$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa File: 7E933D0427B711EF8867AA49C4F9AE02.roa (raw, json) Hash identifier: FsP9VYFAICAa71awQKv/xp4WMIgY/BZLf1PogGiTuE4= Subject key identifier: 1A:FA:5B:A2:4C:97:80:CB:D2:A3:9C:4E:CF:94:A1:F9:EE:4C:9D:E0 Certificate issuer: /CN=A911F5CA/serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Certificate serial: C0 Authority key identifier: 1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa Signing time: Fri 11 Apr 2025 05:42:30 +0000 ROA not before: Fri 11 Apr 2025 05:42:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138607 IP address blocks: 103.232.148.0/24 maxlen: 24 103.232.149.0/24 maxlen: 24 103.232.150.0/24 maxlen: 24 144.48.68.0/24 maxlen: 24 144.48.69.0/24 maxlen: 24 144.48.70.0/24 maxlen: 24 144.48.71.0/24 maxlen: 24 144.48.188.0/24 maxlen: 24 144.48.189.0/24 maxlen: 24 144.48.190.0/24 maxlen: 24 144.48.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=1C7B30576EB18508EF2779C4EF5BB572492DD299 Validity Not Before: Apr 11 05:42:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f8abc6-4b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8a:cb:98:54:0f:ac:e5:e5:49:1c:bf:82:92: 25:6c:59:fa:bf:5e:10:2c:3f:93:e2:1d:8b:6e:a7: 68:48:61:9c:81:74:76:e9:18:ed:c1:7b:a6:d7:2c: e4:15:8d:4c:9f:5a:d9:ae:e5:b3:96:9d:03:c9:f2: a3:f4:de:bc:0b:a1:8c:38:56:05:d6:3c:09:bd:39: b1:c8:d5:08:59:b7:4e:7b:37:35:4b:b6:4c:b4:77: 0c:36:4c:bf:c0:d4:f5:f5:95:d1:be:62:1e:16:48: 00:e8:9a:89:35:59:13:11:a9:e0:d5:2c:7c:3c:90: 55:1c:3c:e9:aa:cf:46:4b:52:84:59:c0:0f:9d:0f: 25:06:50:d0:30:3b:4e:68:29:b7:bb:56:c2:ad:9d: de:b1:5f:af:4c:62:fa:07:e0:50:d0:7c:c8:2a:62: d5:97:79:e1:cb:2f:0d:05:36:0d:96:02:fe:d2:21: 1f:5e:22:a3:aa:30:17:a0:89:63:18:9f:a9:1e:93: cc:a1:e8:6b:9d:c9:c8:b5:ba:6f:49:1c:38:12:f2: 11:90:e2:2f:82:b2:99:84:70:d3:39:57:55:eb:c4: 28:fe:d5:c1:82:40:55:91:42:da:7f:bd:5a:88:93: f9:dd:8a:54:64:a5:56:40:4c:bf:13:d6:df:ea:f8: 34:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FA:5B:A2:4C:97:80:CB:D2:A3:9C:4E:CF:94:A1:F9:EE:4C:9D:E0 X509v3 Authority Key Identifier: keyid:1C:7B:30:57:6E:B1:85:08:EF:27:79:C4:EF:5B:B5:72:49:2D:D2:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/HHswV26xhQjvJ3nE71u1ckkt0pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHswV26xhQjvJ3nE71u1ckkt0pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/A6915B34024F11EFAC65F577C4F9AE02/7E933D0427B711EF8867AA49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.148.0-103.232.150.255 144.48.68.0/22 144.48.188.0/22 Signature Algorithm: sha256WithRSAEncryption 85:8d:bc:28:22:20:37:66:15:8d:2b:69:60:e8:1f:0e:c9:d6: a9:42:c6:3e:80:fb:3e:ac:eb:5c:39:57:0d:65:ea:7a:35:56: ad:80:5f:59:2a:5a:68:d0:9c:ad:2e:57:8d:f5:cd:fa:42:92: fe:fa:5d:ab:12:e5:ce:ca:96:86:a0:91:98:15:c8:e1:4d:06: ff:e3:f6:98:5e:17:10:e7:92:3c:7b:7c:3f:cb:19:9e:8e:e7: 79:97:3b:3d:f9:62:a5:d0:37:a7:c3:21:32:e2:ca:29:cb:66: 8f:92:82:77:5b:cd:36:c2:95:02:bc:41:c9:1f:3f:69:d3:a6: 95:f6:98:f1:50:6e:6e:22:62:d7:14:d4:f7:0d:c9:85:49:0b: 2c:b7:08:d9:61:f4:d5:af:b3:c5:54:5c:01:74:65:4a:d1:67: 58:fc:21:66:a1:e2:dc:0e:c8:e9:83:57:b1:9a:dc:4c:c3:b4: 9a:85:84:84:27:bc:83:ca:b0:af:9b:01:14:ae:05:2f:99:6d: 59:ef:17:0c:15:45:3b:0d:11:14:05:3f:4e:35:18:a9:53:e7: 2d:fe:53:da:02:dd:b2:67:70:f1:62:f1:55:46:62:37:8a:66: fe:32:d4:5c:d1:a4:f1:c0:1d:7b:37:8b:c4:d1:71:0e:a2:de: 58:9a:f7:4a -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKDFDN0IzMDU3NkVCMTg1MDhFRjI3NzlDNEVGNUJCNTcy NDkyREQyOTkwHhcNMjUwNDExMDU0MjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4YWJjNi00YjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2orLmFQPrOXlSRy/gpIlbFn6v14QLD+T4h2LbqdoSGGcgXR26RjtwXum1yzk FY1Mn1rZruWzlp0DyfKj9N68C6GMOFYF1jwJvTmxyNUIWbdOezc1S7ZMtHcMNky/ wNT19ZXRvmIeFkgA6JqJNVkTEang1Sx8PJBVHDzpqs9GS1KEWcAPnQ8lBlDQMDtO aCm3u1bCrZ3esV+vTGL6B+BQ0HzIKmLVl3nhyy8NBTYNlgL+0iEfXiKjqjAXoIlj GJ+pHpPMoehrncnItbpvSRw4EvIRkOIvgrKZhHDTOVdV68Qo/tXBgkBVkULaf71a iJP53YpUZKVWQEy/E9bf6vg0vwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBr6W6JM l4DL0qOcTs+UofnuTJ3gMB8GA1UdIwQYMBaAFBx7MFdusYUI7yd5xO9btXJJLdKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS9BNjkxNUIzNDAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9ISHN3VjI2eGhRanZKM25FNzF1MWNra3Qw cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hIc3dWMjZ4aFFqdkozbkU3MXUxY2trdDBway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvQTY5MTVCMzQwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvN0U5MzNEMDQy N0I3MTFFRjg4NjdBQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAmfolAMEAGfolgMEApAwRAMEApAwvDANBgkqhkiG9w0B AQsFAAOCAQEAhY28KCIgN2YVjStpYOgfDsnWqULGPoD7PqzrXDlXDWXqejVWrYBf WSpaaNCcrS5XjfXN+kKS/vpdqxLlzsqWhqCRmBXI4U0G/+P2mF4XEOeSPHt8P8sZ no7neZc7PflipdA3p8MhMuLKKctmj5KCd1vNNsKVArxByR8/adOmlfaY8VBubiJi 1xTU9w3JhUkLLLcI2WH01a+zxVRcAXRlStFnWPwhZqHi3A7I6YNXsZrcTMO0moWE hCe8g8qwr5sBFK4FL5ltWe8XDBVFOw0RFAU/TjUYqVPnLf5T2gLdsmdw8WLxVUZi N4pm/jLUXNGk8cAdezeLxNFxDqLeWJr3Sg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:26 2025 by rpki-client