$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/D4EFA44673CD11EA8BE69127C4F9AE02.roa File: D4EFA44673CD11EA8BE69127C4F9AE02.roa (raw, json) Hash identifier: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8= Subject key identifier: 3B:6C:C7:4F:88:77:D3:D4:15:58:1F:7A:C0:39:29:E0:6D:18:47:7C Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0A93 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/D4EFA44673CD11EA8BE69127C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:39 +0000 ROA not before: Wed 30 Apr 2025 19:29:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4785 IP address blocks: 103.150.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:29:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a22-ef78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f6:f6:fb:07:e2:a4:6f:f2:3d:17:26:14:7c: dd:c5:3f:8d:90:d0:55:a1:4e:33:44:db:81:dd:2e: 82:52:c1:56:2b:c7:64:29:0b:45:cf:5c:5a:82:a8: c2:18:d7:58:77:27:05:81:9c:6f:81:15:7c:e4:65: 90:1b:7a:a7:e5:f3:39:a6:b1:26:e5:2e:04:e9:15: c5:b0:75:4f:b7:d4:cd:f5:de:d2:3a:5d:47:a8:b9: de:65:1d:3c:3b:22:f8:f5:a4:3c:07:40:0e:86:65: 9a:ec:87:14:2c:c0:aa:a6:7b:53:0a:99:2c:53:c9: 0e:f7:d5:ab:48:18:d3:9c:b8:c0:ec:66:85:93:86: 64:1e:91:62:0e:51:85:36:86:8f:30:47:85:ee:07: 9d:1f:48:de:be:5d:fb:43:8b:b8:40:bf:5c:3c:8f: ae:b3:82:82:83:f3:21:fa:29:3e:b3:33:7f:52:fc: b6:d4:ff:4b:4f:d0:8f:df:0d:be:57:3d:fe:0f:55: 1f:ce:71:88:02:dd:fe:a6:bb:7a:d2:1e:b4:84:a5: 66:93:a5:00:a3:37:c0:24:1f:4f:86:9f:9e:ba:e2: 8f:fc:ed:65:c6:b3:68:f1:42:62:92:3a:fe:e3:9e: c4:83:9d:ae:2d:6b:33:fc:ee:13:74:97:db:9a:11: b3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6C:C7:4F:88:77:D3:D4:15:58:1F:7A:C0:39:29:E0:6D:18:47:7C X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/D4EFA44673CD11EA8BE69127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.8.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:c7:aa:ec:56:d8:cd:9c:fb:c7:77:ff:78:32:d8:02:79:22: dd:c1:9c:78:60:c4:f3:24:bc:7b:ad:4f:76:ce:81:62:a9:92: 67:fb:73:df:f1:ab:5d:99:a9:ac:6c:2d:3b:20:4a:0d:5f:cb: e7:18:15:66:f9:32:43:73:cc:14:33:77:f5:e8:2f:fd:d1:60: 92:90:15:92:fd:36:35:bb:8e:cb:46:96:cf:22:19:ce:78:ae: 98:77:ac:71:25:8b:f8:a0:89:c5:df:43:95:dc:5b:e4:97:6a: 38:a5:4d:67:49:e6:fa:bf:dc:f6:3e:ee:7f:03:1a:e0:5f:f6: e5:e0:79:ff:37:47:e4:c3:4b:06:cb:41:25:e6:fb:7d:a2:86: b7:d3:c2:f9:04:ab:47:15:ba:ae:59:76:1c:08:ba:9c:33:8c: ed:dc:1a:c3:10:c8:a6:75:58:40:f5:cb:b1:dc:30:87:d2:9c: 5a:bd:c1:11:2b:64:c5:4d:96:7c:da:c6:1c:03:ff:9c:db:46: 67:36:1d:54:47:3a:5e:53:3e:52:0a:b2:27:54:7b:79:3e:0c: 51:a6:aa:0e:c1:83:4c:54:ee:09:5f:9c:3c:c7:6b:59:58:ba: ad:5d:db:98:a5:f5:10:e8:b5:00:88:32:63:65:63:67:3f:74: ea:22:f9:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNDMwMTkyOTM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyMi1lZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pb2+wfipG/yPRcmFHzdxT+NkNBVoU4zRNuB3S6CUsFWK8dkKQtFz1xagqjC GNdYdycFgZxvgRV85GWQG3qn5fM5prEm5S4E6RXFsHVPt9TN9d7SOl1HqLneZR08 OyL49aQ8B0AOhmWa7IcULMCqpntTCpksU8kO99WrSBjTnLjA7GaFk4ZkHpFiDlGF NoaPMEeF7gedH0jevl37Q4u4QL9cPI+us4KCg/Mh+ik+szN/Uvy21P9LT9CP3w2+ Vz3+D1UfznGIAt3+prt60h60hKVmk6UAozfAJB9Php+euuKP/O1lxrNo8UJikjr+ 457Eg52uLWsz/O4TdJfbmhGzGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDtsx0+I d9PUFVgfesA5KeBtGEd8MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvRDRFRkE0NDY3 M0NEMTFFQThCRTY5MTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlggwDQYJKoZIhvcNAQELBQADggEBAHzHquxW2M2c+8d3 /3gy2AJ5It3BnHhgxPMkvHutT3bOgWKpkmf7c9/xq12ZqaxsLTsgSg1fy+cYFWb5 MkNzzBQzd/XoL/3RYJKQFZL9NjW7jstGls8iGc54rph3rHEli/igicXfQ5XcW+SX ajilTWdJ5vq/3PY+7n8DGuBf9uXgef83R+TDSwbLQSXm+32ihrfTwvkEq0cVuq5Z dhwIupwzjO3cGsMQyKZ1WED1y7HcMIfSnFq9wRErZMVNlnzaxhwD/5zbRmc2HVRH Ol5TPlIKsidUe3k+DFGmqg7Bg0xU7glfnDzHa1lYuq1d25il9RDotQCIMmNlY2c/ dOoi+Y4= -----END CERTIFICATE-----Generated at Fri May 16 05:59:34 2025 by rpki-client