$ rpki-client -vvf rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/186817D6FAAA11EFA67E0D81C4F9AE02.roa File: 186817D6FAAA11EFA67E0D81C4F9AE02.roa (raw, json) Hash identifier: XqbSA7pTHQu8ks4FQOA3vJ/bHZOe/8eB0bJZqpH2INk= Subject key identifier: F5:BF:FE:43:70:13:4E:A8:82:FE:42:65:EE:5C:86:89:23:5D:40:32 Certificate issuer: /CN=A915365A/serialNumber=6D967FBDD1B874748246ACB8D4AA90BA8B561B4A Certificate serial: 21 Authority key identifier: 6D:96:7F:BD:D1:B8:74:74:82:46:AC:B8:D4:AA:90:BA:8B:56:1B:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZZ_vdG4dHSCRqy41KqQuotWG0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/186817D6FAAA11EFA67E0D81C4F9AE02.roa Signing time: Thu 01 May 2025 07:14:11 +0000 ROA not before: Thu 01 May 2025 07:14:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133495 IP address blocks: 103.8.112.0/24 maxlen: 24 103.8.113.0/24 maxlen: 24 103.8.114.0/24 maxlen: 24 103.8.115.0/24 maxlen: 24 162.12.208.0/24 maxlen: 24 162.12.209.0/24 maxlen: 24 162.12.210.0/24 maxlen: 24 162.12.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/bZZ_vdG4dHSCRqy41KqQuotWG0o.crl rsync://rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/bZZ_vdG4dHSCRqy41KqQuotWG0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZZ_vdG4dHSCRqy41KqQuotWG0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915365A, serialNumber=6D967FBDD1B874748246ACB8D4AA90BA8B561B4A Validity Not Before: May 1 07:14:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68131f43-8e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:da:81:84:9e:b8:7b:df:61:52:de:9f:d8:f7: c5:cc:20:80:14:8c:56:b1:3a:77:03:05:8c:2c:c7: 90:20:0f:cf:6c:1a:3f:c2:1c:ac:a8:3d:7e:dc:c4: 25:d2:70:c3:03:49:32:8e:fd:42:76:11:54:6d:10: a4:0a:35:2b:9a:2c:b4:1b:fc:c2:bb:a1:3e:db:9f: 63:b2:71:10:45:5a:7f:90:b1:0d:7c:9f:e5:6d:38: 55:2c:1a:f0:5c:44:bc:5e:ce:d3:5d:c2:96:90:24: 76:98:e5:f1:6b:f5:52:51:49:8b:34:0e:a2:1e:a4: cc:92:bc:39:d3:5c:ac:08:01:8f:6e:f6:d1:35:d1: 72:0e:c2:09:28:14:98:67:16:df:8e:c1:1c:44:60: 69:ec:92:9c:d7:4d:0f:a3:98:14:2d:11:6b:f1:44: 50:38:7b:d5:9f:ea:13:b1:f4:c9:5e:cb:b1:8e:c0: fb:4a:5c:0d:69:ee:0b:38:3d:7d:81:5e:37:df:07: 26:34:e9:7a:1d:20:8f:b1:62:85:45:f5:cc:ff:09: bb:f2:03:03:1b:de:b7:1b:01:8f:8a:59:53:21:fa: 0b:db:cb:54:c0:86:cd:4c:67:bb:48:04:e5:9a:2c: 43:03:30:aa:ac:41:73:05:ac:56:d1:03:ab:83:44: f9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BF:FE:43:70:13:4E:A8:82:FE:42:65:EE:5C:86:89:23:5D:40:32 X509v3 Authority Key Identifier: keyid:6D:96:7F:BD:D1:B8:74:74:82:46:AC:B8:D4:AA:90:BA:8B:56:1B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/bZZ_vdG4dHSCRqy41KqQuotWG0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZZ_vdG4dHSCRqy41KqQuotWG0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915365A/FA708ADEFAA811EFBE5C047BC4F9AE02/186817D6FAAA11EFA67E0D81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.112.0/22 162.12.208.0/22 Signature Algorithm: sha256WithRSAEncryption 16:e6:c6:84:08:d9:b7:9f:5f:44:92:f3:7d:76:a8:53:27:dc: d4:b6:2e:b8:15:1f:00:9a:2d:b2:68:6b:15:a5:97:ff:6a:a3: 31:ed:2d:f9:77:1f:e1:3f:8e:fd:e3:ff:82:62:a0:6b:64:3b: 01:4f:04:06:2c:d5:97:3b:81:e5:2c:a3:f8:47:b4:c8:0b:eb: 51:11:8c:2d:c5:4a:68:17:04:24:72:07:cb:dc:3c:a7:5e:03: 00:ec:2d:b0:2c:a0:83:a4:3b:d3:b3:7c:2e:88:26:ae:01:75: 7d:66:d1:0d:d6:d8:96:fe:6e:84:91:b6:dc:eb:2c:f4:3b:f0: f7:b4:e9:e1:54:c0:2c:4d:e6:d2:67:6f:8e:da:85:34:28:8a: 29:44:fe:f0:ef:14:03:ec:ba:92:e0:13:d0:a6:f4:38:5c:b6: 90:95:2b:f4:9e:4c:1a:1b:4d:1d:f2:8f:a6:26:ee:95:5e:ba: 16:10:86:c4:d3:f3:75:26:46:a9:16:c4:4a:84:8f:f0:e0:1d: 5b:99:dd:9c:51:9d:6b:9d:80:c6:bd:43:34:4b:a2:f3:25:ad: 5a:50:81:a8:4f:fb:79:a1:70:36:ce:c6:a1:d7:8d:8a:47:27: cb:01:d9:66:6b:b4:02:c2:c4:98:f9:d1:d5:cd:5f:b7:e3:88: ad:07:2c:93 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzY1QTExMC8GA1UEBRMoNkQ5NjdGQkREMUI4NzQ3NDgyNDZBQ0I4RDRBQTkwQkE4 QjU2MUI0QTAeFw0yNTA1MDEwNzE0MTFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTMxZjQzLThlN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd2oGEnrh732FS3p/Y98XMIIAUjFaxOncDBYwsx5AgD89sGj/CHKyoPX7cxCXS cMMDSTKO/UJ2EVRtEKQKNSuaLLQb/MK7oT7bn2OycRBFWn+QsQ18n+VtOFUsGvBc RLxeztNdwpaQJHaY5fFr9VJRSYs0DqIepMySvDnTXKwIAY9u9tE10XIOwgkoFJhn Ft+OwRxEYGnskpzXTQ+jmBQtEWvxRFA4e9Wf6hOx9Mley7GOwPtKXA1p7gs4PX2B XjffByY06XodII+xYoVF9cz/CbvyAwMb3rcbAY+KWVMh+gvby1TAhs1MZ7tIBOWa LEMDMKqsQXMFrFbRA6uDRPm9AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU9b/+Q3AT TqiC/kJl7lyGiSNdQDIwHwYDVR0jBBgwFoAUbZZ/vdG4dHSCRqy41KqQuotWG0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNjVBL0ZBNzA4QURFRkFB ODExRUZCRTVDMDQ3QkM0RjlBRTAyL2JaWl92ZEc0ZEhTQ1JxeTQxS3FRdW90V0cw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYlpaX3ZkRzRkSFNDUnF5NDFLcVF1b3RXRzBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzY1QS9GQTcwOEFERUZBQTgxMUVGQkU1QzA0N0JDNEY5QUUwMi8xODY4MTdENkZB QUExMUVGQTY3RTBEODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcIcAMEAqIM0DANBgkqhkiG9w0BAQsFAAOCAQEAFubGhAjZ t59fRJLzfXaoUyfc1LYuuBUfAJotsmhrFaWX/2qjMe0t+Xcf4T+O/eP/gmKga2Q7 AU8EBizVlzuB5Syj+Ee0yAvrURGMLcVKaBcEJHIHy9w8p14DAOwtsCygg6Q707N8 LogmrgF1fWbRDdbYlv5uhJG23Oss9Dvw97Tp4VTALE3m0mdvjtqFNCiKKUT+8O8U A+y6kuAT0Kb0OFy2kJUr9J5MGhtNHfKPpibulV66FhCGxNPzdSZGqRbESoSP8OAd W5ndnFGda52Axr1DNEui8yWtWlCBqE/7eaFwNs7GodeNikcnywHZZmu0AsLEmPnR 1c1ft+OIrQcskw== -----END CERTIFICATE-----Generated at Thu May 15 15:21:01 2025 by rpki-client