$ rpki-client -vvf rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/ABE8518A18DA11F08FC68386C4F9AE02.roa File: ABE8518A18DA11F08FC68386C4F9AE02.roa (raw, json) Hash identifier: 1QZz1HDQ1jRfLspLePE9D1zwt8zFnYwF7eP5N5O/9vg= Subject key identifier: 74:6B:50:24:ED:47:6F:C5:84:21:9D:38:35:34:6E:6B:BB:54:8B:E1 Certificate issuer: /CN=A912D306/serialNumber=410F0FE97BE9D9ED0756CD4D7636B93F8F238B31 Certificate serial: 3483 Authority key identifier: 41:0F:0F:E9:7B:E9:D9:ED:07:56:CD:4D:76:36:B9:3F:8F:23:8B:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/ABE8518A18DA11F08FC68386C4F9AE02.roa Signing time: Mon 14 Apr 2025 02:46:32 +0000 ROA not before: Mon 14 Apr 2025 02:46:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7700 IP address blocks: 103.30.32.0/22 maxlen: 22 202.63.224.0/20 maxlen: 24 221.120.112.0/21 maxlen: 21 221.120.120.0/21 maxlen: 21 2402:ce00::/32 maxlen: 32 2402:ce01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.crl rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D306, serialNumber=410F0FE97BE9D9ED0756CD4D7636B93F8F238B31 Validity Not Before: Apr 14 02:46:32 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67fc7707-9d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b1:f6:19:47:34:5f:1d:86:2f:06:fa:f1:59: c4:d2:c3:88:8a:73:bc:e8:b3:ad:4b:24:f5:df:cf: 9a:94:bc:28:32:79:8f:a6:51:51:69:f3:39:62:8c: 10:2c:78:c9:87:0d:3d:0b:d0:6b:ca:ea:e8:de:71: 67:b0:0c:86:32:1c:b3:b9:cf:0c:d1:52:44:67:56: c0:2c:e7:b7:00:f0:9b:ed:21:27:8f:56:82:20:14: 0c:e0:8b:13:b0:2b:8c:76:5c:86:31:dd:13:1a:f3: 72:22:e3:be:5d:c7:85:12:eb:d9:db:64:3a:31:b3: 75:09:12:6f:6c:18:90:92:c5:e6:de:5f:be:80:71: c1:4a:bc:0b:53:4a:08:0e:38:3d:b4:f4:a1:35:85: 8b:0f:72:26:c6:a4:11:b0:60:d5:a4:97:7f:89:5d: 4d:a0:c1:71:b0:ba:88:11:6b:dd:72:be:1a:98:96: 7c:0a:d6:80:42:bb:0a:95:6a:96:43:c8:29:b6:00: 0f:23:e0:1c:d7:e1:f1:d5:78:a6:c5:69:5c:63:26: da:a0:de:79:15:8a:2d:f9:8e:42:b5:7b:49:ae:7a: 6d:9b:6d:65:30:8c:83:da:89:fb:54:6f:dc:66:69: 58:2b:53:52:05:95:b6:80:60:67:12:2e:8c:90:aa: a1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6B:50:24:ED:47:6F:C5:84:21:9D:38:35:34:6E:6B:BB:54:8B:E1 X509v3 Authority Key Identifier: keyid:41:0F:0F:E9:7B:E9:D9:ED:07:56:CD:4D:76:36:B9:3F:8F:23:8B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/ABE8518A18DA11F08FC68386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.32.0/22 202.63.224.0/20 221.120.112.0/20 IPv6: 2402:ce00::/31 Signature Algorithm: sha256WithRSAEncryption b0:64:aa:c8:b2:a3:19:af:84:bd:ae:75:82:30:1c:60:73:99: ac:23:63:e4:ec:a2:05:5e:a2:b6:6e:7b:68:03:7f:06:ef:36: 40:af:6d:cc:9f:fa:fe:1b:f4:ef:00:2b:f4:0c:a9:31:8c:69: c3:96:29:72:02:d2:53:8d:87:1e:ac:1b:47:6c:dd:4c:b2:e8: 2e:74:5e:f8:81:72:74:20:f9:87:3f:1e:47:8e:66:5e:21:b8: f2:70:6f:a7:06:49:cb:3a:c8:0a:23:0d:dd:86:fa:de:5b:eb: a6:fa:bf:40:38:96:7a:16:6d:21:c0:b0:bd:5a:e6:cd:2d:7c: a6:bc:a8:7e:78:65:45:de:2d:69:64:14:a8:5b:f1:b8:67:53: 16:49:d6:3b:50:80:7b:32:04:6e:b5:e8:15:84:d1:ea:6d:ab: ba:e8:df:5a:8d:33:5d:1b:2c:dc:bd:d3:86:d5:3d:d9:fa:79: 4b:89:12:1b:ed:43:af:25:a2:01:09:63:2d:1d:bb:25:57:2f: 81:af:97:f1:da:33:e1:cd:d8:64:d7:6a:17:0a:aa:5f:bf:44: 3d:05:92:a5:b0:85:d7:86:3e:51:e8:be:ed:35:1f:cc:4e:bc: ca:91:d7:54:f7:48:28:d0:7d:a8:11:17:e5:a7:d7:36:45:ae: 92:dd:e2:b4 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzMDYxMTAvBgNVBAUTKDQxMEYwRkU5N0JFOUQ5RUQwNzU2Q0Q0RDc2MzZCOTNG OEYyMzhCMzEwHhcNMjUwNDE0MDI0NjMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZjNzcwNy05ZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrH2GUc0Xx2GLwb68VnE0sOIinO86LOtSyT138+alLwoMnmPplFRafM5YowQ LHjJhw09C9Bryuro3nFnsAyGMhyzuc8M0VJEZ1bALOe3APCb7SEnj1aCIBQM4IsT sCuMdlyGMd0TGvNyIuO+XceFEuvZ22Q6MbN1CRJvbBiQksXm3l++gHHBSrwLU0oI Djg9tPShNYWLD3ImxqQRsGDVpJd/iV1NoMFxsLqIEWvdcr4amJZ8CtaAQrsKlWqW Q8gptgAPI+Ac1+Hx1XimxWlcYybaoN55FYot+Y5CtXtJrnptm21lMIyD2on7VG/c ZmlYK1NSBZW2gGBnEi6MkKqh/QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHRrUCTt R2/FhCGdODU0bmu7VIvhMB8GA1UdIwQYMBaAFEEPD+l76dntB1bNTXY2uT+PI4sx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDMwNi9CQ0JEODAxQzFE OEQxMUUyQjQyOUI3RUIwOEIwMkNEMi9RUThQNlh2cDJlMEhWczFOZGphNVA0OGpp ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FROFA2WHZwMmUwSFZzMU5kamE1UDQ4aml6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQzMDYvQkNCRDgwMUMxRDhEMTFFMkI0MjlCN0VCMDhCMDJDRDIvQUJFODUxOEEx OERBMTFGMDhGQzY4Mzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnHiADBATKP+ADBATdeHAwDQQCAAIwBwMFASQCzgAwDQYJ KoZIhvcNAQELBQADggEBALBkqsiyoxmvhL2udYIwHGBzmawjY+TsogVeorZue2gD fwbvNkCvbcyf+v4b9O8AK/QMqTGMacOWKXIC0lONhx6sG0ds3Uyy6C50XviBcnQg +Yc/HkeOZl4huPJwb6cGScs6yAojDd2G+t5b66b6v0A4lnoWbSHAsL1a5s0tfKa8 qH54ZUXeLWlkFKhb8bhnUxZJ1jtQgHsyBG616BWE0eptq7ro31qNM10bLNy904bV Pdn6eUuJEhvtQ68logEJYy0duyVXL4Gvl/HaM+HN2GTXahcKql+/RD0FkqWwhdeG PlHovu01H8xOvMqR11T3SCjQfagRF+Wn1zZFrpLd4rQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:56:45 2025 by rpki-client