$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa File: 2E7B4D90ACD411EBA8C2F944C4F9AE02.roa (raw, json) Hash identifier: MwOY3BipT7r/AeBZi7pm11RmpGFzpmYVKaT5s//Pc50= Subject key identifier: A9:73:31:20:33:54:9A:A8:51:90:4F:7B:64:61:0E:8B:3E:DC:4E:04 Certificate issuer: /CN=A917C11F/serialNumber=C05AE9534FD39D648C28443C48D511BBA9A8CAFE Certificate serial: 05F2 Authority key identifier: C0:5A:E9:53:4F:D3:9D:64:8C:28:44:3C:48:D5:11:BB:A9:A8:CA:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa Signing time: Wed 14 May 2025 23:13:01 +0000 ROA not before: Wed 14 May 2025 23:13:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142122 IP address blocks: 103.166.152.0/23 maxlen: 23 103.166.152.0/24 maxlen: 24 103.166.153.0/24 maxlen: 24 2001:df6:9480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.crl rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11F, serialNumber=C05AE9534FD39D648C28443C48D511BBA9A8CAFE Validity Not Before: May 14 23:13:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6825237c-a78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:79:36:00:5f:ff:1a:ef:f9:e9:35:46:55:01: e4:49:26:80:66:8e:ec:2f:39:87:10:5b:e4:0a:25: 1c:bf:5c:4b:8d:fd:5a:2d:2c:2d:0e:a2:e8:a7:8b: 6f:da:ce:eb:5f:45:f3:99:b0:e7:2d:a7:2e:b7:80: e9:6c:21:0e:c3:2d:36:33:91:0c:a1:06:b6:dc:0b: 2b:b7:dd:a1:08:42:c1:c7:25:96:6e:b3:bc:ec:31: db:c0:1d:86:78:9a:64:48:b1:70:2c:ee:26:53:44: eb:c0:06:fb:37:9f:6b:f0:d3:21:41:8b:a6:53:6e: cf:3e:93:cc:38:94:67:56:ba:8a:f9:94:2c:4a:2e: 10:fe:78:da:4a:14:28:25:0f:3c:63:59:e2:b6:79: f7:d1:42:52:0d:ea:9e:8a:95:37:01:1c:cc:87:92: 30:91:a1:d1:33:6d:91:81:7e:48:e6:71:d2:7b:cd: a5:f6:00:ee:5b:ec:09:55:3c:5a:49:bc:a6:9f:41: 4a:1d:15:16:de:2e:e7:5b:66:55:3f:2a:67:83:97: 7e:26:58:86:ec:ea:6a:a4:39:ae:8e:9c:d8:b0:6e: ac:50:e8:14:85:b5:28:e7:91:bf:92:76:fe:02:1c: 67:27:c0:1d:77:3a:cf:f5:85:e9:9f:9b:2b:5b:fe: ab:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:73:31:20:33:54:9A:A8:51:90:4F:7B:64:61:0E:8B:3E:DC:4E:04 X509v3 Authority Key Identifier: keyid:C0:5A:E9:53:4F:D3:9D:64:8C:28:44:3C:48:D5:11:BB:A9:A8:CA:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/wFrpU0_TnWSMKEQ8SNURu6moyv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFrpU0_TnWSMKEQ8SNURu6moyv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11F/9E88AE18ACD211EB98FE6940C4F9AE02/2E7B4D90ACD411EBA8C2F944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.152.0/23 IPv6: 2001:df6:9480::/48 Signature Algorithm: sha256WithRSAEncryption 4b:fc:48:cb:ea:a7:74:cc:ce:e1:b2:f5:1f:fe:01:e6:a5:3a: f3:f8:24:85:01:16:6d:45:cf:74:98:2a:cd:68:cc:a5:2a:cf: b4:8c:81:1e:b8:c5:73:7b:ad:6a:4b:a4:7a:8d:cf:04:31:d9: 76:65:2b:b5:ba:39:fa:9d:bf:64:2a:84:9b:fb:62:38:e3:67: 82:d2:a6:b9:a7:13:2b:7e:32:cf:22:5e:55:ac:5a:11:d4:69: 5b:c7:14:f6:a5:a5:c6:12:69:e2:c9:29:2c:e5:d5:bf:63:80: 44:dd:c9:d4:19:ed:f7:3d:0e:59:cb:21:23:b5:6e:05:6e:10: a7:a4:2a:3c:bd:d5:0c:6a:a2:0a:37:90:ec:89:2b:01:37:7e: f7:c6:e8:ad:96:7b:82:0f:a1:65:6b:e7:dd:84:fc:6b:4b:a5: dc:43:4a:7c:67:98:00:1b:b0:fc:16:e1:ab:94:08:5a:2c:32: 90:9d:6d:65:3e:25:83:14:f5:03:30:2d:4c:80:de:26:dc:68: 5c:d8:72:87:61:b2:27:e7:b0:ac:09:a3:2e:c4:96:ee:e1:9b: 9c:fd:2d:3a:32:47:cf:72:ec:09:6d:f1:68:2d:dd:67:92:3e: e6:57:08:c2:70:df:e5:10:ea:68:29:c8:9e:c8:98:1e:57:a2: ae:53:c6:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUYxMTAvBgNVBAUTKEMwNUFFOTUzNEZEMzlENjQ4QzI4NDQzQzQ4RDUxMUJC QTlBOENBRkUwHhcNMjUwNTE0MjMxMzAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MjM3Yy1hNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Xk2AF//Gu/56TVGVQHkSSaAZo7sLzmHEFvkCiUcv1xLjf1aLSwtDqLop4tv 2s7rX0XzmbDnLacut4DpbCEOwy02M5EMoQa23Asrt92hCELBxyWWbrO87DHbwB2G eJpkSLFwLO4mU0TrwAb7N59r8NMhQYumU27PPpPMOJRnVrqK+ZQsSi4Q/njaShQo JQ88Y1nitnn30UJSDeqeipU3ARzMh5IwkaHRM22RgX5I5nHSe82l9gDuW+wJVTxa Sbymn0FKHRUW3i7nW2ZVPypng5d+JliG7OpqpDmujpzYsG6sUOgUhbUo55G/knb+ AhxnJ8AddzrP9YXpn5srW/6rNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKlzMSAz VJqoUZBPe2RhDos+3E4EMB8GA1UdIwQYMBaAFMBa6VNP051kjChEPEjVEbupqMr+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExRi85RTg4QUUxOEFD RDIxMUVCOThGRTY5NDBDNEY5QUUwMi93RnJwVTBfVG5XU01LRVE4U05VUnU2bW95 djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dGcnBVMF9UbldTTUtFUThTTlVSdTZtb3l2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MxMUYvOUU4OEFFMThBQ0QyMTFFQjk4RkU2OTQwQzRGOUFFMDIvMkU3QjREOTBB Q0Q0MTFFQkE4QzJGOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnppgwDwQCAAIwCQMHACABDfaUgDANBgkqhkiG9w0BAQsF AAOCAQEAS/xIy+qndMzO4bL1H/4B5qU68/gkhQEWbUXPdJgqzWjMpSrPtIyBHrjF c3utakukeo3PBDHZdmUrtbo5+p2/ZCqEm/tiOONngtKmuacTK34yzyJeVaxaEdRp W8cU9qWlxhJp4skpLOXVv2OARN3J1Bnt9z0OWcshI7VuBW4Qp6QqPL3VDGqiCjeQ 7IkrATd+98borZZ7gg+hZWvn3YT8a0ul3ENKfGeYABuw/Bbhq5QIWiwykJ1tZT4l gxT1AzAtTIDeJtxoXNhyh2GyJ+ewrAmjLsSW7uGbnP0tOjJHz3LsCW3xaC3dZ5I+ 5lcIwnDf5RDqaCnInsiYHleirlPGDA== -----END CERTIFICATE-----Generated at Sat May 17 16:44:14 2025 by rpki-client