$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa File: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (raw, json) Hash identifier: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8= Subject key identifier: 0D:85:62:4B:CE:03:25:85:AC:E1:6E:34:E5:3F:CE:BE:57:96:FD:08 Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 16F9 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa Signing time: Tue 28 Jan 2025 16:54:38 +0000 ROA not before: Tue 28 Jan 2025 16:54:38 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137255 IP address blocks: 103.106.56.0/23 maxlen: 23 103.106.56.0/24 maxlen: 24 103.106.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5881 (0x16f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Jan 28 16:54:38 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67990bce-8872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:52:c3:33:a5:03:14:0d:8e:6d:bb:06:c6:74: fb:43:d3:cc:90:4f:8f:d6:47:b5:42:9e:ff:60:c8: 42:ed:2d:a6:cc:c4:eb:fc:30:89:59:53:47:05:ec: ff:99:ee:2c:aa:9e:6b:cd:18:a0:42:c4:10:30:cd: 62:20:d2:4c:a9:45:45:56:cf:02:7e:6a:6f:12:82: 5d:c0:73:0c:ef:dc:55:a5:eb:c4:55:4d:13:8c:7a: 8a:44:b2:3e:dc:e6:50:4f:e4:65:1e:e1:72:3b:67: f7:0c:a3:c5:98:39:4e:6c:dc:e5:11:64:4b:ef:2c: a8:f4:1d:9f:d7:d1:fe:1c:11:40:17:54:4b:ab:a2: e2:10:3e:a3:8a:4b:29:79:97:46:3c:42:d8:6d:ab: de:e0:c4:62:2d:35:3e:1b:b5:56:92:6f:02:e0:35: 8e:7b:af:ec:93:fd:c8:d3:ca:3c:51:6e:45:12:f1: 18:66:fa:0c:18:c7:ea:1d:90:44:e6:e0:9b:22:03: 04:26:6d:26:51:b4:de:55:12:29:8e:01:86:44:11: ff:e0:7f:1a:5c:d9:fd:4f:6e:e2:55:60:3d:41:1c: d7:10:54:c2:e1:fb:46:55:dc:2e:39:6b:80:ae:4e: 6d:58:97:5f:f4:b2:03:c1:82:82:6a:d0:ca:6b:73: 8b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:85:62:4B:CE:03:25:85:AC:E1:6E:34:E5:3F:CE:BE:57:96:FD:08 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.56.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:aa:f1:98:f3:25:cf:f8:e4:7d:d7:a4:ee:4a:66:86:03:37: 34:1b:f6:88:96:ce:43:98:aa:64:db:25:3f:9c:25:d7:6f:73: f5:bc:a3:16:e7:bb:fc:cc:2f:0f:01:14:92:ed:de:c0:50:ee: 06:73:0a:1a:2a:da:b3:79:7a:83:f6:c4:8c:be:60:f1:5a:73: 91:5a:c0:89:d6:13:81:4a:0f:d9:1e:72:31:2c:56:6f:e2:9c: ea:30:31:27:d2:5a:54:35:13:7f:38:47:81:c9:ef:07:7c:d5: eb:c4:a6:19:92:e8:80:bb:a5:fe:a6:95:af:fe:c2:f6:70:06: 42:fe:1d:b0:fd:43:31:a2:23:39:38:cf:b2:f4:a0:3f:f9:24: 4f:44:96:81:d1:be:01:ba:e9:74:fa:f9:b3:aa:a9:65:70:33: 5f:b6:d5:45:68:a8:e0:72:3a:cd:ec:bb:6f:b6:a0:ac:22:4c: 9d:2a:38:47:f1:70:83:5f:66:1a:08:3b:fa:18:6a:ca:fc:cf: a6:de:a4:06:78:d4:cd:ec:40:83:6c:e1:9b:be:44:b1:0c:6a: ac:63:4f:08:df:6c:d2:39:bf:d7:ec:c8:00:cd:e8:a2:ce:55: 84:5a:af:37:ee:fd:e5:c5:c5:c3:d3:ad:77:32:2d:51:ad:09: 93:77:ba:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwMTI4MTY1NDM4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5MGJjZS04ODcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FLDM6UDFA2ObbsGxnT7Q9PMkE+P1ke1Qp7/YMhC7S2mzMTr/DCJWVNHBez/ me4sqp5rzRigQsQQMM1iINJMqUVFVs8CfmpvEoJdwHMM79xVpevEVU0TjHqKRLI+ 3OZQT+RlHuFyO2f3DKPFmDlObNzlEWRL7yyo9B2f19H+HBFAF1RLq6LiED6jiksp eZdGPELYbave4MRiLTU+G7VWkm8C4DWOe6/sk/3I08o8UW5FEvEYZvoMGMfqHZBE 5uCbIgMEJm0mUbTeVRIpjgGGRBH/4H8aXNn9T27iVWA9QRzXEFTC4ftGVdwuOWuA rk5tWJdf9LIDwYKCatDKa3OLXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA2FYkvO AyWFrOFuNOU/zr5Xlv0IMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg2MkQvMzI4NzlEM0FFOEJBMTFFNzhBNkE3MDQyQzRGOUFFMDIvRDRBNzQ5N0U2 RTZCMTFFRjlGQzYxQzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnajgwDQYJKoZIhvcNAQELBQADggEBAAqq8ZjzJc/45H3X pO5KZoYDNzQb9oiWzkOYqmTbJT+cJddvc/W8oxbnu/zMLw8BFJLt3sBQ7gZzChoq 2rN5eoP2xIy+YPFac5FawInWE4FKD9kecjEsVm/inOowMSfSWlQ1E384R4HJ7wd8 1evEphmS6IC7pf6mla/+wvZwBkL+HbD9QzGiIzk4z7L0oD/5JE9EloHRvgG66XT6 +bOqqWVwM1+21UVoqOByOs3su2+2oKwiTJ0qOEfxcINfZhoIO/oYasr8z6bepAZ4 1M3sQINs4Zu+RLEMaqxjTwjfbNI5v9fsyADN6KLOVYRarzfu/eXFxcPTrXcyLVGt CZN3ulQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:46 2025 by rpki-client