$ rpki-client -vvf rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/2B06C42E490511EB9EF9E26EC4F9AE02.roa File: 2B06C42E490511EB9EF9E26EC4F9AE02.roa (raw, json) Hash identifier: PCxmJRyY/K6FYzo+fIiVv0hSIrRBsvJc+O88AB7+hu0= Subject key identifier: D8:58:39:CC:DB:94:E5:1D:66:48:EB:E8:9F:FE:AF:9D:86:BA:E5:85 Certificate issuer: /CN=A916A703/serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Certificate serial: 06F1 Authority key identifier: 72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/2B06C42E490511EB9EF9E26EC4F9AE02.roa Signing time: Wed 14 May 2025 22:30:37 +0000 ROA not before: Wed 14 May 2025 22:30:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139012 IP address blocks: 103.138.124.0/23 maxlen: 23 103.138.124.0/24 maxlen: 24 103.138.125.0/24 maxlen: 24 2404:cd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A703, serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Validity Not Before: May 14 22:30:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825198c-3735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b3:86:18:36:fe:2f:87:64:13:c3:dc:61:4c: 12:da:44:66:23:19:62:05:d8:7c:27:69:7a:37:0f: dd:83:1d:d7:97:db:af:8b:94:c3:cd:a7:98:0a:02: 16:92:4b:db:66:63:b8:39:63:00:f1:d1:7d:f2:e1: cf:1b:78:5f:42:a3:fc:98:68:d7:27:0a:d2:b3:06: 55:0f:59:52:73:34:80:33:e6:69:f3:c2:bc:32:8d: 72:e4:30:d4:ed:78:76:79:9e:f4:9b:d4:3e:60:92: 0c:03:f0:78:10:e1:7c:b2:55:49:86:e8:ee:bc:6d: 8d:35:2f:7d:ce:70:ae:27:7e:4d:b8:b0:5c:aa:45: af:46:23:af:82:39:a8:d2:e5:0e:bd:4d:88:15:ee: 24:bb:85:6e:ab:b3:c2:24:da:05:03:89:9c:ee:52: 10:64:94:5e:7f:11:1f:3a:2b:1c:0a:a6:06:e8:a2: cf:98:c3:84:ec:d8:d4:ac:2c:af:10:02:6d:d8:5f: 48:4b:fb:58:56:cc:bc:b2:55:86:69:35:1b:09:9d: ac:72:03:1e:ae:84:83:79:ba:b6:56:0c:ad:f9:2e: 9f:f5:cf:08:94:45:07:c0:72:f5:f4:de:3a:12:d2: 27:9f:e2:c6:be:08:d3:ad:9d:6f:08:d9:26:50:e8: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:58:39:CC:DB:94:E5:1D:66:48:EB:E8:9F:FE:AF:9D:86:BA:E5:85 X509v3 Authority Key Identifier: keyid:72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/2B06C42E490511EB9EF9E26EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.124.0/23 IPv6: 2404:cd40::/32 Signature Algorithm: sha256WithRSAEncryption 69:35:f8:4e:a8:76:e2:9e:b8:24:4a:b0:b0:fa:6c:e7:2e:31: 76:23:0a:07:f7:62:4a:bf:29:4c:12:3c:13:ca:68:57:38:94: 5a:3c:23:c3:e9:55:60:47:11:29:36:0b:80:57:78:19:e6:1a: 2a:7b:ee:91:f6:89:7a:2c:d3:4f:6d:74:37:ce:d4:64:7a:3b: 1d:aa:7e:38:9a:00:cd:41:e8:b9:ff:8e:08:93:e7:76:3d:ff: 93:fe:23:e9:a3:df:b2:cd:a2:9e:bb:47:00:02:dd:b5:ea:ca: fe:aa:ca:7c:65:85:b0:f5:7d:93:a5:20:0d:28:a1:88:32:b4: 03:db:23:35:18:21:42:00:45:53:4e:d6:c7:08:99:de:ef:43: 67:d7:20:cc:16:5b:c3:71:29:af:9c:2e:d2:fb:a8:69:f2:da: 12:4b:b9:6b:d8:0e:14:67:33:8f:94:f4:0c:fe:4f:86:3f:e1: 18:17:ab:64:03:a5:f1:1a:fd:09:59:fd:ce:8f:da:cf:6f:4d: f8:24:bf:ed:57:41:0c:90:ac:9c:64:da:0f:eb:af:a3:f3:71: 33:ae:dd:c2:6d:c1:63:3b:ce:fd:f3:17:89:26:25:1b:3a:d7: 39:42:f2:d7:5e:5a:32:2f:89:7b:71:97:b8:72:d5:89:6f:8d: 3e:7e:1b:0b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE3MDMxMTAvBgNVBAUTKDcyQTE5RjZCQUZBNkVFRUU2NkRDM0IxQTZDNjc4MjJF NTMzMENGNzgwHhcNMjUwNTE0MjIzMDM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MTk4Yy0zNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7OGGDb+L4dkE8PcYUwS2kRmIxliBdh8J2l6Nw/dgx3Xl9uvi5TDzaeYCgIW kkvbZmO4OWMA8dF98uHPG3hfQqP8mGjXJwrSswZVD1lSczSAM+Zp88K8Mo1y5DDU 7Xh2eZ70m9Q+YJIMA/B4EOF8slVJhujuvG2NNS99znCuJ35NuLBcqkWvRiOvgjmo 0uUOvU2IFe4ku4Vuq7PCJNoFA4mc7lIQZJRefxEfOiscCqYG6KLPmMOE7NjUrCyv EAJt2F9IS/tYVsy8slWGaTUbCZ2scgMeroSDebq2Vgyt+S6f9c8IlEUHwHL19N46 EtInn+LGvgjTrZ1vCNkmUOhbYQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNhYOczb lOUdZkjr6J/+r52GuuWFMB8GA1UdIwQYMBaAFHKhn2uvpu7uZtw7Gmxngi5TMM94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTcwMy83QzgzQkRFQTQ5 MDMxMUVCODQ0N0IyNkJDNEY5QUUwMi9jcUdmYTYtbTd1NW0zRHNhYkdlQ0xsTXd6 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxR2ZhNi1tN3U1bTNEc2FiR2VDTGxNd3ozZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE3MDMvN0M4M0JERUE0OTAzMTFFQjg0NDdCMjZCQzRGOUFFMDIvMkIwNkM0MkU0 OTA1MTFFQjlFRjlFMjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFninwwDQQCAAIwBwMFACQEzUAwDQYJKoZIhvcNAQELBQAD ggEBAGk1+E6oduKeuCRKsLD6bOcuMXYjCgf3Ykq/KUwSPBPKaFc4lFo8I8PpVWBH ESk2C4BXeBnmGip77pH2iXos009tdDfO1GR6Ox2qfjiaAM1B6Ln/jgiT53Y9/5P+ I+mj37LNop67RwAC3bXqyv6qynxlhbD1fZOlIA0ooYgytAPbIzUYIUIARVNO1scI md7vQ2fXIMwWW8NxKa+cLtL7qGny2hJLuWvYDhRnM4+U9Az+T4Y/4RgXq2QDpfEa /QlZ/c6P2s9vTfgkv+1XQQyQrJxk2g/rr6PzcTOu3cJtwWM7zv3zF4kmJRs61zlC 8tdeWjIviXtxl7hy1YlvjT5+Gws= -----END CERTIFICATE-----Generated at Thu May 15 16:06:16 2025 by rpki-client