$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/83882F7AF83B11ECB4154E31C4F9AE02.roa File: 83882F7AF83B11ECB4154E31C4F9AE02.roa (raw, json) Hash identifier: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk= Subject key identifier: 70:A8:52:A4:FD:F6:45:9A:67:C3:FF:70:BA:A0:6F:1A:04:98:7A:7A Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0AC5 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/83882F7AF83B11ECB4154E31C4F9AE02.roa Signing time: Tue 18 Mar 2025 19:39:35 +0000 ROA not before: Tue 18 Mar 2025 19:39:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55492 IP address blocks: 103.136.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Mar 18 19:39:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d9cbf7-5ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:e6:a4:a7:0e:ce:c7:d2:12:36:25:ec:e5: d4:bb:4f:31:63:b4:fc:5e:7c:ab:08:36:5f:7f:e0: d7:b9:4d:b2:85:75:3c:3d:a3:9d:7b:b6:13:68:5f: 64:2b:3b:25:86:4c:ef:2b:63:e4:b8:ad:7d:bf:91: be:b4:bd:f8:17:66:64:44:fd:1a:ec:e2:4e:d4:ee: e1:ef:7b:66:60:20:37:95:e2:98:a0:7f:36:98:ee: 55:32:18:88:0b:18:d7:00:94:76:f8:82:9b:04:9d: 6d:ad:1d:d8:73:c0:6f:ab:ef:f9:28:57:d3:41:5a: ac:e0:d2:21:ae:fe:bc:15:46:44:28:31:3f:f2:e3: aa:01:e9:c0:87:79:cc:c8:ca:10:c7:f8:08:e9:16: c9:3d:36:0d:e6:52:81:76:3f:16:24:7e:b0:49:fd: 2f:f0:7f:d5:96:e0:2a:80:e1:a7:d1:ec:e7:49:f7: 32:4d:82:d0:be:2e:ec:79:8d:59:cf:38:12:07:cf: e5:92:eb:6b:79:f0:ec:65:e9:90:c7:be:7a:ae:25: c4:1e:51:9d:cc:33:bf:86:f0:01:38:22:aa:ea:25: 0b:46:ac:0e:03:7a:8a:52:ca:fd:44:01:08:29:14: 9b:76:5d:8b:c6:96:a5:ff:10:00:d5:d7:04:d0:0f: 42:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A8:52:A4:FD:F6:45:9A:67:C3:FF:70:BA:A0:6F:1A:04:98:7A:7A X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/83882F7AF83B11ECB4154E31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.158.0/24 Signature Algorithm: sha256WithRSAEncryption 51:66:c5:19:8d:ee:76:54:74:65:0c:44:b7:ea:f0:86:3a:db: a1:a1:40:52:77:3d:3d:6b:09:1c:8c:2c:7c:01:8d:60:ae:f5: 32:72:c4:3f:49:50:70:54:a9:84:ba:ff:f3:61:aa:9f:18:4e: 45:9f:45:da:a5:15:04:a9:88:79:d8:13:8a:55:c2:a5:f2:93: 2f:80:ce:33:e3:a2:23:2c:af:22:07:9e:85:f7:cc:9a:d9:74: c3:40:e8:db:d7:5d:e4:fa:57:29:6f:01:91:42:d5:4c:79:34: 31:8a:e1:90:45:fb:5f:57:74:2a:f9:a6:95:70:eb:95:3a:fb: 3c:6a:ce:c8:67:a6:be:c9:f7:fe:1e:cd:b8:55:94:47:32:c8: 46:74:41:45:17:06:f0:18:85:69:55:5b:73:2d:fc:25:d7:16: 9e:85:05:41:27:f1:69:79:9a:7c:d1:3e:ba:dc:f1:f8:b1:8c: b2:7f:81:48:d4:67:cc:5b:bf:34:d3:ea:e3:62:29:b8:e9:ec: 0b:da:3b:a9:b6:9b:e3:47:64:c5:16:c9:95:97:57:9c:da:c9: b4:31:91:73:4f:37:44:16:92:97:48:a8:84:fc:56:a5:e1:b6: 5e:3f:80:a1:6f:9b:63:45:2b:3f:42:3a:9e:fb:89:74:1d:a6: ad:e8:47:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwMzE4MTkzOTM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5Y2JmNy01ZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo3mpKcOzsfSEjYl7OXUu08xY7T8XnyrCDZff+DXuU2yhXU8PaOde7YTaF9k KzslhkzvK2PkuK19v5G+tL34F2ZkRP0a7OJO1O7h73tmYCA3leKYoH82mO5VMhiI CxjXAJR2+IKbBJ1trR3Yc8Bvq+/5KFfTQVqs4NIhrv68FUZEKDE/8uOqAenAh3nM yMoQx/gI6RbJPTYN5lKBdj8WJH6wSf0v8H/VluAqgOGn0eznSfcyTYLQvi7seY1Z zzgSB8/lkutrefDsZemQx756riXEHlGdzDO/hvABOCKq6iULRqwOA3qKUsr9RAEI KRSbdl2Lxpal/xAA1dcE0A9CXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHCoUqT9 9kWaZ8P/cLqgbxoEmHp6MB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2Q0EvNzQwOUI0N0E0RkM3MTFFQThFNDZENDE1QzRGOUFFMDIvODM4ODJGN0FG ODNCMTFFQ0I0MTU0RTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniJ4wDQYJKoZIhvcNAQELBQADggEBAFFmxRmN7nZUdGUM RLfq8IY626GhQFJ3PT1rCRyMLHwBjWCu9TJyxD9JUHBUqYS6//Nhqp8YTkWfRdql FQSpiHnYE4pVwqXyky+AzjPjoiMsryIHnoX3zJrZdMNA6NvXXeT6VylvAZFC1Ux5 NDGK4ZBF+19XdCr5ppVw65U6+zxqzshnpr7J9/4ezbhVlEcyyEZ0QUUXBvAYhWlV W3Mt/CXXFp6FBUEn8Wl5mnzRPrrc8fixjLJ/gUjUZ8xbvzTT6uNiKbjp7AvaO6m2 m+NHZMUWyZWXV5zaybQxkXNPN0QWkpdIqIT8VqXhtl4/gKFvm2NFKz9COp77iXQd pq3oRwY= -----END CERTIFICATE-----Generated at Sat Apr 26 07:52:33 2025 by rpki-client