$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa File: B8BB04788D0E11EF9759C171C4F9AE02.roa (raw, json) Hash identifier: IzJFZ3IfgikMteYtxesfuZx5KXbgZoD0IVt2dSOstz0= Subject key identifier: 84:BC:BE:B0:B3:A7:D7:4C:F0:C5:61:FD:89:76:62:31:2A:8A:21:CB Certificate issuer: /CN=A915F2CF/serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F Certificate serial: 07A6 Authority key identifier: CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa Signing time: Sun 18 May 2025 16:02:17 +0000 ROA not before: Sun 18 May 2025 16:02:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 5065 IP address blocks: 45.123.100.0/24 maxlen: 24 45.123.101.0/24 maxlen: 24 103.9.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 21:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2CF, serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F Validity Not Before: May 18 16:02:17 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=682a0489-aac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:94:1b:36:8a:26:94:9d:3e:66:97:43:2d: 38:2e:67:bc:c5:ca:08:4b:a9:cc:6f:b0:c7:f9:77: 00:65:a8:2c:02:5c:8a:20:ad:8f:f0:59:95:08:3c: b9:06:dc:85:65:49:60:64:76:85:80:98:6a:30:18: c9:23:57:15:e4:b9:03:5c:bf:27:50:4a:00:43:06: a8:d5:b6:0c:a2:cb:20:87:fe:4a:7d:3a:0f:07:11: dd:7b:ee:48:21:83:96:72:91:9d:3d:88:6e:ea:f7: 83:45:ea:ae:d6:46:05:cb:8a:e4:be:d1:e0:01:60: 5f:44:bc:54:a5:44:43:22:ec:09:5f:e9:bb:cc:4e: 24:70:08:67:85:3e:9a:50:48:d5:ea:86:27:e4:fb: 7f:ea:68:f7:8c:8f:b4:c3:cc:37:40:35:4e:47:be: 2b:56:fe:99:0a:db:8d:2a:11:92:c1:b0:f3:29:a2: 20:90:96:78:35:3f:91:fb:6b:82:43:6d:41:24:a7: 22:72:9c:4a:81:17:86:e5:4b:fb:65:26:44:9e:56: 21:c9:dc:7e:0a:19:0f:29:7a:e2:30:a8:9c:64:7e: f3:c2:a3:7c:7e:cc:b8:aa:09:b1:aa:fc:9f:e8:9d: 86:db:d0:ae:d2:ec:2d:b1:e1:16:c2:58:66:53:ba: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:BC:BE:B0:B3:A7:D7:4C:F0:C5:61:FD:89:76:62:31:2A:8A:21:CB X509v3 Authority Key Identifier: keyid:CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/B8BB04788D0E11EF9759C171C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.100.0/23 103.9.150.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:2b:35:dc:6c:9d:bd:4e:7e:ad:23:98:67:66:74:58:b0:4c: 7f:a3:ec:2b:cb:78:94:5b:d9:c9:7e:22:41:da:eb:48:48:22: 88:08:77:41:f7:93:50:b7:42:ff:d9:f3:f8:d2:c7:ec:84:52: 35:47:ca:5f:00:e1:77:db:68:4b:13:7a:22:91:9d:ff:1e:fc: d5:4f:bb:d7:42:8c:42:95:72:48:a6:fc:3d:c2:aa:6f:93:0b: 06:03:07:3d:23:e1:e8:c7:2c:10:8e:1a:37:10:17:0e:d1:19: 1d:85:54:f5:50:a2:38:c1:2c:a8:1b:cd:4c:b7:39:b2:7a:ab: 90:8b:94:db:2e:b3:cf:66:66:fc:da:c1:d4:e8:cf:78:67:a2: 29:46:94:48:f9:ca:9f:f7:44:92:3e:76:76:39:56:70:30:1a: 98:05:b1:96:fb:81:43:59:d3:e7:d7:3e:3e:87:22:4c:11:56: c1:77:79:2b:9a:c9:8b:7d:85:43:a0:9f:70:30:5d:e7:b1:88: ce:8d:03:ee:fb:0c:c0:3e:09:6e:ad:bb:22:e0:14:f6:7d:ef: dd:37:4e:34:83:ac:c8:ae:03:e0:f1:09:be:c6:b7:e5:91:55: cc:97:dc:f2:70:d2:b9:eb:34:80:6b:02:c8:48:fd:cd:b9:27: c4:49:e8:26 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQ0YxMTAvBgNVBAUTKENCMzBEMzVDNzBERkM4NjZBODM3Q0FFREZFRkNFNkZF Q0JGQzVCNUYwHhcNMjUwNTE4MTYwMjE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhMDQ4OS1hYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbCUGzaKJpSdPmaXQy04Lme8xcoIS6nMb7DH+XcAZagsAlyKIK2P8FmVCDy5 BtyFZUlgZHaFgJhqMBjJI1cV5LkDXL8nUEoAQwao1bYMossgh/5KfToPBxHde+5I IYOWcpGdPYhu6veDRequ1kYFy4rkvtHgAWBfRLxUpURDIuwJX+m7zE4kcAhnhT6a UEjV6oYn5Pt/6mj3jI+0w8w3QDVOR74rVv6ZCtuNKhGSwbDzKaIgkJZ4NT+R+2uC Q21BJKcicpxKgReG5Uv7ZSZEnlYhydx+ChkPKXriMKicZH7zwqN8fsy4qgmxqvyf 6J2G29Cu0uwtseEWwlhmU7ocDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIS8vrCz p9dM8MVh/Yl2YjEqiiHLMB8GA1UdIwQYMBaAFMsw01xw38hmqDfK7f785v7L/Ftf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJDRi9GNUMxNEVEMjA3 MTAxMUVCOTdGOUY1MzdDNEY5QUUwMi95ekRUWEhEZnlHYW9OOHJ0X3Z6bV9zdjhX MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l6RFRYSERmeUdhb044cnRfdnptX3N2OFcxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYyQ0YvRjVDMTRFRDIwNzEwMTFFQjk3RjlGNTM3QzRGOUFFMDIvQjhCQjA0Nzg4 RDBFMTFFRjk3NTlDMTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEte2QDBABnCZYwDQYJKoZIhvcNAQELBQADggEBAG0rNdxs nb1Ofq0jmGdmdFiwTH+j7CvLeJRb2cl+IkHa60hIIogId0H3k1C3Qv/Z8/jSx+yE UjVHyl8A4XfbaEsTeiKRnf8e/NVPu9dCjEKVckim/D3Cqm+TCwYDBz0j4ejHLBCO GjcQFw7RGR2FVPVQojjBLKgbzUy3ObJ6q5CLlNsus89mZvzawdToz3hnoilGlEj5 yp/3RJI+dnY5VnAwGpgFsZb7gUNZ0+fXPj6HIkwRVsF3eSuayYt9hUOgn3AwXeex iM6NA+77DMA+CW6tuyLgFPZ97903TjSDrMiuA+DxCb7Gt+WRVcyX3PJw0rnrNIBr AshI/c25J8RJ6CY= -----END CERTIFICATE-----Generated at Thu Jun 5 19:17:39 2025 by rpki-client