$ rpki-client -vvf rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa File: E68BF368DD9911EF85614A53C4F9AE02.roa (raw, json) Hash identifier: RcdkSPfjnAmz3uVP4FBhLTQ0GFBSdezmu4kQPa/+yaY= Subject key identifier: D5:27:25:B3:88:9B:4A:C7:AF:72:5C:0F:8F:EC:07:0D:20:11:BF:5E Certificate issuer: /CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Certificate serial: 07ED Authority key identifier: B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa Signing time: Sun 04 May 2025 21:01:25 +0000 ROA not before: Sun 04 May 2025 21:01:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137000 IP address blocks: 103.149.58.0/24 maxlen: 24 103.149.59.0/24 maxlen: 24 2405:e3c0::/32 maxlen: 32 2405:e3c0::/48 maxlen: 48 2405:e3c0:1::/48 maxlen: 48 2405:e3c0:2::/48 maxlen: 48 2405:e3c0:3::/48 maxlen: 48 2405:e3c0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E83B, serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Validity Not Before: May 4 21:01:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817d5a5-3410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:d6:8c:cf:9c:5d:52:ec:51:0f:61:ff:04: e1:0c:56:8c:80:86:15:ea:33:67:db:a6:6f:a9:f7: 29:40:fc:b9:b2:0f:c3:8c:61:d5:37:7d:54:89:57: db:f1:e9:b2:5c:0f:db:5e:bc:1c:b3:f7:0a:4f:be: 25:d7:be:d1:fe:de:67:cd:0d:80:a5:03:8c:f3:1c: ce:24:17:8f:3d:b1:a7:43:4c:89:25:ef:37:d0:68: 9d:8b:cc:6f:74:62:1b:e7:0b:b4:96:99:77:a8:83: a7:e9:55:55:a4:98:cf:23:03:98:00:1c:d4:7a:a9: 3a:9d:40:15:11:10:f3:fb:22:61:36:e7:7f:21:23: 18:c0:b8:6f:bb:20:f2:90:37:66:d8:ab:9f:3b:76: 52:0c:91:a7:e3:1b:23:d7:fd:9b:f3:5e:f7:51:40: ea:a0:b0:10:36:5d:c6:27:d4:74:aa:4d:e1:11:94: 3f:0d:d9:06:69:84:63:72:30:4c:b3:97:be:51:e6: 59:fc:99:23:1e:e1:64:19:ed:d6:17:f5:c2:e8:c7: e1:c4:da:80:db:60:11:37:30:3d:ba:b0:08:9f:fc: 4a:5c:14:c1:0c:90:88:05:8e:f0:04:88:fb:d3:8c: f5:37:05:c9:37:c4:d3:c6:75:aa:66:78:e7:9b:0e: 0e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:27:25:B3:88:9B:4A:C7:AF:72:5C:0F:8F:EC:07:0D:20:11:BF:5E X509v3 Authority Key Identifier: keyid:B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.58.0/23 IPv6: 2405:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 09:2e:3f:d0:34:53:a8:c1:81:e6:09:8b:d6:c4:5d:43:60:ef: 55:c6:de:2e:73:f5:22:3c:f1:27:97:db:5b:d3:23:29:a9:92: 08:54:86:0b:14:0f:08:85:cb:82:e1:a2:c9:47:d4:a3:51:47: 22:8d:66:01:99:68:0b:18:94:0a:49:19:42:da:c9:e0:c1:46: 4a:08:97:f4:cb:f1:c2:00:9e:74:42:06:5c:d2:36:7f:0d:9b: 4b:17:15:7c:60:e2:93:5b:4b:23:61:ff:59:fb:82:f1:a3:b8: 09:d3:7c:ec:07:71:fa:32:b2:a1:95:df:4e:37:6d:d2:ce:8e: 04:35:42:b6:7d:c8:a9:a3:d6:86:0c:8b:b5:2e:11:53:0e:27: 1c:10:fd:27:e1:54:1a:3f:a2:d9:83:6d:c2:5d:c7:6b:7a:41: 42:61:ce:80:3e:27:5f:ac:e6:e1:4f:b7:6a:44:f3:ff:db:ea: bc:7b:ea:13:c2:3f:84:fd:f1:df:a3:e5:ad:15:84:cb:3a:5b: 20:6e:e1:e3:96:4e:59:b4:1e:b5:20:f0:82:7d:00:02:f2:a0: a5:3d:26:62:ee:84:0e:af:3a:0d:67:c6:b4:ec:aa:20:bb:97: f2:3b:2f:a7:0e:5f:55:c0:84:fd:eb:bb:bc:a1:2b:f4:4b:84: d3:44:51:d8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4M0IxMTAvBgNVBAUTKEI4QTYyQ0YxREU4QjI2MkUxNDczN0Q5M0VFM0U2RjM2 QzNBMEUxQzkwHhcNMjUwNTA0MjEwMTI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3ZDVhNS0zNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34vWjM+cXVLsUQ9h/wThDFaMgIYV6jNn26ZvqfcpQPy5sg/DjGHVN31UiVfb 8emyXA/bXrwcs/cKT74l177R/t5nzQ2ApQOM8xzOJBePPbGnQ0yJJe830Gidi8xv dGIb5wu0lpl3qIOn6VVVpJjPIwOYABzUeqk6nUAVERDz+yJhNud/ISMYwLhvuyDy kDdm2KufO3ZSDJGn4xsj1/2b8173UUDqoLAQNl3GJ9R0qk3hEZQ/DdkGaYRjcjBM s5e+UeZZ/JkjHuFkGe3WF/XC6MfhxNqA22ARNzA9urAIn/xKXBTBDJCIBY7wBIj7 04z1NwXJN8TTxnWqZnjnmw4OTQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNUnJbOI m0rHr3JcD4/sBw0gEb9eMB8GA1UdIwQYMBaAFLimLPHeiyYuFHN9k+4+bzbDoOHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTgzQi83OTJEMTQ4QUYy ODExMUVBOEE2RkM2NkRDNEY5QUUwMi91S1lzOGQ2TEppNFVjMzJUN2o1dk5zT2c0 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLWXM4ZDZMSmk0VWMzMlQ3ajV2TnNPZzRjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU4M0IvNzkyRDE0OEFGMjgxMTFFQThBNkZDNjZEQzRGOUFFMDIvRTY4QkYzNjhE RDk5MTFFRjg1NjE0QTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnlTowDQQCAAIwBwMFACQF48AwDQYJKoZIhvcNAQELBQAD ggEBAAkuP9A0U6jBgeYJi9bEXUNg71XG3i5z9SI88SeX21vTIympkghUhgsUDwiF y4LhoslH1KNRRyKNZgGZaAsYlApJGULayeDBRkoIl/TL8cIAnnRCBlzSNn8Nm0sX FXxg4pNbSyNh/1n7gvGjuAnTfOwHcfoysqGV3043bdLOjgQ1QrZ9yKmj1oYMi7Uu EVMOJxwQ/SfhVBo/otmDbcJdx2t6QUJhzoA+J1+s5uFPt2pE8//b6rx76hPCP4T9 8d+j5a0VhMs6WyBu4eOWTlm0HrUg8IJ9AALyoKU9JmLuhA6vOg1nxrTsqiC7l/I7 L6cOX1XAhP3ru7yhK/RLhNNEUdg= -----END CERTIFICATE-----Generated at Wed May 14 18:27:31 2025 by rpki-client