$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa File: A80498FABAAB11EEBA024655C4F9AE02.roa (raw, json) Hash identifier: g6wCJDrtHyuCox1Dak/0D/0mdLei/24CwRHwHNh/Oi8= Subject key identifier: ED:F5:AC:5C:BE:1E:45:B0:6C:2B:50:E4:BD:67:6B:C4:02:87:7E:01 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 0123 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa Signing time: Mon 03 Mar 2025 06:30:08 +0000 ROA not before: Mon 03 Mar 2025 06:30:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150790 IP address blocks: 103.99.134.0/23 maxlen: 23 103.99.134.0/24 maxlen: 24 103.99.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Mar 3 06:30:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c54c6f-1280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:b1:ee:e0:2b:3d:b7:ba:b4:19:7c:2f:fe: 93:5d:70:75:cb:f4:96:be:40:17:54:8d:d7:17:10: 1d:0e:ef:37:7c:1e:1e:c5:de:e7:6b:3d:a4:b9:9f: 13:be:d5:46:b4:69:df:02:16:d8:21:07:8a:34:8d: ee:4f:b5:5d:34:7b:8b:00:a6:23:9c:93:64:87:d8: d5:2b:61:46:34:16:f0:04:ad:79:05:1b:c3:3e:56: a2:b2:37:65:9b:cd:53:4f:31:5f:de:98:00:dc:c8: c2:81:35:6d:ee:c1:29:73:9d:7d:a2:ea:15:51:4e: b4:12:a3:4e:1e:d7:d0:0b:e2:df:8a:7b:35:65:1d: 30:d8:dd:a3:80:8b:4f:a3:d2:ac:2a:37:d1:17:05: 36:bc:20:3f:c6:b3:4e:e2:ff:3d:bb:51:bd:60:ec: f5:8d:72:0d:dc:bd:4e:24:3f:50:cb:b6:e8:87:69: 81:af:f3:b8:9f:4c:ad:84:09:f0:01:8a:a7:fc:5a: 1f:8a:64:3a:f5:d2:39:f3:90:ba:f9:3d:d0:b5:a6: 18:d3:c5:06:50:a6:bc:fb:0e:69:8f:59:5e:c1:d4: 4e:6b:22:e5:d5:27:9a:f7:e9:64:24:46:85:54:87: 18:38:d6:d8:01:67:c7:71:71:f3:5d:02:b8:8d:60: d4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F5:AC:5C:BE:1E:45:B0:6C:2B:50:E4:BD:67:6B:C4:02:87:7E:01 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.134.0/23 Signature Algorithm: sha256WithRSAEncryption 11:55:9a:a3:99:a4:44:46:53:fe:25:34:1d:ab:76:b3:33:ed: 13:be:83:42:0e:d0:9c:2a:4d:10:75:cb:d2:b8:c4:36:a5:df: 67:06:77:c7:7a:93:d7:6e:81:fa:35:db:b3:52:61:9e:75:52: 87:a0:4b:10:18:4f:5e:0c:51:54:ed:5a:a8:65:a9:fa:c7:2e: e9:2f:55:97:1e:fb:8c:1f:ed:4e:09:e5:29:31:3b:50:6b:71: 7e:27:5e:89:ac:28:69:0e:7e:f8:55:10:66:53:94:d4:e1:10: 10:22:95:75:08:d7:d9:d2:34:51:5f:09:e6:21:dc:ef:98:cf: d0:77:f0:2e:32:68:5f:a1:4a:8e:bd:e9:5c:96:fb:2a:eb:11: b5:de:10:58:ce:e5:a4:76:2d:28:db:35:55:e6:82:83:87:68: b4:ff:96:b6:d4:2f:05:84:09:79:56:6f:ba:d5:fb:22:53:1b: 30:4a:c3:49:d3:69:c4:c7:28:89:5d:d7:d6:73:33:70:bf:69: 08:56:32:bd:37:6f:6b:68:a6:01:82:d2:38:50:b6:e1:aa:07: 0c:10:91:e9:37:b7:4c:8a:49:c3:87:3b:50:08:cd:81:4f:1a: 92:51:63:e9:f3:81:e2:74:4f:02:ce:80:ee:43:3e:bb:a3:6f: 6f:30:39:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUwMzAzMDYzMDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NGM2Zi0xMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzM2x7uArPbe6tBl8L/6TXXB1y/SWvkAXVI3XFxAdDu83fB4exd7naz2kuZ8T vtVGtGnfAhbYIQeKNI3uT7VdNHuLAKYjnJNkh9jVK2FGNBbwBK15BRvDPlaisjdl m81TTzFf3pgA3MjCgTVt7sEpc519ouoVUU60EqNOHtfQC+Lfins1ZR0w2N2jgItP o9KsKjfRFwU2vCA/xrNO4v89u1G9YOz1jXIN3L1OJD9Qy7boh2mBr/O4n0ythAnw AYqn/FofimQ69dI585C6+T3QtaYY08UGUKa8+w5pj1lewdROayLl1Sea9+lkJEaF VIcYONbYAWfHcXHzXQK4jWDUvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO31rFy+ HkWwbCtQ5L1na8QCh34BMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4RkEvNDAwM0Y5MzA1NEEzMTFFRUI3NUY0Njg2QzRGOUFFMDIvQTgwNDk4RkFC QUFCMTFFRUJBMDI0NjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnY4YwDQYJKoZIhvcNAQELBQADggEBABFVmqOZpERGU/4l NB2rdrMz7RO+g0IO0JwqTRB1y9K4xDal32cGd8d6k9dugfo127NSYZ51UoegSxAY T14MUVTtWqhlqfrHLukvVZce+4wf7U4J5SkxO1BrcX4nXomsKGkOfvhVEGZTlNTh EBAilXUI19nSNFFfCeYh3O+Yz9B38C4yaF+hSo696VyW+yrrEbXeEFjO5aR2LSjb NVXmgoOHaLT/lrbULwWECXlWb7rV+yJTGzBKw0nTacTHKIld19ZzM3C/aQhWMr03 b2topgGC0jhQtuGqBwwQkek3t0yKScOHO1AIzYFPGpJRY+nzgeJ0TwLOgO5DPruj b28wORU= -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:57 2025 by rpki-client