$ rpki-client -vvf rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa File: 6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa (raw, json) Hash identifier: fS0hvzQx5VOp/GPOlj0QCeoy3XoReYfGYf/82xIaZFs= Subject key identifier: 5D:98:D6:CB:5A:32:E1:80:DC:EE:46:3E:C5:8E:4B:75:3C:3B:3F:01 Certificate issuer: /CN=A9127AE0/serialNumber=ED55DFA0EC69D964B85B86D78B40051DEA129673 Certificate serial: 0C0A Authority key identifier: ED:55:DF:A0:EC:69:D9:64:B8:5B:86:D7:8B:40:05:1D:EA:12:96:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa Signing time: Mon 28 Apr 2025 19:28:12 +0000 ROA not before: Mon 28 Apr 2025 19:28:12 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 137501 IP address blocks: 103.110.224.0/22 maxlen: 22 103.110.224.0/23 maxlen: 23 103.110.224.0/24 maxlen: 24 103.110.225.0/24 maxlen: 24 103.110.226.0/23 maxlen: 23 103.110.226.0/24 maxlen: 24 103.110.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.crl rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127AE0, serialNumber=ED55DFA0EC69D964B85B86D78B40051DEA129673 Validity Not Before: Apr 28 19:28:12 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=680fd6cc-6640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:51:8a:ba:e0:fd:9c:db:ca:e5:58:ce:ff:30: 2a:b3:8b:ca:48:8a:93:d2:71:82:38:f9:65:e4:60: ed:f0:a8:4e:1a:86:d2:4b:53:7e:70:2b:d0:fe:0d: dd:a9:07:f2:b1:e1:0e:2b:d4:8a:a7:04:22:44:4e: b2:b1:79:c5:69:a9:2a:fa:f8:8d:09:08:38:2c:8e: fd:c1:49:ef:60:3c:81:c1:02:47:6e:d7:ed:ab:6b: b0:48:b2:83:d9:1b:a2:cb:7c:f8:26:d8:78:33:0d: d2:02:68:2e:4c:fb:1f:c3:51:3e:4c:51:be:38:12: a8:fd:50:71:58:80:e0:86:d9:e7:78:e0:92:38:5d: 97:ac:94:11:4c:27:bd:ff:72:65:f1:86:04:9e:ef: 48:db:ca:ef:06:4a:c7:5f:66:26:27:71:3c:9d:3c: d6:fd:34:bc:06:93:2b:e9:91:f2:64:20:fe:84:73: 00:1d:91:3e:fb:b0:53:c4:76:46:2c:c2:78:7a:c2: 44:5e:b7:41:2c:ab:c5:13:95:5f:5b:e2:be:14:57: 7d:95:c7:99:a3:a6:0d:1d:da:2d:2e:33:d6:90:27: 52:d7:8a:1f:4e:bc:b6:3e:a8:25:a9:e1:12:47:6e: aa:8f:23:98:a5:f3:a9:d5:68:0e:e6:aa:b3:c0:5b: 6b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:D6:CB:5A:32:E1:80:DC:EE:46:3E:C5:8E:4B:75:3C:3B:3F:01 X509v3 Authority Key Identifier: keyid:ED:55:DF:A0:EC:69:D9:64:B8:5B:86:D7:8B:40:05:1D:EA:12:96:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.224.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:fb:f3:ee:41:5e:fc:79:5d:de:cd:76:40:83:80:9c:8c:61: 22:1a:f0:e3:4f:ea:7a:eb:1c:3b:74:13:ed:31:7b:3b:bf:4f: be:6f:43:15:a5:ae:b2:15:17:b8:40:6e:31:38:11:4b:66:ba: 5c:05:1f:79:2a:56:72:30:1b:35:dd:69:91:15:15:da:8d:af: 46:70:0f:69:7f:37:e1:37:84:b5:10:f9:d0:3e:33:58:20:c6: f7:b6:ea:1a:18:17:cf:7f:67:39:e8:d3:da:3d:bb:d8:a6:cc: e0:14:f8:a6:dc:a1:c6:c1:79:72:41:b6:f9:cf:81:01:0d:0d: 11:05:9e:9e:ba:ef:ef:37:f6:65:9c:c3:de:36:da:e5:ca:5e: 87:ea:19:6e:0b:88:7b:08:bf:8f:bd:df:61:b6:66:c5:50:5d: 92:13:0e:5a:6b:a2:f9:04:20:08:6b:1a:ed:a7:6f:93:2c:d8: d3:36:cc:8d:1e:c4:e3:bf:84:b0:08:07:c1:bc:56:98:c8:d7: 19:be:e0:04:c3:a3:5a:7d:0e:30:ae:f5:89:56:5c:ad:43:16: de:1e:09:a3:db:91:37:b4:c4:de:6c:b0:7f:03:80:52:75:72: 22:b8:bc:0e:f1:8c:66:d6:36:3f:66:35:eb:fd:8f:93:6a:48: 0b:9b:97:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBRTAxMTAvBgNVBAUTKEVENTVERkEwRUM2OUQ5NjRCODVCODZENzhCNDAwNTFE RUExMjk2NzMwHhcNMjUwNDI4MTkyODEyWhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmZDZjYy02NjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVGKuuD9nNvK5VjO/zAqs4vKSIqT0nGCOPll5GDt8KhOGobSS1N+cCvQ/g3d qQfyseEOK9SKpwQiRE6ysXnFaakq+viNCQg4LI79wUnvYDyBwQJHbtftq2uwSLKD 2Ruiy3z4Jth4Mw3SAmguTPsfw1E+TFG+OBKo/VBxWIDghtnneOCSOF2XrJQRTCe9 /3Jl8YYEnu9I28rvBkrHX2YmJ3E8nTzW/TS8BpMr6ZHyZCD+hHMAHZE++7BTxHZG LMJ4esJEXrdBLKvFE5VfW+K+FFd9lceZo6YNHdotLjPWkCdS14ofTry2PqglqeES R26qjyOYpfOp1WgO5qqzwFtrewIDAQABo4IClTCCApEwHQYDVR0OBBYEFF2Y1sta MuGA3O5GPsWOS3U8Oz8BMB8GA1UdIwQYMBaAFO1V36DsadlkuFuG14tABR3qEpZz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0FFMC9ERDY1ODdBQzBG NEMxMUVBQTAxNDI2N0JDNEY5QUUwMi83Vlhmb094cDJXUzRXNGJYaTBBRkhlb1Ns bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdWWGZvT3hwMldTNFc0YlhpMEFGSGVvU2xuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdBRTAvREQ2NTg3QUMwRjRDMTFFQUEwMTQyNjdCQzRGOUFFMDIvNkRCMTZCQjQw RjREMTFFQUE2RTdBMTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnbuAwDQYJKoZIhvcNAQELBQADggEBAC378+5BXvx5Xd7N dkCDgJyMYSIa8ONP6nrrHDt0E+0xezu/T75vQxWlrrIVF7hAbjE4EUtmulwFH3kq VnIwGzXdaZEVFdqNr0ZwD2l/N+E3hLUQ+dA+M1ggxve26hoYF89/Zzno09o9u9im zOAU+KbcocbBeXJBtvnPgQENDREFnp667+839mWcw9422uXKXofqGW4LiHsIv4+9 32G2ZsVQXZITDlprovkEIAhrGu2nb5Ms2NM2zI0exOO/hLAIB8G8VpjI1xm+4ATD o1p9DjCu9YlWXK1DFt4eCaPbkTe0xN5ssH8DgFJ1ciK4vA7xjGbWNj9mNev9j5Nq SAubl00= -----END CERTIFICATE-----Generated at Fri May 16 21:48:11 2025 by rpki-client