$ rpki-client -vvf rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/B029CB28E36C11EF876EED6BC4F9AE02.roa File: B029CB28E36C11EF876EED6BC4F9AE02.roa (raw, json) Hash identifier: kqIHhnyQRZgC6uZsf+ZFH/e2inqR4T8P11HCshy3cfc= Subject key identifier: E6:78:35:DC:C8:00:F1:56:FC:37:33:42:50:3A:65:7A:04:A5:68:B8 Certificate issuer: /CN=A918664E/serialNumber=4C05BA8935E8DF3CC23250B567F2056B850715B9 Certificate serial: 01BF Authority key identifier: 4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/B029CB28E36C11EF876EED6BC4F9AE02.roa Signing time: Tue 29 Apr 2025 04:09:44 +0000 ROA not before: Tue 29 Apr 2025 04:09:44 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 24499 IP address blocks: 103.122.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.crl rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918664E, serialNumber=4C05BA8935E8DF3CC23250B567F2056B850715B9 Validity Not Before: Apr 29 04:09:44 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=68105108-0c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:47:39:4e:06:cb:86:4c:3d:1d:3d:83:7c:7e: 87:ee:f9:b1:c9:29:f9:20:1a:0c:c1:f7:bc:82:4e: b8:36:b0:f9:e7:42:7c:0d:9d:e2:87:78:10:7b:5d: d1:fb:b0:a4:2a:ad:b5:c1:8b:79:57:4c:86:5e:3d: 4d:65:fb:1f:8a:73:71:e5:d3:0e:46:27:fb:81:33: 39:74:94:9a:38:c2:8e:1b:c9:15:16:1b:28:c9:5f: 3c:63:1a:b6:be:0e:e0:7d:ca:27:a2:32:42:a9:cb: 24:c7:dc:59:8c:b4:23:7f:f4:23:e2:da:0d:0d:af: 8c:a1:66:c2:c7:b0:a1:4e:3d:c1:80:58:5f:0b:42: 74:66:25:2f:78:6b:84:3a:e8:34:df:70:d8:2f:11: df:f4:ac:ba:fa:33:43:45:ea:19:25:3d:65:ac:ca: 34:2e:b3:30:c6:bd:34:23:2d:a2:30:cb:e5:d6:47: ad:57:e5:5e:d7:09:a8:95:78:35:1a:da:34:a9:a5: d0:e2:76:8b:05:b7:79:1f:26:33:23:05:8e:47:34: e8:25:e2:e8:56:4e:d0:43:83:ec:21:9d:7e:63:21: 1a:4f:a8:9a:7d:34:7c:6c:e1:de:6d:ce:87:1d:0f: c0:78:0b:ef:70:2e:fb:f9:db:76:bb:ce:1d:18:5e: b9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:78:35:DC:C8:00:F1:56:FC:37:33:42:50:3A:65:7A:04:A5:68:B8 X509v3 Authority Key Identifier: keyid:4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/B029CB28E36C11EF876EED6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.223.0/24 Signature Algorithm: sha256WithRSAEncryption e2:a5:51:2a:9a:76:a3:fe:c3:87:f5:a7:ea:28:a4:2e:98:0a: 7f:21:9e:56:98:05:1d:bc:0e:ae:6b:ef:74:2e:c5:26:31:4f: b8:b2:5e:82:0d:ba:f1:2e:4f:fb:67:85:e6:30:cc:75:05:5b: ea:60:86:36:2e:d1:62:10:14:b5:88:c0:fc:ad:f2:55:25:98: 89:09:f3:9d:c2:6b:07:cc:fb:7a:7e:47:02:5d:54:99:69:84: 46:73:e3:86:9c:af:31:ad:97:d0:e1:f3:03:7f:98:53:a0:6f: bb:a5:c5:12:10:00:c8:33:80:05:57:94:e7:ba:2d:b5:3b:87: 52:8b:50:6b:5c:67:4f:01:70:56:b4:36:11:cb:47:fa:85:53: f3:2a:06:7f:86:af:7d:ea:7b:56:cc:5e:10:88:d7:c4:4d:2f: a2:9e:71:cd:3b:0d:8e:7d:c6:8f:cc:1b:8e:c4:a6:0f:ae:3f: 41:69:46:72:ab:5e:63:38:19:3e:3f:75:14:3d:b8:91:37:ae: da:b5:e3:07:4a:9d:73:df:8c:8b:cf:5d:34:67:91:c6:15:f5: 38:de:95:79:ea:f7:52:97:72:ce:71:13:f9:f3:0e:5e:61:8c: ca:5b:96:06:22:3e:74:be:af:1d:f1:fd:4a:f8:83:81:42:ec: aa:b7:4c:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY2NEUxMTAvBgNVBAUTKDRDMDVCQTg5MzVFOERGM0NDMjMyNTBCNTY3RjIwNTZC ODUwNzE1QjkwHhcNMjUwNDI5MDQwOTQ0WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNTEwOC0wYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kc5TgbLhkw9HT2DfH6H7vmxySn5IBoMwfe8gk64NrD550J8DZ3ih3gQe13R +7CkKq21wYt5V0yGXj1NZfsfinNx5dMORif7gTM5dJSaOMKOG8kVFhsoyV88Yxq2 vg7gfconojJCqcskx9xZjLQjf/Qj4toNDa+MoWbCx7ChTj3BgFhfC0J0ZiUveGuE Oug033DYLxHf9Ky6+jNDReoZJT1lrMo0LrMwxr00Iy2iMMvl1ketV+Ve1wmolXg1 Gto0qaXQ4naLBbd5HyYzIwWORzToJeLoVk7QQ4PsIZ1+YyEaT6iafTR8bOHebc6H HQ/AeAvvcC77+dt2u84dGF65OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOZ4NdzI APFW/DczQlA6ZXoEpWi4MB8GA1UdIwQYMBaAFEwFuok16N88wjJQtWfyBWuFBxW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY0RS9ERjkwMEUzNkNF RTIxMUVEQTQxQzM4MUNDNEY5QUUwMi9UQVc2aVRYbzN6ekNNbEMxWl9JRmE0VUhG YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBVzZpVFhvM3p6Q01sQzFaX0lGYTRVSEZiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY2NEUvREY5MDBFMzZDRUUyMTFFREE0MUMzODFDQzRGOUFFMDIvQjAyOUNCMjhF MzZDMTFFRjg3NkVFRDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnet8wDQYJKoZIhvcNAQELBQADggEBAOKlUSqadqP+w4f1 p+oopC6YCn8hnlaYBR28Dq5r73QuxSYxT7iyXoINuvEuT/tnheYwzHUFW+pghjYu 0WIQFLWIwPyt8lUlmIkJ853CawfM+3p+RwJdVJlphEZz44acrzGtl9Dh8wN/mFOg b7ulxRIQAMgzgAVXlOe6LbU7h1KLUGtcZ08BcFa0NhHLR/qFU/MqBn+Gr33qe1bM XhCI18RNL6Kecc07DY59xo/MG47Epg+uP0FpRnKrXmM4GT4/dRQ9uJE3rtq14wdK nXPfjIvPXTRnkcYV9TjelXnq91KXcs5xE/nzDl5hjMpblgYiPnS+rx3x/Ur4g4FC 7Kq3THE= -----END CERTIFICATE-----Generated at Sun May 11 22:39:42 2025 by rpki-client