$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa File: 4D94E0D6545211E6A367BC68C4F9AE02.roa (raw, json) Hash identifier: DcM+Lc5+n2tyIRWKbRIwYXhW1cJ+6S2apUWAewERFcg= Subject key identifier: 84:C8:01:79:CF:D7:DD:52:8A:A0:70:82:34:4F:B3:3E:79:6F:B0:4D Certificate issuer: /CN=A915DB9F/serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Certificate serial: 1F2B Authority key identifier: 7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa Signing time: Mon 02 Jun 2025 16:15:42 +0000 ROA not before: Mon 02 Jun 2025 16:15:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135290 IP address blocks: 103.212.180.0/22 maxlen: 22 103.212.180.0/24 maxlen: 24 103.212.181.0/24 maxlen: 24 103.212.182.0/24 maxlen: 24 103.212.183.0/24 maxlen: 24 2404:b680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7979 (0x1f2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB9F, serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Validity Not Before: Jun 2 16:15:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683dce2e-86cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9f:6a:15:5b:c6:76:f1:1c:7a:33:27:d9:a1: c2:49:c4:a9:4e:85:41:fa:3a:e4:b1:99:33:00:8d: c5:9c:ad:61:0e:66:bd:99:8b:49:72:8e:fc:50:7b: 92:1c:0f:d1:1c:10:44:62:e9:9d:0e:bd:62:84:90: 1a:bb:dc:e7:04:80:ff:72:1f:d7:79:85:a1:85:73: 31:1c:18:3e:16:9a:98:33:0c:01:b2:aa:8d:12:d7: 33:6b:24:02:ef:0d:f3:23:d0:66:c8:9b:69:f3:96: 5c:73:6a:4d:02:09:4f:6a:ec:e2:f8:81:0d:d3:37: 1a:d7:65:e0:82:a0:a4:a1:67:e1:18:1c:e1:d6:26: c2:bd:44:9a:80:52:f4:2c:a0:2a:4e:1e:e8:3a:d2: 61:5e:87:e3:30:66:55:1c:a3:a3:2c:d2:9a:c8:bb: 9d:c3:75:be:bc:9f:4a:43:c2:6f:75:75:c6:ed:a1: f3:d6:b1:da:51:fd:c4:bc:65:21:75:ed:5c:28:b7: 04:8b:a8:21:7a:fb:82:b8:4e:03:50:1e:cc:b0:51: b3:b6:62:eb:f9:04:2e:39:cc:10:44:80:2b:e9:1d: 9d:a8:09:80:fb:09:64:20:fd:d8:7a:f8:84:c0:04: ef:b2:a7:10:13:e7:e5:ba:13:14:72:37:ab:06:d5: da:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C8:01:79:CF:D7:DD:52:8A:A0:70:82:34:4F:B3:3E:79:6F:B0:4D X509v3 Authority Key Identifier: keyid:7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.180.0/22 IPv6: 2404:b680::/32 Signature Algorithm: sha256WithRSAEncryption bc:b8:0b:18:1b:dd:80:bc:53:a4:bf:71:66:65:de:98:5e:03: 2a:b1:8c:1f:0c:46:68:6c:e0:a5:6b:25:5b:6e:93:4a:99:5a: f5:84:99:b9:42:e3:a1:88:a8:a5:2c:84:7e:c4:5a:07:9c:b5: 35:30:f8:84:9a:33:25:90:ee:ed:52:76:f5:9c:3f:c0:b0:f9: 88:b0:65:48:eb:c0:12:f7:d6:70:bf:e1:20:d6:24:d8:83:b0: 63:fb:d6:58:8c:dd:ea:ba:7e:be:d6:1c:21:9e:f2:f7:97:f4: f0:6d:38:c4:04:b9:d8:9e:80:30:1c:74:4b:b0:9d:29:68:09: e6:7d:4b:d3:90:43:92:6c:f6:0e:82:76:5d:7e:5b:e5:f2:53: 69:da:02:3d:0a:b6:3b:70:f2:80:de:9a:c6:13:18:b0:03:3c: 94:09:44:78:5a:af:0a:21:49:c4:e2:36:22:72:b6:05:49:b8: d0:fe:95:9b:c4:64:ef:81:d0:61:a9:a3:a0:4b:61:84:d7:ad: a2:a9:47:91:42:b7:2a:f4:37:8b:3b:fc:a5:c8:dd:d6:ea:62: 5c:4d:f3:0f:c8:5b:0a:e0:af:de:2d:de:61:d1:7a:37:5d:b2: 12:bb:c0:54:df:d3:c2:e9:52:2a:80:d2:49:ef:87:c4:75:06: 04:0d:cf:7c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCOUYxMTAvBgNVBAUTKDdFMEFBOENEMkJFODYxNzAxQTVDQTdDRkI5RDQ1MEQz RDkxODI3RTgwHhcNMjUwNjAyMTYxNTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkY2UyZS04NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J9qFVvGdvEcejMn2aHCScSpToVB+jrksZkzAI3FnK1hDma9mYtJco78UHuS HA/RHBBEYumdDr1ihJAau9znBID/ch/XeYWhhXMxHBg+FpqYMwwBsqqNEtczayQC 7w3zI9BmyJtp85Zcc2pNAglPauzi+IEN0zca12XggqCkoWfhGBzh1ibCvUSagFL0 LKAqTh7oOtJhXofjMGZVHKOjLNKayLudw3W+vJ9KQ8JvdXXG7aHz1rHaUf3EvGUh de1cKLcEi6ghevuCuE4DUB7MsFGztmLr+QQuOcwQRIAr6R2dqAmA+wlkIP3YeviE wATvsqcQE+fluhMUcjerBtXa/QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFITIAXnP 191SiqBwgjRPsz55b7BNMB8GA1UdIwQYMBaAFH4KqM0r6GFwGlynz7nUUNPZGCfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI5Ri9CODhGNDI1MjU0 NTAxMUU2QTNBNkQ0NjZDNEY5QUUwMi9mZ3FvelN2b1lYQWFYS2ZQdWRSUTA5a1lK LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZncW96U3ZvWVhBYVhLZlB1ZFJRMDlrWUotZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCOUYvQjg4RjQyNTI1NDUwMTFFNkEzQTZENDY2QzRGOUFFMDIvNEQ5NEUwRDY1 NDUyMTFFNkEzNjdCQzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn1LQwDQQCAAIwBwMFACQEtoAwDQYJKoZIhvcNAQELBQAD ggEBALy4Cxgb3YC8U6S/cWZl3pheAyqxjB8MRmhs4KVrJVtuk0qZWvWEmblC46GI qKUshH7EWgectTUw+ISaMyWQ7u1SdvWcP8Cw+YiwZUjrwBL31nC/4SDWJNiDsGP7 1liM3eq6fr7WHCGe8veX9PBtOMQEudiegDAcdEuwnSloCeZ9S9OQQ5Js9g6Cdl1+ W+XyU2naAj0Ktjtw8oDemsYTGLADPJQJRHharwohScTiNiJytgVJuND+lZvEZO+B 0GGpo6BLYYTXraKpR5FCtyr0N4s7/KXI3dbqYlxN8w/IWwrgr94t3mHRejddshK7 wFTf08LpUiqA0knvh8R1BgQNz3w= -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:25 2025 by rpki-client