$ rpki-client -vvf rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/52531292718111EEA2596A60C4F9AE02.roa File: 52531292718111EEA2596A60C4F9AE02.roa (raw, json) Hash identifier: Vg73TN1ibIfWQIPliBrxJS/1BLP/byeXdiTRX/hU2Io= Subject key identifier: C2:2B:C3:FC:73:D5:AE:B4:76:14:38:5B:27:22:51:F9:F7:6C:42:3B Certificate issuer: /CN=A914949E/serialNumber=6E345C01556DE3EDA1D9134D4A2D7EA523A148F9 Certificate serial: 0125 Authority key identifier: 6E:34:5C:01:55:6D:E3:ED:A1:D9:13:4D:4A:2D:7E:A5:23:A1:48:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjRcAVVt4-2h2RNNSi1-pSOhSPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/52531292718111EEA2596A60C4F9AE02.roa Signing time: Wed 07 May 2025 04:11:06 +0000 ROA not before: Wed 07 May 2025 04:11:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142279 IP address blocks: 103.166.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/bjRcAVVt4-2h2RNNSi1-pSOhSPk.crl rsync://rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/bjRcAVVt4-2h2RNNSi1-pSOhSPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjRcAVVt4-2h2RNNSi1-pSOhSPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914949E, serialNumber=6E345C01556DE3EDA1D9134D4A2D7EA523A148F9 Validity Not Before: May 7 04:11:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681add59-74ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:62:9e:55:c4:2f:c7:58:6e:5f:95:0d:b2: 00:2d:2a:5c:c8:99:f7:76:ae:87:1d:84:b0:04:ad: ac:bd:62:f5:4a:83:73:1f:c6:a7:75:41:cf:5f:9b: 86:a2:76:e0:3c:c1:12:6a:c1:24:e1:f6:0f:1f:e2: 94:73:e4:a5:2b:ff:17:e6:e0:93:7c:e4:fd:2e:16: 7d:4a:a2:31:ab:47:16:4a:53:c9:26:b2:28:c8:1a: 0a:10:85:57:3a:19:c8:4d:a4:8d:1f:b7:70:f3:d1: ed:ab:55:12:8a:09:fc:5c:a8:61:10:dc:6b:b3:38: 8a:14:3d:5c:e8:3c:06:ea:33:26:81:b0:d1:5d:b1: 8e:84:07:93:a9:ea:6d:f5:67:f8:9e:a6:56:28:80: 96:f9:cd:92:62:10:14:73:84:2d:a4:e3:41:2b:9f: e0:e6:f6:00:4c:58:a5:b5:65:eb:ff:51:44:cf:ba: 3b:eb:49:18:38:28:4f:4f:eb:5b:2b:9c:52:35:a7: 40:8c:ea:52:9b:24:11:cb:57:2e:44:50:70:66:43: 24:1c:ee:2e:45:27:41:a8:1e:35:c2:fb:7a:15:c6: 42:03:61:47:69:d3:08:26:e5:10:43:df:84:3e:bd: d2:fa:4c:b5:3b:e7:98:38:e6:51:4b:ee:c2:a3:59: 63:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2B:C3:FC:73:D5:AE:B4:76:14:38:5B:27:22:51:F9:F7:6C:42:3B X509v3 Authority Key Identifier: keyid:6E:34:5C:01:55:6D:E3:ED:A1:D9:13:4D:4A:2D:7E:A5:23:A1:48:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/bjRcAVVt4-2h2RNNSi1-pSOhSPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjRcAVVt4-2h2RNNSi1-pSOhSPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914949E/80785F50716911EEB51B380DC4F9AE02/52531292718111EEA2596A60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.98.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:8f:4d:54:92:85:81:eb:72:20:4f:5e:4d:10:88:11:eb:14: 83:ac:2e:7b:5b:7b:4c:4e:45:59:44:a4:13:91:a2:0c:a2:6f: da:ad:ba:3a:2d:0b:4f:b9:5a:f7:b0:d9:25:83:7a:d1:7f:92: ab:aa:8a:3e:5c:5f:35:44:a7:4d:14:aa:c2:ea:6f:99:d8:b0: 48:c3:6f:b3:cb:a2:b9:d7:3c:43:7a:e7:4d:49:48:b1:b9:c4: 00:e9:11:c8:17:a7:77:38:14:a1:69:46:08:72:b1:88:4a:db: 1a:33:d2:06:2c:8f:a8:83:48:9b:d0:12:38:9f:2f:e4:9b:88: a8:ae:fd:b0:f0:49:a1:60:a5:14:2b:1d:3d:1a:30:75:f7:d7: 69:cc:2d:09:5e:ff:cb:23:e4:08:20:29:a5:03:05:80:cb:8b: a4:a1:c9:36:02:f5:9f:46:e9:f6:e2:e4:ed:7d:87:a4:dd:3a: f6:27:77:38:7b:4e:83:32:46:29:3f:07:ad:ea:44:23:e1:0a: 9d:3b:8c:71:bb:8f:83:ab:31:76:c1:ce:ed:ef:5e:e4:6a:ea: 2c:6c:7d:16:6f:7a:60:69:fc:49:64:9c:ab:e5:a1:35:30:a8: 61:7f:51:e4:e9:66:f0:42:6c:93:4f:51:2f:98:32:82:6d:1f: 22:46:34:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk0OUUxMTAvBgNVBAUTKDZFMzQ1QzAxNTU2REUzRURBMUQ5MTM0RDRBMkQ3RUE1 MjNBMTQ4RjkwHhcNMjUwNTA3MDQxMTA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZGQ1OS03NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5xinlXEL8dYbl+VDbIALSpcyJn3dq6HHYSwBK2svWL1SoNzH8andUHPX5uG onbgPMESasEk4fYPH+KUc+SlK/8X5uCTfOT9LhZ9SqIxq0cWSlPJJrIoyBoKEIVX OhnITaSNH7dw89Htq1USign8XKhhENxrsziKFD1c6DwG6jMmgbDRXbGOhAeTqept 9Wf4nqZWKICW+c2SYhAUc4QtpONBK5/g5vYATFiltWXr/1FEz7o760kYOChPT+tb K5xSNadAjOpSmyQRy1cuRFBwZkMkHO4uRSdBqB41wvt6FcZCA2FHadMIJuUQQ9+E Pr3S+ky1O+eYOOZRS+7Co1lj8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMIrw/xz 1a60dhQ4WyciUfn3bEI7MB8GA1UdIwQYMBaAFG40XAFVbePtodkTTUotfqUjoUj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTQ5RS84MDc4NUY1MDcx NjkxMUVFQjUxQjM4MERDNEY5QUUwMi9ialJjQVZWdDQtMmgyUk5OU2kxLXBTT2hT UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUmNBVlZ0NC0yaDJSTk5TaTEtcFNPaFNQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDk0OUUvODA3ODVGNTA3MTY5MTFFRUI1MUIzODBEQzRGOUFFMDIvNTI1MzEyOTI3 MTgxMTFFRUEyNTk2QTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpmIwDQYJKoZIhvcNAQELBQADggEBACqPTVSShYHrciBP Xk0QiBHrFIOsLntbe0xORVlEpBORogyib9qtujotC0+5Wvew2SWDetF/kquqij5c XzVEp00UqsLqb5nYsEjDb7PLornXPEN6501JSLG5xADpEcgXp3c4FKFpRghysYhK 2xoz0gYsj6iDSJvQEjifL+SbiKiu/bDwSaFgpRQrHT0aMHX312nMLQle/8sj5Agg KaUDBYDLi6ShyTYC9Z9G6fbi5O19h6TdOvYndzh7ToMyRik/B63qRCPhCp07jHG7 j4OrMXbBzu3vXuRq6ixsfRZvemBp/ElknKvloTUwqGF/UeTpZvBCbJNPUS+YMoJt HyJGNOE= -----END CERTIFICATE-----Generated at Fri May 16 13:57:00 2025 by rpki-client