$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa File: BD843CCE984011E79A256C82C4F9AE02.roa (raw, json) Hash identifier: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk= Subject key identifier: D1:50:07:A0:52:C5:AB:D4:AC:A7:06:9F:62:AB:6E:DC:78:68:01:CB Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 18A7 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa Signing time: Wed 04 Jun 2025 16:36:52 +0000 ROA not before: Wed 04 Jun 2025 16:36:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134732 IP address blocks: 45.248.148.0/22 maxlen: 24 103.217.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6311 (0x18a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Jun 4 16:36:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68407624-81e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1c:de:69:00:3f:67:95:ab:ef:e8:36:57:00: 45:ed:03:3e:d2:e1:bf:21:0e:af:c3:f4:64:1c:50: 24:a8:c1:22:ce:ad:48:0d:13:90:42:83:53:1d:a8: 5c:b6:c4:61:9f:9a:e2:15:92:ab:ef:d9:ef:59:2b: f9:78:20:92:0c:5c:88:a9:8f:fd:9e:fc:74:f9:5e: c0:7e:02:28:72:fa:48:f5:20:70:e9:93:11:66:9f: be:95:09:84:49:31:bc:48:37:61:fb:11:db:5f:ca: 0a:ed:48:0b:c7:15:4a:8e:87:9c:e0:2a:e4:5e:52: 1e:22:2e:48:71:7e:42:7d:0b:1b:2d:35:14:c8:dc: 07:ba:96:f0:00:26:74:72:c7:35:af:2a:ef:fe:6f: d7:f4:eb:c0:b8:a1:27:88:31:7a:be:26:b4:05:ba: 80:46:4f:ff:85:ec:56:19:e8:eb:6b:c0:8e:89:46: ca:ee:f9:84:7e:be:0f:68:f0:1a:86:ab:72:bf:43: 14:45:59:2d:db:cb:9c:38:a8:89:80:8e:69:53:9c: 0f:9c:dd:3c:67:0b:d2:ed:78:63:f6:97:54:8e:10: af:c2:53:9d:41:8e:d6:77:89:2c:3c:2c:99:03:a9: 0a:54:f5:d2:29:2e:e3:4f:fb:23:e5:73:9c:51:22: b4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:50:07:A0:52:C5:AB:D4:AC:A7:06:9F:62:AB:6E:DC:78:68:01:CB X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.148.0/22 103.217.108.0/22 Signature Algorithm: sha256WithRSAEncryption 59:5d:60:87:10:bc:25:43:cd:f6:87:b0:c9:e1:4f:c1:d1:a2: 4b:30:2a:53:e8:b6:8a:62:d6:e9:ae:c1:d6:4e:ef:83:f2:63: 3b:fb:5d:12:e1:fb:1d:c9:ab:6e:61:c4:1f:98:f7:5d:bc:2a: a0:2d:f9:a9:ce:c4:d9:04:06:aa:11:b5:ae:47:16:bb:4d:1c: e7:f3:a5:32:e7:f5:73:42:d8:37:25:5c:e1:9c:65:f1:16:e5: 98:0d:cf:82:b0:6d:40:b3:61:cb:3f:61:50:d3:5a:9c:d8:da: 73:db:42:53:ba:cc:33:54:ca:00:27:c9:92:7f:d5:2b:c9:5f: b1:87:9d:27:37:27:47:08:45:70:00:b8:46:89:12:82:9e:e1: ba:4a:fe:76:72:af:9b:41:b4:ec:da:79:b1:66:50:d0:66:0c: ed:61:80:27:a0:c5:9e:02:cc:8e:5f:54:94:a9:4d:7b:74:1f: 86:3a:12:7d:23:47:62:62:20:da:16:21:f7:28:63:5f:f4:6c: 5e:e2:c5:2d:ee:4b:80:ee:91:9c:e1:b4:75:09:e1:7d:1b:89: 90:ab:95:a7:1c:5b:bb:10:7a:82:2d:b9:aa:76:52:4a:cd:50: 55:4e:ca:54:c5:0d:4a:c9:da:4f:66:37:bf:97:1f:2b:58:a4: 8e:e9:43:5b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUwNjA0MTYzNjUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwNzYyNC04MWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xzeaQA/Z5Wr7+g2VwBF7QM+0uG/IQ6vw/RkHFAkqMEizq1IDROQQoNTHahc tsRhn5riFZKr79nvWSv5eCCSDFyIqY/9nvx0+V7AfgIocvpI9SBw6ZMRZp++lQmE STG8SDdh+xHbX8oK7UgLxxVKjoec4CrkXlIeIi5IcX5CfQsbLTUUyNwHupbwACZ0 csc1ryrv/m/X9OvAuKEniDF6via0BbqARk//hexWGejra8COiUbK7vmEfr4PaPAa hqtyv0MURVkt28ucOKiJgI5pU5wPnN08ZwvS7Xhj9pdUjhCvwlOdQY7Wd4ksPCyZ A6kKVPXSKS7jT/sj5XOcUSK0NwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNFQB6BS xavUrKcGn2Krbtx4aAHLMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4MkUvMzExRUFDNTY5ODQwMTFFN0I3NjhFQjgxQzRGOUFFMDIvQkQ4NDNDQ0U5 ODQwMTFFNzlBMjU2QzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+JQDBAJn2WwwDQYJKoZIhvcNAQELBQADggEBAFldYIcQ vCVDzfaHsMnhT8HRokswKlPotopi1umuwdZO74PyYzv7XRLh+x3Jq25hxB+Y9128 KqAt+anOxNkEBqoRta5HFrtNHOfzpTLn9XNC2DclXOGcZfEW5ZgNz4KwbUCzYcs/ YVDTWpzY2nPbQlO6zDNUygAnyZJ/1SvJX7GHnSc3J0cIRXAAuEaJEoKe4bpK/nZy r5tBtOzaebFmUNBmDO1hgCegxZ4CzI5fVJSpTXt0H4Y6En0jR2JiINoWIfcoY1/0 bF7ixS3uS4DukZzhtHUJ4X0biZCrlaccW7sQeoItuap2UkrNUFVOylTFDUrJ2k9m N7+XHytYpI7pQ1s= -----END CERTIFICATE-----Generated at Fri Jun 20 17:46:14 2025 by rpki-client