$ rpki-client -vvf rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/16E91232932D11EABE8CE524C4F9AE02.roa File: 16E91232932D11EABE8CE524C4F9AE02.roa (raw, json) Hash identifier: EqH7WmDV1P3xtcmJeaOld+bFagaXu060kUoogC5tHYE= Subject key identifier: B1:D6:96:0E:B4:1F:76:23:62:A1:44:01:2C:EE:DA:34:04:F6:64:3C Certificate issuer: /CN=A911C14C/serialNumber=CA69E4F8279BF833190CB7225CE9FDDB66D3F951 Certificate serial: 092C Authority key identifier: CA:69:E4:F8:27:9B:F8:33:19:0C:B7:22:5C:E9:FD:DB:66:D3:F9:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymnk-Ceb-DMZDLciXOn922bT-VE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/16E91232932D11EABE8CE524C4F9AE02.roa Signing time: Thu 16 Jan 2025 20:19:13 +0000 ROA not before: Thu 16 Jan 2025 20:19:13 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138419 IP address blocks: 103.125.32.0/24 maxlen: 24 103.125.33.0/24 maxlen: 24 103.125.34.0/24 maxlen: 24 103.125.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/ymnk-Ceb-DMZDLciXOn922bT-VE.crl rsync://rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/ymnk-Ceb-DMZDLciXOn922bT-VE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymnk-Ceb-DMZDLciXOn922bT-VE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C14C, serialNumber=CA69E4F8279BF833190CB7225CE9FDDB66D3F951 Validity Not Before: Jan 16 20:19:13 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=678969c1-2bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:58:06:38:55:66:a9:50:d6:48:52:f4:f0:66: 0a:d6:76:9c:b4:f2:a2:34:a2:2c:47:ff:78:f1:8e: 65:86:ff:d8:a6:3d:6e:33:60:35:fa:e2:3b:e4:c4: 78:e2:ee:ad:8f:ee:83:48:4c:08:01:85:e0:42:32: f6:42:27:bf:08:dd:77:74:31:7c:10:21:42:b1:89: c8:64:d2:81:f6:90:2f:95:c0:a3:3a:95:ed:88:36: d0:e2:ab:4c:0b:02:42:c9:35:04:18:9b:74:01:45: 19:a5:61:c4:fb:1d:4a:3b:e9:10:0c:fb:ee:2b:e6: 4d:2a:19:b9:2b:26:1e:58:26:37:10:29:3b:65:de: c0:aa:b6:f2:d9:54:df:93:1b:95:b8:76:1b:52:40: 11:b9:c0:b4:68:62:20:fe:90:d4:c3:eb:51:66:57: 05:d0:91:12:8a:ba:60:75:84:96:95:83:47:79:55: d1:0d:2c:78:c0:31:b9:5f:f0:c3:62:2a:02:6c:cf: 04:70:de:a3:9f:bb:cf:c6:2b:2a:97:f4:1b:14:46: c7:f9:ed:a1:e5:ee:e1:53:e6:ed:fb:f7:7d:6d:32: de:76:0b:8a:0f:bc:11:b4:cd:7b:6d:8f:a0:6f:5c: 35:15:e2:c9:7e:82:b4:57:c8:df:c7:6a:ec:21:a4: 12:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D6:96:0E:B4:1F:76:23:62:A1:44:01:2C:EE:DA:34:04:F6:64:3C X509v3 Authority Key Identifier: keyid:CA:69:E4:F8:27:9B:F8:33:19:0C:B7:22:5C:E9:FD:DB:66:D3:F9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/ymnk-Ceb-DMZDLciXOn922bT-VE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymnk-Ceb-DMZDLciXOn922bT-VE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C14C/2A36110C932B11EABA568B1EC4F9AE02/16E91232932D11EABE8CE524C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.32.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:7b:32:52:89:1a:2d:52:d5:69:16:9c:31:7c:b3:63:37:c4: 2b:56:8f:cd:d8:a6:dd:30:63:54:26:38:8d:03:ea:38:bc:07: f8:8d:ec:ba:11:1c:19:97:bf:f7:80:ef:ac:33:75:af:08:82: f6:2b:28:d8:bc:76:f8:41:e2:36:ad:40:2b:42:af:fc:06:5f: 8a:83:db:a7:62:0b:02:1a:ec:8e:b7:60:29:cd:68:1a:93:8e: 64:fa:81:52:82:d6:2d:48:00:12:7c:a1:04:39:1b:41:fe:aa: 35:c0:ba:7b:e9:0b:dc:6a:c3:0b:ad:1b:8e:b7:cc:0b:0d:03: c8:9d:95:81:12:11:66:e2:75:bb:23:7b:dc:d7:26:05:d9:c9: 4a:73:8c:5a:3b:2f:f3:3a:e2:8b:49:ec:fc:95:43:17:da:b3: 78:3b:3c:c8:76:0f:30:3b:36:1f:f5:f7:bb:ec:38:07:3b:e5: 30:e0:c8:1c:ac:7c:ac:8f:5e:c1:48:ba:d1:5a:df:fd:d4:82: 5d:b5:ce:40:77:b7:09:f9:e2:ea:e3:9e:72:0a:3e:54:2a:92: 12:26:c0:21:e4:66:d2:c3:94:fc:5e:59:f5:97:91:48:87:7c: 81:95:21:f1:87:f5:59:d6:2c:14:44:5d:12:d4:20:a5:7c:6b: 63:cf:37:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMxNEMxMTAvBgNVBAUTKENBNjlFNEY4Mjc5QkY4MzMxOTBDQjcyMjVDRTlGRERC NjZEM0Y5NTEwHhcNMjUwMTE2MjAxOTEzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5NjljMS0yYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVgGOFVmqVDWSFL08GYK1nactPKiNKIsR/948Y5lhv/Ypj1uM2A1+uI75MR4 4u6tj+6DSEwIAYXgQjL2Qie/CN13dDF8ECFCsYnIZNKB9pAvlcCjOpXtiDbQ4qtM CwJCyTUEGJt0AUUZpWHE+x1KO+kQDPvuK+ZNKhm5KyYeWCY3ECk7Zd7Aqrby2VTf kxuVuHYbUkARucC0aGIg/pDUw+tRZlcF0JESirpgdYSWlYNHeVXRDSx4wDG5X/DD YioCbM8EcN6jn7vPxisql/QbFEbH+e2h5e7hU+bt+/d9bTLedguKD7wRtM17bY+g b1w1FeLJfoK0V8jfx2rsIaQScQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLHWlg60 H3YjYqFEASzu2jQE9mQ8MB8GA1UdIwQYMBaAFMpp5Pgnm/gzGQy3Ilzp/dtm0/lR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzE0Qy8yQTM2MTEwQzkz MkIxMUVBQkE1NjhCMUVDNEY5QUUwMi95bW5rLUNlYi1ETVpETGNpWE9uOTIyYlQt VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltbmstQ2ViLURNWkRMY2lYT245MjJiVC1WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMxNEMvMkEzNjExMEM5MzJCMTFFQUJBNTY4QjFFQzRGOUFFMDIvMTZFOTEyMzI5 MzJEMTFFQUJFOENFNTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfSAwDQYJKoZIhvcNAQELBQADggEBAF17MlKJGi1S1WkW nDF8s2M3xCtWj83Ypt0wY1QmOI0D6ji8B/iN7LoRHBmXv/eA76wzda8IgvYrKNi8 dvhB4jatQCtCr/wGX4qD26diCwIa7I63YCnNaBqTjmT6gVKC1i1IABJ8oQQ5G0H+ qjXAunvpC9xqwwutG463zAsNA8idlYESEWbidbsje9zXJgXZyUpzjFo7L/M64otJ 7PyVQxfas3g7PMh2DzA7Nh/197vsOAc75TDgyBysfKyPXsFIutFa3/3Ugl21zkB3 twn54urjnnIKPlQqkhImwCHkZtLDlPxeWfWXkUiHfIGVIfGH9VnWLBREXRLUIKV8 a2PPN+4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:00 2025 by rpki-client