$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa File: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (raw, json) Hash identifier: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc= Subject key identifier: D0:BE:7E:1E:12:A7:79:9C:7A:72:B1:51:3A:BB:73:6D:27:A3:B3:97 Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: C7 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa Signing time: Thu 01 May 2025 05:11:46 +0000 ROA not before: Thu 01 May 2025 05:11:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152677 IP address blocks: 117.103.118.0/23 maxlen: 23 117.103.118.0/24 maxlen: 24 117.103.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: May 1 05:11:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68130292-cc27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:17:e2:08:73:5c:00:46:c9:68:23:86:9c: 6a:02:fa:02:a0:f0:be:e6:95:fd:1e:e6:57:8a:02: c9:93:00:d9:77:c8:09:91:9c:a8:e5:f6:14:d2:ab: 6d:29:41:9e:7e:50:e2:0d:c3:5e:5d:dc:09:6f:6e: 2c:96:59:83:d1:a2:47:d6:28:8d:59:fd:bc:cb:44: b3:07:ed:a2:00:e5:fb:b6:75:57:5d:6c:3c:8a:be: 5d:dd:7c:f4:d8:a2:ee:80:a1:68:0b:7a:f5:4a:8e: b0:43:94:15:e1:34:8f:4e:02:7e:cb:44:6d:af:b1: 4c:7d:15:4a:19:95:70:09:f9:af:fb:7c:02:75:9c: 00:bc:1c:3e:69:2a:f9:65:44:9b:34:4f:5b:39:4d: 1b:55:9b:36:8d:8c:2e:63:58:6c:10:c5:27:9c:a8: a6:89:f7:f1:ca:4d:48:59:ac:e3:b0:35:30:20:0f: bd:9e:06:2d:65:76:d4:db:34:7d:f4:41:91:6c:84: fc:8e:71:65:ee:08:11:62:e1:bc:be:12:7c:91:a1: 38:1b:55:62:09:e5:f4:86:c5:2f:90:2d:26:d0:7a: 17:12:98:8d:ad:a2:cd:9c:4a:e3:51:21:34:34:d3: 20:72:b6:7b:42:03:e9:e2:3b:e3:29:74:a5:04:7d: 56:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BE:7E:1E:12:A7:79:9C:7A:72:B1:51:3A:BB:73:6D:27:A3:B3:97 X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.103.118.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:be:a3:e3:98:41:b2:54:af:e5:9e:1d:5c:54:17:e2:a1:1d: 97:de:c2:84:c9:f5:40:57:b6:4b:f2:aa:06:19:fb:75:43:c7: 53:b9:7b:a3:fd:93:07:ce:51:db:48:2f:ba:81:0c:5f:e6:cc: ce:e7:25:33:c1:de:53:50:db:98:03:f6:dd:fc:db:d5:35:f2: 6c:a8:ff:18:04:d5:08:a5:df:5c:34:9e:4d:28:f8:2e:8d:16: 53:12:dd:33:d8:d5:db:c8:b5:70:64:55:38:ed:1b:6e:80:f4: 7e:7e:f9:f3:79:55:a9:d5:1b:7e:95:28:4f:9b:51:a8:9e:9c: d4:f9:5b:a2:89:e3:c7:49:28:61:08:30:27:44:ae:ab:05:47: 29:09:a7:9c:39:b5:21:0f:23:50:16:8f:49:13:43:ec:74:39: 63:54:be:4d:cb:d3:46:f1:a1:da:bc:79:36:e1:32:e7:1f:ea: 56:20:3d:b1:a0:b3:28:a3:e4:ab:6f:cd:f3:64:9d:7b:77:3a: 45:98:67:bb:cb:64:59:d8:d1:85:01:68:f6:79:9d:d7:b7:66: 56:ab:ff:1a:46:3b:e5:f9:df:d2:12:96:22:dc:56:ca:27:13: 81:ef:40:8b:69:61:56:24:70:fd:04:1f:4f:9e:d5:83:24:b9: f9:ed:66:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwNTAxMDUxMTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEzMDI5Mi1jYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1UX4ghzXABGyWgjhpxqAvoCoPC+5pX9HuZXigLJkwDZd8gJkZyo5fYU0qtt KUGeflDiDcNeXdwJb24sllmD0aJH1iiNWf28y0SzB+2iAOX7tnVXXWw8ir5d3Xz0 2KLugKFoC3r1So6wQ5QV4TSPTgJ+y0Rtr7FMfRVKGZVwCfmv+3wCdZwAvBw+aSr5 ZUSbNE9bOU0bVZs2jYwuY1hsEMUnnKimiffxyk1IWazjsDUwIA+9ngYtZXbU2zR9 9EGRbIT8jnFl7ggRYuG8vhJ8kaE4G1ViCeX0hsUvkC0m0HoXEpiNraLNnErjUSE0 NNMgcrZ7QgPp4jvjKXSlBH1W3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNC+fh4S p3mcenKxUTq7c20no7OXMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIwRDgvMDdBQUJDREFGQjExMTFFRTkxMjMzOTFCQzRGOUFFMDIvNjZFOTNEQTJG QjExMTFFRTgxRDc2NDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1Z3YwDQYJKoZIhvcNAQELBQADggEBAG2+o+OYQbJUr+We HVxUF+KhHZfewoTJ9UBXtkvyqgYZ+3VDx1O5e6P9kwfOUdtIL7qBDF/mzM7nJTPB 3lNQ25gD9t3829U18myo/xgE1Qil31w0nk0o+C6NFlMS3TPY1dvItXBkVTjtG26A 9H5++fN5VanVG36VKE+bUaienNT5W6KJ48dJKGEIMCdErqsFRykJp5w5tSEPI1AW j0kTQ+x0OWNUvk3L00bxodq8eTbhMucf6lYgPbGgsyij5KtvzfNknXt3OkWYZ7vL ZFnY0YUBaPZ5nde3Zlar/xpGO+X539ISliLcVsonE4HvQItpYVYkcP0EH0+e1YMk ufntZmM= -----END CERTIFICATE-----Generated at Wed May 14 08:17:41 2025 by rpki-client