$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/7206F1B05A1711EF95CB811DC4F9AE02.roa File: 7206F1B05A1711EF95CB811DC4F9AE02.roa (raw, json) Hash identifier: iZZ7LtvIDl3kE42dvDuGK2rDX+YrqEJSMBHGlpdg4DI= Subject key identifier: C0:F9:1C:1A:EB:B1:F7:4E:CB:A8:64:D2:37:AA:46:08:28:FB:18:50 Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0374 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/7206F1B05A1711EF95CB811DC4F9AE02.roa Signing time: Mon 28 Apr 2025 09:19:57 +0000 ROA not before: Mon 28 Apr 2025 09:19:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 62610 IP address blocks: 103.215.124.0/24 maxlen: 24 103.215.127.0/24 maxlen: 24 157.119.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5, serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: Apr 28 09:19:57 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=680f483d-73d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:6e:32:d4:59:6a:8a:c1:2e:a8:1f:5f:4e: fb:a3:e7:40:eb:d9:b5:f2:77:02:24:04:33:4d:f6: 0b:54:e4:f9:e2:50:45:e0:6f:5c:ce:84:c5:e1:68: 19:07:62:f3:6c:ef:5a:6b:ff:b4:23:dd:af:9d:55: 47:61:1d:d1:49:22:5c:81:16:38:41:05:fe:99:00: 6d:89:bc:fb:00:4e:95:e6:54:5d:df:2e:65:b4:6e: b1:19:ff:79:d5:bd:5a:04:c0:57:90:44:7c:a8:0a: 14:d4:9f:29:bf:d1:42:bf:77:78:56:07:01:84:be: 09:6a:d1:5d:e2:79:f6:fd:ff:89:94:70:71:b9:e9: 45:5b:a7:0f:ca:cc:d4:1b:cc:82:c5:69:6e:9c:43: bf:88:35:5d:c5:f1:21:58:59:34:99:b8:6a:9d:eb: df:4e:23:c3:93:45:05:c8:d4:f2:53:9e:d9:55:7b: b0:9e:82:42:04:88:5a:59:c3:7c:54:6d:13:36:fb: e2:44:30:e1:a1:fa:4d:fd:28:19:66:5c:e9:77:77: 41:2b:8d:1c:f9:97:10:a0:2e:0f:f2:d3:e6:54:ff: 8f:c3:6f:18:1c:68:67:2e:71:d4:e2:a3:31:f8:4d: 90:70:98:e6:6f:1b:97:d0:d7:00:42:72:66:2a:32: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F9:1C:1A:EB:B1:F7:4E:CB:A8:64:D2:37:AA:46:08:28:FB:18:50 X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/7206F1B05A1711EF95CB811DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.124.0/24 103.215.127.0/24 157.119.20.0/24 Signature Algorithm: sha256WithRSAEncryption b5:25:d8:9c:6c:82:97:27:dc:de:3b:20:08:2b:08:53:c1:b5: c0:1f:3f:7d:04:b5:47:b7:5b:e3:ef:22:f6:c4:65:0c:39:8e: 19:78:c4:b5:df:a7:60:29:ec:89:be:e2:a5:b1:f0:04:5b:74: f5:54:d6:15:c7:14:ec:dc:f8:c7:c3:6b:90:a7:56:8f:6b:9f: 1d:de:0d:54:e8:a6:63:7f:8d:a5:48:c8:1e:ae:ea:f0:59:4e: 73:f2:de:5e:0e:58:54:92:15:02:5f:9e:9c:5e:cf:fa:fa:39: 58:90:bb:81:1e:eb:b5:c7:68:a5:26:d6:ca:3d:ee:3a:1a:84: 75:88:a7:be:3d:c9:e2:39:e9:a0:2e:af:6e:a7:08:5a:63:03: 1f:d3:02:c8:e8:0e:ce:71:10:84:f7:28:c1:25:cf:b3:6a:bb: 03:34:f4:70:32:ae:4e:2f:21:fe:c9:c3:ba:1b:43:21:9a:02: 36:4a:d1:78:e8:ec:ac:33:59:b5:28:39:72:f6:6c:9a:ab:76: 68:aa:8b:06:9c:52:28:f2:48:a4:aa:09:b4:8e:37:01:1c:84: 2c:eb:f6:fd:c0:99:77:c4:dc:b8:85:58:ae:41:c5:69:9d:04: 7a:e7:d2:6a:ff:c0:f9:4f:ea:a5:93:c9:bd:0c:79:74:2b:df: 04:e5:a8:35 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjUwNDI4MDkxOTU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmNDgzZC03M2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqBuMtRZaorBLqgfX077o+dA69m18ncCJAQzTfYLVOT54lBF4G9czoTF4WgZ B2LzbO9aa/+0I92vnVVHYR3RSSJcgRY4QQX+mQBtibz7AE6V5lRd3y5ltG6xGf95 1b1aBMBXkER8qAoU1J8pv9FCv3d4VgcBhL4JatFd4nn2/f+JlHBxuelFW6cPyszU G8yCxWlunEO/iDVdxfEhWFk0mbhqnevfTiPDk0UFyNTyU57ZVXuwnoJCBIhaWcN8 VG0TNvviRDDhofpN/SgZZlzpd3dBK40c+ZcQoC4P8tPmVP+Pw28YHGhnLnHU4qMx +E2QcJjmbxuX0NcAQnJmKjIIcwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMD5HBrr sfdOy6hk0jeqRggo+xhQMB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvNzIwNkYxQjA1 QTE3MTFFRjk1Q0I4MTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABn13wDBABn138DBACddxQwDQYJKoZIhvcNAQELBQADggEB ALUl2Jxsgpcn3N47IAgrCFPBtcAfP30EtUe3W+PvIvbEZQw5jhl4xLXfp2Ap7Im+ 4qWx8ARbdPVU1hXHFOzc+MfDa5CnVo9rnx3eDVTopmN/jaVIyB6u6vBZTnPy3l4O WFSSFQJfnpxez/r6OViQu4Ee67XHaKUm1so97joahHWIp749yeI56aAur26nCFpj Ax/TAsjoDs5xEIT3KMElz7NquwM09HAyrk4vIf7Jw7obQyGaAjZK0Xjo7KwzWbUo OXL2bJqrdmiqiwacUijySKSqCbSONwEchCzr9v3AmXfE3LiFWK5BxWmdBHrn0mr/ wPlP6qWTyb0MeXQr3wTlqDU= -----END CERTIFICATE-----Generated at Sun May 11 04:23:01 2025 by rpki-client