$ rpki-client -vvf rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa File: B2A2CFCEF56C11EE90E38718C4F9AE02.roa (raw, json) Hash identifier: kkPAtmDoelVoYFE7Hbje8wUj2mrPDtwi5yj75S4iHxc= Subject key identifier: 91:0F:22:E0:E2:D6:4B:72:40:4A:34:08:14:D1:A7:BF:79:3A:DF:F5 Certificate issuer: /CN=A918F8B1/serialNumber=B5B3FC3E760877EF4F8D8E843BDD68CE0F405530 Certificate serial: 0DE0 Authority key identifier: B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa Signing time: Mon 31 Mar 2025 18:17:19 +0000 ROA not before: Mon 31 Mar 2025 18:17:19 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 8075 IP address blocks: 103.158.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 17:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3552 (0xde0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F8B1 Validity Not Before: Mar 31 18:17:19 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eadc2f-c0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:c3:7a:e9:b2:c1:71:06:6c:e7:ae:1d:61: d9:0c:11:6e:08:24:13:f7:f5:ee:c1:e1:4a:d6:e6: da:92:78:39:a1:c1:f6:80:35:e0:44:9c:a0:89:f3: 26:a6:cb:ee:93:71:4d:d9:62:68:87:34:85:b2:53: e4:a2:2e:03:cc:6d:bf:38:74:25:25:f7:28:71:d6: 80:9a:cb:1c:f5:ab:b4:8d:dd:6b:03:b3:1a:c3:9f: 13:86:e8:7b:f9:32:65:93:84:16:cb:f5:36:38:b3: 1c:13:53:46:44:08:c4:8d:5f:90:9b:b1:15:1a:a3: 8a:16:43:7f:fc:1a:70:bf:12:fc:c9:23:87:eb:32: 23:60:7b:d8:8a:b0:97:9e:1e:36:53:f5:e1:bd:81: df:da:5a:2c:bd:8b:5c:d2:0b:bf:9d:95:1c:a0:06: b2:aa:88:9e:29:df:e8:b7:fe:ae:07:d2:a4:62:c6: 01:5f:bb:6b:2f:ca:97:f5:e8:2f:c7:98:a3:5e:0d: d0:d9:7d:5f:7a:28:fc:1c:08:18:42:5f:6a:c0:06: dc:1e:5f:37:d6:95:9c:de:ad:78:93:76:70:a7:f1: c1:25:9b:2a:db:1a:97:4c:1d:c2:cd:0b:c5:d0:30: 2a:db:4d:f9:90:74:7a:27:58:e6:f2:95:8f:a3:32: c5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0F:22:E0:E2:D6:4B:72:40:4A:34:08:14:D1:A7:BF:79:3A:DF:F5 X509v3 Authority Key Identifier: keyid:B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.243.0/24 Signature Algorithm: sha256WithRSAEncryption 13:e6:f3:15:9b:c8:6a:bd:5e:98:ec:bb:75:2d:ca:2a:17:99: d9:ea:0b:c9:a5:ba:75:95:17:1d:2c:c1:c7:91:ed:88:94:1e: 18:75:90:a5:b1:f0:f5:1f:49:71:27:01:da:c4:63:c8:52:87: b8:a0:25:09:99:2d:da:2d:e3:40:28:e5:03:4f:b4:bc:42:69: 6b:22:c1:b6:e2:d8:c9:89:49:ff:bf:88:7b:9c:d9:14:d0:af: 28:48:59:0c:11:fa:af:c0:55:77:34:33:b6:8f:51:fa:c3:35: db:23:2b:1e:59:33:ea:b3:80:41:46:65:85:51:00:af:86:b0: 2b:f7:b3:ab:ea:c2:db:21:19:81:28:48:63:c1:c2:46:91:77: 08:81:db:be:bd:1d:8e:ac:42:de:b6:00:79:4a:03:5e:5d:6d: 00:b6:71:a1:1a:3b:dc:79:7c:20:ae:d5:41:e0:1b:22:38:47: d3:ae:81:4f:55:73:53:2c:6b:f7:3b:25:f5:70:01:4b:97:89: 6c:69:63:37:e8:44:09:34:a9:bc:ee:b8:9e:0f:41:cd:34:a4: d5:5b:0e:a3:ad:d4:bc:97:08:2f:e6:95:7e:93:b3:25:bc:ef: d6:06:9e:2c:58:d8:d5:da:b5:e2:07:a5:67:22:5b:e5:63:22: 8c:3d:6b:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4QjExMTAvBgNVBAUTKEI1QjNGQzNFNzYwODc3RUY0RjhEOEU4NDNCREQ2OENF MEY0MDU1MzAwHhcNMjUwMzMxMTgxNzE5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhZGMyZi1jMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mLDeumywXEGbOeuHWHZDBFuCCQT9/XuweFK1ubakng5ocH2gDXgRJygifMm psvuk3FN2WJohzSFslPkoi4DzG2/OHQlJfcocdaAmssc9au0jd1rA7Maw58Thuh7 +TJlk4QWy/U2OLMcE1NGRAjEjV+Qm7EVGqOKFkN//BpwvxL8ySOH6zIjYHvYirCX nh42U/XhvYHf2losvYtc0gu/nZUcoAayqoieKd/ot/6uB9KkYsYBX7trL8qX9egv x5ijXg3Q2X1feij8HAgYQl9qwAbcHl831pWc3q14k3Zwp/HBJZsq2xqXTB3CzQvF 0DAq2035kHR6J1jm8pWPozLFdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJEPIuDi 1ktyQEo0CBTRp795Ot/1MB8GA1UdIwQYMBaAFLWz/D52CHfvT42OhDvdaM4PQFUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjhCMS83RDU0QTBDQUI1 ODYxMUU5QUE1RjRENjVDNEY5QUUwMi90YlA4UG5ZSWQtOVBqWTZFTzkxb3pnOUFW VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RiUDhQbllJZC05UGpZNkVPOTFvemc5QVZUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4QjEvN0Q1NEEwQ0FCNTg2MTFFOUFBNUY0RDY1QzRGOUFFMDIvQjJBMkNGQ0VG NTZDMTFFRTkwRTM4NzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnvMwDQYJKoZIhvcNAQELBQADggEBABPm8xWbyGq9Xpjs u3UtyioXmdnqC8mlunWVFx0swceR7YiUHhh1kKWx8PUfSXEnAdrEY8hSh7igJQmZ Ldot40Ao5QNPtLxCaWsiwbbi2MmJSf+/iHuc2RTQryhIWQwR+q/AVXc0M7aPUfrD NdsjKx5ZM+qzgEFGZYVRAK+GsCv3s6vqwtshGYEoSGPBwkaRdwiB2769HY6sQt62 AHlKA15dbQC2caEaO9x5fCCu1UHgGyI4R9OugU9Vc1Msa/c7JfVwAUuXiWxpYzfo RAk0qbzuuJ4PQc00pNVbDqOt1LyXCC/mlX6TsyW879YGnixY2NXateIHpWciW+Vj Iow9a0w= -----END CERTIFICATE-----Generated at Fri Apr 4 16:58:24 2025 by rpki-client