$ rpki-client -vvf rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa File: 19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa (raw, json) Hash identifier: aIhdOoGq/5IV6Mhns4F3omRFw08MxMY0t1LOWZhYXz8= Subject key identifier: 92:4E:53:71:7B:DF:AF:93:1A:83:DE:BA:E7:9F:AF:A0:98:6A:5C:DF Certificate issuer: /CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Certificate serial: 0718 Authority key identifier: C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa Signing time: Mon 10 Mar 2025 22:13:24 +0000 ROA not before: Mon 10 Mar 2025 22:13:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 61317 IP address blocks: 103.160.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D128 Validity Not Before: Mar 10 22:13:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67cf6404-2974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e2:28:fd:c4:7a:fc:fa:67:5d:7c:c0:f5:cf: 68:9f:b5:28:ba:c9:37:91:fc:26:50:31:98:73:53: 04:9b:b0:c1:a7:08:2d:c5:43:fa:ce:4a:06:6a:28: de:1f:77:9a:63:52:ef:57:3f:d7:cd:7f:79:0c:8c: 40:8a:4a:1b:a0:d4:73:2a:03:2e:16:60:c3:93:b2: 23:7f:23:73:82:4c:db:f6:43:ab:e8:57:db:29:8b: ab:8c:57:51:f6:b7:60:7b:c3:57:6e:43:b5:4b:62: 65:13:18:a2:32:4e:b0:29:a1:91:3c:b6:f6:0b:81: 1e:37:03:fd:0e:33:cf:31:d6:b4:83:6d:90:21:66: 64:df:b8:7f:3c:3e:df:e1:fd:1f:ad:5b:64:15:5e: 39:94:48:87:ea:ca:3b:c7:9b:d1:e2:c3:28:62:b0: ca:55:57:ff:f5:77:70:13:3e:6d:15:72:28:25:b7: 5d:a3:57:7a:59:7d:45:86:31:71:7c:8e:28:b6:af: 7e:dd:36:f4:88:1a:20:fc:df:be:f5:f0:91:c8:91: b1:f1:71:f0:29:60:51:2e:ae:d5:4a:a9:dd:5e:4f: 29:07:3c:59:1a:e3:e3:cf:a6:62:0a:bf:91:60:47: c2:95:a0:a4:65:5b:6f:6a:8c:68:ec:75:57:85:d2: df:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4E:53:71:7B:DF:AF:93:1A:83:DE:BA:E7:9F:AF:A0:98:6A:5C:DF X509v3 Authority Key Identifier: keyid:C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.101.0/24 Signature Algorithm: sha256WithRSAEncryption 95:f4:17:c1:b5:2b:3d:86:c2:81:4f:87:bc:9b:a5:fa:38:cd: 18:2a:3e:a5:50:9d:2c:36:49:2a:aa:06:39:4b:ec:f3:50:ef: 97:85:e7:30:44:d8:70:86:17:c8:b8:2b:51:79:77:91:9d:2e: 70:50:6c:ab:c5:ed:de:67:8a:d0:f4:1c:96:30:32:d8:b2:d0: d0:30:2a:23:88:67:7c:5e:8c:44:bf:b3:36:7b:bc:f0:4b:17: d9:bd:2e:58:1a:af:13:c3:04:ba:78:6e:ab:e1:75:12:00:47: ce:ec:e4:f3:f0:8b:88:bf:1b:bf:a3:31:a0:d7:71:df:bf:1b: bb:0c:e8:8c:46:2e:0d:7d:93:6c:30:41:76:8a:a3:ef:e1:88: bc:45:5a:10:81:d6:f3:1c:e4:f4:c7:55:14:8a:95:5a:57:30: 62:54:3e:08:b5:6a:f4:b1:9b:15:6b:bf:a3:f2:d9:70:65:56: 18:24:17:7d:f6:b5:6c:51:89:ca:6f:e0:ec:90:84:14:12:65: 10:d9:65:7c:bb:5f:23:16:3e:ab:68:d3:52:6d:eb:b6:46:10: 0f:3c:cc:ba:c5:a9:e2:f7:bc:b5:68:1f:bf:92:fd:ab:ed:59: a6:6d:0b:91:53:35:97:5e:be:e6:66:61:f4:60:5c:5b:ea:88: 04:b4:73:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxMjgxMTAvBgNVBAUTKEM1MDQ1NjU1NzdBRTk5RjYxOTFDOTc4MzNEREJERDYy NEVDMjRFOTIwHhcNMjUwMzEwMjIxMzI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmNjQwNC0yOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuIo/cR6/PpnXXzA9c9on7Uousk3kfwmUDGYc1MEm7DBpwgtxUP6zkoGaije H3eaY1LvVz/XzX95DIxAikoboNRzKgMuFmDDk7IjfyNzgkzb9kOr6FfbKYurjFdR 9rdge8NXbkO1S2JlExiiMk6wKaGRPLb2C4EeNwP9DjPPMda0g22QIWZk37h/PD7f 4f0frVtkFV45lEiH6so7x5vR4sMoYrDKVVf/9XdwEz5tFXIoJbddo1d6WX1FhjFx fI4otq9+3Tb0iBog/N++9fCRyJGx8XHwKWBRLq7VSqndXk8pBzxZGuPjz6ZiCr+R YEfClaCkZVtvaoxo7HVXhdLfBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJJOU3F7 36+TGoPeuuefr6CYalzfMB8GA1UdIwQYMBaAFMUEVlV3rpn2GRyXgz3b3WJOwk6S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDEyOC85MERFOUM2NjNF QTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1mWVpISmVEUGR2ZFlrN0NU cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hRUldWWGV1bWZZWkhKZURQZHZkWWs3Q1RwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQxMjgvOTBERTlDNjYzRUEzMTFFQjhBQ0I5MDEzQzRGOUFFMDIvMTlENDI3QkE2 QUZEMTFFRUE0QUYxQTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoGUwDQYJKoZIhvcNAQELBQADggEBAJX0F8G1Kz2GwoFP h7ybpfo4zRgqPqVQnSw2SSqqBjlL7PNQ75eF5zBE2HCGF8i4K1F5d5GdLnBQbKvF 7d5nitD0HJYwMtiy0NAwKiOIZ3xejES/szZ7vPBLF9m9LlgarxPDBLp4bqvhdRIA R87s5PPwi4i/G7+jMaDXcd+/G7sM6IxGLg19k2wwQXaKo+/hiLxFWhCB1vMc5PTH VRSKlVpXMGJUPgi1avSxmxVrv6Py2XBlVhgkF332tWxRicpv4OyQhBQSZRDZZXy7 XyMWPqto01Jt67ZGEA88zLrFqeL3vLVoH7+S/avtWaZtC5FTNZdevuZmYfRgXFvq iAS0c+Q= -----END CERTIFICATE-----Generated at Fri Apr 4 19:38:26 2025 by rpki-client