$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/220853047F2211EA8E730F35C4F9AE02.roa File: 220853047F2211EA8E730F35C4F9AE02.roa (raw, json) Hash identifier: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M= Subject key identifier: 75:37:7E:B4:D0:9B:40:95:4C:3A:BD:51:B3:11:48:B7:9F:23:29:C6 Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 09CE Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/220853047F2211EA8E730F35C4F9AE02.roa Signing time: Sat 10 May 2025 20:05:55 +0000 ROA not before: Sat 10 May 2025 20:05:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134105 IP address blocks: 103.52.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: May 10 20:05:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681fb1a2-4d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:ee:42:71:79:da:a9:ad:ff:c2:12:e3:0f: ab:c6:49:c2:f9:bc:78:db:d6:64:ff:f9:b2:70:a1: ec:06:ed:41:66:ad:1b:fa:3b:c2:cc:bb:61:0e:a6: 32:41:9d:4a:35:0d:6a:a5:56:d3:57:14:0c:34:3d: f2:46:2d:e7:05:cf:74:4d:c2:e3:88:a2:54:e4:dc: 3d:3e:36:26:65:89:88:3a:26:49:6d:c6:32:11:84: 00:d4:ba:9f:1a:98:51:09:6e:25:e6:1e:05:25:93: 07:84:d8:ad:bf:54:95:d6:e0:89:91:8d:55:eb:98: 76:b1:25:56:9c:c5:a0:5a:c3:bd:0b:76:da:6f:49: 09:fa:73:f1:9b:b2:f3:e3:ca:14:0b:14:3b:47:18: 62:6a:16:54:50:45:67:a7:cb:77:74:7e:36:8d:01: 8b:bf:1d:be:01:69:71:ad:59:28:1f:1a:04:5e:ae: c7:e4:b5:69:f1:e4:02:ef:07:26:d7:4a:0d:03:6b: 29:b7:21:ca:ec:46:f6:13:c4:b0:b3:5d:07:de:80: 3f:80:20:b3:53:f4:1e:07:06:2a:28:7c:04:51:96: 3b:0d:d2:a5:34:76:5c:56:b4:bc:ae:6b:bd:af:db: aa:13:3d:8f:15:b5:85:88:0a:af:f6:ce:aa:29:ee: 1d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:37:7E:B4:D0:9B:40:95:4C:3A:BD:51:B3:11:48:B7:9F:23:29:C6 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/220853047F2211EA8E730F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.228.0/22 Signature Algorithm: sha256WithRSAEncryption 04:44:79:39:22:4a:f3:3e:7b:f4:2f:dc:ac:d9:64:f5:73:d5: 61:43:cb:ca:3f:e0:8f:1e:84:b6:88:d1:80:69:be:6c:da:70: 1c:f5:e6:58:42:c9:b4:55:55:82:94:e4:58:c9:df:10:bc:8d: 88:a0:54:62:e9:1e:a4:c3:91:76:f5:df:57:52:b9:14:bb:ed: 74:e7:a9:a1:a6:67:c0:41:25:d5:71:b3:02:ae:5d:11:9f:19: c3:2f:33:52:6b:2b:5e:91:19:a8:80:bc:56:4f:61:79:de:c8: 6b:55:d8:88:dc:2a:bd:5d:e0:d2:9f:16:f6:8a:06:27:e2:ae: b6:3c:13:e0:26:76:d6:68:e5:0a:0f:83:f8:e9:5d:81:0f:e9: 6d:7c:7e:ef:35:48:eb:56:e4:30:e4:5f:b1:41:99:43:af:c9: e7:b2:4a:ce:02:84:34:3f:f8:14:9b:0a:f0:c0:44:3f:bd:70: 02:4f:1a:80:4b:45:fd:43:e7:5e:06:3b:e4:84:c0:5f:94:b1: bb:4d:85:69:9e:63:e7:d1:a7:14:fd:06:51:9d:eb:28:73:3e: b6:1e:ea:f4:90:78:02:dd:27:87:a0:02:b2:b7:47:dd:95:68: e6:f9:b7:98:10:be:14:d9:da:1f:a2:2a:c9:bc:2c:a4:d1:22: 7a:9a:c8:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwNTEwMjAwNTU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmYjFhMi00ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFPuQnF52qmt/8IS4w+rxknC+bx429Zk//mycKHsBu1BZq0b+jvCzLthDqYy QZ1KNQ1qpVbTVxQMND3yRi3nBc90TcLjiKJU5Nw9PjYmZYmIOiZJbcYyEYQA1Lqf GphRCW4l5h4FJZMHhNitv1SV1uCJkY1V65h2sSVWnMWgWsO9C3bab0kJ+nPxm7Lz 48oUCxQ7RxhiahZUUEVnp8t3dH42jQGLvx2+AWlxrVkoHxoEXq7H5LVp8eQC7wcm 10oNA2sptyHK7Eb2E8Sws10H3oA/gCCzU/QeBwYqKHwEUZY7DdKlNHZcVrS8rmu9 r9uqEz2PFbWFiAqv9s6qKe4dhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHU3frTQ m0CVTDq9UbMRSLefIynGMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMxQUEvNkM5RDI2MzA3RjIwMTFFQUI1N0Q1NzMyQzRGOUFFMDIvMjIwODUzMDQ3 RjIyMTFFQThFNzMwRjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnNOQwDQYJKoZIhvcNAQELBQADggEBAAREeTkiSvM+e/Qv 3KzZZPVz1WFDy8o/4I8ehLaI0YBpvmzacBz15lhCybRVVYKU5FjJ3xC8jYigVGLp HqTDkXb131dSuRS77XTnqaGmZ8BBJdVxswKuXRGfGcMvM1JrK16RGaiAvFZPYXne yGtV2IjcKr1d4NKfFvaKBifirrY8E+AmdtZo5QoPg/jpXYEP6W18fu81SOtW5DDk X7FBmUOvyeeySs4ChDQ/+BSbCvDARD+9cAJPGoBLRf1D514GO+SEwF+UsbtNhWme Y+fRpxT9BlGd6yhzPrYe6vSQeALdJ4egArK3R92VaOb5t5gQvhTZ2h+iKsm8LKTR InqayGc= -----END CERTIFICATE-----Generated at Sun May 18 06:15:21 2025 by rpki-client