$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A2326CD09BC711EDB1BAE42AC4F9AE02.roa File: A2326CD09BC711EDB1BAE42AC4F9AE02.roa (raw, json) Hash identifier: sfzZ3UEj+bz2kAEoHRb0FOWbYxsxHkQBSFIg+Kk88yE= Subject key identifier: 67:10:69:3E:98:FA:84:6C:C0:3D:5A:D4:30:9F:8D:0E:A4:2F:EF:81 Certificate issuer: /CN=A916A6BA/serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Certificate serial: 01AF Authority key identifier: 3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A2326CD09BC711EDB1BAE42AC4F9AE02.roa Signing time: Thu 03 Apr 2025 02:59:11 +0000 ROA not before: Thu 03 Apr 2025 02:59:11 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 6939 IP address blocks: 103.73.218.0/24 maxlen: 24 103.73.219.0/24 maxlen: 24 2400:d8e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6BA, serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Validity Not Before: Apr 3 02:59:11 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67edf97e-bd38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:cc:af:7d:94:cc:cd:ef:9e:40:4d:44:3c: 71:b1:c5:0a:77:0e:f4:5a:dd:d8:7b:07:8f:ac:5c: 38:d6:6d:aa:5c:d7:99:d4:c0:ae:29:55:6b:bb:e5: 33:36:67:9d:ba:dd:09:71:97:40:86:2a:d3:1f:69: 78:88:77:86:3c:5c:3b:c0:bb:c8:d0:d0:8d:03:bd: e3:fa:b1:e9:28:e5:82:da:4e:9f:60:a3:cd:af:14: 28:ef:22:96:bf:38:dd:4b:7e:f3:65:01:ec:60:2d: d5:c1:c7:2f:e3:df:ed:b2:d4:ed:a7:0e:d6:93:5e: c7:26:f5:54:e2:98:30:6d:77:41:3f:53:fd:1b:fb: 91:94:5b:ee:0a:65:e8:69:10:67:22:62:89:9f:01: f7:f1:a6:6d:34:5d:47:1e:26:8f:f3:a0:b4:2b:35: 8e:a3:dd:4b:d9:0e:b0:dd:a5:46:29:cb:1f:38:39: 2d:23:a6:4a:bb:4b:d1:df:9f:12:0f:af:19:c0:ae: 02:1b:2c:b9:1c:96:f5:80:e3:0b:65:87:86:d2:7b: 49:92:70:76:0e:ca:54:e4:de:01:5a:25:be:b6:29: 9d:93:44:ad:39:22:12:6a:48:6e:ad:da:cb:64:f8: 10:50:a4:4a:0b:2d:7b:62:a5:79:ce:9c:b3:ad:b7: 39:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:10:69:3E:98:FA:84:6C:C0:3D:5A:D4:30:9F:8D:0E:A4:2F:EF:81 X509v3 Authority Key Identifier: keyid:3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/A2326CD09BC711EDB1BAE42AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.218.0/23 IPv6: 2400:d8e0::/48 Signature Algorithm: sha256WithRSAEncryption 54:83:82:f7:4b:0c:4e:2c:98:e5:0d:33:77:1d:6c:31:7c:16: a3:41:cf:9b:84:29:b7:bc:a0:fb:f8:76:fb:98:ec:77:8e:a6: 62:95:29:b5:8d:2b:08:65:da:a0:27:0f:7b:ab:7a:c9:6a:56: b5:86:ba:c3:87:39:73:a7:3d:19:5d:85:ac:f3:f7:72:0f:b9: f4:a5:2b:43:ce:58:ee:ef:f6:69:96:b1:e7:b8:48:34:a6:81: 7b:0b:b7:be:d2:d8:30:a1:87:6b:9c:e9:3c:14:bb:f4:ab:5b: a5:fb:b0:b1:33:48:ec:66:8f:57:43:73:5b:e9:45:c5:cd:13: a2:7f:21:07:b0:2e:1b:d8:02:56:22:43:a9:de:26:7f:15:bf: f9:75:0a:00:00:dd:29:df:23:89:0f:d0:bc:91:b3:ab:d4:d3: cc:14:8f:29:5f:52:00:8a:f7:fb:c5:06:ab:dc:1e:37:cb:fd: e3:28:33:e7:d0:6d:4d:f0:f6:44:86:e4:58:96:93:06:dc:d8: a6:17:32:67:80:7b:1a:3e:57:b4:4a:ef:14:9f:cf:fc:6e:8d: a4:80:a5:df:f6:18:0a:c1:d1:1f:14:7f:9a:b8:4e:f1:d0:36: ae:c1:94:c2:b1:d7:12:a5:ee:41:0d:de:23:88:b9:ed:11:95: 3e:bb:65:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2QkExMTAvBgNVBAUTKDNFRDgwRkVCM0IwMjFBMDUyNDFBQkU3MEQxQTUxMEE4 NjdBRDcxRkQwHhcNMjUwNDAzMDI1OTExWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZjk3ZS1iZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWbMr32UzM3vnkBNRDxxscUKdw70Wt3YewePrFw41m2qXNeZ1MCuKVVru+Uz Nmedut0JcZdAhirTH2l4iHeGPFw7wLvI0NCNA73j+rHpKOWC2k6fYKPNrxQo7yKW vzjdS37zZQHsYC3Vwccv49/tstTtpw7Wk17HJvVU4pgwbXdBP1P9G/uRlFvuCmXo aRBnImKJnwH38aZtNF1HHiaP86C0KzWOo91L2Q6w3aVGKcsfODktI6ZKu0vR358S D68ZwK4CGyy5HJb1gOMLZYeG0ntJknB2DspU5N4BWiW+timdk0StOSISakhurdrL ZPgQUKRKCy17YqV5zpyzrbc51wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGcQaT6Y +oRswD1a1DCfjQ6kL++BMB8GA1UdIwQYMBaAFD7YD+s7AhoFJBq+cNGlEKhnrXH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZCQS8xNjk2ODc5NjlC QzMxMUVEQTY1NDIzMjRDNEY5QUUwMi9QdGdQNnpzQ0dnVWtHcjV3MGFVUXFHZXRj ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B0Z1A2enNDR2dVa0dyNXcwYVVRcUdldGNmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2QkEvMTY5Njg3OTY5QkMzMTFFREE2NTQyMzI0QzRGOUFFMDIvQTIzMjZDRDA5 QkM3MTFFREIxQkFFNDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSdowDwQCAAIwCQMHACQA2OAAADANBgkqhkiG9w0BAQsF AAOCAQEAVIOC90sMTiyY5Q0zdx1sMXwWo0HPm4Qpt7yg+/h2+5jsd46mYpUptY0r CGXaoCcPe6t6yWpWtYa6w4c5c6c9GV2FrPP3cg+59KUrQ85Y7u/2aZax57hINKaB ewu3vtLYMKGHa5zpPBS79KtbpfuwsTNI7GaPV0NzW+lFxc0Ton8hB7AuG9gCViJD qd4mfxW/+XUKAADdKd8jiQ/QvJGzq9TTzBSPKV9SAIr3+8UGq9weN8v94ygz59Bt TfD2RIbkWJaTBtzYphcyZ4B7Gj5XtErvFJ/P/G6NpICl3/YYCsHRHxR/mrhO8dA2 rsGUwrHXEqXuQQ3eI4i57RGVPrtlZg== -----END CERTIFICATE-----Generated at Tue Apr 15 06:13:17 2025 by rpki-client