$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa File: 66914122CEAB11E796AC671AC4F9AE02.roa (raw, json) Hash identifier: 9nJsdnxbQLzrLx2EZCka7q5S0FAqMVpfxB+cnZiwYyk= Subject key identifier: 95:85:27:F9:38:29:92:1A:EF:BE:58:9D:8F:D0:5B:5B:20:87:83:19 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1B0F Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa Signing time: Mon 06 Jan 2025 16:33:54 +0000 ROA not before: Mon 06 Jan 2025 16:33:54 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 3549 IP address blocks: 103.82.128.0/22 maxlen: 22 103.82.128.0/24 maxlen: 24 103.82.129.0/24 maxlen: 24 103.82.130.0/24 maxlen: 24 103.82.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6927 (0x1b0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB Validity Not Before: Jan 6 16:33:54 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c05f2-c824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:91:50:7b:af:87:84:9d:cb:32:a8:7e:ed:cb: 11:df:d1:85:f6:2a:80:2a:da:f2:28:eb:98:8b:11: 80:18:43:48:09:94:e6:7f:55:a5:e1:db:bf:1f:4d: 5e:65:16:af:72:42:ea:0f:6f:76:3e:c4:da:2f:9a: 0e:08:bb:32:c9:d1:8c:ea:6d:b8:f8:db:97:9a:53: 1a:6c:1e:38:ee:7e:8f:f7:bc:c4:26:58:d3:a5:fc: d8:a7:cd:42:54:24:25:0b:86:de:dd:0e:58:a3:f5: bc:a9:87:2d:eb:a0:b1:01:f1:e2:16:0c:2f:5b:61: 85:5d:10:20:0d:18:86:a2:72:16:0e:b8:74:6d:9a: aa:fa:b7:97:06:00:e6:88:8f:56:fe:26:ba:a0:89: 7e:ef:ed:6e:eb:28:60:ec:0b:ac:65:d1:dd:7a:94: 55:47:ab:09:0f:03:0e:06:1c:7d:05:cd:84:a0:d2: a1:86:f7:c5:bd:0d:6a:a3:8f:4a:f4:39:de:01:00: 22:2b:91:ae:1d:3e:5b:4a:7b:6a:55:52:17:85:2b: 4e:32:79:fb:b2:1e:9e:38:2a:ac:a5:76:cb:72:1e: 6a:84:e1:f3:2a:40:f6:f0:20:ac:af:5c:6d:2f:c7: 41:17:b1:eb:31:fe:d9:4e:ac:88:e8:d4:13:b7:b5: 31:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:85:27:F9:38:29:92:1A:EF:BE:58:9D:8F:D0:5B:5B:20:87:83:19 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/66914122CEAB11E796AC671AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 Signature Algorithm: sha256WithRSAEncryption 24:4b:58:e0:55:46:52:7b:24:a0:ea:96:ec:c8:5d:f5:ad:b0: ac:ec:74:e6:be:90:e7:75:79:9e:dd:1f:36:26:50:5d:31:88: fd:e9:c0:bf:da:f6:60:a6:3a:a5:1c:72:e8:74:41:59:06:7c: 6e:21:44:16:cd:a1:83:25:e2:23:80:f2:ff:bd:2d:27:cc:22: ad:cc:ae:31:6c:f9:b3:26:ec:49:a2:b1:80:0d:f0:ab:e3:fd: 78:b2:63:14:85:1c:a4:ce:a5:fc:97:c8:23:70:e2:21:62:c1: 36:67:68:a4:ac:6c:75:4f:df:ea:e8:ec:94:92:ab:22:13:61: 30:b8:a7:a2:38:a3:dc:76:81:5c:d6:16:d1:55:a6:94:7d:ba: a5:57:70:fa:1a:42:c6:10:5d:74:d9:8d:09:de:68:5a:da:58: 21:cf:be:be:78:6d:09:f9:e5:91:6a:ba:68:ab:a9:3d:51:a6: 7c:e0:23:6e:7c:71:e2:a8:a5:a2:67:89:2f:8c:0d:13:81:1f: 0a:0d:96:ea:90:49:a4:91:50:b0:42:73:84:94:64:be:ca:13: e6:b3:5b:0e:0a:65:28:19:0d:b6:22:5f:af:f9:3a:1a:89:78: 76:18:31:55:6d:cf:1e:86:cf:21:06:cb:53:71:4a:eb:64:69: d5:a5:ab:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUwMTA2MTYzMzU0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjMDVmMi1jODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35FQe6+HhJ3LMqh+7csR39GF9iqAKtryKOuYixGAGENICZTmf1Wl4du/H01e ZRavckLqD292PsTaL5oOCLsyydGM6m24+NuXmlMabB447n6P97zEJljTpfzYp81C VCQlC4be3Q5Yo/W8qYct66CxAfHiFgwvW2GFXRAgDRiGonIWDrh0bZqq+reXBgDm iI9W/ia6oIl+7+1u6yhg7AusZdHdepRVR6sJDwMOBhx9Bc2EoNKhhvfFvQ1qo49K 9DneAQAiK5GuHT5bSntqVVIXhStOMnn7sh6eOCqspXbLch5qhOHzKkD28CCsr1xt L8dBF7HrMf7ZTqyI6NQTt7Ux5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJWFJ/k4 KZIa775YnY/QW1sgh4MZMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvNjY5MTQxMjJD RUFCMTFFNzk2QUM2NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUoAwDQYJKoZIhvcNAQELBQADggEBACRLWOBVRlJ7JKDq luzIXfWtsKzsdOa+kOd1eZ7dHzYmUF0xiP3pwL/a9mCmOqUccuh0QVkGfG4hRBbN oYMl4iOA8v+9LSfMIq3MrjFs+bMm7EmisYAN8Kvj/XiyYxSFHKTOpfyXyCNw4iFi wTZnaKSsbHVP3+ro7JSSqyITYTC4p6I4o9x2gVzWFtFVppR9uqVXcPoaQsYQXXTZ jQneaFraWCHPvr54bQn55ZFqumirqT1RpnzgI258ceKopaJniS+MDROBHwoNluqQ SaSRULBCc4SUZL7KE+azWw4KZSgZDbYiX6/5OhqJeHYYMVVtzx6GzyEGy1NxSutk adWlq/w= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:19 2025 by rpki-client