:15:aa:dd:87:58:6a:dd:3d:7d:73:b1:ad: 22:41:d2:96:36:69:c0:6f:a7:06:6e:8e:93:b6:bd: e8:90:4e:91:44:c2:cf:c7:00:fa:e4:2e:d0:5d:e4: 02:7f:9d:e4:26:62:99:d8:fa:cf:05:59:72:c6:26: 29:ef:ff:1e:e5:14:08:ff:45:9c:49:25:f3:87:e3: c6:ec:eb:22:0a:04:df:9a:62:21:fe:d6:b8:72:17: 13:53:cb:fa:aa:a5:4c:80:c7:77:11:fa:3a:18:b6: 79:6f:e8:f3:2c:ef:1b:f3:1e:e3:dc:b1:05:9a:2d: 94:89:be:38:4f:22:70:2e:00:a1:96:9d:e8:1e:83: fa:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:87:83:6B:02:62:A3:87:2B:9F:69:81:FD:F0:82:58:6D:42:60:38 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/172E487A416911ECB6B11742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.224.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:37:e0:50:be:de:e4:ed:91:a7:41:4b:43:e2:2f:0f:b6:50: 3c:d5:e5:bf:cf:6a:c2:a9:05:fc:25:2f:74:cd:ea:1e:cb:57: d1:67:80:70:f5:b8:55:db:a2:b4:ef:16:cd:21:fa:00:fe:70: be:7d:0b:8d:05:cc:87:cc:9a:1c:9f:c1:39:9b:44:53:3e:cb: a0:f7:7a:5e:c0:bf:7e:5a:3c:a6:40:34:80:61:5e:03:ff:3d: ea:d6:09:54:cf:b7:d0:94:f3:e7:11:8f:af:f3:18:49:43:3b: b6:2e:1f:55:65:20:02:bc:b6:e6:30:65:07:e8:89:b7:e3:e3: 2b:fd:20:c8:04:1b:89:7b:0f:96:ff:5d:cc:82:53:41:05:ba: fd:f7:f3:c7:8c:dd:0c:bd:bc:3c:1c:01:a3:cc:d9:a5:f7:65: db:a0:16:73:db:58:e6:e4:84:2d:12:64:5a:c3:45:07:7d:b7: 81:3c:04:ef:e4:3f:fb:8c:33:51:8b:b7:a8:3f:71:82:c2:fd: d0:ea:25:60:98:a2:80:58:4c:ed:36:0a:6f:74:f3:00:09:79: a3:cb:7d:84:39:b7:bc:42:ed:9a:4e:23:21:69:fc:89:ce:00: cf:cc:0e:12:b0:f7:bb:00:a0:b3:ea:25:7b:be:d4:41:14:0a: eb:22:00:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUwNTA2MTg1ODEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNWJjMi0yMTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQyupz82gJI28bbt5VmW5tG7rtwI+saO5wwwPJVMH4aidP3Q2jbF63yFcToe aMXQy3gzedGg8Az9gZiYzUk5JtJ5GAXg5IP2wc3P+r5gUOJ6GYn6naW5WV0ylOp1 VFgr1JbmoABntYq/SsIepi853gDH2Xxudp1xcP0Vqt2HWGrdPX1zsa0iQdKWNmnA b6cGbo6Ttr3okE6RRMLPxwD65C7QXeQCf53kJmKZ2PrPBVlyxiYp7/8e5RQI/0Wc SSXzh+PG7OsiCgTfmmIh/ta4chcTU8v6qqVMgMd3Efo6GLZ5b+jzLO8b8x7j3LEF mi2Uib44TyJwLgChlp3oHoP6wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOiHg2sC YqOHK59pgf3wglhtQmA4MB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGMzMvNDYwNjYxREMwQjgzMTFFQTk3MUE4NjREQzRGOUFFMDIvMTcyRTQ4N0E0 MTY5MTFFQ0I2QjExNzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnb+AwDQYJKoZIhvcNAQELBQADggEBAI034FC+3uTtkadB S0PiLw+2UDzV5b/PasKpBfwlL3TN6h7LV9FngHD1uFXborTvFs0h+gD+cL59C40F zIfMmhyfwTmbRFM+y6D3el7Av35aPKZANIBhXgP/PerWCVTPt9CU8+cRj6/zGElD O7YuH1VlIAK8tuYwZQfoibfj4yv9IMgEG4l7D5b/XcyCU0EFuv3388eM3Qy9vDwc AaPM2aX3ZdugFnPbWObkhC0SZFrDRQd9t4E8BO/kP/uMM1GLt6g/cYLC/dDqJWCY ooBYTO02Cm908wAJeaPLfYQ5t7xC7ZpOIyFp/InOAM/MDhKw97sAoLPqJXu+1EEU CusiAD4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:20:16 2025 by rpki-client