$ rpki-client -vvf rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa File: 985276043B6D11F0AFFFDD4DC4F9AE02.roa (raw, json) Hash identifier: 7R3hysbeSbUFb8HWymJrPzj8ZBNf1N511Ldy7MXSF9c= Subject key identifier: C4:C2:5D:73:11:5A:54:A5:90:F6:11:0C:DA:CB:2A:4C:C9:D2:0A:EC Certificate issuer: /CN=A919E2D2/serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Certificate serial: 03BD Authority key identifier: 32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa Signing time: Wed 28 May 2025 02:43:54 +0000 ROA not before: Wed 28 May 2025 02:43:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 396982 IP address blocks: 103.207.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E2D2, serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Validity Not Before: May 28 02:43:54 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6836786a-8e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:85:83:74:d9:4d:e3:b7:bb:3d:a5:57:57: 11:0e:af:43:47:a2:2d:c8:19:99:c1:7e:b6:09:8b: 4d:55:62:57:5e:49:57:aa:5a:e7:8f:76:6d:c5:b3: a1:5c:4a:ec:c5:3f:c5:bd:04:c8:68:ec:89:55:b7: 14:24:69:89:2c:4b:fa:94:d6:02:c7:79:55:21:8c: 7d:39:f7:4e:85:05:0a:18:88:9f:27:8a:20:7e:30: 82:46:4f:37:94:9b:b2:2f:cf:d4:4b:81:b3:ed:29: 64:ad:cd:d4:eb:83:0b:5f:41:4c:9e:b4:f8:eb:5e: 59:a8:81:fd:e8:91:1f:8a:d2:10:74:1d:55:21:a3: 47:7d:46:68:1f:04:19:23:f2:86:2d:2c:9b:f8:0f: 94:42:e3:51:b0:8b:4c:50:1f:55:9c:9f:70:e8:98: c1:20:28:00:2e:cf:74:fb:16:7c:df:7b:ff:63:3a: 02:94:9a:41:14:6d:ac:e7:12:66:a3:ff:57:c9:e3: e2:41:ff:e4:c2:ca:de:ed:0c:24:07:82:99:d8:be: e5:81:09:4c:45:ac:6f:36:d5:e9:bb:28:dd:67:22: 33:0b:73:bf:6e:34:12:2d:42:e4:22:c4:3b:7a:ec: ea:6c:1b:49:53:f7:8c:0d:42:53:9c:48:10:8d:39: 10:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C2:5D:73:11:5A:54:A5:90:F6:11:0C:DA:CB:2A:4C:C9:D2:0A:EC X509v3 Authority Key Identifier: keyid:32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.158.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:75:11:de:84:dc:57:29:83:51:84:0c:a2:4f:a8:64:a1:8a: 67:09:8a:da:98:4e:a7:67:70:bf:db:e3:1e:0f:7d:a0:4a:ae: f2:12:f6:50:dd:be:29:b5:38:9d:c1:7a:26:b8:d4:de:fb:d7: c3:f0:30:12:f4:0a:b8:42:a4:28:e1:c9:52:6e:1f:a3:60:f2: 0f:9e:98:22:5f:bd:20:98:ab:b4:69:e6:3a:44:14:f7:ec:e3: 44:40:53:59:dd:f3:27:ea:3f:17:05:24:68:bf:01:0f:ab:d8: 2f:aa:06:2c:4f:b2:9a:fa:f2:90:4e:86:93:63:c9:f1:52:9f: 67:51:d5:db:bc:9b:50:50:bc:09:44:45:07:bd:b6:eb:84:b7: b8:9c:3f:40:02:fd:34:df:0d:e9:25:26:71:a6:d3:32:6d:d3: e4:2f:36:78:50:09:e9:8f:17:7f:a0:70:68:b2:f2:84:f0:6e: e9:7b:7c:4b:e7:cc:17:70:b1:b3:8e:6d:da:b8:9f:40:fb:d5: 66:4d:8a:3f:07:21:11:be:ae:e7:64:15:77:6d:87:2f:50:60: 8e:39:dc:15:84:75:0c:13:10:03:b5:01:0e:48:26:c1:90:64: 48:f9:38:be:19:4f:62:ec:20:c4:12:59:41:89:79:bb:77:e4: 25:ec:b1:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUyRDIxMTAvBgNVBAUTKDMyNTU0RUEyOTNEQjA5RDk2MDBGOTM4RjA1QzAyMDNG QjlBQkU5OTMwHhcNMjUwNTI4MDI0MzU0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM2Nzg2YS04ZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6eFg3TZTeO3uz2lV1cRDq9DR6ItyBmZwX62CYtNVWJXXklXqlrnj3ZtxbOh XErsxT/FvQTIaOyJVbcUJGmJLEv6lNYCx3lVIYx9OfdOhQUKGIifJ4ogfjCCRk83 lJuyL8/US4Gz7Slkrc3U64MLX0FMnrT4615ZqIH96JEfitIQdB1VIaNHfUZoHwQZ I/KGLSyb+A+UQuNRsItMUB9VnJ9w6JjBICgALs90+xZ833v/YzoClJpBFG2s5xJm o/9XyePiQf/kwsre7QwkB4KZ2L7lgQlMRaxvNtXpuyjdZyIzC3O/bjQSLULkIsQ7 euzqbBtJU/eMDUJTnEgQjTkQpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMTCXXMR WlSlkPYRDNrLKkzJ0grsMB8GA1UdIwQYMBaAFDJVTqKT2wnZYA+TjwXAID+5q+mT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTJEMi9CQzAzNTUyQzhG OUIxMUVDODI2MDNEMTZDNEY5QUUwMi9NbFZPb3BQYkNkbGdENU9QQmNBZ1A3bXI2 Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01sVk9vcFBiQ2RsZ0Q1T1BCY0FnUDdtcjZaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUUyRDIvQkMwMzU1MkM4RjlCMTFFQzgyNjAzRDE2QzRGOUFFMDIvOTg1Mjc2MDQz QjZEMTFGMEFGRkZERDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnz54wDQYJKoZIhvcNAQELBQADggEBAF51Ed6E3Fcpg1GE DKJPqGShimcJitqYTqdncL/b4x4PfaBKrvIS9lDdvim1OJ3Beia41N7718PwMBL0 CrhCpCjhyVJuH6Ng8g+emCJfvSCYq7Rp5jpEFPfs40RAU1nd8yfqPxcFJGi/AQ+r 2C+qBixPspr68pBOhpNjyfFSn2dR1du8m1BQvAlERQe9tuuEt7icP0AC/TTfDekl JnGm0zJt0+QvNnhQCemPF3+gcGiy8oTwbul7fEvnzBdwsbOObdq4n0D71WZNij8H IRG+rudkFXdthy9QYI453BWEdQwTEAO1AQ5IJsGQZEj5OL4ZT2LsIMQSWUGJebt3 5CXssVE= -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:30 2025 by rpki-client