$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa File: 543AF5B283D911E78F2FA066C4F9AE02.roa (raw, json) Hash identifier: XS/tQXFr6hMyKrYJ8vxPUjZePNffAHjlSJ+Stv9rn5s= Subject key identifier: 58:61:13:6C:61:FF:4D:D7:C0:AF:13:79:0B:32:33:7E:BD:E9:13:C7 Certificate issuer: /CN=A911A0C0/serialNumber=16064EAB81AE1873A1019D092896F9227A5EEF45 Certificate serial: 18FE Authority key identifier: 16:06:4E:AB:81:AE:18:73:A1:01:9D:09:28:96:F9:22:7A:5E:EF:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa Signing time: Tue 08 Apr 2025 16:54:43 +0000 ROA not before: Tue 08 Apr 2025 16:54:43 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17882 IP address blocks: 103.80.210.0/23 maxlen: 24 103.206.152.0/23 maxlen: 24 203.217.138.0/23 maxlen: 23 203.217.138.0/24 maxlen: 24 203.217.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.crl rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6398 (0x18fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0C0, serialNumber=16064EAB81AE1873A1019D092896F9227A5EEF45 Validity Not Before: Apr 8 16:54:43 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f554d3-4dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a3:32:60:92:fc:af:ed:0c:8d:66:f0:47:1f: a5:09:74:f4:2c:66:bc:d7:19:ba:16:2c:7b:47:6b: e0:67:96:57:1a:c4:1e:21:ed:04:8c:55:2b:a6:29: 5f:a9:7e:a9:e0:8f:67:e6:91:93:0a:fb:c3:f7:37: 7d:8e:40:b6:ac:69:d4:eb:de:fd:55:cf:2b:a6:e7: d5:3c:ce:9a:46:1d:61:7c:a3:c0:3f:af:f7:65:90: fa:46:e9:60:79:1b:b6:16:ef:f1:01:1b:6b:a4:12: 24:5a:c0:81:8b:ab:92:03:5f:cd:92:73:b4:36:c5: 6e:3f:ff:aa:9f:d6:4a:56:5d:0a:33:1b:74:59:d5: 70:d0:24:71:5b:5e:b3:f6:e3:92:99:3b:fc:53:fa: b5:75:af:d6:02:4e:9f:09:d0:ad:a9:75:92:6d:eb: 45:91:95:fd:89:5d:5b:bc:fd:11:e5:8e:c8:11:62: a7:22:5e:c9:89:87:05:be:de:2e:3a:74:a4:69:e0: a4:94:ee:b9:24:32:b4:ea:3e:70:2d:82:cf:99:6f: 9b:5c:45:04:e2:d3:4a:e9:c9:fd:ee:07:e0:5b:a1: 49:24:ce:cf:1b:40:4a:2c:b8:27:eb:af:79:67:13: f5:45:22:98:f4:92:64:df:d5:64:f8:f2:13:bf:a8: 64:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:61:13:6C:61:FF:4D:D7:C0:AF:13:79:0B:32:33:7E:BD:E9:13:C7 X509v3 Authority Key Identifier: keyid:16:06:4E:AB:81:AE:18:73:A1:01:9D:09:28:96:F9:22:7A:5E:EF:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.210.0/23 103.206.152.0/23 203.217.138.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:e3:79:52:1f:98:34:fe:8c:f1:b3:be:06:89:08:39:c9:30: de:e3:3c:7b:44:9c:bb:00:34:fc:59:7f:60:e2:eb:51:1d:69: 74:89:b2:15:ba:21:f1:06:59:3e:b6:8f:70:2a:a3:94:35:dc: f3:cc:14:10:50:90:21:f3:27:28:07:06:92:ca:6c:42:97:0e: 9c:df:73:bf:c4:96:fd:47:ee:c6:73:dd:30:78:97:35:03:f8: 12:7e:82:04:72:00:54:1a:0c:c7:ba:25:d1:63:c3:1e:08:dd: 21:4d:09:d2:eb:1e:d7:80:b0:b3:3e:75:1b:4d:84:70:8f:49: 6e:6e:b8:f4:f8:ca:87:44:33:29:ce:3c:e8:ef:9d:2c:20:0a: 02:6f:29:a4:91:01:2e:45:e9:7d:1c:ea:69:54:4b:12:d5:2a: b4:e7:01:51:fc:87:5d:86:61:d1:a8:77:0d:13:b3:e1:16:13: 96:28:45:5b:5f:aa:fb:ac:ea:20:6c:61:78:f3:78:8a:8a:c4: 63:3d:c5:84:5d:36:eb:24:42:bb:2d:d3:6e:ff:a6:21:60:f5: e7:be:91:37:4b:11:5a:45:9a:84:a5:59:89:92:ae:79:ac:5f: 57:17:45:9a:41:5d:7c:d7:78:5c:ef:e8:c5:5f:54:ab:cb:4e: 36:b6:44:b3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQzAxMTAvBgNVBAUTKDE2MDY0RUFCODFBRTE4NzNBMTAxOUQwOTI4OTZGOTIy N0E1RUVGNDUwHhcNMjUwNDA4MTY1NDQzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NTRkMy00ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaMyYJL8r+0MjWbwRx+lCXT0LGa81xm6Fix7R2vgZ5ZXGsQeIe0EjFUrpilf qX6p4I9n5pGTCvvD9zd9jkC2rGnU6979Vc8rpufVPM6aRh1hfKPAP6/3ZZD6Rulg eRu2Fu/xARtrpBIkWsCBi6uSA1/NknO0NsVuP/+qn9ZKVl0KMxt0WdVw0CRxW16z 9uOSmTv8U/q1da/WAk6fCdCtqXWSbetFkZX9iV1bvP0R5Y7IEWKnIl7JiYcFvt4u OnSkaeCklO65JDK06j5wLYLPmW+bXEUE4tNK6cn97gfgW6FJJM7PG0BKLLgn6695 ZxP1RSKY9JJk39Vk+PITv6hkQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFhhE2xh /03XwK8TeQsyM3696RPHMB8GA1UdIwQYMBaAFBYGTquBrhhzoQGdCSiW+SJ6Xu9F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBDMC8wQjMwNDY3MDgz RDgxMUU3Qjc1RjI1NjVDNEY5QUUwMi9GZ1pPcTRHdUdIT2hBWjBKS0piNUlucGU3 MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnWk9xNEd1R0hPaEFaMEpLSmI1SW5wZTcwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUEwQzAvMEIzMDQ2NzA4M0Q4MTFFN0I3NUYyNTY1QzRGOUFFMDIvNTQzQUY1QjI4 M0Q5MTFFNzhGMkZBMDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnUNIDBAFnzpgDBAHL2YowDQYJKoZIhvcNAQELBQADggEB AJ/jeVIfmDT+jPGzvgaJCDnJMN7jPHtEnLsANPxZf2Di61EdaXSJshW6IfEGWT62 j3Aqo5Q13PPMFBBQkCHzJygHBpLKbEKXDpzfc7/Elv1H7sZz3TB4lzUD+BJ+ggRy AFQaDMe6JdFjwx4I3SFNCdLrHteAsLM+dRtNhHCPSW5uuPT4yodEMynOPOjvnSwg CgJvKaSRAS5F6X0c6mlUSxLVKrTnAVH8h12GYdGodw0Ts+EWE5YoRVtfqvus6iBs YXjzeIqKxGM9xYRdNuskQrst027/piFg9ee+kTdLEVpFmoSlWYmSrnmsX1cXRZpB XXzXeFzv6MVfVKvLTja2RLM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:50 2025 by rpki-client