$ rpki-client -vvf rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa File: 41DE51D0DF3E11EEBE02E04AC4F9AE02.roa (raw, json) Hash identifier: u8VuvQLywySwcNuZG2wm75kmmpBCDtk/JuLndNmG558= Subject key identifier: D4:E2:81:6F:07:4A:AB:74:B3:FD:E2:2B:B2:63:56:F1:F4:88:EE:8E Certificate issuer: /CN=A915E742/serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Certificate serial: 34B3 Authority key identifier: 60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa Signing time: Fri 20 Jun 2025 15:10:25 +0000 ROA not before: Fri 20 Jun 2025 15:10:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56089 IP address blocks: 103.24.112.0/22 maxlen: 22 114.69.176.0/20 maxlen: 20 175.158.128.0/18 maxlen: 18 202.22.128.0/19 maxlen: 19 202.166.176.0/21 maxlen: 21 203.104.48.0/20 maxlen: 20 2404:2a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13491 (0x34b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E742, serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Validity Not Before: Jun 20 15:10:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685579e1-ddc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:d6:d2:1a:8e:60:b6:f1:09:18:90:e9:68: 73:04:30:5c:7a:4a:a4:fe:c6:00:a7:b5:ae:ef:5e: 0b:d4:89:92:be:b6:bf:e7:e7:5c:a1:83:a7:f5:0f: 28:60:96:7b:ab:a8:fb:9a:1f:32:67:d4:92:64:cf: a3:bd:58:02:e7:70:0b:a4:72:9b:4f:6e:b2:2f:59: da:63:3f:fc:68:4c:2b:a9:bd:ce:b7:d1:36:13:87: 70:02:ed:1b:ff:56:4b:a5:27:d9:9a:7f:dc:39:c6: cc:8c:7a:3d:45:6f:17:33:f9:8d:23:f4:c6:b3:ed: 79:b8:31:e3:27:19:99:f9:88:7c:92:f0:6c:14:0b: 55:bf:df:1f:0e:7f:85:0e:81:7c:55:0b:33:7d:08: c2:23:5c:e8:21:74:08:83:08:7f:ce:b2:af:e9:49: 5c:75:a1:18:61:bb:a3:67:f0:80:97:a3:7f:e4:6d: fc:60:55:fa:98:a7:bf:de:e3:03:51:b6:51:79:40: 98:26:7a:03:52:7d:11:08:e9:7c:4c:4d:98:42:74: 92:b7:78:5e:93:e1:30:97:e7:18:57:8b:c1:ec:6b: 82:98:1f:1b:74:5c:7e:2f:db:82:d6:36:80:f2:6d: 41:24:5a:73:88:05:52:1a:aa:c6:1e:2a:32:72:03: df:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E2:81:6F:07:4A:AB:74:B3:FD:E2:2B:B2:63:56:F1:F4:88:EE:8E X509v3 Authority Key Identifier: keyid:60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.112.0/22 114.69.176.0/20 175.158.128.0/18 202.22.128.0/19 202.166.176.0/21 203.104.48.0/20 IPv6: 2404:2a00::/32 Signature Algorithm: sha256WithRSAEncryption 1c:c9:c0:ba:3e:f2:07:40:d5:73:c0:9c:84:b0:ee:21:e4:d8: 1b:a0:98:c7:39:d0:7a:04:b4:78:4f:43:e2:65:c4:8b:91:af: d8:be:c1:49:35:a1:af:c3:1a:b4:0d:7c:ca:33:fe:8c:b8:dc: d8:e0:a3:4a:ac:a7:9b:d6:52:42:9a:af:ce:c3:50:fd:77:f6: c8:bc:36:0d:d7:46:d0:9d:d9:fc:f5:f2:68:4d:9e:98:3b:68: f6:3e:87:65:5e:70:05:08:4c:cb:40:f6:41:af:a9:fa:e4:21: 1d:5f:68:04:ca:a7:05:a8:b0:8e:9e:02:46:e3:ae:67:37:5e: 6e:2d:b4:c0:9f:f2:e6:db:06:2b:eb:3a:16:5e:80:3a:c0:d1: 35:e5:35:9e:86:1b:4c:70:ea:3c:93:a1:d7:a1:c6:f1:7e:9b: 99:e6:a0:b6:50:9f:20:1c:27:de:a7:5c:68:b7:fd:3f:b2:a8: a0:1e:d7:bf:c8:92:77:0f:15:29:48:36:41:65:b5:18:a6:9a: 25:a3:6c:38:2c:44:00:b5:eb:6d:72:f7:2f:4f:b2:bd:30:34: c0:a1:a7:b6:bf:dd:f8:7e:d1:7d:10:49:75:69:49:2d:e4:70: 0b:a4:48:1a:c5:95:dd:b0:a4:6e:ea:ad:42:00:32:e7:8a:61: ba:bb:74:d9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NDIxMTAvBgNVBAUTKDYwOTdCMzRENjc0MDEzMjgwNjI5Rjg4NUNBOTAzRkQ2 OUFCOTVCRTMwHhcNMjUwNjIwMTUxMDI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1NzllMS1kZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtvW0hqOYLbxCRiQ6WhzBDBcekqk/sYAp7Wu714L1ImSvra/5+dcoYOn9Q8o YJZ7q6j7mh8yZ9SSZM+jvVgC53ALpHKbT26yL1naYz/8aEwrqb3Ot9E2E4dwAu0b /1ZLpSfZmn/cOcbMjHo9RW8XM/mNI/TGs+15uDHjJxmZ+Yh8kvBsFAtVv98fDn+F DoF8VQszfQjCI1zoIXQIgwh/zrKv6UlcdaEYYbujZ/CAl6N/5G38YFX6mKe/3uMD UbZReUCYJnoDUn0RCOl8TE2YQnSSt3hek+Ewl+cYV4vB7GuCmB8bdFx+L9uC1jaA 8m1BJFpziAVSGqrGHioycgPfcwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFNTigW8H Sqt0s/3iK7JjVvH0iO6OMB8GA1UdIwQYMBaAFGCXs01nQBMoBin4hcqQP9aauVvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc0Mi8yRUQwRjVGQzFE ODUxMUUyQjAzMkE5REIwOEIwMkNEMi9ZSmV6VFdkQUV5Z0dLZmlGeXBBXzFwcTVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKZXpUV2RBRXlnR0tmaUZ5cEFfMXBxNVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU3NDIvMkVEMEY1RkMxRDg1MTFFMkIwMzJBOURCMDhCMDJDRDIvNDFERTUxRDBE RjNFMTFFRUJFMDJFMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnGHADBARyRbADBAavnoADBAXKFoADBAPKprADBATLaDAw DQQCAAIwBwMFACQEKgAwDQYJKoZIhvcNAQELBQADggEBABzJwLo+8gdA1XPAnISw 7iHk2BugmMc50HoEtHhPQ+JlxIuRr9i+wUk1oa/DGrQNfMoz/oy43Njgo0qsp5vW UkKar87DUP139si8Ng3XRtCd2fz18mhNnpg7aPY+h2VecAUITMtA9kGvqfrkIR1f aATKpwWosI6eAkbjrmc3Xm4ttMCf8ubbBivrOhZegDrA0TXlNZ6GG0xw6jyTodeh xvF+m5nmoLZQnyAcJ96nXGi3/T+yqKAe17/IkncPFSlINkFltRimmiWjbDgsRAC1 621y9y9Psr0wNMChp7a/3fh+0X0QSXVpSS3kcAukSBrFld2wpG7qrUIAMueKYbq7 dNk= -----END CERTIFICATE-----Generated at Thu Jul 3 13:24:38 2025 by rpki-client