$ rpki-client -vvf rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/1CDA8D8A613A11EF81FCD418C4F9AE02.roa File: 1CDA8D8A613A11EF81FCD418C4F9AE02.roa (raw, json) Hash identifier: vjUQbwkbtyGM1JhdKofog7wHQ8T4feb2Yii5jS5PVag= Subject key identifier: FF:15:27:20:F6:EC:83:9A:DE:64:F5:2E:4B:13:5E:08:C6:22:6C:57 Certificate issuer: /CN=A918A132/serialNumber=016569C3CF8E700932F14E482C56AA66BBAF2B61 Certificate serial: B3 Authority key identifier: 01:65:69:C3:CF:8E:70:09:32:F1:4E:48:2C:56:AA:66:BB:AF:2B:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWVpw8-OcAky8U5ILFaqZruvK2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/1CDA8D8A613A11EF81FCD418C4F9AE02.roa Signing time: Thu 13 Feb 2025 07:37:36 +0000 ROA not before: Thu 13 Feb 2025 07:37:36 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141718 IP address blocks: 103.163.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/AWVpw8-OcAky8U5ILFaqZruvK2E.crl rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/AWVpw8-OcAky8U5ILFaqZruvK2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWVpw8-OcAky8U5ILFaqZruvK2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 05:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A132 Validity Not Before: Feb 13 07:37:36 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ada13f-bf00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2f:75:03:b2:c9:c8:b0:e2:73:35:f7:a3:47: be:d6:ba:f5:54:00:88:2b:9d:3f:a8:ea:aa:ce:7f: b7:56:09:b6:f5:8e:99:4f:b2:62:99:fd:a7:b5:81: d8:b8:7d:cd:29:92:c0:ea:53:c4:09:c2:ef:f5:fd: 27:44:b5:8b:4f:41:a0:88:12:28:24:67:6b:31:c0: b3:44:31:9a:75:fb:f3:0d:ff:6c:0b:d7:b4:af:51: 8f:29:d7:a7:33:a4:51:7c:e4:28:90:2d:03:9b:a4: 68:63:b5:90:d9:75:94:0d:24:ae:6b:62:ec:4a:e2: 59:99:22:5c:aa:5f:8e:dd:4c:28:5f:b9:4a:eb:53: d7:0c:4f:67:14:fe:cd:ea:cc:0e:fd:c8:74:40:a2: 4e:ad:f8:3d:5e:0a:f6:14:b7:35:13:3a:64:7a:93: 7b:91:5d:e4:bd:b4:06:ef:0d:06:8e:18:f2:c2:15: e1:52:cd:e5:95:47:c2:f5:4d:59:d0:63:6a:ae:83: b0:41:9d:5e:23:b7:3d:b2:7c:6c:da:4a:0d:c9:bd: 3d:b0:96:29:d2:ce:37:2e:ac:8d:a6:27:90:5b:59: ce:9c:1a:86:56:d7:b9:30:60:ff:97:56:93:fe:26: da:98:8f:57:1d:6f:73:ed:2c:33:d4:96:03:6c:12: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:15:27:20:F6:EC:83:9A:DE:64:F5:2E:4B:13:5E:08:C6:22:6C:57 X509v3 Authority Key Identifier: keyid:01:65:69:C3:CF:8E:70:09:32:F1:4E:48:2C:56:AA:66:BB:AF:2B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/AWVpw8-OcAky8U5ILFaqZruvK2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWVpw8-OcAky8U5ILFaqZruvK2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/1CDA8D8A613A11EF81FCD418C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.132.0/24 Signature Algorithm: sha256WithRSAEncryption 97:5b:ca:cf:ec:90:37:47:7d:22:0a:1a:42:5e:97:a1:0d:03: 5c:f6:cd:99:59:da:2d:02:69:5e:b1:3f:e2:be:f5:bc:4b:3d: a5:b7:02:65:37:a5:1c:91:f2:29:f2:bc:e7:f8:7f:f2:37:d7: 01:ba:02:00:20:99:1e:66:1a:e8:ed:d0:db:9a:ff:a8:20:9f: fd:68:0b:75:85:69:b3:56:06:62:27:95:f7:fa:4f:9b:2b:23: e5:ac:b6:bf:b3:50:9d:d8:0a:84:99:5f:e2:e2:94:2d:1b:2a: cb:95:f8:2b:39:b3:27:89:42:22:d3:8f:67:78:15:78:78:0f: 19:7f:9c:fb:50:5c:07:33:31:dc:aa:88:a0:f8:46:a2:80:fa: c5:83:ab:99:18:8a:11:d9:3c:a0:4a:97:fd:90:dc:91:90:6c: 09:bb:e9:9a:f2:9f:68:bc:87:29:42:84:67:2f:f3:8a:ca:74: 56:a4:63:39:ff:86:b8:96:cd:bd:57:b8:1e:a2:26:29:0d:40: 86:53:b5:18:66:dd:0d:1e:39:2b:68:91:ef:ed:05:0c:ac:47: 35:89:8f:75:e8:ab:90:32:29:6b:2a:4d:4b:8e:af:2b:d1:96: 7c:a0:6d:01:13:38:c8:f7:a9:e8:e7:68:db:53:65:f6:94:af: 0f:64:9d:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEExMzIxMTAvBgNVBAUTKDAxNjU2OUMzQ0Y4RTcwMDkzMkYxNEU0ODJDNTZBQTY2 QkJBRjJCNjEwHhcNMjUwMjEzMDczNzM2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FkYTEzZi1iZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2C91A7LJyLDiczX3o0e+1rr1VACIK50/qOqqzn+3Vgm29Y6ZT7Jimf2ntYHY uH3NKZLA6lPECcLv9f0nRLWLT0GgiBIoJGdrMcCzRDGadfvzDf9sC9e0r1GPKden M6RRfOQokC0Dm6RoY7WQ2XWUDSSua2LsSuJZmSJcql+O3UwoX7lK61PXDE9nFP7N 6swO/ch0QKJOrfg9Xgr2FLc1EzpkepN7kV3kvbQG7w0GjhjywhXhUs3llUfC9U1Z 0GNqroOwQZ1eI7c9snxs2koNyb09sJYp0s43LqyNpieQW1nOnBqGVte5MGD/l1aT /ibamI9XHW9z7Swz1JYDbBJnjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP8VJyD2 7IOa3mT1LksTXgjGImxXMB8GA1UdIwQYMBaAFAFlacPPjnAJMvFOSCxWqma7ryth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTEzMi8xRjRBQzYxRUU3 MjUxMUVFQTgzMEQ2MkFDNEY5QUUwMi9BV1ZwdzgtT2NBa3k4VTVJTEZhcVpydXZL MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXVnB3OC1PY0FreThVNUlMRmFxWnJ1dksyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEExMzIvMUY0QUM2MUVFNzI1MTFFRUE4MzBENjJBQzRGOUFFMDIvMUNEQThEOEE2 MTNBMTFFRjgxRkNENDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABno4QwDQYJKoZIhvcNAQELBQADggEBAJdbys/skDdHfSIK GkJel6ENA1z2zZlZ2i0CaV6xP+K+9bxLPaW3AmU3pRyR8inyvOf4f/I31wG6AgAg mR5mGujt0Nua/6ggn/1oC3WFabNWBmInlff6T5srI+Wstr+zUJ3YCoSZX+LilC0b KsuV+Cs5syeJQiLTj2d4FXh4Dxl/nPtQXAczMdyqiKD4RqKA+sWDq5kYihHZPKBK l/2Q3JGQbAm76Zryn2i8hylChGcv84rKdFakYzn/hriWzb1XuB6iJikNQIZTtRhm 3Q0eOStoke/tBQysRzWJj3Xoq5AyKWsqTUuOryvRlnygbQETOMj3qejnaNtTZfaU rw9knc0= -----END CERTIFICATE-----Generated at Sat Apr 12 09:08:15 2025 by rpki-client