$ rpki-client -vvf rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa File: E8C858F29CA911EDAA491C41C4F9AE02.roa (raw, json) Hash identifier: FePH8AaAoiA+bhMYTsc2CXB1VJoMLnv5QHCux9WPXEA= Subject key identifier: B8:E0:65:D6:1F:91:D9:69:03:85:9E:42:8D:4E:FC:D8:37:84:2A:24 Certificate issuer: /CN=A916A6BA/serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Certificate serial: 01AE Authority key identifier: 3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa Signing time: Thu 03 Apr 2025 02:59:10 +0000 ROA not before: Thu 03 Apr 2025 02:59:10 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 24312 IP address blocks: 103.73.218.0/24 maxlen: 24 103.73.219.0/24 maxlen: 24 2400:d8e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A6BA, serialNumber=3ED80FEB3B021A05241ABE70D1A510A867AD71FD Validity Not Before: Apr 3 02:59:10 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67edf97d-3642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:35:32:21:3b:7a:79:d8:ea:81:22:fe:32:db: 75:96:8c:03:4a:6b:dc:d2:1e:72:cb:ce:27:40:b0: 18:b9:5f:c3:82:1b:ab:eb:dd:6c:88:5b:d6:98:b1: f9:51:48:e4:37:94:8b:9e:70:3e:ba:d1:a0:5f:2b: 40:8b:54:2a:3e:c4:17:c4:16:f3:01:33:eb:54:38: 61:9a:24:f9:3d:c8:79:0b:46:bb:3a:82:f5:b2:4d: 11:db:98:52:41:61:b9:93:cc:18:22:3d:99:ad:97: f8:76:55:8c:0f:a7:0d:87:62:4e:95:1f:89:4f:6e: 55:44:f2:86:5f:1c:2a:96:cd:ce:18:f6:b0:c7:3f: 7f:d0:f0:53:81:a8:42:e8:60:e9:32:71:b2:f4:29: 61:0d:a9:85:78:b9:af:3c:0d:44:a2:79:d9:b1:93: 5f:e2:58:88:18:1f:a9:a6:5d:34:77:44:35:64:17: 93:2f:d9:cc:d6:50:5f:7d:9a:1c:2e:a5:f2:43:7d: 66:ee:e3:6f:f4:09:67:2d:c4:51:c5:85:ad:0d:37: 80:81:2f:f3:9a:2f:92:da:d3:67:38:bb:55:02:0e: 95:b7:64:f4:f9:d1:95:95:07:26:81:7f:42:11:88: 6d:74:86:aa:b4:91:66:9d:31:58:59:2f:48:95:56: 5d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E0:65:D6:1F:91:D9:69:03:85:9E:42:8D:4E:FC:D8:37:84:2A:24 X509v3 Authority Key Identifier: keyid:3E:D8:0F:EB:3B:02:1A:05:24:1A:BE:70:D1:A5:10:A8:67:AD:71:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/PtgP6zsCGgUkGr5w0aUQqGetcf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PtgP6zsCGgUkGr5w0aUQqGetcf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A6BA/169687969BC311EDA6542324C4F9AE02/E8C858F29CA911EDAA491C41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.218.0/23 IPv6: 2400:d8e0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:48:6e:16:03:99:7e:07:a0:b1:fd:dd:cf:32:d2:72:65:ed: 1d:a6:ca:c2:0d:b9:19:1a:64:d3:88:fb:52:76:b1:64:ca:9f: a8:04:f8:a2:f3:3b:b1:0f:03:f2:b1:cb:1e:03:16:6b:5c:ca: f9:7c:0c:b7:e0:63:66:c3:9d:37:52:1a:cc:e3:a9:38:10:e7: 43:47:0f:ad:a3:f3:26:a3:65:91:8a:c4:c7:75:a0:85:34:35: 04:60:fa:5a:bb:4a:f4:1d:62:66:3e:5c:6b:fc:c3:38:f1:c5: 4e:75:43:da:70:0b:aa:9b:94:0d:c2:b2:dd:26:4e:f4:74:07: be:36:82:ef:6b:95:6b:f1:ab:ae:7c:ca:99:37:7f:9c:c4:21: 43:66:97:51:43:e4:24:7b:b6:f9:08:49:e4:2d:76:5c:06:86: fe:7c:87:8b:48:02:23:14:ff:ef:3e:b9:cc:79:28:df:db:cb: 37:bf:da:43:c2:65:82:83:98:51:4d:6d:3d:23:d5:2d:15:40: e3:e1:64:d1:4a:c3:66:11:8e:25:19:61:52:3d:18:02:e9:cc: fd:6b:04:8d:cb:64:ec:7f:94:4f:aa:f8:44:89:d1:06:29:1e: 48:a2:03:0c:5c:68:11:e6:71:ab:2f:d2:16:6d:8d:74:a2:4e: 07:92:bc:bf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE2QkExMTAvBgNVBAUTKDNFRDgwRkVCM0IwMjFBMDUyNDFBQkU3MEQxQTUxMEE4 NjdBRDcxRkQwHhcNMjUwNDAzMDI1OTEwWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZjk3ZC0zNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zUyITt6edjqgSL+Mtt1lowDSmvc0h5yy84nQLAYuV/Dghur691siFvWmLH5 UUjkN5SLnnA+utGgXytAi1QqPsQXxBbzATPrVDhhmiT5Pch5C0a7OoL1sk0R25hS QWG5k8wYIj2ZrZf4dlWMD6cNh2JOlR+JT25VRPKGXxwqls3OGPawxz9/0PBTgahC 6GDpMnGy9ClhDamFeLmvPA1EonnZsZNf4liIGB+ppl00d0Q1ZBeTL9nM1lBffZoc LqXyQ31m7uNv9AlnLcRRxYWtDTeAgS/zmi+S2tNnOLtVAg6Vt2T0+dGVlQcmgX9C EYhtdIaqtJFmnTFYWS9IlVZdVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLjgZdYf kdlpA4WeQo1O/Ng3hCokMB8GA1UdIwQYMBaAFD7YD+s7AhoFJBq+cNGlEKhnrXH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTZCQS8xNjk2ODc5NjlC QzMxMUVEQTY1NDIzMjRDNEY5QUUwMi9QdGdQNnpzQ0dnVWtHcjV3MGFVUXFHZXRj ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B0Z1A2enNDR2dVa0dyNXcwYVVRcUdldGNmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE2QkEvMTY5Njg3OTY5QkMzMTFFREE2NTQyMzI0QzRGOUFFMDIvRThDODU4RjI5 Q0E5MTFFREFBNDkxQzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSdowDwQCAAIwCQMHACQA2OAAADANBgkqhkiG9w0BAQsF AAOCAQEADUhuFgOZfgegsf3dzzLScmXtHabKwg25GRpk04j7UnaxZMqfqAT4ovM7 sQ8D8rHLHgMWa1zK+XwMt+BjZsOdN1IazOOpOBDnQ0cPraPzJqNlkYrEx3WghTQ1 BGD6WrtK9B1iZj5ca/zDOPHFTnVD2nALqpuUDcKy3SZO9HQHvjaC72uVa/GrrnzK mTd/nMQhQ2aXUUPkJHu2+QhJ5C12XAaG/nyHi0gCIxT/7z65zHko39vLN7/aQ8Jl goOYUU1tPSPVLRVA4+Fk0UrDZhGOJRlhUj0YAunM/WsEjctk7H+UT6r4RInRBike SKIDDFxoEeZxqy/SFm2NdKJOB5K8vw== -----END CERTIFICATE-----Generated at Sun Apr 20 22:46:57 2025 by rpki-client