$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa File: 65674CAE2CC911F085E9B54FC4F9AE02.roa (raw, json) Hash identifier: CnvBV8reOxNk//OTIvb7GslAhZESiEX8ju+87HitBRE= Subject key identifier: E5:52:0F:6F:0D:4D:E5:C5:BC:AB:7A:23:A5:92:1C:8E:7F:C0:F6:72 Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0CAC Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa Signing time: Fri 09 May 2025 11:35:00 +0000 ROA not before: Fri 09 May 2025 11:35:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139623 IP address blocks: 103.93.232.0/22 maxlen: 24 103.142.158.0/23 maxlen: 23 2405:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F, serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: May 9 11:35:00 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=681de864-5fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:ea:ea:90:53:da:f0:31:7d:08:bc:4f:2b: ac:b0:eb:5b:12:42:98:26:29:3f:1d:3a:8f:ba:b5: 7f:66:c0:08:c4:0b:76:43:1d:6e:34:c2:fd:e5:f3: 14:47:ac:8e:35:0b:09:6c:c2:76:0f:5f:46:20:e0: 84:5f:c4:66:84:e6:34:1a:db:74:ce:9b:da:df:ec: ad:02:8f:41:d1:33:92:46:bc:1c:1c:c8:ae:b6:42: 00:bc:fa:ba:7a:73:97:ce:8e:b8:6c:84:d1:13:cc: 38:9f:bf:27:4d:1a:57:9c:c7:15:90:95:5d:c9:55: 1e:fa:3d:e5:89:3f:6a:62:26:af:c6:b7:f4:90:cd: 70:65:8b:63:be:c8:a7:ba:a2:e8:f2:c5:55:9c:5f: a5:a2:19:ee:13:eb:0c:52:08:d1:7e:9b:e4:1a:f3: 80:6d:1a:95:69:75:a5:7c:6d:1e:3b:50:b0:f9:5e: 19:79:4c:8a:fe:c7:df:3e:0b:b5:d2:75:ff:f9:82: ba:f4:db:fa:a6:3d:7c:05:ec:32:9d:a0:e5:8e:ef: b3:05:80:ed:d4:55:bb:29:cd:e8:c9:ec:00:e8:df: aa:63:7f:ae:ff:a5:93:96:ef:28:41:3f:50:bc:f9: 80:08:3a:d0:77:5d:21:be:90:dd:7e:a8:8b:d3:62: 6c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:52:0F:6F:0D:4D:E5:C5:BC:AB:7A:23:A5:92:1C:8E:7F:C0:F6:72 X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.232.0/22 103.142.158.0/23 IPv6: 2405:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 67:f4:5b:e4:24:e2:ee:57:fa:c9:c0:0a:53:23:60:ee:41:48: 10:a2:7d:02:ad:6e:63:20:78:cd:ea:8e:cf:8a:21:b8:a5:09: dd:b0:1a:4a:aa:97:51:42:0e:99:a3:a1:6f:bc:41:98:6b:9e: 16:41:31:4c:44:eb:89:4f:69:9b:58:67:57:2a:a7:92:eb:0b: 89:a8:fd:4d:55:e3:33:b1:6c:b3:c8:0a:ff:7a:f1:81:24:a7: 40:a5:30:0c:59:d9:36:0a:fa:1a:59:f1:57:5b:ce:44:6b:e0: a7:10:3b:07:d0:46:23:4f:7b:28:d7:26:a8:87:28:d7:e2:9b: 18:e9:3f:12:6a:67:6e:b0:49:d9:47:ad:41:ab:3f:16:4e:35: 31:df:5d:91:f5:88:31:03:cd:fc:31:1d:85:c2:1d:f4:e9:bf: 66:9b:5c:12:8d:e4:5d:d8:75:d7:a8:60:e3:3c:b0:63:0b:e6: bc:53:19:3d:42:5a:d7:2c:ee:62:f9:b9:75:fa:1b:0e:40:29: 20:e1:4a:d2:37:52:2c:c4:e5:a8:51:b5:e7:77:ce:cb:b2:1d: 93:fe:17:df:0d:46:ed:99:f5:d3:83:47:d2:ac:2a:bf:5b:f5: 79:e3:91:8e:05:28:05:a2:26:84:55:2a:dc:cc:40:e7:36:10: 31:9e:32:b8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjUwNTA5MTEzNTAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkZTg2NC01ZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQTq6pBT2vAxfQi8TyussOtbEkKYJik/HTqPurV/ZsAIxAt2Qx1uNML95fMU R6yONQsJbMJ2D19GIOCEX8RmhOY0Gtt0zpva3+ytAo9B0TOSRrwcHMiutkIAvPq6 enOXzo64bITRE8w4n78nTRpXnMcVkJVdyVUe+j3liT9qYiavxrf0kM1wZYtjvsin uqLo8sVVnF+lohnuE+sMUgjRfpvkGvOAbRqVaXWlfG0eO1Cw+V4ZeUyK/sffPgu1 0nX/+YK69Nv6pj18BewynaDlju+zBYDt1FW7Kc3oyewA6N+qY3+u/6WTlu8oQT9Q vPmACDrQd10hvpDdfqiL02Js5wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOVSD28N TeXFvKt6I6WSHI5/wPZyMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvNjU2NzRDQUUy Q0M5MTFGMDg1RTlCNTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnXegDBAFnjp4wDQQCAAIwBwMFACQFPMAwDQYJKoZIhvcN AQELBQADggEBAGf0W+Qk4u5X+snAClMjYO5BSBCifQKtbmMgeM3qjs+KIbilCd2w Gkqql1FCDpmjoW+8QZhrnhZBMUxE64lPaZtYZ1cqp5LrC4mo/U1V4zOxbLPICv96 8YEkp0ClMAxZ2TYK+hpZ8VdbzkRr4KcQOwfQRiNPeyjXJqiHKNfimxjpPxJqZ26w SdlHrUGrPxZONTHfXZH1iDEDzfwxHYXCHfTpv2abXBKN5F3YddeoYOM8sGML5rxT GT1CWtcs7mL5uXX6Gw5AKSDhStI3UizE5ahRted3zsuyHZP+F98NRu2Z9dODR9Ks Kr9b9XnjkY4FKAWiJoRVKtzMQOc2EDGeMrg= -----END CERTIFICATE-----Generated at Wed May 14 01:17:19 2025 by rpki-client