$ rpki-client -vvf rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/7D1F1FBEFB6611EFB1FB024BC4F9AE02.roa File: 7D1F1FBEFB6611EFB1FB024BC4F9AE02.roa (raw, json) Hash identifier: dZ19lJ/LmfvsUh9I1/K0IKSV94UgWGsaBqWt/Z2oGKI= Subject key identifier: 22:15:CB:B7:07:D5:FA:9B:B2:AE:FE:3A:0E:45:47:E9:EB:6D:BC:A0 Certificate issuer: /CN=A916B974/serialNumber=90B2F12BE7A58663BF15DC717E7D40B30241B8EA Certificate serial: 25 Authority key identifier: 90:B2:F1:2B:E7:A5:86:63:BF:15:DC:71:7E:7D:40:B3:02:41:B8:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLLxK-elhmO_Fdxxfn1AswJBuOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/7D1F1FBEFB6611EFB1FB024BC4F9AE02.roa Signing time: Fri 09 May 2025 07:01:19 +0000 ROA not before: Fri 09 May 2025 07:01:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135357 IP address blocks: 43.240.144.0/22 maxlen: 22 43.240.144.0/24 maxlen: 24 43.240.145.0/24 maxlen: 24 43.240.146.0/24 maxlen: 24 43.240.147.0/24 maxlen: 24 103.215.48.0/22 maxlen: 22 103.215.48.0/24 maxlen: 24 103.215.49.0/24 maxlen: 24 103.215.50.0/24 maxlen: 24 103.215.51.0/24 maxlen: 24 144.48.220.0/22 maxlen: 22 144.48.220.0/24 maxlen: 24 144.48.221.0/24 maxlen: 24 144.48.222.0/24 maxlen: 24 144.48.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/kLLxK-elhmO_Fdxxfn1AswJBuOo.crl rsync://rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/kLLxK-elhmO_Fdxxfn1AswJBuOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLLxK-elhmO_Fdxxfn1AswJBuOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B974, serialNumber=90B2F12BE7A58663BF15DC717E7D40B30241B8EA Validity Not Before: May 9 07:01:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681da83e-c4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:07:26:86:60:81:d3:a3:71:1c:13:8e:a3: dc:9d:d6:2b:d8:71:03:5f:a6:60:03:01:94:59:7a: 33:a7:1d:f9:6e:bc:f1:ba:1d:74:47:11:69:ab:ab: 9f:6e:f9:42:d3:f3:1f:5c:67:e2:2f:14:ee:41:69: 18:ef:04:93:7c:bb:6c:2e:63:c4:f0:dc:a6:64:c2: 99:03:71:ab:23:e7:2f:28:cb:45:fe:e8:35:51:34: 03:8d:0c:a7:2a:b4:63:0f:b5:04:77:4c:d3:76:25: df:28:60:cb:3d:34:9c:a2:5c:97:49:0e:40:75:97: 37:bd:71:f4:1e:5e:80:ca:19:63:c2:11:ef:8a:1f: 7a:51:c8:68:63:14:5e:73:88:8e:18:0e:8d:d3:ec: c8:1e:1b:5d:da:9c:b5:e5:00:06:0a:24:a5:80:9f: 2b:de:5d:48:b8:ef:b2:0a:6a:6d:09:18:c7:36:00: 0f:f0:38:a0:03:c7:75:75:e1:7b:87:0b:aa:17:b7: 2c:96:db:08:81:24:34:95:bc:e8:fe:00:0f:d7:03: 24:e5:37:91:14:6e:ce:0f:72:ac:9b:1c:c7:95:16: 8f:4c:59:11:b1:ac:ad:36:03:13:59:c9:b1:90:ab: 2f:f6:ad:d7:55:66:72:5c:c4:7c:20:84:03:0b:18: 2a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:15:CB:B7:07:D5:FA:9B:B2:AE:FE:3A:0E:45:47:E9:EB:6D:BC:A0 X509v3 Authority Key Identifier: keyid:90:B2:F1:2B:E7:A5:86:63:BF:15:DC:71:7E:7D:40:B3:02:41:B8:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/kLLxK-elhmO_Fdxxfn1AswJBuOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLLxK-elhmO_Fdxxfn1AswJBuOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B974/E4E8900EFB6511EF9BBAEE49C4F9AE02/7D1F1FBEFB6611EFB1FB024BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.240.144.0/22 103.215.48.0/22 144.48.220.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:12:23:2a:e9:29:85:f9:08:66:2e:ab:93:d9:64:88:6f:ac: 24:45:f8:34:30:5a:a5:fe:1f:e5:42:f7:4b:7b:97:fd:89:17: 6d:46:94:2b:6a:fd:4a:cd:9b:66:b9:88:e2:ac:b9:29:b0:3f: 9b:55:05:ec:0e:bf:8d:91:4f:03:23:34:c1:3b:2a:99:ce:3d: 4d:67:1d:d5:2a:91:7c:2d:8c:22:be:d0:49:0d:75:fa:11:fd: 8b:af:df:1e:37:1d:5a:25:86:84:4d:71:ec:18:24:e2:3d:1a: 96:ba:50:03:ed:8e:c7:75:f1:88:ba:fa:ff:f1:f4:4f:10:59: 01:ff:bd:b3:e5:b5:a0:73:7e:68:6e:de:d6:14:4b:1c:1c:96: a6:63:2e:61:4c:15:47:81:7a:1e:dc:16:eb:0e:91:0a:2b:37: f6:5d:94:64:68:4c:2f:7b:e5:65:0f:8b:0a:56:04:df:b1:af: 04:ab:2e:c2:64:00:ba:7c:fe:e9:00:e1:73:64:ad:4e:20:f9: fa:10:b7:77:4f:d0:82:3d:e8:b2:17:76:0e:de:10:00:f4:e8: 58:09:a4:76:38:02:dd:63:63:25:97:af:26:27:57:1b:4f:65: 9e:f6:13:ff:37:5c:3b:13:ce:80:ef:41:d2:cb:00:7a:69:0c: 11:ba:4c:ad -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Qjk3NDExMC8GA1UEBRMoOTBCMkYxMkJFN0E1ODY2M0JGMTVEQzcxN0U3RDQwQjMw MjQxQjhFQTAeFw0yNTA1MDkwNzAxMTlaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWRhODNlLWM0ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbmwcmhmCB06NxHBOOo9yd1ivYcQNfpmADAZRZejOnHfluvPG6HXRHEWmrq59u +ULT8x9cZ+IvFO5BaRjvBJN8u2wuY8Tw3KZkwpkDcasj5y8oy0X+6DVRNAONDKcq tGMPtQR3TNN2Jd8oYMs9NJyiXJdJDkB1lze9cfQeXoDKGWPCEe+KH3pRyGhjFF5z iI4YDo3T7MgeG13anLXlAAYKJKWAnyveXUi477IKam0JGMc2AA/wOKADx3V14XuH C6oXtyyW2wiBJDSVvOj+AA/XAyTlN5EUbs4PcqybHMeVFo9MWRGxrK02AxNZybGQ qy/2rddVZnJcxHwghAMLGCr/AgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUIhXLtwfV +puyrv46DkVH6ettvKAwHwYDVR0jBBgwFoAUkLLxK+elhmO/Fdxxfn1AswJBuOow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCOTc0L0U0RTg5MDBFRkI2 NTExRUY5QkJBRUU0OUM0RjlBRTAyL2tMTHhLLWVsaG1PX0ZkeHhmbjFBc3dKQnVP by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0xMeEstZWxobU9fRmR4eGZuMUFzd0pCdU9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk3NC9FNEU4OTAwRUZCNjUxMUVGOUJCQUVFNDlDNEY5QUUwMi83RDFGMUZCRUZC NjYxMUVGQjFGQjAyNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAivwkAMEAmfXMAMEApAw3DANBgkqhkiG9w0BAQsFAAOCAQEA KxIjKukphfkIZi6rk9lkiG+sJEX4NDBapf4f5UL3S3uX/YkXbUaUK2r9Ss2bZrmI 4qy5KbA/m1UF7A6/jZFPAyM0wTsqmc49TWcd1SqRfC2MIr7QSQ11+hH9i6/fHjcd WiWGhE1x7Bgk4j0alrpQA+2Ox3XxiLr6//H0TxBZAf+9s+W1oHN+aG7e1hRLHByW pmMuYUwVR4F6HtwW6w6RCis39l2UZGhML3vlZQ+LClYE37GvBKsuwmQAunz+6QDh c2StTiD5+hC3d0/Qgj3oshd2Dt4QAPToWAmkdjgC3WNjJZevJidXG09lnvYT/zdc OxPOgO9B0ssAemkMEbpMrQ== -----END CERTIFICATE-----Generated at Thu May 15 12:23:04 2025 by rpki-client