$ rpki-client -vvf rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa File: 47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa (raw, json) Hash identifier: AHAcb+gAjCz8wkoAWVtMX/VsvUWaSfqcpHAMq6tIbbk= Subject key identifier: F2:3F:D6:F6:3F:46:C9:B8:FB:46:EC:BC:40:51:5E:FA:94:EC:14:E1 Certificate issuer: /CN=A914B14E/serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Certificate serial: 07AF Authority key identifier: 3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa Signing time: Sat 10 May 2025 20:58:37 +0000 ROA not before: Sat 10 May 2025 20:58:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138945 IP address blocks: 103.137.128.0/24 maxlen: 24 103.140.198.0/24 maxlen: 24 2001:df0:1f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1967 (0x7af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B14E, serialNumber=3CCD5F28A879EFBDBD3E55F4C2BCF28D6CDD5AEE Validity Not Before: May 10 20:58:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681fbdfc-a637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c4:66:a3:92:7e:d7:11:80:51:54:22:b1:1c: bc:56:0e:aa:d5:ba:9f:c3:d4:31:ce:fc:08:88:90: 34:80:10:a2:81:65:a9:a5:7a:1b:b9:32:9a:23:bb: b4:dc:a1:cb:4a:18:27:ba:b7:e0:ea:e2:a9:5e:2f: 1a:c2:93:68:44:73:3c:77:6c:a1:7a:ed:5f:c6:5e: a1:ef:6b:74:85:b2:66:28:7c:af:4d:0d:59:f8:51: 5a:fa:a2:a5:39:a6:82:cd:11:ae:fb:91:f6:e0:7e: 7c:1f:75:32:77:0a:fd:52:41:91:39:7b:10:e6:eb: 92:43:5a:ad:2c:8a:8f:c4:c8:83:50:05:5c:a6:aa: 50:b3:1f:c6:93:f1:34:44:33:52:c7:dc:57:dd:e2: 2b:31:c7:62:4c:fa:68:d6:26:a0:5a:1c:9b:fa:e1: 95:58:a1:b5:54:1d:d4:e3:f9:03:56:58:45:3c:3b: 93:0b:9e:07:51:6b:41:5c:9f:22:2c:f4:af:44:7f: b2:5e:a6:4c:f0:7f:ef:3f:1b:fe:38:1d:80:5c:08: eb:ac:4a:21:e9:61:aa:a6:ed:53:26:10:2b:b0:40: 29:11:f4:a2:3a:b1:1d:d5:dc:fd:4f:4f:79:de:23: e9:b5:8d:2c:30:f1:e8:1a:93:be:fc:f5:4a:6a:6d: 46:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3F:D6:F6:3F:46:C9:B8:FB:46:EC:BC:40:51:5E:FA:94:EC:14:E1 X509v3 Authority Key Identifier: keyid:3C:CD:5F:28:A8:79:EF:BD:BD:3E:55:F4:C2:BC:F2:8D:6C:DD:5A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/PM1fKKh57729PlX0wrzyjWzdWu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PM1fKKh57729PlX0wrzyjWzdWu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B14E/87F6848CFF8411EAB2A1C75BC4F9AE02/47F1DE34FF8611EA9DCF8D5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.128.0/24 103.140.198.0/24 IPv6: 2001:df0:1f80::/48 Signature Algorithm: sha256WithRSAEncryption c8:da:2c:dd:c6:4d:e2:31:b3:53:41:6b:b4:83:6d:d5:30:13: 7a:a8:91:1f:23:b2:e2:f5:84:1b:15:4b:17:56:78:50:ba:e8: 14:67:68:64:bc:85:fb:64:bc:e6:16:e1:ac:92:b9:6e:bd:06: 7c:de:8b:a8:49:43:5d:36:30:d0:fd:53:a3:aa:d3:66:84:a3: 30:b7:de:bc:de:32:8a:7d:76:ac:3f:32:c9:0c:7b:b3:02:fe: 63:be:50:ce:18:35:7f:6c:1a:4f:d2:f0:bd:08:8a:4c:b9:fc: ca:6e:88:a8:0d:db:80:0b:ed:cf:c8:55:4c:ef:99:7a:4a:78: e1:31:a4:c3:06:01:69:81:05:85:2f:d8:0b:6b:0d:4f:d3:13: 61:96:55:ee:0a:f1:89:be:36:5a:14:5a:ec:37:37:a5:4f:8d: 84:55:4c:b9:8b:22:bc:8e:18:3a:4b:5c:39:27:f2:fe:be:f8: f3:27:36:ae:bd:b9:b1:22:74:d6:25:09:b3:13:e7:db:62:71: 1e:df:df:c0:9a:74:a7:71:55:25:d3:cc:6a:44:0d:3c:86:46: 06:d9:c1:c4:a7:93:1b:c3:75:ca:e5:96:31:54:05:a5:a6:b6: dd:c9:09:a6:e3:72:8f:a6:7a:01:8c:43:9f:7f:38:c5:f2:89: 70:07:a5:21 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNEUxMTAvBgNVBAUTKDNDQ0Q1RjI4QTg3OUVGQkRCRDNFNTVGNEMyQkNGMjhE NkNERDVBRUUwHhcNMjUwNTEwMjA1ODM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmYmRmYy1hNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusRmo5J+1xGAUVQisRy8Vg6q1bqfw9QxzvwIiJA0gBCigWWppXobuTKaI7u0 3KHLShgnurfg6uKpXi8awpNoRHM8d2yheu1fxl6h72t0hbJmKHyvTQ1Z+FFa+qKl OaaCzRGu+5H24H58H3Uydwr9UkGROXsQ5uuSQ1qtLIqPxMiDUAVcpqpQsx/Gk/E0 RDNSx9xX3eIrMcdiTPpo1iagWhyb+uGVWKG1VB3U4/kDVlhFPDuTC54HUWtBXJ8i LPSvRH+yXqZM8H/vPxv+OB2AXAjrrEoh6WGqpu1TJhArsEApEfSiOrEd1dz9T095 3iPptY0sMPHoGpO+/PVKam1GqQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPI/1vY/ Rsm4+0bsvEBRXvqU7BThMB8GA1UdIwQYMBaAFDzNXyioee+9vT5V9MK88o1s3Vru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE0RS84N0Y2ODQ4Q0ZG ODQxMUVBQjJBMUM3NUJDNEY5QUUwMi9QTTFmS0toNTc3MjlQbFgwd3J6eWpXemRX dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNMWZLS2g1NzcyOVBsWDB3cnp5ald6ZFd1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIxNEUvODdGNjg0OENGRjg0MTFFQUIyQTFDNzVCQzRGOUFFMDIvNDdGMURFMzRG Rjg2MTFFQTlEQ0Y4RDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABniYADBABnjMYwDwQCAAIwCQMHACABDfAfgDANBgkqhkiG 9w0BAQsFAAOCAQEAyNos3cZN4jGzU0FrtINt1TATeqiRHyOy4vWEGxVLF1Z4ULro FGdoZLyF+2S85hbhrJK5br0GfN6LqElDXTYw0P1To6rTZoSjMLfevN4yin12rD8y yQx7swL+Y75Qzhg1f2waT9LwvQiKTLn8ym6IqA3bgAvtz8hVTO+Zekp44TGkwwYB aYEFhS/YC2sNT9MTYZZV7grxib42WhRa7Dc3pU+NhFVMuYsivI4YOktcOSfy/r74 8yc2rr25sSJ01iUJsxPn22JxHt/fwJp0p3FVJdPMakQNPIZGBtnBxKeTG8N1yuWW MVQFpaa23ckJpuNyj6Z6AYxDn384xfKJcAelIQ== -----END CERTIFICATE-----Generated at Fri May 16 11:36:57 2025 by rpki-client