$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/B54C3DBA169411EBBEBD9A23C4F9AE02.roa File: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (raw, json) Hash identifier: nma4xkXXDMJG7QciaymwPc3dJsJxzYlJjEDf7RTo8RE= Subject key identifier: B4:57:3D:5D:B6:FE:96:F9:FC:83:8D:0A:0C:7E:34:70:95:A9:36:2E Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 0761 Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/B54C3DBA169411EBBEBD9A23C4F9AE02.roa Signing time: Wed 02 Apr 2025 21:53:25 +0000 ROA not before: Wed 02 Apr 2025 21:53:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58915 IP address blocks: 103.18.150.0/24 maxlen: 24 103.209.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: Apr 2 21:53:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edb1d5-f390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:85:5f:a6:dc:58:30:9e:e0:53:18:bd:53:1e: 75:6d:f4:08:f1:d9:78:f9:40:5e:b5:0e:4b:f3:c3: 60:cd:ba:bd:1b:f6:c3:7e:f4:60:d7:65:2c:72:55: e4:8d:ed:69:0d:e5:92:c1:72:63:0e:ec:10:ee:70: d0:ec:ed:ec:d5:e6:98:ae:d1:57:19:84:64:88:30: 73:a3:30:b3:62:2a:e8:da:51:13:a0:28:ad:1d:91: a9:04:dd:12:db:a0:b5:9c:fc:48:98:f1:e3:c4:1c: 8a:23:11:50:79:8e:15:90:fd:ac:42:87:e1:c4:05: b4:d1:31:a0:12:a9:d9:1c:f0:5e:e0:ed:4a:23:1c: c9:af:bc:19:9f:4d:1e:37:c6:d6:25:f5:89:50:b9: 44:93:30:aa:da:e7:83:e5:d2:ff:f0:f3:df:b4:ea: 02:12:fc:25:50:64:b5:2f:cb:85:83:3a:3a:6c:63: a6:b8:9a:3d:98:ab:39:16:52:b6:ea:31:b1:3c:6e: 1e:f6:19:03:5e:3d:ef:d3:03:bf:36:1b:5d:1c:19: d5:8e:04:0b:66:66:a9:70:bb:8f:13:f0:d7:87:5d: 2b:b8:a6:88:01:a0:37:bb:c1:af:d7:9e:3e:65:36: 3a:5a:f3:21:75:1e:7f:de:05:11:7a:3b:eb:91:78: 29:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:57:3D:5D:B6:FE:96:F9:FC:83:8D:0A:0C:7E:34:70:95:A9:36:2E X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/B54C3DBA169411EBBEBD9A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.150.0/24 103.209.24.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:8e:8b:55:2e:8a:a7:28:0f:fd:bb:08:a9:4f:de:ec:87:75: 3d:93:94:06:d6:0e:7e:06:92:90:4d:61:60:bd:6d:1d:11:c3: f6:d0:c6:f9:0e:92:36:43:a6:00:80:78:26:85:02:4a:57:d0: 3a:92:49:2d:68:f5:01:81:7a:03:e2:17:46:10:bc:76:48:79: 5f:d7:b5:2d:68:42:ca:31:b5:9a:8d:78:e7:83:a8:97:64:b1: ff:ac:08:54:35:f2:7f:44:89:8b:88:cd:e7:9b:4f:b0:20:0f: e9:6b:34:ee:21:a2:57:e8:b5:d0:a4:c5:b0:2c:9a:12:ab:b9: 8a:3e:0f:b3:2f:60:60:db:6a:b9:d7:7a:8f:f9:58:ac:50:04: 6c:13:26:33:55:3b:75:8f:ce:e0:43:39:f4:29:52:b7:52:35: b2:e4:5d:65:70:2b:8a:1f:42:ab:ce:b7:59:3f:f0:86:ff:41: 89:6d:62:e2:13:da:d4:66:28:78:56:cd:3a:d5:06:e1:e4:6c: 16:4b:3a:34:a8:ea:bb:d0:70:f8:fc:d3:05:07:4c:59:6a:c1: e5:df:82:3f:74:8e:08:85:12:ee:9d:e3:c0:65:9c:84:4c:12: f7:f8:fc:44:db:18:bb:e8:04:6d:5f:4e:8a:bd:dc:7a:5b:e1: 11:98:76:2b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjUwNDAyMjE1MzI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYjFkNS1mMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4VfptxYMJ7gUxi9Ux51bfQI8dl4+UBetQ5L88Ngzbq9G/bDfvRg12UsclXk je1pDeWSwXJjDuwQ7nDQ7O3s1eaYrtFXGYRkiDBzozCzYiro2lEToCitHZGpBN0S 26C1nPxImPHjxByKIxFQeY4VkP2sQofhxAW00TGgEqnZHPBe4O1KIxzJr7wZn00e N8bWJfWJULlEkzCq2ueD5dL/8PPftOoCEvwlUGS1L8uFgzo6bGOmuJo9mKs5FlK2 6jGxPG4e9hkDXj3v0wO/NhtdHBnVjgQLZmapcLuPE/DXh10ruKaIAaA3u8Gv154+ ZTY6WvMhdR5/3gURejvrkXgpmwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLRXPV22 /pb5/IONCgx+NHCVqTYuMB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZGQUIvQUE3RkE0MDAxNjkyMTFFQkI0NUQ4OTFEQzRGOUFFMDIvQjU0QzNEQkEx Njk0MTFFQkJFQkQ5QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnEpYDBAFn0RgwDQYJKoZIhvcNAQELBQADggEBAIuOi1Uu iqcoD/27CKlP3uyHdT2TlAbWDn4GkpBNYWC9bR0Rw/bQxvkOkjZDpgCAeCaFAkpX 0DqSSS1o9QGBegPiF0YQvHZIeV/XtS1oQsoxtZqNeOeDqJdksf+sCFQ18n9EiYuI zeebT7AgD+lrNO4holfotdCkxbAsmhKruYo+D7MvYGDbarnXeo/5WKxQBGwTJjNV O3WPzuBDOfQpUrdSNbLkXWVwK4ofQqvOt1k/8Ib/QYltYuIT2tRmKHhWzTrVBuHk bBZLOjSo6rvQcPj80wUHTFlqweXfgj90jgiFEu6d48BlnIRMEvf4/ETbGLvoBG1f Toq93Hpb4RGYdis= -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:06 2025 by rpki-client