$ rpki-client -vvf rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa File: 3DF6459A772511EEA2E37420C4F9AE02.roa (raw, json) Hash identifier: XP3+VtULxNMC516dv5hcQ2JtVHA6oyJ/06WzO92KEp8= Subject key identifier: DF:43:E5:86:70:E4:BF:7C:82:6F:4A:4B:7D:D5:CF:7C:83:45:C1:1E Certificate issuer: /CN=A918A56A/serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Certificate serial: 012B Authority key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa Signing time: Fri 09 May 2025 04:24:56 +0000 ROA not before: Fri 09 May 2025 04:24:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151049 IP address blocks: 103.121.64.0/23 maxlen: 23 103.121.64.0/24 maxlen: 24 103.121.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A56A, serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Validity Not Before: May 9 04:24:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d8398-30a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c4:3d:06:09:41:43:0f:06:33:cd:ef:f9:2b: 35:18:80:3f:9b:ae:73:6f:70:ec:b4:c2:6e:c3:7e: 19:3f:4f:21:79:ab:9c:1f:33:3b:da:94:ab:77:d3: 35:f2:80:7f:57:99:54:20:b9:ca:83:70:c2:d9:0c: 9b:e6:d3:3f:e6:a8:c6:8c:c7:fe:5a:c3:51:0d:b2: 6f:8f:ef:b0:0e:a9:13:45:78:5b:9c:9f:cb:e4:b9: 47:ea:3d:fa:62:dc:55:b3:ba:33:53:f5:c9:ef:80: 75:e6:a6:59:81:af:6e:27:b9:d7:67:b3:a2:89:3b: d6:36:06:4a:43:6a:8b:7a:1c:da:c9:62:8f:16:90: 93:df:bd:83:27:e5:b0:f5:50:3c:91:2f:3c:a5:e4: 30:81:d4:f5:15:df:23:ef:a7:fc:ab:41:38:ae:f4: 48:0d:07:4f:47:c8:b7:04:78:35:ca:ef:e0:28:3a: d7:bf:4d:c6:cb:c2:61:cb:5f:e3:9c:de:61:da:c3: 36:ee:02:43:38:6b:e8:08:b0:63:d4:a1:3b:f8:b1: 07:bc:ce:91:9c:bf:40:0f:e5:78:6f:db:f6:07:e8: a1:2f:06:8b:50:b7:d7:99:e2:b0:eb:08:6e:df:17: f4:4d:22:48:2b:9c:f4:0b:69:8f:0f:11:43:db:ed: d9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:43:E5:86:70:E4:BF:7C:82:6F:4A:4B:7D:D5:CF:7C:83:45:C1:1E X509v3 Authority Key Identifier: keyid:DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.64.0/23 Signature Algorithm: sha256WithRSAEncryption 22:52:e7:50:62:84:80:bd:f0:72:2b:3e:32:fe:6e:1f:6b:3c: a7:cb:e4:c3:f9:2e:48:5b:c4:eb:85:1d:76:a5:c6:07:5c:be: ba:d1:38:17:83:72:5b:55:73:a6:0c:db:d2:56:cb:66:78:b3: bc:76:a3:35:16:56:d3:f1:44:04:1e:37:3a:49:d2:18:f7:dc: 49:fe:07:50:4b:e7:08:dc:e0:fb:c2:87:c4:33:bf:eb:5f:c6: 61:48:f0:56:0e:21:5a:b9:5f:73:82:be:fc:ae:d0:a0:17:83: 09:4c:06:e9:68:21:1b:17:2a:77:f1:50:d6:86:45:16:a1:d6: 37:d5:b9:01:bf:87:7b:7f:42:bd:3c:31:43:65:b5:0a:4c:c4: 7f:3c:48:1d:a7:73:f6:07:81:d4:c7:5f:fc:5b:92:cb:ba:75: 90:8f:87:dc:9e:9d:50:19:00:0e:44:1f:32:b6:17:6e:4a:e1: 83:a5:81:15:fe:0f:48:9f:c0:d5:b2:e9:9f:d9:7b:91:ee:f1: 55:c9:ce:6a:46:e8:41:47:1c:1e:6e:85:cf:94:70:c4:ba:4d: 83:a7:0e:36:a9:f3:88:e0:d8:53:e9:a2:3f:6e:ce:9f:f0:a5: 0e:ef:51:5f:72:cd:bb:67:d1:e5:e3:e6:25:60:ba:95:07:68: 6d:35:e8:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1NkExMTAvBgNVBAUTKERBNDMxMEIyRjA4NzlERjRCRDk4MzlBMTRDOEUzRkJC QjZGMUVCRjEwHhcNMjUwNTA5MDQyNDU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkODM5OC0zMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cQ9BglBQw8GM83v+Ss1GIA/m65zb3DstMJuw34ZP08heaucHzM72pSrd9M1 8oB/V5lUILnKg3DC2Qyb5tM/5qjGjMf+WsNRDbJvj++wDqkTRXhbnJ/L5LlH6j36 YtxVs7ozU/XJ74B15qZZga9uJ7nXZ7OiiTvWNgZKQ2qLehzayWKPFpCT372DJ+Ww 9VA8kS88peQwgdT1Fd8j76f8q0E4rvRIDQdPR8i3BHg1yu/gKDrXv03Gy8Jhy1/j nN5h2sM27gJDOGvoCLBj1KE7+LEHvM6RnL9AD+V4b9v2B+ihLwaLULfXmeKw6whu 3xf0TSJIK5z0C2mPDxFD2+3ZnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN9D5YZw 5L98gm9KS33Vz3yDRcEeMB8GA1UdIwQYMBaAFNpDELLwh530vZg5oUyOP7u28evx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTU2QS8yNkZBMTgxODc3 MjQxMUVFQTE2NzRFMUZDNEY5QUUwMi8ya01Rc3ZDSG5mUzltRG1oVEk0X3U3Yng2 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrTVFzdkNIbmZTOW1EbWhUSTRfdTdieDZfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE1NkEvMjZGQTE4MTg3NzI0MTFFRUExNjc0RTFGQzRGOUFFMDIvM0RGNjQ1OUE3 NzI1MTFFRUEyRTM3NDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFneUAwDQYJKoZIhvcNAQELBQADggEBACJS51BihIC98HIr PjL+bh9rPKfL5MP5LkhbxOuFHXalxgdcvrrROBeDcltVc6YM29JWy2Z4s7x2ozUW VtPxRAQeNzpJ0hj33En+B1BL5wjc4PvCh8Qzv+tfxmFI8FYOIVq5X3OCvvyu0KAX gwlMBuloIRsXKnfxUNaGRRah1jfVuQG/h3t/Qr08MUNltQpMxH88SB2nc/YHgdTH X/xbksu6dZCPh9yenVAZAA5EHzK2F25K4YOlgRX+D0ifwNWy6Z/Ze5Hu8VXJzmpG 6EFHHB5uhc+UcMS6TYOnDjap84jg2FPpoj9uzp/wpQ7vUV9yzbtn0eXj5iVgupUH aG016Nk= -----END CERTIFICATE-----Generated at Fri May 16 23:23:38 2025 by rpki-client