$ rpki-client -vvf rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/BB682E3E81F711EF9D066A30C4F9AE02.roa File: BB682E3E81F711EF9D066A30C4F9AE02.roa (raw, json) Hash identifier: IAKK+mY8HFgS2YSMZrRmCEo9EyVF6c8NsaWFUI1Cy7U= Subject key identifier: 34:C0:DE:F9:E6:D0:22:06:F1:C0:DD:CF:AA:95:F1:F6:D8:AA:D6:09 Certificate issuer: /CN=A916A505/serialNumber=84477A3CF003ABBCBC854E3F40C87CBCF2A158DF Certificate serial: 04DC Authority key identifier: 84:47:7A:3C:F0:03:AB:BC:BC:85:4E:3F:40:C8:7C:BC:F2:A1:58:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEd6PPADq7y8hU4_QMh8vPKhWN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/BB682E3E81F711EF9D066A30C4F9AE02.roa Signing time: Tue 29 Apr 2025 00:35:38 +0000 ROA not before: Tue 29 Apr 2025 00:35:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135512 IP address blocks: 103.131.42.0/24 maxlen: 24 103.131.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/hEd6PPADq7y8hU4_QMh8vPKhWN8.crl rsync://rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/hEd6PPADq7y8hU4_QMh8vPKhWN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEd6PPADq7y8hU4_QMh8vPKhWN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A505, serialNumber=84477A3CF003ABBCBC854E3F40C87CBCF2A158DF Validity Not Before: Apr 29 00:35:38 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68101eda-a98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6e:50:7b:f5:ff:59:e0:9c:22:8c:70:89:5d: 03:32:1f:12:43:a4:7d:93:26:7f:cd:a6:7a:89:a2: 2e:8a:b4:e5:47:b5:71:12:0a:2d:1e:68:2f:c1:da: 35:99:be:9a:d7:7a:5a:98:af:b9:05:d9:21:84:ee: f2:75:e8:81:c9:e8:08:f8:18:14:51:3e:7f:41:b9: 68:8b:51:8b:e6:d6:76:02:0b:48:05:ac:49:ff:47: ae:04:db:79:55:66:5f:f4:4a:a9:fd:f7:8c:43:da: c2:7e:44:7e:76:0f:d0:d3:b4:d0:fa:23:a3:e4:25: c6:33:e6:b0:36:68:b2:25:33:de:c4:23:99:b4:1d: 6c:bc:45:0e:22:79:55:05:a1:27:46:76:e7:66:a5: 40:fa:75:d5:56:66:8c:2a:b1:3d:3c:17:b6:80:36: 91:f3:da:cf:2a:56:75:5f:00:71:8e:d3:49:31:28: 1f:6c:b3:60:a2:06:33:25:74:78:7c:02:2b:81:2a: 75:af:bf:39:cc:66:5b:cd:fb:d8:4a:22:b1:5c:54: 0d:22:46:e7:f8:24:54:76:83:b6:89:7a:ce:8a:06: 42:40:ac:c6:7f:b1:1c:76:95:62:ec:6d:8f:c0:4e: 92:bf:12:f1:95:bd:46:1d:3d:d1:90:e7:df:34:a8: 2a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:C0:DE:F9:E6:D0:22:06:F1:C0:DD:CF:AA:95:F1:F6:D8:AA:D6:09 X509v3 Authority Key Identifier: keyid:84:47:7A:3C:F0:03:AB:BC:BC:85:4E:3F:40:C8:7C:BC:F2:A1:58:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/hEd6PPADq7y8hU4_QMh8vPKhWN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEd6PPADq7y8hU4_QMh8vPKhWN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A505/4A89D56220E511EC9022DD59C4F9AE02/BB682E3E81F711EF9D066A30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.42.0/23 Signature Algorithm: sha256WithRSAEncryption aa:bc:ff:3c:1b:f9:cd:bb:07:08:dc:9d:92:2a:53:b1:08:48: 5d:43:9c:80:2d:eb:d6:1e:fc:6d:e0:c2:62:5f:90:a5:e5:66: d1:ed:04:05:2e:74:de:48:23:8c:2e:6b:4c:11:69:eb:1a:de: b7:02:28:ce:54:57:d0:49:a5:e8:02:68:b8:08:4f:0b:f5:c3: ef:49:ea:81:87:f1:7c:15:2f:e5:d6:b2:cb:9e:65:1c:ed:b0: 1d:40:5d:a4:6e:3e:ca:7e:d9:09:4c:cc:ae:5a:83:7a:64:b0: 2a:a1:59:7c:bf:bb:ff:d4:38:e7:ee:2b:22:49:a0:6d:26:9f: 6a:4c:ed:c3:39:61:b3:f2:fd:88:a5:e2:3d:08:95:85:ce:69: 24:8d:36:bc:00:dd:82:0c:8b:29:9c:5b:e3:c8:9b:e0:f2:88: e5:f4:77:dd:ef:e6:23:81:28:e0:7d:61:77:16:fc:5f:38:49: 89:bc:b7:29:14:d0:48:dc:1b:de:97:20:cb:1d:2b:12:69:58: 51:7b:ca:36:ec:0d:ab:81:f5:e2:03:fd:c5:3d:16:ac:8b:a8: 45:c5:c9:49:5d:c0:fb:de:37:8a:85:2b:a7:3c:2d:e1:68:70: a0:96:a4:00:44:49:0f:4d:3c:71:c9:7a:33:fa:93:98:99:f4: c3:8e:55:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MDUxMTAvBgNVBAUTKDg0NDc3QTNDRjAwM0FCQkNCQzg1NEUzRjQwQzg3Q0JD RjJBMTU4REYwHhcNMjUwNDI5MDAzNTM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMWVkYS1hOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx25Qe/X/WeCcIoxwiV0DMh8SQ6R9kyZ/zaZ6iaIuirTlR7VxEgotHmgvwdo1 mb6a13pamK+5BdkhhO7ydeiByegI+BgUUT5/Qbloi1GL5tZ2AgtIBaxJ/0euBNt5 VWZf9Eqp/feMQ9rCfkR+dg/Q07TQ+iOj5CXGM+awNmiyJTPexCOZtB1svEUOInlV BaEnRnbnZqVA+nXVVmaMKrE9PBe2gDaR89rPKlZ1XwBxjtNJMSgfbLNgogYzJXR4 fAIrgSp1r785zGZbzfvYSiKxXFQNIkbn+CRUdoO2iXrOigZCQKzGf7EcdpVi7G2P wE6SvxLxlb1GHT3RkOffNKgqAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDTA3vnm 0CIG8cDdz6qV8fbYqtYJMB8GA1UdIwQYMBaAFIRHejzwA6u8vIVOP0DIfLzyoVjf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUwNS80QTg5RDU2MjIw RTUxMUVDOTAyMkRENTlDNEY5QUUwMi9oRWQ2UFBBRHE3eThoVTRfUU1oOHZQS2hX TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFZDZQUEFEcTd5OGhVNF9RTWg4dlBLaFdOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE1MDUvNEE4OUQ1NjIyMEU1MTFFQzkwMjJERDU5QzRGOUFFMDIvQkI2ODJFM0U4 MUY3MTFFRjlEMDY2QTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFngyowDQYJKoZIhvcNAQELBQADggEBAKq8/zwb+c27Bwjc nZIqU7EISF1DnIAt69Ye/G3gwmJfkKXlZtHtBAUudN5II4wua0wRaesa3rcCKM5U V9BJpegCaLgITwv1w+9J6oGH8XwVL+XWssueZRztsB1AXaRuPsp+2QlMzK5ag3pk sCqhWXy/u//UOOfuKyJJoG0mn2pM7cM5YbPy/Yil4j0IlYXOaSSNNrwA3YIMiymc W+PIm+DyiOX0d93v5iOBKOB9YXcW/F84SYm8tykU0EjcG96XIMsdKxJpWFF7yjbs DauB9eID/cU9FqyLqEXFyUldwPveN4qFK6c8LeFocKCWpABESQ9NPHHJejP6k5iZ 9MOOVbQ= -----END CERTIFICATE-----Generated at Mon May 12 06:18:25 2025 by rpki-client