$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa File: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (raw, json) Hash identifier: zhMP8LF5xzC/Q8On0PtHeNnJWxx2k1+qP2f+3qYJ/jA= Subject key identifier: 71:04:89:E5:D3:E6:42:74:62:F7:9A:EF:3F:FC:24:30:B6:67:07:D7 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 49 Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa Signing time: Sat 31 May 2025 06:59:50 +0000 ROA not before: Sat 31 May 2025 06:59:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132257 IP address blocks: 103.8.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: May 31 06:59:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683aa8e6-f45b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0e:90:d9:3e:3a:49:8d:c4:dc:93:68:9a:5b: 29:cc:c1:e6:d5:c3:c5:a9:30:72:70:b8:da:08:53: 00:5c:e9:ad:aa:3b:1b:bc:84:50:e8:92:0a:d2:b7: a7:d3:64:4e:1d:fb:84:3f:05:b7:be:8a:6f:3f:80: 2a:a6:1c:4b:61:c3:4c:d2:3b:6b:31:e0:92:36:7a: cd:fd:8c:d1:d1:cf:64:d1:d5:9c:54:98:51:ef:3d: 9b:b4:cd:06:25:df:f2:ec:76:06:8a:14:ba:bf:83: 79:f9:9a:5c:cb:41:85:11:d7:d8:d4:52:4a:4d:67: d4:e8:f4:c5:da:54:e8:29:60:63:fd:80:92:1b:51: 98:43:af:a1:ea:c4:fa:9c:60:be:a0:20:de:25:11: 5a:5a:96:a3:2e:ba:8c:77:e3:2c:58:86:2a:c7:f3: a0:fc:1b:27:ac:2a:f7:c1:d6:2a:53:8f:4b:81:16: a2:a8:4d:8b:79:35:a0:3f:00:26:04:7a:c8:00:5d: a1:b5:0a:69:19:9f:28:31:31:84:fb:21:4b:2d:66: 0e:74:bf:c1:f8:59:8f:67:f8:d3:85:27:8c:e8:d4: 39:2e:b5:67:62:d3:a3:21:ea:48:d2:4a:23:5c:f5: ce:90:87:f7:b6:4a:a8:a7:2b:6c:24:ef:6e:2d:62: 11:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:04:89:E5:D3:E6:42:74:62:F7:9A:EF:3F:FC:24:30:B6:67:07:D7 X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.236.0/23 Signature Algorithm: sha256WithRSAEncryption 27:d2:ea:46:3f:42:e5:04:40:17:a1:8c:c6:cb:f7:b2:93:58: 3d:c4:ad:cc:ab:4f:29:37:94:65:1d:3c:a0:27:39:81:81:60: d4:07:d2:08:f9:2c:5f:42:df:1d:99:4d:f8:f8:d6:2e:fa:d7: 97:54:f7:93:09:8f:d1:be:78:a0:96:4e:58:26:d0:d2:da:aa: 91:a1:40:b2:f4:c6:d7:9b:bb:04:3c:ca:37:29:bd:0e:dd:e9: 8e:75:53:23:e5:a0:54:13:46:8f:b8:97:1f:57:1e:f1:21:8b: 2d:1e:bb:69:5b:a2:15:de:c4:cb:c4:3f:a4:ec:67:13:9e:e0: b9:39:7e:1f:20:31:af:df:f9:a9:eb:99:25:3d:b6:b6:d6:f3: 46:9a:35:e1:11:a8:bc:7d:9c:77:b4:2f:93:e4:b9:02:54:9c: f7:5d:75:5e:6b:36:25:04:fc:af:a1:25:d3:48:11:2e:55:bb: 86:9a:03:e5:8b:3f:2b:ad:a8:67:d9:d9:93:5c:ee:9b:be:60: 94:53:59:e8:50:b0:3f:5e:98:7f:92:dd:c5:19:c1:9b:16:24: 80:df:df:7d:4b:5a:59:3f:57:64:b6:74:4a:55:f6:71:93:7b: c7:4c:09:59:d2:2e:35:6c:ec:5c:4c:35:7c:93:67:8f:7c:1e: 5f:c4:60:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUwNDExMC8GA1UEBRMoOURDQ0QwODBGMDcyREUyNEVGODQyQzZBQTI5MjQ5OUVG MTM2OUJGNDAeFw0yNTA1MzEwNjU5NTBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhOGU2LWY0NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIDpDZPjpJjcTck2iaWynMwebVw8WpMHJwuNoIUwBc6a2qOxu8hFDokgrSt6fT ZE4d+4Q/Bbe+im8/gCqmHEthw0zSO2sx4JI2es39jNHRz2TR1ZxUmFHvPZu0zQYl 3/LsdgaKFLq/g3n5mlzLQYUR19jUUkpNZ9To9MXaVOgpYGP9gJIbUZhDr6HqxPqc YL6gIN4lEVpalqMuuox34yxYhirH86D8GyesKvfB1ipTj0uBFqKoTYt5NaA/ACYE esgAXaG1CmkZnygxMYT7IUstZg50v8H4WY9n+NOFJ4zo1DkutWdi06Mh6kjSSiNc 9c6Qh/e2SqinK2wk724tYhG9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcQSJ5dPm QnRi95rvP/wkMLZnB9cwHwYDVR0jBBgwFoAUnczQgPBy3iTvhCxqopJJnvE2m/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTA0LzMyMUJDNDhDRDNB QjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1f US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmN6UWdQQnkzaVR2aEN4cW9wSkpudkUybV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUwNC8zMjFCQzQ4Q0QzQUIxMUVGOEVCRDBDMkJDNEY5QUUwMi9EN0JCREUxOEQz QUIxMUVGQjAyMjIwMkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcI7DANBgkqhkiG9w0BAQsFAAOCAQEAJ9LqRj9C5QRAF6GM xsv3spNYPcStzKtPKTeUZR08oCc5gYFg1AfSCPksX0LfHZlN+PjWLvrXl1T3kwmP 0b54oJZOWCbQ0tqqkaFAsvTG15u7BDzKNym9Dt3pjnVTI+WgVBNGj7iXH1ce8SGL LR67aVuiFd7Ey8Q/pOxnE57guTl+HyAxr9/5qeuZJT22ttbzRpo14RGovH2cd7Qv k+S5AlSc9111Xms2JQT8r6El00gRLlW7hpoD5Ys/K62oZ9nZk1zum75glFNZ6FCw P16Yf5LdxRnBmxYkgN/ffUtaWT9XZLZ0SlX2cZN7x0wJWdIuNWzsXEw1fJNnj3we X8Rguw== -----END CERTIFICATE-----Generated at Mon Jun 2 07:19:45 2025 by rpki-client