$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A0ED0DDA9BC711EDB1BAE42AC4F9AE02.roa File: A0ED0DDA9BC711EDB1BAE42AC4F9AE02.roa (raw, json) Hash identifier: ZUWbiwJWD4a1uLkbCA8NYjw/yP4D3hmye6sa6SJT3jI= Subject key identifier: CC:2C:25:DF:F6:04:46:CE:1C:EB:FE:3C:80:04:D7:41:0D:BF:53:13 Certificate issuer: /CN=A916A6BA/serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Certificate serial: 01AD Authority key identifier: 3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A0ED0DDA9BC711EDB1BAE42AC4F9AE02.roa Signing time: Thu 03 Apr 2025 02:59:09 +0000 ROA not before: Thu 03 Apr 2025 02:59:09 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 150727 IP address blocks: 103.73.218.0/24 maxlen: 24 103.73.219.0/24 maxlen: 24 2400:d8e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6BA, serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Validity Not Before: Apr 3 02:59:09 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67edf97c-7cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:02:ff:b3:91:8b:8f:16:99:13:a2:0e:88: ee:93:b3:79:46:ad:8d:f2:25:ab:67:56:b6:1f:1b: 26:3f:02:ef:b0:cf:c6:bb:59:e6:2a:dc:2b:b7:14: d1:a0:06:40:ec:aa:6f:5c:d7:e7:fe:61:53:68:d6: 79:56:64:2d:ba:8c:69:f6:99:1c:c7:7d:ac:d4:3a: 68:4f:e0:8c:f9:37:84:e6:62:a4:36:b0:46:47:14: 5f:a6:a9:4a:f0:30:b5:1f:d0:c5:86:65:14:86:fb: 8f:fd:99:e1:c5:50:01:1e:54:a1:17:35:9d:9b:fc: b1:00:f5:f7:2b:06:6e:00:5d:09:2b:2b:50:3e:24: f4:a0:b9:fa:08:1b:df:e3:c7:98:89:5c:03:a7:95: 5e:8f:e3:c2:11:89:c0:50:a6:71:bc:3f:3e:ad:02: 58:3f:2f:57:d6:8b:9c:0d:57:88:37:da:36:f9:39: 81:7c:64:75:43:df:c8:6c:0c:d9:2c:a1:70:1b:d4: e0:8b:82:c4:28:1b:33:b4:e3:fa:39:cb:24:6a:f3: 37:62:23:81:37:d2:4a:db:db:80:eb:53:21:ea:2d: 3c:bd:34:38:6f:41:a2:b4:b1:4b:63:2e:83:fd:54: 46:6d:4f:93:a8:8d:a9:ef:be:70:ee:55:c8:e9:94: b9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2C:25:DF:F6:04:46:CE:1C:EB:FE:3C:80:04:D7:41:0D:BF:53:13 X509v3 Authority Key Identifier: keyid:3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A0ED0DDA9BC711EDB1BAE42AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.218.0/23 IPv6: 2400:d8e0::/48 Signature Algorithm: sha256WithRSAEncryption 69:9e:2c:e8:9d:49:d6:fd:f4:37:78:14:22:fc:d0:0e:b4:67: d4:90:0d:33:f1:44:92:dc:2f:fa:46:b6:d4:17:8d:fa:87:ed: f0:89:73:2c:cf:59:e6:ad:4f:af:88:1d:c5:21:81:4a:f4:10: 22:fa:92:7f:80:9e:19:4a:28:95:b8:6e:42:92:31:61:63:ca: 06:13:39:9f:06:ef:84:e7:9c:5b:4b:13:70:6d:37:fa:1d:eb: de:5e:04:92:d0:1e:f9:45:f7:aa:15:af:6b:10:7b:36:01:0c: bf:70:4b:91:87:71:60:8e:96:75:6b:7b:41:a0:d3:fc:20:1e: a2:20:55:ec:f6:48:36:60:4a:dd:ce:48:b5:d9:e7:ad:09:ed: 3d:8a:e0:4f:f5:f8:ae:54:90:46:1e:de:5c:25:c6:47:35:b3: df:07:64:cd:96:81:f4:b7:72:08:45:2d:26:0d:46:73:d3:5a: f5:4b:9a:da:ab:88:f6:97:40:4d:87:0c:fd:f7:fb:3a:0f:16: 77:83:38:72:5a:26:8b:95:fe:f7:d0:16:ac:78:54:d1:ec:03: 90:35:17:df:7a:a9:fa:f2:77:5d:3f:8c:96:34:4d:e4:c6:3f: 3d:41:7d:70:1c:d7:8f:59:2c:9f:73:f5:c7:2a:a6:e8:3d:96: 6b:0b:86:56 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2QkExMTAvBgNVBAUTKDNFRDgwRkVCM0IwMjFBMDUyNDFBQkU3MEQxQTUxMEE4 NjdBRDcxRkQwHhcNMjUwNDAzMDI1OTA5WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZjk3Yy03Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4MC/7ORi48WmROiDojuk7N5Rq2N8iWrZ1a2HxsmPwLvsM/Gu1nmKtwrtxTR oAZA7KpvXNfn/mFTaNZ5VmQtuoxp9pkcx32s1DpoT+CM+TeE5mKkNrBGRxRfpqlK 8DC1H9DFhmUUhvuP/ZnhxVABHlShFzWdm/yxAPX3KwZuAF0JKytQPiT0oLn6CBvf 48eYiVwDp5Vej+PCEYnAUKZxvD8+rQJYPy9X1oucDVeIN9o2+TmBfGR1Q9/IbAzZ LKFwG9Tgi4LEKBsztOP6OcskavM3YiOBN9JK29uA61Mh6i08vTQ4b0GitLFLYy6D /VRGbU+TqI2p775w7lXI6ZS5KwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMwsJd/2 BEbOHOv+PIAE10ENv1MTMB8GA1UdIwQYMBaAFD7YD+s7AhoFJBq+cNGlEKhnrXH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZCQS8xNjk2ODc5NjlC QzMxMUVEQTY1NDIzMjRDNEY5QUUwMi9QdGdQNnpzQ0dnVWtHcjV3MGFVUXFHZXRj ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B0Z1A2enNDR2dVa0dyNXcwYVVRcUdldGNmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2QkEvMTY5Njg3OTY5QkMzMTFFREE2NTQyMzI0QzRGOUFFMDIvQTBFRDBEREE5 QkM3MTFFREIxQkFFNDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSdowDwQCAAIwCQMHACQA2OAAADANBgkqhkiG9w0BAQsF AAOCAQEAaZ4s6J1J1v30N3gUIvzQDrRn1JANM/FEktwv+ka21BeN+oft8IlzLM9Z 5q1Pr4gdxSGBSvQQIvqSf4CeGUoolbhuQpIxYWPKBhM5nwbvhOecW0sTcG03+h3r 3l4EktAe+UX3qhWvaxB7NgEMv3BLkYdxYI6WdWt7QaDT/CAeoiBV7PZINmBK3c5I tdnnrQntPYrgT/X4rlSQRh7eXCXGRzWz3wdkzZaB9LdyCEUtJg1Gc9Na9Uua2quI 9pdATYcM/ff7Og8Wd4M4clomi5X+99AWrHhU0ewDkDUX33qp+vJ3XT+MljRN5MY/ PUF9cBzXj1ksn3P1xyqm6D2WawuGVg== -----END CERTIFICATE-----Generated at Sun Apr 20 22:45:40 2025 by rpki-client