$ rpki-client -vvf rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/EAB86CD041B411F0ACB20A83C4F9AE02.roa File: EAB86CD041B411F0ACB20A83C4F9AE02.roa (raw, json) Hash identifier: 4gZBSU/bOSWi/Wt8FLPy7mRAlfflMUeEyW7EU+A/yRc= Subject key identifier: 44:C9:2D:0C:0F:65:EA:E8:99:ED:79:95:04:34:72:B4:33:D9:B9:4C Certificate issuer: /CN=A918FE4B/serialNumber=D0A4666AF35B4B654D8181C4CD1C911AEF9945BB Certificate serial: 04 Authority key identifier: D0:A4:66:6A:F3:5B:4B:65:4D:81:81:C4:CD:1C:91:1A:EF:99:45:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KRmavNbS2VNgYHEzRyRGu-ZRbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/EAB86CD041B411F0ACB20A83C4F9AE02.roa Signing time: Thu 05 Jun 2025 02:29:34 +0000 ROA not before: Thu 05 Jun 2025 02:29:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150811 IP address blocks: 103.65.240.0/23 maxlen: 23 103.65.240.0/24 maxlen: 24 103.65.241.0/24 maxlen: 24 2001:df1:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/0KRmavNbS2VNgYHEzRyRGu-ZRbs.crl rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/0KRmavNbS2VNgYHEzRyRGu-ZRbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KRmavNbS2VNgYHEzRyRGu-ZRbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FE4B, serialNumber=D0A4666AF35B4B654D8181C4CD1C911AEF9945BB Validity Not Before: Jun 5 02:29:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6841010d-c747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f5:db:23:52:a7:a4:f9:d3:e1:2a:46:9e:7b: 3a:2c:3b:30:b1:25:1c:62:c5:7c:2e:f6:1a:2f:e9: 25:58:ff:16:c5:92:be:bb:c9:35:ff:0b:a7:14:69: 69:5f:d7:d9:24:46:70:ee:39:e5:df:a1:b4:ab:7d: f1:5c:8b:1c:b6:9c:76:9c:17:91:cb:aa:7b:68:a1: 50:89:c6:4b:45:6c:83:f7:79:8d:aa:8d:ad:27:d1: c4:a5:39:02:c8:74:f2:30:bc:16:b3:29:53:a6:07: b7:4f:46:60:1a:5d:6c:f6:0e:6b:51:ad:e0:fd:5e: 29:ac:10:35:bd:24:7e:d2:74:3b:2a:07:2a:9c:80: 2b:3d:2e:93:41:ab:56:0b:b4:39:ef:cf:dc:85:a8: d0:a9:62:86:cf:cc:f7:25:49:b7:31:ce:c6:bd:31: 3a:c4:8f:b7:06:33:99:bd:c9:76:23:ef:f9:f7:69: 65:0e:1c:29:e9:3b:a3:33:6f:be:f8:48:04:8a:8c: f8:59:79:e9:79:27:a7:31:28:68:27:05:3d:d8:87: 0d:fe:ef:9f:44:63:7e:5b:4e:63:17:da:89:37:70: c8:7a:f7:b2:8d:db:41:71:36:40:41:5d:65:70:d1: 37:08:7e:cb:1f:07:49:ef:fe:ac:1e:03:cc:e9:74: 04:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C9:2D:0C:0F:65:EA:E8:99:ED:79:95:04:34:72:B4:33:D9:B9:4C X509v3 Authority Key Identifier: keyid:D0:A4:66:6A:F3:5B:4B:65:4D:81:81:C4:CD:1C:91:1A:EF:99:45:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/0KRmavNbS2VNgYHEzRyRGu-ZRbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KRmavNbS2VNgYHEzRyRGu-ZRbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/EAB86CD041B411F0ACB20A83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.240.0/23 IPv6: 2001:df1:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption a5:5f:47:48:19:ab:cf:ba:35:2e:b6:43:f1:0f:a8:ff:08:35: 0c:0f:7f:3e:bf:1e:e5:18:9b:46:71:6d:97:83:5f:73:1f:92: 7b:d6:11:88:7c:8c:56:f6:97:61:59:8c:6e:f9:02:94:86:c9: b0:ef:31:d0:e9:dd:95:45:3c:f5:55:8e:b3:26:af:68:e3:17: 7a:6b:13:10:42:58:a8:8d:06:9c:a5:3f:55:6f:db:20:6c:2a: 34:ad:21:36:12:98:f1:9f:ca:2a:91:ae:d1:27:60:50:bd:c3: 9a:e9:1f:76:e0:eb:e9:5b:2f:60:57:42:2c:ee:67:7b:1f:59: f6:5d:cb:86:86:08:66:b8:93:fa:e8:68:82:2c:cd:4a:0b:d6: bf:04:ea:a1:3d:55:0f:e7:9f:7f:b9:e8:9d:6e:94:b4:9a:4f: b7:d2:21:74:89:c6:80:06:e0:96:19:81:f7:e9:bd:1e:fa:55: 24:b9:fa:59:6d:e1:5f:de:4d:98:ae:20:39:8a:56:06:33:14: 9b:d2:11:4f:d5:38:ce:d3:9d:08:c3:18:d7:b5:3e:bd:d6:36: 76:98:cc:4a:32:2e:ad:72:cc:a4:a6:a9:34:f1:ad:39:3e:88: 46:a5:b6:fd:d7:7c:56:eb:84:13:68:1c:45:52:7f:87:8a:42: 9b:76:57:30 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RkU0QjExMC8GA1UEBRMoRDBBNDY2NkFGMzVCNEI2NTREODE4MUM0Q0QxQzkxMUFF Rjk5NDVCQjAeFw0yNTA2MDUwMjI5MzRaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDEwMTBkLWM3NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM9dsjUqek+dPhKkaeezosOzCxJRxixXwu9hov6SVY/xbFkr67yTX/C6cUaWlf 19kkRnDuOeXfobSrffFcixy2nHacF5HLqntooVCJxktFbIP3eY2qja0n0cSlOQLI dPIwvBazKVOmB7dPRmAaXWz2DmtRreD9XimsEDW9JH7SdDsqByqcgCs9LpNBq1YL tDnvz9yFqNCpYobPzPclSbcxzsa9MTrEj7cGM5m9yXYj7/n3aWUOHCnpO6Mzb774 SASKjPhZeel5J6cxKGgnBT3Yhw3+759EY35bTmMX2ok3cMh697KN20FxNkBBXWVw 0TcIfssfB0nv/qweA8zpdAT7AgMBAAGjggKmMIICojAdBgNVHQ4EFgQURMktDA9l 6uiZ7XmVBDRytDPZuUwwHwYDVR0jBBgwFoAU0KRmavNbS2VNgYHEzRyRGu+ZRbsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGRTRCL0MxNDAxNkI0OEQ3 RjExRURCN0RCODU0Q0M0RjlBRTAyLzBLUm1hdk5iUzJWTmdZSEV6UnlSR3UtWlJi cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMEtSbWF2TmJTMlZOZ1lIRXpSeVJHdS1aUmJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkU0Qi9DMTQwMTZCNDhEN0YxMUVEQjdEQjg1NENDNEY5QUUwMi9FQUI4NkNEMDQx QjQxMUYwQUNCMjBBODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWdB8DAPBAIAAjAJAwcAIAEN8cnAMA0GCSqGSIb3DQEBCwUA A4IBAQClX0dIGavPujUutkPxD6j/CDUMD38+vx7lGJtGcW2Xg19zH5J71hGIfIxW 9pdhWYxu+QKUhsmw7zHQ6d2VRTz1VY6zJq9o4xd6axMQQliojQacpT9Vb9sgbCo0 rSE2Epjxn8oqka7RJ2BQvcOa6R924OvpWy9gV0Is7md7H1n2XcuGhghmuJP66GiC LM1KC9a/BOqhPVUP559/ueidbpS0mk+30iF0icaABuCWGYH36b0e+lUkufpZbeFf 3k2YriA5ilYGMxSb0hFP1TjO050IwxjXtT691jZ2mMxKMi6tcsykpqk08a05PohG pbb913xW64QTaBxFUn+HikKbdlcw -----END CERTIFICATE-----Generated at Sun Jun 8 23:16:11 2025 by rpki-client