$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa File: 0AC1EDE6D0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: 44y5fkFaBcGQTsnME/P81706WXBnFbq6HjZsUti9jmo= Subject key identifier: 6A:72:44:A6:14:29:98:4C:A4:07:D6:4C:32:D1:B5:D7:84:FD:9F:15 Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 0809 Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa Signing time: Tue 18 Feb 2025 22:09:56 +0000 ROA not before: Tue 18 Feb 2025 22:09:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198504 IP address blocks: 103.255.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C, serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Validity Not Before: Feb 18 22:09:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67b50533-ac81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:a7:c7:4a:4b:b2:18:ee:7f:57:25:11:24: 65:76:03:85:c1:33:1b:b2:da:d2:b1:41:d4:c8:6f: 4d:38:15:50:ba:59:94:87:d4:1b:86:27:90:54:8f: 94:0b:91:01:b0:92:47:86:20:62:b8:2e:f0:6c:2e: 9e:8c:e3:89:de:89:68:b8:d2:6c:e3:b8:f7:5e:1d: 5c:e0:36:bc:ba:c1:f1:23:d7:3a:6a:28:db:ac:3e: 74:87:07:0f:e1:5b:c2:2b:43:75:af:17:9c:a1:83: 90:f0:f7:4b:61:d5:32:8a:12:e2:37:1e:65:92:32: f6:51:1d:59:b7:a9:42:c8:84:f7:3d:1a:8a:e7:59: 44:60:c6:c9:cd:f6:f1:17:b7:5e:be:2d:16:9a:00: 0a:1b:20:51:e3:d6:d6:8d:2f:21:76:19:e9:53:4d: ac:90:15:96:77:d5:f0:13:76:35:1d:b5:6a:77:bf: e2:1c:d2:7a:55:fa:34:d9:76:5d:7b:4e:f1:e9:bb: 5a:35:1b:4f:36:11:52:5e:be:7e:0c:d9:c1:98:fa: 54:76:0c:ae:b9:b1:b5:0c:b7:8a:74:83:26:bb:ab: cd:fb:f3:25:d9:2c:ba:6d:2b:93:a3:dd:33:22:f1: 81:f4:f5:2f:31:49:8c:ed:d4:24:ac:ba:d9:a0:48: d5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:72:44:A6:14:29:98:4C:A4:07:D6:4C:32:D1:B5:D7:84:FD:9F:15 X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.131.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:61:13:a6:1b:3a:c8:31:13:59:64:5c:c5:ff:27:80:bc:6f: 36:fb:fc:e6:ec:d0:9b:25:5e:99:28:7b:a2:d7:be:10:9d:eb: fe:cf:6d:26:34:c2:14:14:33:81:f5:4e:ba:85:8f:c7:5a:ce: 9e:e1:f8:02:c0:fd:e6:a5:2b:4b:26:f6:79:d9:f2:5b:26:d1: ad:90:07:12:37:e4:66:c7:fd:0d:0c:d1:f4:c0:15:26:f3:33: d5:91:d2:20:46:75:44:c2:41:66:62:c1:cc:98:7e:7a:77:5c: 77:6a:6e:11:7b:4a:30:c8:59:50:f6:7a:71:1f:91:f9:5f:7c: 14:95:c2:bb:60:e0:35:c9:07:57:5d:9f:48:f4:11:ae:f0:d4: 51:a8:2d:82:c7:eb:0d:7d:ed:40:e5:42:d6:19:f4:5f:b4:f6: b9:91:2f:cd:c7:26:8d:65:a6:1f:b7:ea:8a:bb:16:d9:3e:26: 80:7d:c9:c6:a7:7e:c3:a4:0f:e7:5f:a6:12:80:57:59:95:c9: b6:43:5d:6b:9c:59:e7:da:13:4c:5e:f2:d7:68:b4:a3:6e:25: 66:d2:44:00:83:19:de:93:bb:09:9c:bf:28:3b:08:86:2d:ba: 92:28:39:b9:e0:b9:a4:ab:36:da:b1:df:4f:b0:f8:7f:0d:d8: ef:72:d6:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjUwMjE4MjIwOTU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1MDUzMy1hYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/enx0pLshjuf1clESRldgOFwTMbstrSsUHUyG9NOBVQulmUh9QbhieQVI+U C5EBsJJHhiBiuC7wbC6ejOOJ3olouNJs47j3Xh1c4Da8usHxI9c6aijbrD50hwcP 4VvCK0N1rxecoYOQ8PdLYdUyihLiNx5lkjL2UR1Zt6lCyIT3PRqK51lEYMbJzfbx F7devi0WmgAKGyBR49bWjS8hdhnpU02skBWWd9XwE3Y1HbVqd7/iHNJ6Vfo02XZd e07x6btaNRtPNhFSXr5+DNnBmPpUdgyuubG1DLeKdIMmu6vN+/Ml2Sy6bSuTo90z IvGB9PUvMUmM7dQkrLrZoEjV6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGpyRKYU KZhMpAfWTDLRtdeE/Z8VMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEFDMUVERTZE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/4MwDQYJKoZIhvcNAQELBQADggEBAExhE6YbOsgxE1lk XMX/J4C8bzb7/Obs0JslXpkoe6LXvhCd6/7PbSY0whQUM4H1TrqFj8dazp7h+ALA /ealK0sm9nnZ8lsm0a2QBxI35GbH/Q0M0fTAFSbzM9WR0iBGdUTCQWZiwcyYfnp3 XHdqbhF7SjDIWVD2enEfkflffBSVwrtg4DXJB1ddn0j0Ea7w1FGoLYLH6w197UDl QtYZ9F+09rmRL83HJo1lph+36oq7Ftk+JoB9ycanfsOkD+dfphKAV1mVybZDXWuc WefaE0xe8tdotKNuJWbSRACDGd6Tuwmcvyg7CIYtupIoObnguaSrNtqx30+w+H8N 2O9y1kw= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:05 2025 by rpki-client