$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa File: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (raw, json) Hash identifier: bj4egIAAlTEUd+3GyfnPFN1nOaWoeA00wwzQy3Jloew= Subject key identifier: E7:BA:10:37:26:A3:24:46:18:B5:FB:CF:0C:11:08:D7:B7:0C:2A:5E Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 08ED Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa Signing time: Mon 02 Jun 2025 21:06:01 +0000 ROA not before: Mon 02 Jun 2025 21:06:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.118.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Jun 2 21:06:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e1239-9126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:11:06:fd:50:cc:3d:04:50:b6:b8:0f:f4: bc:3d:9a:53:3c:cd:0d:9d:ef:0b:0b:9d:2c:db:38: 93:17:d1:1a:fb:e2:3b:75:e2:f0:8c:6d:82:f2:ef: cf:5d:6f:af:e9:15:78:b6:60:e6:51:df:cf:7c:35: bb:cf:7b:2b:62:a6:a3:d1:23:ae:e1:c5:d9:db:9f: 21:d8:d8:ca:6a:fe:aa:39:55:68:92:78:a6:3f:a5: b4:2a:5d:1a:e0:0d:e5:af:85:13:be:12:d2:72:ad: 04:4a:ca:c1:a8:0b:98:33:b0:7a:22:37:3e:37:7e: 70:6e:64:0e:93:bb:8e:ba:f4:98:b0:a4:0a:ab:54: 3c:3b:3e:42:37:92:ff:5e:79:d1:c2:9a:30:09:85: 50:bf:1c:51:97:2b:90:8b:2d:e4:16:3e:18:ee:66: 4e:fc:b9:e9:fa:df:46:71:46:37:5f:11:1d:fa:5d: 46:bd:5a:d4:59:39:94:10:34:7e:92:0c:47:10:44: a5:ff:63:9b:38:ca:69:6e:60:51:6a:e9:2a:9e:4e: 7b:ce:ff:ea:4b:d5:8e:12:cb:d6:cd:e0:0c:f2:b9: 16:2e:99:dc:dc:92:a8:e5:54:aa:9a:42:f2:b4:d2: 33:13:74:eb:8c:e1:2a:7f:b6:58:a1:db:c7:f6:38: 1a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BA:10:37:26:A3:24:46:18:B5:FB:CF:0C:11:08:D7:B7:0C:2A:5E X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.48.0/23 Signature Algorithm: sha256WithRSAEncryption bf:2b:26:9b:2f:7e:40:9a:53:49:f7:af:73:94:10:8c:96:62: e1:4e:d4:b9:d8:c0:9e:65:08:81:35:ad:ab:03:46:ee:ed:b8: a5:33:cd:d0:cd:81:4c:0d:93:f8:0d:3f:95:db:07:df:ce:46: d7:c6:3f:60:a5:4e:a1:81:ee:7a:8d:6f:31:5b:93:70:8c:09: 0d:53:eb:2d:fd:2a:60:f4:99:7e:2f:a2:e6:22:d4:a6:4e:79: 57:ff:04:9a:34:63:54:fe:2b:48:0f:74:17:fe:7d:b3:90:79: 2b:73:ff:8d:8e:c2:f6:ba:43:66:d4:de:a8:2f:75:dd:26:e2: 7c:49:92:fc:46:67:0c:7b:34:86:bb:73:71:33:1f:e2:79:b5: f9:e4:cf:d7:e5:16:dc:9e:0a:47:53:60:7c:1f:72:87:87:1a: 2a:97:0d:0e:0c:6f:b4:b9:b2:b8:c6:14:c9:ce:1c:03:93:19: 0d:da:56:df:7a:6c:bc:07:73:56:84:5b:e8:e3:56:8c:73:db: 8b:64:1b:7d:c3:e4:85:a9:f2:c3:c6:44:d5:d1:de:d7:9c:d3: c4:d1:28:6c:be:53:f8:a3:bd:85:bd:2c:05:0c:c1:7f:40:51: 39:c1:71:01:96:22:3e:19:17:f3:7f:95:31:df:a5:e1:83:be: 08:76:6d:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUwNjAyMjEwNjAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTIzOS05MTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWQRBv1QzD0EULa4D/S8PZpTPM0Nne8LC50s2ziTF9Ea++I7deLwjG2C8u/P XW+v6RV4tmDmUd/PfDW7z3srYqaj0SOu4cXZ258h2NjKav6qOVVoknimP6W0Kl0a 4A3lr4UTvhLScq0ESsrBqAuYM7B6Ijc+N35wbmQOk7uOuvSYsKQKq1Q8Oz5CN5L/ XnnRwpowCYVQvxxRlyuQiy3kFj4Y7mZO/Lnp+t9GcUY3XxEd+l1GvVrUWTmUEDR+ kgxHEESl/2ObOMppbmBRaukqnk57zv/qS9WOEsvWzeAM8rkWLpnc3JKo5VSqmkLy tNIzE3TrjOEqf7ZYodvH9jga4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOe6EDcm oyRGGLX7zwwRCNe3DCpeMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQxOEYvNzVCOTBEMjRBRkI4MTFFQUE3NkU1RTdCQzRGOUFFMDIvM0JFRjE4MjBB RkJBMTFFQTg0NDlCOTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndjAwDQYJKoZIhvcNAQELBQADggEBAL8rJpsvfkCaU0n3 r3OUEIyWYuFO1LnYwJ5lCIE1rasDRu7tuKUzzdDNgUwNk/gNP5XbB9/ORtfGP2Cl TqGB7nqNbzFbk3CMCQ1T6y39KmD0mX4vouYi1KZOeVf/BJo0Y1T+K0gPdBf+fbOQ eStz/42Owva6Q2bU3qgvdd0m4nxJkvxGZwx7NIa7c3EzH+J5tfnkz9flFtyeCkdT YHwfcoeHGiqXDQ4Mb7S5srjGFMnOHAOTGQ3aVt96bLwHc1aEW+jjVoxz24tkG33D 5IWp8sPGRNXR3tec08TRKGy+U/ijvYW9LAUMwX9AUTnBcQGWIj4ZF/N/lTHfpeGD vgh2bTE= -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:52 2025 by rpki-client