$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa File: 22355CF4DE8411EDBC551D19C4F9AE02.roa (raw, json) Hash identifier: cD8CzWCOccX7amwfxtqgHIbE7YwiBohTqztQjp4x6HM= Subject key identifier: 5C:12:5C:EA:47:C9:BC:A9:C6:72:64:72:06:4D:D7:A0:C7:B0:46:95 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 348B Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa Signing time: Mon 02 Jun 2025 15:31:09 +0000 ROA not before: Mon 02 Jun 2025 15:31:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58589 IP address blocks: 103.8.229.0/24 maxlen: 24 103.12.3.0/24 maxlen: 24 103.232.168.0/24 maxlen: 24 103.232.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 15:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13451 (0x348b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A, serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: Jun 2 15:31:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683dc3bc-dc6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:16:05:39:b5:14:7a:a8:9b:36:6d:3f:f3: 78:5a:98:e8:a7:1a:62:28:91:3f:29:7d:97:61:d5: 71:b6:f0:80:6b:c8:e5:41:80:f2:95:a3:a0:d9:33: 32:2f:d3:03:20:2e:0e:ea:4f:2d:ae:2a:0d:45:9a: f8:58:bf:38:92:b1:f3:f6:06:2e:13:2d:2e:74:2d: a3:1e:ca:c0:50:69:a2:3d:f2:9e:b2:ee:db:25:5d: c4:71:8d:80:fd:e8:3a:eb:61:2d:d6:fb:cc:ef:62: 01:a7:55:de:28:b4:ec:ef:39:31:8b:24:dc:e8:a4: 41:c5:8d:9c:a3:d1:80:da:f3:58:26:62:f4:9a:0e: 03:d0:4c:af:04:e8:5f:cb:37:10:b6:62:25:f6:f5: a4:06:1d:18:ad:76:ee:77:2d:bb:83:41:d0:0b:25: 28:1e:43:7f:a6:90:a3:b0:c6:57:4b:cd:ad:0d:74: 40:77:eb:00:bc:5f:72:a2:a6:a6:f2:af:b2:a7:6d: 78:4f:a3:b7:b0:05:ef:28:41:b7:c5:f1:0d:90:21: 02:57:12:74:45:a0:b0:e8:0c:11:3a:52:5c:15:fe: 33:aa:89:41:64:23:6a:f7:2b:4d:ce:55:62:c2:1d: 2a:db:77:ba:67:1e:47:83:32:bb:6f:75:61:54:c5: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:12:5C:EA:47:C9:BC:A9:C6:72:64:72:06:4D:D7:A0:C7:B0:46:95 X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.229.0/24 103.12.3.0/24 103.232.168.0/23 Signature Algorithm: sha256WithRSAEncryption aa:f0:98:7f:54:e8:22:b5:0c:13:85:93:17:ef:3d:16:3e:40: 8c:4d:d1:1e:f9:72:b9:b3:72:04:2d:b9:db:96:7c:91:c0:47: c7:9c:f5:54:72:5a:43:25:1a:2a:6e:63:d3:93:65:cf:05:96: 25:3c:7a:8e:26:28:8a:2f:bb:91:20:be:13:43:d5:f3:e1:f6: a0:ae:e1:1d:40:45:d8:10:e3:57:e2:23:d2:48:eb:a8:ae:89: 76:01:ac:79:27:e2:4a:46:2b:1f:ce:47:f5:bb:16:bd:73:eb: 36:53:15:59:1b:39:67:83:49:f6:ce:0d:0c:56:5d:33:5d:01: c8:25:41:a8:05:1c:14:9a:22:67:a7:8c:f1:cf:4f:40:85:c5: 31:75:ca:a0:b0:94:50:fa:45:b6:be:ee:36:bc:95:2d:2c:d7: 9d:1a:c9:88:9f:15:c8:ec:32:cd:52:c8:16:db:cf:bf:ea:24: 74:ec:b8:8f:fc:14:3c:e2:43:8e:51:dc:09:f9:b1:eb:ea:d6: 5d:48:47:a4:4f:ef:05:cb:97:60:0d:45:c9:35:fd:89:f5:49: e5:f3:a6:95:27:00:9d:b3:4c:5c:5a:89:00:9d:df:20:9d:46: d8:25:80:b6:b7:24:a4:82:80:0f:68:4b:f8:d1:7b:84:7d:7a: f9:ae:e3:5e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjUwNjAyMTUzMTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkYzNiYy1kYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3kWBTm1FHqomzZtP/N4WpjopxpiKJE/KX2XYdVxtvCAa8jlQYDylaOg2TMy L9MDIC4O6k8trioNRZr4WL84krHz9gYuEy0udC2jHsrAUGmiPfKesu7bJV3EcY2A /eg662Et1vvM72IBp1XeKLTs7zkxiyTc6KRBxY2co9GA2vNYJmL0mg4D0EyvBOhf yzcQtmIl9vWkBh0YrXbudy27g0HQCyUoHkN/ppCjsMZXS82tDXRAd+sAvF9yoqam 8q+yp214T6O3sAXvKEG3xfENkCECVxJ0RaCw6AwROlJcFf4zqolBZCNq9ytNzlVi wh0q23e6Zx5HgzK7b3VhVMU0KQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFwSXOpH ybypxnJkcgZN16DHsEaVMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkFFNkEvNTgzMjQ1QjYxREFBMTFFMjg3MkFGM0E1MDhCMDJDRDIvMjIzNTVDRjRE RTg0MTFFREJDNTUxRDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCOUDBABnDAMDBAFn6KgwDQYJKoZIhvcNAQELBQADggEB AKrwmH9U6CK1DBOFkxfvPRY+QIxN0R75crmzcgQtuduWfJHAR8ec9VRyWkMlGipu Y9OTZc8FliU8eo4mKIovu5EgvhND1fPh9qCu4R1ARdgQ41fiI9JI66iuiXYBrHkn 4kpGKx/OR/W7Fr1z6zZTFVkbOWeDSfbODQxWXTNdAcglQagFHBSaImenjPHPT0CF xTF1yqCwlFD6Rba+7ja8lS0s150ayYifFcjsMs1SyBbbz7/qJHTsuI/8FDziQ45R 3An5sevq1l1IR6RP7wXLl2ANRck1/Yn1SeXzppUnAJ2zTFxaiQCd3yCdRtglgLa3 JKSCgA9oS/jRe4R9evmu414= -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:30 2025 by rpki-client