$ rpki-client -vvf rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa File: 3D8179B431AE11F0A7D0076FC4F9AE02.roa (raw, json) Hash identifier: idQquXKRevDwjAJCqVW+rFJv8DkXtp2+vMql8G3VE3g= Subject key identifier: 95:FC:88:C4:27:0D:E9:A4:8B:DE:CE:24:F5:66:B8:91:BF:1B:D1:B2 Certificate issuer: /CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Certificate serial: 0D72 Authority key identifier: E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa Signing time: Thu 15 May 2025 17:01:27 +0000 ROA not before: Thu 15 May 2025 17:01:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139202 IP address blocks: 103.139.196.0/23 maxlen: 23 103.139.196.0/24 maxlen: 24 2001:df0:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B361, serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Validity Not Before: May 15 17:01:27 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=68261de7-87ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:31:44:d7:23:58:24:98:4a:40:13:fa:12: 18:88:2f:c9:56:b8:84:ae:c1:5d:c1:a7:95:cf:6a: 39:e4:3c:da:05:16:e8:54:87:1c:7b:74:2f:20:34: ba:ea:db:a2:75:01:fd:7e:be:9d:19:8b:98:1a:3a: d9:cb:f1:67:89:23:20:81:29:e0:9c:3b:63:2f:b4: b6:7f:25:a7:0d:7a:a5:22:b5:13:75:a0:0d:45:af: 7f:3e:f8:62:ce:f8:8d:1a:b9:f2:d2:fc:06:e4:b1: 27:da:a7:fd:18:a9:7b:2e:6e:89:93:a6:2f:c1:1c: 31:ac:37:8e:fb:f7:86:0b:68:1f:36:51:14:ba:f0: 7f:d7:50:79:14:be:8d:04:d1:13:af:da:fe:4a:25: 64:8d:0a:36:6d:21:43:bc:db:b8:8d:9f:95:b3:ce: 87:ce:8d:38:be:af:7d:b8:9f:16:80:c1:cf:94:9f: 66:b1:d7:6b:af:a7:76:02:3e:5c:13:ab:21:36:b4: 53:80:96:8c:ff:74:4d:62:60:32:7f:62:7d:3a:65: 9b:77:b3:78:e8:39:89:ba:cb:a4:f7:32:78:cf:7f: bf:c6:b8:d5:e0:dd:b3:36:4f:04:b2:06:32:3e:87: 31:c1:6e:38:fd:c9:ff:68:45:a1:03:24:68:4d:89: 4d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FC:88:C4:27:0D:E9:A4:8B:DE:CE:24:F5:66:B8:91:BF:1B:D1:B2 X509v3 Authority Key Identifier: keyid:E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.196.0/23 IPv6: 2001:df0:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 05:95:4d:28:04:15:14:4a:1e:32:90:7e:d3:ec:48:c9:8a:eb: a0:96:03:56:87:3b:64:7a:1e:e8:68:6e:2f:b9:1d:91:e2:eb: 0e:37:44:c1:98:a3:5e:5f:6a:84:4f:0b:4c:5d:51:ac:e6:4b: 7e:75:a1:44:90:23:31:40:95:bc:91:e4:c0:c0:86:05:19:33: f9:03:d3:da:ff:06:2d:ca:be:75:51:05:83:7e:df:4c:55:86: fd:48:d3:2f:86:0a:79:d3:fc:69:ed:c7:49:80:c2:24:cd:ce: fd:20:43:5f:93:7b:9b:1b:ad:e7:df:c3:57:ba:b0:64:98:8e: f4:b6:77:80:0d:7b:54:ef:64:b9:10:4c:5e:e3:38:06:f0:1e: eb:50:f8:93:e0:7a:08:e4:76:0e:61:20:b3:b1:39:60:80:d7: 25:66:81:1d:4e:f4:5a:61:f5:71:5d:de:9a:f7:1a:65:bd:96: 12:a1:c9:79:51:00:44:8a:18:70:4d:ea:1f:c7:6e:54:65:a1: 82:47:ef:9f:d3:ad:64:84:db:d5:db:77:b6:6d:96:bf:56:4b: c4:57:b3:05:98:ce:c3:f9:21:f1:4b:86:cd:53:eb:09:eb:7a: e9:30:92:bc:20:db:fb:1a:4e:50:8e:fa:62:fc:0e:14:c1:81: 76:ab:f4:50 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzNjExMTAvBgNVBAUTKEUwQjlBMkU5OTM5RDU1OEYxOEJFNjIxNzVDOTVENzY4 RDI0NUQzMUYwHhcNMjUwNTE1MTcwMTI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI2MWRlNy04N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI0xRNcjWCSYSkAT+hIYiC/JVriErsFdwaeVz2o55DzaBRboVIcce3QvIDS6 6tuidQH9fr6dGYuYGjrZy/FniSMggSngnDtjL7S2fyWnDXqlIrUTdaANRa9/Pvhi zviNGrny0vwG5LEn2qf9GKl7Lm6Jk6YvwRwxrDeO+/eGC2gfNlEUuvB/11B5FL6N BNETr9r+SiVkjQo2bSFDvNu4jZ+Vs86Hzo04vq99uJ8WgMHPlJ9msddrr6d2Aj5c E6shNrRTgJaM/3RNYmAyf2J9OmWbd7N46DmJusuk9zJ4z3+/xrjV4N2zNk8EsgYy PocxwW44/cn/aEWhAyRoTYlNkQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJX8iMQn Demki97OJPVmuJG/G9GyMB8GA1UdIwQYMBaAFOC5oumTnVWPGL5iF1yV12jSRdMf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjM2MS83QzhEODAwQUNB MzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZOFl2bUlYWEpYWGFOSkYw eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRMbWk2Wk9kVlk4WXZtSVhYSlhYYU5KRjB4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUIzNjEvN0M4RDgwMEFDQTMzMTFFOTgxMTNBMzU0QzRGOUFFMDIvM0Q4MTc5QjQz MUFFMTFGMEE3RDAwNzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFni8QwDwQCAAIwCQMHACABDfCOgDANBgkqhkiG9w0BAQsF AAOCAQEABZVNKAQVFEoeMpB+0+xIyYrroJYDVoc7ZHoe6GhuL7kdkeLrDjdEwZij Xl9qhE8LTF1RrOZLfnWhRJAjMUCVvJHkwMCGBRkz+QPT2v8GLcq+dVEFg37fTFWG /UjTL4YKedP8ae3HSYDCJM3O/SBDX5N7mxut59/DV7qwZJiO9LZ3gA17VO9kuRBM XuM4BvAe61D4k+B6COR2DmEgs7E5YIDXJWaBHU70WmH1cV3emvcaZb2WEqHJeVEA RIoYcE3qH8duVGWhgkfvn9OtZITb1dt3tm2Wv1ZLxFezBZjOw/kh8UuGzVPrCet6 6TCSvCDb+xpOUI76YvwOFMGBdqv0UA== -----END CERTIFICATE-----Generated at Sat May 17 21:28:09 2025 by rpki-client