$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa File: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (raw, json) Hash identifier: BML327IqAumg1Qf2fd2jwUkaILEe0UriC88ZGk+s8xU= Subject key identifier: 31:58:57:8F:E6:94:FD:6C:EA:2A:B0:A4:0A:42:CC:DB:29:96:84:BF Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0B29 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa Signing time: Fri 02 May 2025 20:00:13 +0000 ROA not before: Fri 02 May 2025 20:00:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:00:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815244c-0ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cb:d6:c5:dd:64:a6:1c:48:c0:ee:e9:e3:62: 3c:8f:9e:fa:3f:34:6d:65:14:9f:ae:09:6f:d0:06: c4:47:71:42:e0:0f:17:cc:f4:39:9b:00:f0:bc:5f: ac:2f:e9:e2:96:53:86:33:75:75:b2:21:42:1d:ce: 0c:a7:70:5c:5c:ec:4b:23:ea:36:ba:63:5b:de:67: 01:d9:ae:e5:a2:42:5f:0a:55:1a:b1:ab:32:f1:56: 32:56:0f:e0:00:bc:a3:f9:6d:f6:37:8a:e2:8a:ed: a6:53:22:e4:66:cd:bc:e6:33:c9:7c:01:d9:de:08: 20:79:2c:e5:d3:dd:e6:74:e4:2f:af:0c:d3:88:b4: 65:da:f1:f8:52:23:4b:95:cc:90:39:9e:5c:38:48: 10:79:95:38:e5:5e:55:a1:c7:9d:e5:fa:47:40:cf: 83:ec:19:e1:08:bf:a9:58:24:98:ca:ce:01:88:87: 90:c9:39:98:20:01:e9:f6:63:36:8b:d6:6a:85:cf: 86:ec:5f:c4:5d:af:92:7c:49:ac:cd:4d:ff:cc:a2: be:f8:0b:ce:10:29:29:e1:3f:8b:45:0f:56:6c:f4: 48:63:8f:4e:0f:95:87:51:47:c9:f7:93:58:cf:f0: f9:9a:76:bb:e4:93:5c:91:32:bd:47:99:9d:c0:0a: fe:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:58:57:8F:E6:94:FD:6C:EA:2A:B0:A4:0A:42:CC:DB:29:96:84:BF X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption 1a:d2:0e:5c:f8:be:ec:0c:91:0c:00:b5:9e:da:09:b2:69:c3: d7:62:d7:dd:e7:2d:a5:8b:4c:27:9e:39:86:92:3b:aa:9f:3e: 96:8b:fd:13:d3:bc:15:37:da:41:a1:a0:a3:fc:4c:1f:85:a9: 4d:2b:9a:49:37:b5:c5:2a:44:10:32:75:d4:aa:11:a1:e7:9c: 8e:f9:cc:3c:db:10:4e:4e:dd:f7:eb:0e:3c:28:50:47:59:53: 2e:72:5a:9b:5f:92:72:89:ee:f4:a8:56:59:dc:c7:b6:61:ba: 9f:35:73:1a:34:79:5b:a0:90:fa:74:35:04:77:cf:0c:93:bb: 8f:cd:39:3d:fb:13:31:b6:c8:76:33:89:f1:67:47:ed:65:e3: c9:d2:09:bc:a0:18:ba:4d:c4:66:81:f6:c3:be:1a:00:2e:41: c1:eb:6c:e1:bb:31:92:d4:b0:20:47:7f:eb:0c:2a:d9:64:bb: 4f:03:5c:b8:f9:66:74:b4:e0:a7:f5:71:7d:a5:af:55:af:ca: 22:d9:80:54:2c:37:f8:4a:87:4e:ad:73:4d:5a:17:94:0c:4e: ce:77:cf:53:3c:1d:03:c3:d1:59:52:9c:bf:38:41:7e:fa:92: 4c:6a:cb:5e:b7:f6:60:cf:84:ad:fe:31:42:04:5a:6b:61:5a: d5:60:5f:43 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNTAyMjAwMDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MjQ0Yy0wYmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8vWxd1kphxIwO7p42I8j576PzRtZRSfrglv0AbER3FC4A8XzPQ5mwDwvF+s L+nillOGM3V1siFCHc4Mp3BcXOxLI+o2umNb3mcB2a7lokJfClUasasy8VYyVg/g ALyj+W32N4riiu2mUyLkZs285jPJfAHZ3gggeSzl093mdOQvrwzTiLRl2vH4UiNL lcyQOZ5cOEgQeZU45V5Voced5fpHQM+D7BnhCL+pWCSYys4BiIeQyTmYIAHp9mM2 i9Zqhc+G7F/EXa+SfEmszU3/zKK++AvOECkp4T+LRQ9WbPRIY49OD5WHUUfJ95NY z/D5mna75JNckTK9R5mdwAr+SwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDFYV4/m lP1s6iqwpApCzNsploS/MB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvOUYwRDY1NzRC RkYwMTFFQUEzOEQzQjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+IAwDwQCAAIwCQMHBCQDX0DKADANBgkqhkiG9w0BAQsF AAOCAQEAGtIOXPi+7AyRDAC1ntoJsmnD12LX3ectpYtMJ545hpI7qp8+lov9E9O8 FTfaQaGgo/xMH4WpTSuaSTe1xSpEEDJ11KoRoeecjvnMPNsQTk7d9+sOPChQR1lT LnJam1+Sconu9KhWWdzHtmG6nzVzGjR5W6CQ+nQ1BHfPDJO7j805PfsTMbbIdjOJ 8WdH7WXjydIJvKAYuk3EZoH2w74aAC5Bwets4bsxktSwIEd/6wwq2WS7TwNcuPlm dLTgp/VxfaWvVa/KItmAVCw3+EqHTq1zTVoXlAxOznfPUzwdA8PRWVKcvzhBfvqS TGrLXrf2YM+Erf4xQgRaa2Fa1WBfQw== -----END CERTIFICATE-----Generated at Thu May 15 19:33:56 2025 by rpki-client