$ rpki-client -vvf rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa File: 1687F94A2A1B11EB97B90C81C4F9AE02.roa (raw, json) Hash identifier: g3w/XsJqAxVEVlKlr0cv2aQ+w+aC0v9T6kWu2Ywl2js= Subject key identifier: AD:86:E5:F0:6C:FE:02:FB:34:2E:1C:CD:1A:F0:C9:77:0F:6B:4F:4C Certificate issuer: /CN=A916D750/serialNumber=F189CDF0FB9F9C691291A1466819D13C4E8C9600 Certificate serial: 0718 Authority key identifier: F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa Signing time: Wed 26 Feb 2025 22:50:51 +0000 ROA not before: Wed 26 Feb 2025 22:50:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4618 IP address blocks: 103.138.176.0/24 maxlen: 24 103.138.177.0/24 maxlen: 24 103.138.178.0/24 maxlen: 24 103.138.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D750 Validity Not Before: Feb 26 22:50:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67bf9acb-dd24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:92:d8:be:36:90:d2:96:6f:de:b3:74:81: 73:55:30:12:b8:cf:29:fd:c7:4d:5d:76:32:2f:eb: 72:d2:72:96:bc:c0:e5:3b:60:86:af:60:4a:76:2c: ee:bb:00:bc:a8:f9:e3:1f:d5:dd:c0:5f:21:04:17: 31:0b:e7:80:ed:00:c5:3d:1e:f4:74:fc:a7:26:e2: e5:28:6a:20:7a:6c:ae:9c:fe:88:75:86:6b:9c:a7: a8:4e:06:05:22:11:03:33:d1:37:44:6b:85:aa:a4: 53:2f:ab:45:6b:47:2b:1f:08:81:01:5d:99:fb:4f: 07:b4:2a:97:c9:8d:e6:29:00:09:33:1a:4e:e9:3c: 88:b4:34:30:5f:77:39:fb:43:7e:77:c8:e4:67:51: 0a:e9:64:b7:69:31:5f:d3:fc:97:3b:4a:34:36:2e: 52:c4:3e:8b:a8:dd:10:70:98:2d:e8:2a:1e:c9:9e: a1:c4:5b:2a:f7:14:a0:2c:c6:e9:17:c4:79:c0:67: 76:86:ee:04:2f:95:2f:a8:77:b7:4d:98:d0:0c:8d: 7e:ee:0e:90:4c:8f:e9:59:1f:b2:91:47:fb:15:11: 02:db:2e:11:df:3d:48:59:af:59:db:fc:a2:0a:81: b7:06:8b:74:61:89:f8:bc:9b:c4:83:65:9e:ba:4d: 92:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:86:E5:F0:6C:FE:02:FB:34:2E:1C:CD:1A:F0:C9:77:0F:6B:4F:4C X509v3 Authority Key Identifier: keyid:F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.176.0/22 Signature Algorithm: sha256WithRSAEncryption 79:bf:6b:ee:1b:b6:b0:0a:34:77:a8:dd:94:ad:e5:1a:ae:3c: f7:7c:43:11:c6:a7:5f:bf:90:c6:50:c2:3e:f5:3b:ca:14:d4: fb:38:ed:36:28:01:54:fd:ea:2a:ad:75:4a:a5:f8:01:b9:09: 5b:b3:6a:99:30:13:af:8c:87:07:97:6b:50:38:0b:d3:9d:8e: c7:92:3a:42:f9:0a:60:41:dc:48:26:c8:e1:56:05:f4:2d:b6: 0c:60:0e:46:4c:d2:07:f1:c9:fe:f1:f6:82:b5:3a:86:a8:7f: bf:c1:c2:e8:6e:ee:59:f3:70:ed:20:a6:f0:be:f3:07:bc:0b: 3a:a5:6b:57:b9:e9:92:ec:95:e1:19:44:05:8e:f0:8d:c6:a9: 7d:70:b2:c6:ea:dd:ff:d5:d1:5f:82:dc:0e:53:0a:0c:94:98: 6c:78:94:3b:3e:be:bf:29:5a:93:4b:8f:cd:16:e8:36:79:54: cd:e6:3e:e6:c2:79:86:49:69:e0:ec:f1:97:76:3c:02:a5:71: 32:be:ef:49:29:e5:d2:85:97:6b:cf:e3:03:4d:c0:73:56:13: 83:e0:79:8b:b5:d8:c0:15:50:8a:d9:80:5b:fa:25:90:e0:14: 1d:ac:c2:6a:87:d0:27:b6:06:9c:a4:c4:9f:7a:2b:fa:02:40: 47:7e:e3:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ3NTAxMTAvBgNVBAUTKEYxODlDREYwRkI5RjlDNjkxMjkxQTE0NjY4MTlEMTND NEU4Qzk2MDAwHhcNMjUwMjI2MjI1MDUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmOWFjYi1kZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbKS2L42kNKWb96zdIFzVTASuM8p/cdNXXYyL+ty0nKWvMDlO2CGr2BKdizu uwC8qPnjH9XdwF8hBBcxC+eA7QDFPR70dPynJuLlKGogemyunP6IdYZrnKeoTgYF IhEDM9E3RGuFqqRTL6tFa0crHwiBAV2Z+08HtCqXyY3mKQAJMxpO6TyItDQwX3c5 +0N+d8jkZ1EK6WS3aTFf0/yXO0o0Ni5SxD6LqN0QcJgt6CoeyZ6hxFsq9xSgLMbp F8R5wGd2hu4EL5UvqHe3TZjQDI1+7g6QTI/pWR+ykUf7FREC2y4R3z1IWa9Z2/yi CoG3Bot0YYn4vJvEg2Weuk2StwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2G5fBs /gL7NC4czRrwyXcPa09MMB8GA1UdIwQYMBaAFPGJzfD7n5xpEpGhRmgZ0TxOjJYA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDc1MC8wRkE3QzZCNjJB MTkxMUVCOUNBRjI2N0VDNEY5QUUwMi84WW5OOFB1Zm5Ha1NrYUZHYUJuUlBFNk1s Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZbk44UHVmbkdrU2thRkdhQm5SUEU2TWxnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ3NTAvMEZBN0M2QjYyQTE5MTFFQjlDQUYyNjdFQzRGOUFFMDIvMTY4N0Y5NEEy QTFCMTFFQjk3QjkwQzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnirAwDQYJKoZIhvcNAQELBQADggEBAHm/a+4btrAKNHeo 3ZSt5RquPPd8QxHGp1+/kMZQwj71O8oU1Ps47TYoAVT96iqtdUql+AG5CVuzapkw E6+MhweXa1A4C9OdjseSOkL5CmBB3EgmyOFWBfQttgxgDkZM0gfxyf7x9oK1Ooao f7/Bwuhu7lnzcO0gpvC+8we8Czqla1e56ZLsleEZRAWO8I3GqX1wssbq3f/V0V+C 3A5TCgyUmGx4lDs+vr8pWpNLj80W6DZ5VM3mPubCeYZJaeDs8Zd2PAKlcTK+70kp 5dKFl2vP4wNNwHNWE4PgeYu12MAVUIrZgFv6JZDgFB2swmqH0Ce2BpykxJ96K/oC QEd+4wI= -----END CERTIFICATE-----Generated at Thu Mar 13 21:50:07 2025 by rpki-client