$ rpki-client -vvf rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa File: 84F992E67BB911EFA4CC334CC4F9AE02.roa (raw, json) Hash identifier: YklgGoKPIC5Pmt2tOtwd4ysgwGERG7auCGi5OoDyTlg= Subject key identifier: D1:7C:BA:78:C3:D8:52:B6:9A:6D:8D:FD:0A:C3:C5:7B:39:24:65:BA Certificate issuer: /CN=A915DAF1/serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Certificate serial: 071E Authority key identifier: BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa Signing time: Sun 02 Mar 2025 23:00:08 +0000 ROA not before: Sun 02 Mar 2025 23:00:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18186 IP address blocks: 103.148.186.0/24 maxlen: 24 103.148.187.0/24 maxlen: 24 2001:df2:e380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DAF1 Validity Not Before: Mar 2 23:00:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c4e2f8-452b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:70:a4:d5:97:d2:29:64:45:73:21:ab:a0: 3f:d9:83:93:b2:03:75:33:05:d8:78:e9:a3:3d:77: b8:76:a9:ad:16:0d:16:ba:de:00:3d:9a:c8:f0:34: ae:60:bf:7c:96:75:55:0f:a5:d7:3a:a2:fb:c2:35: 28:c0:52:fe:33:8b:1c:09:93:e5:35:20:38:8e:8b: 58:6f:ad:99:01:5c:f3:c5:3c:76:17:7f:e7:11:0d: 4f:dd:13:43:78:c3:5d:db:02:c0:00:4f:80:c1:62: 7f:90:52:91:06:d2:f3:2e:52:65:ea:71:e9:b0:3b: 2f:eb:26:ef:6c:76:be:04:6b:ec:0c:69:5c:d1:6b: c1:cb:6a:87:e5:f4:0c:b5:c0:a7:29:a9:88:4a:8b: 3d:e1:c7:7e:b2:ca:39:7d:aa:90:92:8c:83:6a:f4: b1:e5:18:2a:13:2a:a8:0f:b3:6a:6e:62:dd:b7:8a: 02:05:05:c1:68:c1:3b:65:97:46:22:cf:d5:a6:33: c0:2d:92:dc:45:dc:b8:34:0e:c2:04:c2:a4:4a:1e: 76:91:d4:be:47:28:4b:30:66:84:07:a6:54:13:57: 65:f4:eb:03:72:ce:ab:4b:27:65:a7:24:d1:5d:53: 5e:4f:61:91:48:fc:65:d0:b4:f1:e5:51:a0:f1:1f: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7C:BA:78:C3:D8:52:B6:9A:6D:8D:FD:0A:C3:C5:7B:39:24:65:BA X509v3 Authority Key Identifier: keyid:BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.186.0/23 IPv6: 2001:df2:e380::/48 Signature Algorithm: sha256WithRSAEncryption 11:6b:a3:8a:6f:7a:89:28:58:a3:c9:c5:75:54:51:a9:a6:b7: 99:01:01:41:ef:3f:78:75:fe:93:ed:0d:6a:e3:a4:51:c6:fa: 77:72:e7:8a:76:27:a8:d2:9d:2f:7e:89:4d:5f:14:59:80:ed: 05:aa:65:6f:11:01:25:10:e1:8d:be:69:29:6c:1b:6f:28:ac: af:1b:1c:0e:64:31:93:82:80:11:77:70:51:29:57:42:93:ae: b4:fe:12:5c:30:b1:8e:9a:78:b7:d2:bf:86:9d:ce:3c:57:70: f7:67:95:07:83:4e:56:21:6f:a1:7e:5e:e8:42:dc:e8:83:64: 0b:ac:c9:ac:d1:41:56:d0:c5:8e:74:18:ff:32:88:c8:71:a1: fa:ea:ca:bd:1b:af:c1:f7:a5:24:1d:36:b2:e1:22:3b:db:7b: 1d:88:a4:df:e9:97:47:74:03:62:09:16:3e:77:26:9b:7c:49: 9f:80:97:ef:40:da:82:c0:cc:a1:7a:16:6a:e3:a3:a2:ea:85: 4b:01:32:1a:e6:a3:d6:87:fe:dd:c1:cb:68:6e:c3:61:c4:ea: cc:b4:47:bd:75:55:a3:34:fe:a1:0b:01:06:7f:72:27:b6:d4: 63:9d:90:03:7b:02:3b:f7:ea:b3:34:76:31:a2:7c:c2:d9:e6: 6e:a0:3d:7a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBRjExMTAvBgNVBAUTKEJCOUY0MkNGQ0UzODhFREM0QjI5RUE2NURFQjYxNjJC MjU2RDIxMDIwHhcNMjUwMzAyMjMwMDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0ZTJmOC00NTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqxwpNWX0ilkRXMhq6A/2YOTsgN1MwXYeOmjPXe4dqmtFg0Wut4APZrI8DSu YL98lnVVD6XXOqL7wjUowFL+M4scCZPlNSA4jotYb62ZAVzzxTx2F3/nEQ1P3RND eMNd2wLAAE+AwWJ/kFKRBtLzLlJl6nHpsDsv6ybvbHa+BGvsDGlc0WvBy2qH5fQM tcCnKamISos94cd+sso5faqQkoyDavSx5RgqEyqoD7NqbmLdt4oCBQXBaME7ZZdG Is/VpjPALZLcRdy4NA7CBMKkSh52kdS+RyhLMGaEB6ZUE1dl9OsDcs6rSydlpyTR XVNeT2GRSPxl0LTx5VGg8R/bLQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNF8unjD 2FK2mm2N/QrDxXs5JGW6MB8GA1UdIwQYMBaAFLufQs/OOI7cSynqZd62FislbSEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REFGMS8wQjJCOTBBNDJE NzUxMUVCOTM2RTM0NThDNEY5QUUwMi91NTlDejg0NGp0eExLZXBsM3JZV0t5VnRJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1OUN6ODQ0anR4TEtlcGwzcllXS3lWdElRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBRjEvMEIyQjkwQTQyRDc1MTFFQjkzNkUzNDU4QzRGOUFFMDIvODRGOTkyRTY3 QkI5MTFFRkE0Q0MzMzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlLowDwQCAAIwCQMHACABDfLjgDANBgkqhkiG9w0BAQsF AAOCAQEAEWujim96iShYo8nFdVRRqaa3mQEBQe8/eHX+k+0NauOkUcb6d3LninYn qNKdL36JTV8UWYDtBaplbxEBJRDhjb5pKWwbbyisrxscDmQxk4KAEXdwUSlXQpOu tP4SXDCxjpp4t9K/hp3OPFdw92eVB4NOViFvoX5e6ELc6INkC6zJrNFBVtDFjnQY /zKIyHGh+urKvRuvwfelJB02suEiO9t7HYik3+mXR3QDYgkWPncmm3xJn4CX70Da gsDMoXoWauOjouqFSwEyGuaj1of+3cHLaG7DYcTqzLRHvXVVozT+oQsBBn9yJ7bU Y52QA3sCO/fqszR2MaJ8wtnmbqA9eg== -----END CERTIFICATE-----Generated at Fri Apr 11 03:56:53 2025 by rpki-client