$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa File: DFDEC4D007A411EFAB20A473C4F9AE02.roa (raw, json) Hash identifier: hQsClVPo6k6KSQkrPXRux2ZE6YMvDs1XKFlnN0n+rhg= Subject key identifier: 85:45:8C:03:8D:1D:C7:1E:0C:65:E0:40:F2:0E:A0:27:A4:75:05:3C Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: CF Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa Signing time: Sat 31 May 2025 06:06:15 +0000 ROA not before: Sat 31 May 2025 06:06:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152710 IP address blocks: 103.49.124.0/24 maxlen: 24 103.49.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 05:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8, serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: May 31 06:06:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a9c57-d343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4c:16:8e:9a:a1:27:b9:97:3c:96:d5:9b:64: 61:1e:61:9c:8e:46:85:bb:2d:bd:f2:0a:85:43:18: 5c:0d:ca:02:0b:ce:d6:db:da:23:6d:b0:bf:2f:77: 29:45:7f:ce:30:ac:7c:6e:84:fb:2c:6d:5b:07:2c: e5:e8:2c:6c:a5:b3:d4:3d:0d:39:95:3e:60:f5:9d: fb:4c:f8:72:12:c8:e4:16:13:32:88:78:c6:40:5a: 09:ed:ef:fd:6e:2b:bd:da:d4:d5:ca:f4:e3:6f:82: 2a:c3:f2:86:b5:2d:f5:fb:cb:b8:18:30:63:3f:b7: 57:f7:b4:87:98:47:e6:31:35:1c:04:bf:85:07:86: 1f:d8:67:2f:ac:1b:02:aa:6c:1d:7b:00:3e:cb:9a: 70:1e:f3:be:ca:1d:fb:2a:de:a3:d0:f4:6c:03:f3: 05:ee:98:00:30:5f:6a:db:89:4e:09:4c:38:f6:34: 41:0a:17:bd:01:67:be:e6:07:c1:67:d7:52:b3:64: a6:e1:1d:b5:d5:a7:ca:48:7b:2f:63:2d:d5:10:da: a5:da:a2:fd:3e:77:fa:0c:ab:a1:6e:f5:7e:87:6a: aa:c9:d7:0d:74:87:11:52:da:40:60:06:78:fd:4e: dc:dd:b7:7f:a9:b1:cc:c2:56:10:9d:5c:a2:b0:23: 62:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:45:8C:03:8D:1D:C7:1E:0C:65:E0:40:F2:0E:A0:27:A4:75:05:3C X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.124.0/23 Signature Algorithm: sha256WithRSAEncryption 47:f2:b9:f3:1a:39:d6:60:dd:1a:32:a9:e3:fc:9d:13:84:0a: 4f:ff:f7:75:59:8c:41:22:a2:42:bc:dc:85:d2:dc:18:7b:48: 40:ba:5a:35:bc:57:f6:65:23:02:66:7c:93:0a:90:2a:92:6d: 46:32:5c:78:32:b9:23:83:96:6e:ed:54:c0:36:83:6e:aa:d9: 9c:8f:c9:52:86:e3:e1:07:51:dc:3b:ed:b8:5c:77:23:4c:b7: 25:2a:c3:f1:ba:b5:94:b2:8b:45:14:8e:26:18:88:5a:0f:43: 86:dc:f0:c4:e9:0e:c6:c2:bb:8b:f5:2d:a3:53:81:f3:05:00: 25:92:53:6b:36:8d:f0:86:b7:cd:49:bc:fa:19:a4:09:78:31: b4:ef:3c:66:3d:3f:95:03:00:8b:53:53:4e:36:90:d7:fa:63: c2:42:69:fc:54:53:66:a7:b4:c1:24:7c:b0:2c:52:04:17:45: 10:57:41:5f:9b:3d:dd:51:6f:18:0e:23:a5:cf:b6:02:11:c8: 39:49:b7:16:33:62:ad:92:08:bf:70:72:60:b1:b8:14:1a:83: ce:dc:44:37:05:b3:56:93:b9:a2:e0:0e:2d:5e:75:bb:da:c2: 48:ec:da:23:0a:16:32:70:c4:82:11:e8:b2:66:61:d1:0b:3e: d8:55:d3:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5QjgxMTAvBgNVBAUTKDU2NzgyNjE2Mjc1NEI0NjBDQjU4NjZEQUMzMTQ4ODBD NzAzNTQ2MUQwHhcNMjUwNTMxMDYwNjE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhOWM1Ny1kMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEwWjpqhJ7mXPJbVm2RhHmGcjkaFuy298gqFQxhcDcoCC87W29ojbbC/L3cp RX/OMKx8boT7LG1bByzl6CxspbPUPQ05lT5g9Z37TPhyEsjkFhMyiHjGQFoJ7e/9 biu92tTVyvTjb4Iqw/KGtS31+8u4GDBjP7dX97SHmEfmMTUcBL+FB4Yf2GcvrBsC qmwdewA+y5pwHvO+yh37Kt6j0PRsA/MF7pgAMF9q24lOCUw49jRBChe9AWe+5gfB Z9dSs2Sm4R211afKSHsvYy3VENql2qL9Pnf6DKuhbvV+h2qqydcNdIcRUtpAYAZ4 /U7c3bd/qbHMwlYQnVyisCNiFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIVFjAON HcceDGXgQPIOoCekdQU8MB8GA1UdIwQYMBaAFFZ4JhYnVLRgy1hm2sMUiAxwNUYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlCOC9DOEIxRDQ0RTA3 QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRHRExXR2Jhd3hTSURIQTFS aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q5QjgvQzhCMUQ0NEUwN0ExMTFFRjg0RjNEMjZBQzRGOUFFMDIvREZERUM0RDAw N0E0MTFFRkFCMjBBNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMXwwDQYJKoZIhvcNAQELBQADggEBAEfyufMaOdZg3Roy qeP8nROECk//93VZjEEiokK83IXS3Bh7SEC6WjW8V/ZlIwJmfJMKkCqSbUYyXHgy uSODlm7tVMA2g26q2ZyPyVKG4+EHUdw77bhcdyNMtyUqw/G6tZSyi0UUjiYYiFoP Q4bc8MTpDsbCu4v1LaNTgfMFACWSU2s2jfCGt81JvPoZpAl4MbTvPGY9P5UDAItT U042kNf6Y8JCafxUU2antMEkfLAsUgQXRRBXQV+bPd1RbxgOI6XPtgIRyDlJtxYz Yq2SCL9wcmCxuBQag87cRDcFs1aTuaLgDi1edbvawkjs2iMKFjJwxIIR6LJmYdEL PthV0+E= -----END CERTIFICATE-----Generated at Sat Jun 7 06:41:50 2025 by rpki-client