$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa File: DE437646F8A911EB98242219C4F9AE02.roa (raw, json) Hash identifier: qO/L9iOGcVT7Zy5+lQ1QEnr1iK0Ar+vJn8jp9AXsGQU= Subject key identifier: 1C:C9:09:E1:9C:FB:F3:8A:5F:E1:72:06:6B:85:FB:2F:5C:8E:AE:C5 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0B28 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa Signing time: Fri 02 May 2025 20:00:12 +0000 ROA not before: Fri 02 May 2025 20:00:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:00:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815244b-0235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a5:68:b9:1b:4f:1c:3a:12:28:69:96:43:94: aa:7a:e4:16:d5:e9:13:2b:8c:05:34:03:66:19:34: dd:83:6a:b6:9c:ef:6e:f8:d1:53:e0:89:99:d3:23: 09:2f:8a:03:7f:56:02:32:e4:44:8a:99:f6:03:1a: 3f:df:51:06:84:cb:ae:c4:11:69:2e:2c:3c:36:5c: f4:90:3e:56:ac:e8:e1:5e:dc:b1:6b:af:d8:f9:14: 34:d1:e5:54:01:8c:dc:ca:54:aa:a7:97:75:4a:19: 1a:00:d0:76:7e:7e:68:80:da:39:24:9c:44:cd:0d: 9c:84:f2:9e:1b:78:70:10:1c:4a:25:02:20:85:24: 5f:5b:83:9f:33:7a:9e:52:3d:03:f0:0d:01:2e:57: 13:8f:3e:c0:ba:f7:27:9d:72:02:65:63:7e:7f:a6: 55:3e:7a:6f:9c:98:4e:ed:d7:f3:4c:de:33:c7:3f: 70:c2:b3:99:4d:79:39:b6:59:6e:48:2a:4b:58:0b: 22:fa:bd:d6:2e:dd:3e:74:60:3c:3b:dc:fc:b5:f2: 32:52:90:e8:44:6a:7b:a5:92:c7:5c:3c:8d:b6:bd: a3:8b:6e:0d:fb:d9:97:5c:02:d7:57:ca:12:fe:c5: 8d:3b:3d:e9:07:a1:92:33:81:8e:23:56:5c:9d:9c: c8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C9:09:E1:9C:FB:F3:8A:5F:E1:72:06:6B:85:FB:2F:5C:8E:AE:C5 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption ab:81:d3:2f:f7:cf:e7:cf:79:38:d1:03:b8:73:27:73:9f:50: ba:24:67:ec:83:41:ef:cf:d4:89:cf:bd:70:2a:16:e7:c4:1b: 68:39:f2:87:51:69:b0:05:49:be:ea:b0:ce:26:46:25:14:df: f3:21:94:64:a4:56:db:a2:ab:d2:a0:2c:bc:3b:9b:d4:3d:5c: 12:2c:f9:f0:3d:af:64:a7:4e:bc:03:84:f6:75:a7:36:4f:65: 72:a2:a7:df:82:67:11:2b:da:fd:ae:78:e9:45:a7:93:d6:16: d4:ed:db:ff:7f:eb:fd:fa:b1:c4:1d:92:5f:02:09:3f:eb:52: ec:70:24:dd:da:5b:39:3b:fd:bf:fb:11:5d:e5:b9:02:3e:6a: b5:e6:c7:12:0b:7b:9d:98:f7:f4:8f:85:2c:30:55:fc:33:09: d2:7c:25:46:ff:3b:b7:dc:fa:0b:61:f0:aa:5f:c0:b4:21:70: 83:65:af:e3:0b:40:d0:b3:21:44:f6:7e:83:96:e2:7b:00:77: 02:d1:3c:89:69:d2:36:c6:0e:25:8b:df:8c:87:fc:67:02:0a: 8e:35:78:83:eb:9e:6f:23:b1:c2:bc:49:db:cd:9f:93:d9:ff: a2:24:a3:69:02:51:13:0b:98:06:41:d3:88:98:fa:09:a0:8c: 22:bb:07:07 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNTAyMjAwMDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MjQ0Yi0wMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6VouRtPHDoSKGmWQ5SqeuQW1ekTK4wFNANmGTTdg2q2nO9u+NFT4ImZ0yMJ L4oDf1YCMuREipn2Axo/31EGhMuuxBFpLiw8Nlz0kD5WrOjhXtyxa6/Y+RQ00eVU AYzcylSqp5d1ShkaANB2fn5ogNo5JJxEzQ2chPKeG3hwEBxKJQIghSRfW4OfM3qe Uj0D8A0BLlcTjz7AuvcnnXICZWN+f6ZVPnpvnJhO7dfzTN4zxz9wwrOZTXk5tllu SCpLWAsi+r3WLt0+dGA8O9z8tfIyUpDoRGp7pZLHXDyNtr2ji24N+9mXXALXV8oS /sWNOz3pB6GSM4GOI1ZcnZzIAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBzJCeGc +/OKX+FyBmuF+y9cjq7FMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvREU0Mzc2NDZG OEE5MTFFQjk4MjQyMjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+IAwDwQCAAIwCQMHBCQDX0DKADANBgkqhkiG9w0BAQsF AAOCAQEAq4HTL/fP5895ONEDuHMnc59QuiRn7INB78/Uic+9cCoW58QbaDnyh1Fp sAVJvuqwziZGJRTf8yGUZKRW26Kr0qAsvDub1D1cEiz58D2vZKdOvAOE9nWnNk9l cqKn34JnESva/a546UWnk9YW1O3b/3/r/fqxxB2SXwIJP+tS7HAk3dpbOTv9v/sR XeW5Aj5qtebHEgt7nZj39I+FLDBV/DMJ0nwlRv87t9z6C2Hwql/AtCFwg2Wv4wtA 0LMhRPZ+g5biewB3AtE8iWnSNsYOJYvfjIf8ZwIKjjV4g+uebyOxwrxJ282fk9n/ oiSjaQJREwuYBkHTiJj6CaCMIrsHBw== -----END CERTIFICATE-----Generated at Sun May 18 11:02:02 2025 by rpki-client