$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa File: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (raw, json) Hash identifier: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8= Subject key identifier: 86:3A:85:75:13:B6:CE:02:09:AE:CD:62:36:BA:29:D5:F2:BD:FF:1A Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A13 Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa Signing time: Mon 28 Apr 2025 20:30:41 +0000 ROA not before: Mon 28 Apr 2025 20:30:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138964 IP address blocks: 103.137.200.0/22 maxlen: 22 103.137.200.0/24 maxlen: 24 103.137.201.0/24 maxlen: 24 103.137.202.0/24 maxlen: 24 103.137.203.0/24 maxlen: 24 2407:efc0::/32 maxlen: 32 2407:efc0::/33 maxlen: 40 2407:efc0::/48 maxlen: 48 2407:efc0:1::/48 maxlen: 48 2407:efc0:3::/48 maxlen: 48 2407:efc0:4::/48 maxlen: 48 2407:efc0:5::/48 maxlen: 48 2407:efc0:8000::/33 maxlen: 37 2407:efc0:8000::/34 maxlen: 40 2407:efc0:c000::/35 maxlen: 40 2407:efc0:e000::/36 maxlen: 40 2407:efc0:f000::/37 maxlen: 40 2407:efc0:f800::/38 maxlen: 38 2407:efc0:f800::/39 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Apr 28 20:30:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680fe571-081f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:44:d1:1a:d1:13:bc:f2:b9:df:8b:9a:43:99: 65:9c:95:98:6c:71:ca:34:0d:06:d4:68:1f:be:90: 04:60:70:9c:50:bf:03:12:d8:87:e4:46:dd:c3:7a: 9f:af:99:e7:bc:a0:87:19:bc:0e:26:c2:31:28:4f: 0a:9b:ca:5e:af:b9:e7:af:d5:7f:19:69:50:28:d8: a4:f9:f3:96:1b:b2:22:8e:49:9f:c1:b1:9a:23:6a: 4a:84:cd:de:fd:2c:e7:bd:d7:e1:31:11:c6:c2:2a: 6a:c8:c1:81:ac:4e:06:f0:a4:5c:4b:96:fe:f2:14: 6f:38:50:6f:52:90:1d:5a:2b:23:f5:14:c6:c2:e1: 6b:91:ad:de:42:6d:5e:0a:c6:4e:05:c3:9c:e5:ad: 63:cf:cb:c6:e2:f8:0b:21:fd:42:aa:ea:25:06:00: 2c:47:07:64:7c:41:b4:9e:6a:57:3a:c2:4b:b0:c6: ae:ee:01:e3:1c:c9:4b:b7:12:b8:c7:d3:91:0d:40: 72:44:27:1b:65:f4:a8:ef:88:c5:0c:10:81:01:ee: f9:29:a2:18:03:d0:87:af:6c:ed:f6:94:c6:d3:91: be:0f:87:06:b6:15:80:f4:53:af:99:5b:83:3f:18: f4:f6:be:33:e7:58:4a:38:db:af:e3:10:ff:2b:50: 56:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3A:85:75:13:B6:CE:02:09:AE:CD:62:36:BA:29:D5:F2:BD:FF:1A X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/2E53CDEC139C11EF8D2CFD84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.200.0/22 IPv6: 2407:efc0::/32 Signature Algorithm: sha256WithRSAEncryption b2:34:cb:14:f5:98:f8:e3:47:ec:2d:f1:3d:25:8f:e5:80:89: 34:a8:8e:dd:55:d7:43:10:c7:a3:a9:69:3e:3c:91:ea:49:b3: 33:8f:36:cc:1c:68:6a:f3:bf:84:7f:41:cd:1c:e3:02:53:98: c2:b4:c3:5d:f1:7f:ab:0a:a6:32:1d:f4:78:69:62:e7:b2:ff: a7:2b:8c:40:9c:87:34:35:a9:55:f6:4d:e8:3e:27:ee:5b:d7: c7:14:88:37:73:09:3b:44:96:fc:64:be:c3:1e:5c:a6:dd:c3: b8:4d:81:e4:42:23:55:4c:d1:b9:99:97:07:e1:d6:e1:4c:12: 01:70:c4:9d:a9:18:45:7a:46:80:12:86:44:69:96:e2:58:f9: b1:26:ed:ef:4a:29:17:f4:8e:70:cd:9e:fa:91:87:99:15:87: f2:e5:7f:2b:55:57:7b:4c:24:21:92:cc:91:ca:55:eb:17:a1: 5a:a5:35:06:c5:d7:8d:2a:d9:5f:be:0b:7b:f5:e0:22:73:2e: d9:65:ba:91:a2:66:59:7a:dc:3f:8e:9c:41:40:30:52:19:e6: b3:1c:2b:46:ed:e4:2d:f4:30:92:64:d9:84:1d:ca:2c:66:dc: 44:e5:6f:b8:8c:6c:d9:a6:04:79:1b:ea:3d:43:d2:05:1f:6c: ee:db:4e:a2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUwNDI4MjAzMDQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmZTU3MS0wODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UTRGtETvPK534uaQ5llnJWYbHHKNA0G1GgfvpAEYHCcUL8DEtiH5Ebdw3qf r5nnvKCHGbwOJsIxKE8Km8per7nnr9V/GWlQKNik+fOWG7IijkmfwbGaI2pKhM3e /SznvdfhMRHGwipqyMGBrE4G8KRcS5b+8hRvOFBvUpAdWisj9RTGwuFrka3eQm1e CsZOBcOc5a1jz8vG4vgLIf1CquolBgAsRwdkfEG0nmpXOsJLsMau7gHjHMlLtxK4 x9ORDUByRCcbZfSo74jFDBCBAe75KaIYA9CHr2zt9pTG05G+D4cGthWA9FOvmVuD Pxj09r4z51hKONuv4xD/K1BWwQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIY6hXUT ts4CCa7NYja6KdXyvf8aMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkMwMzkvQzI1RDAyRkU3ODlEMTFFQUJEQTZGMDVGQzRGOUFFMDIvMkU1M0NERUMx MzlDMTFFRjhEMkNGRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnicgwDQQCAAIwBwMFACQH78AwDQYJKoZIhvcNAQELBQAD ggEBALI0yxT1mPjjR+wt8T0lj+WAiTSojt1V10MQx6OpaT48kepJszOPNswcaGrz v4R/Qc0c4wJTmMK0w13xf6sKpjId9HhpYuey/6crjECchzQ1qVX2Teg+J+5b18cU iDdzCTtElvxkvsMeXKbdw7hNgeRCI1VM0bmZlwfh1uFMEgFwxJ2pGEV6RoAShkRp luJY+bEm7e9KKRf0jnDNnvqRh5kVh/LlfytVV3tMJCGSzJHKVesXoVqlNQbF140q 2V++C3v14CJzLtllupGiZll63D+OnEFAMFIZ5rMcK0bt5C30MJJk2YQdyixm3ETl b7iMbNmmBHkb6j1D0gUfbO7bTqI= -----END CERTIFICATE-----Generated at Sun May 11 19:03:58 2025 by rpki-client