$ rpki-client -vvf rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa File: B0EE80B28FBB11EAA0855C73C4F9AE02.roa (raw, json) Hash identifier: H4bAXJJ+0ihkBBeD63YdMNR3q/0ZrnIacu1H+UbOy6o= Subject key identifier: 33:C0:3B:A7:4E:A1:2F:38:19:B4:EB:E5:9D:22:6B:F4:C9:40:C6:7E Certificate issuer: /CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Certificate serial: 097E Authority key identifier: 2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:59:20 +0000 ROA not before: Wed 30 Apr 2025 19:59:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136030 IP address blocks: 103.85.128.0/24 maxlen: 24 103.85.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919690C, serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Validity Not Before: Apr 30 19:59:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68128118-f457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:39:cf:93:57:d7:d0:13:98:81:c9:45:ce:92: 8a:de:fd:40:43:4d:5e:67:b6:d9:30:0c:64:1d:54: 88:2e:37:39:c1:4c:60:71:7e:21:1f:64:b0:1d:09: 2b:8d:74:62:23:cb:96:af:5c:02:b1:09:86:74:35: ad:84:d7:81:1f:54:5d:1c:c4:8a:cc:b6:1e:d3:bd: 14:68:63:7f:c6:7f:ab:57:5c:75:cc:cb:57:5c:dd: 00:9b:9e:17:05:53:02:1a:8c:e8:a3:53:32:ea:c9: 66:d7:1e:3b:e1:d9:d7:92:67:bb:e4:85:1f:56:26: 23:f0:fd:bd:e9:c7:9d:1a:10:0d:85:a6:23:84:87: 3d:59:60:a5:29:85:91:00:31:50:ff:35:58:d0:b6: 53:41:cb:33:de:15:81:58:53:57:bc:bb:cd:be:5b: 69:b4:59:c1:d1:3a:a0:c6:c3:8c:6e:06:e5:b6:4e: f1:ec:e7:a8:4e:ca:c1:ca:ea:45:7e:7c:bb:a8:1c: df:f2:71:3f:8a:f9:18:63:36:83:c7:d4:0b:8b:ec: 24:9e:0e:74:5a:16:bb:10:49:83:c1:2c:c4:5d:b5: c6:27:eb:af:78:84:19:09:87:a7:a9:7e:c5:24:d7: 83:3b:25:88:2c:28:55:f6:f8:1d:73:94:d9:f8:a4: 1c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C0:3B:A7:4E:A1:2F:38:19:B4:EB:E5:9D:22:6B:F4:C9:40:C6:7E X509v3 Authority Key Identifier: keyid:2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/B0EE80B28FBB11EAA0855C73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.128.0/24 103.85.131.0/24 Signature Algorithm: sha256WithRSAEncryption 78:7a:93:84:a1:7f:60:9d:00:bd:68:2a:59:7d:18:14:e3:2c: 7b:1f:4e:4c:a1:1c:2f:94:44:79:4c:59:00:59:8c:43:cc:ae: a3:fc:42:c3:3b:fd:61:0d:fa:9b:ed:92:3d:e5:8c:c6:77:0c: c2:b6:2d:97:68:23:df:04:a5:21:97:63:43:80:32:ba:9e:91: 8a:60:13:b6:b6:09:1e:4a:38:6b:ee:00:43:68:95:48:05:aa: 10:ce:73:b1:03:4b:2c:11:58:47:15:f7:a6:c2:27:40:c0:e4: 9f:6f:3b:b7:9f:e9:61:a5:f1:13:06:2e:9f:3c:1d:00:73:d1: 4b:fb:13:7e:48:03:dd:f7:75:f2:28:2d:aa:0a:b4:4c:7a:d9: ae:be:50:47:29:55:9a:62:1e:09:b7:24:bc:e5:1c:a6:2d:c6: 6a:f4:01:6a:0a:71:e1:1a:d0:2c:6e:1b:21:5d:b3:e7:a7:1c: 27:68:6e:02:d5:3a:7f:4f:b3:5f:55:ad:f3:bb:01:23:a2:b4: 1b:10:a7:72:92:74:2e:70:05:1a:2e:14:81:c0:de:3b:56:1a: 14:78:bc:39:ee:a3:e5:42:6f:e5:0b:83:8b:f9:7d:a5:51:4a: 74:4e:6f:28:7b:a2:d9:00:46:e8:54:0c:01:55:ec:6d:67:ca: 82:ec:10:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5MEMxMTAvBgNVBAUTKDJENTg5ODkwNDhDMjE5RjAxMDg4QUU3MkJGQUUwOTcw REY1REE2MzYwHhcNMjUwNDMwMTk1OTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODExOC1mNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TnPk1fX0BOYgclFzpKK3v1AQ01eZ7bZMAxkHVSILjc5wUxgcX4hH2SwHQkr jXRiI8uWr1wCsQmGdDWthNeBH1RdHMSKzLYe070UaGN/xn+rV1x1zMtXXN0Am54X BVMCGozoo1My6slm1x474dnXkme75IUfViYj8P296cedGhANhaYjhIc9WWClKYWR ADFQ/zVY0LZTQcsz3hWBWFNXvLvNvltptFnB0TqgxsOMbgbltk7x7OeoTsrByupF fny7qBzf8nE/ivkYYzaDx9QLi+wkng50Wha7EEmDwSzEXbXGJ+uveIQZCYenqX7F JNeDOyWILChV9vgdc5TZ+KQcUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDPAO6dO oS84GbTr5Z0ia/TJQMZ+MB8GA1UdIwQYMBaAFC1YmJBIwhnwEIiucr+uCXDfXaY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjkwQy9EM0Q1ODQ4QzhG QkExMUVBQTM0QUMwNzJDNEY5QUUwMi9MVmlZa0VqQ0dmQVFpSzV5djY0SmNOOWRw alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWaVlrRWpDR2ZBUWlLNXl2NjRKY045ZHBqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5MEMvRDNENTg0OEM4RkJBMTFFQUEzNEFDMDcyQzRGOUFFMDIvQjBFRTgwQjI4 RkJCMTFFQUEwODU1QzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnVYADBABnVYMwDQYJKoZIhvcNAQELBQADggEBAHh6k4Sh f2CdAL1oKll9GBTjLHsfTkyhHC+URHlMWQBZjEPMrqP8QsM7/WEN+pvtkj3ljMZ3 DMK2LZdoI98EpSGXY0OAMrqekYpgE7a2CR5KOGvuAENolUgFqhDOc7EDSywRWEcV 96bCJ0DA5J9vO7ef6WGl8RMGLp88HQBz0Uv7E35IA933dfIoLaoKtEx62a6+UEcp VZpiHgm3JLzlHKYtxmr0AWoKceEa0CxuGyFds+enHCdobgLVOn9Ps19VrfO7ASOi tBsQp3KSdC5wBRouFIHA3jtWGhR4vDnuo+VCb+ULg4v5faVRSnRObyh7otkARuhU DAFV7G1nyoLsEGA= -----END CERTIFICATE-----Generated at Wed May 14 16:49:24 2025 by rpki-client