$ rpki-client -vvf rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/2CB6A79C3C6411F098BE6F2EC4F9AE02.roa File: 2CB6A79C3C6411F098BE6F2EC4F9AE02.roa (raw, json) Hash identifier: P6JTGz167Z9TdfCL7daabxEJTzpdJTGmRrb0uaHZZCk= Subject key identifier: 4C:8A:A6:9B:F0:F8:EE:4D:19:A0:8E:11:72:3D:DB:86:DC:67:9F:8B Certificate issuer: /CN=A912DC44/serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Certificate serial: 0D5B Authority key identifier: A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/2CB6A79C3C6411F098BE6F2EC4F9AE02.roa Signing time: Thu 29 May 2025 08:08:59 +0000 ROA not before: Thu 29 May 2025 08:08:59 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150748 IP address blocks: 103.89.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DC44, serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Validity Not Before: May 29 08:08:59 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6838161b-b54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e9:16:fd:6d:36:73:8d:3e:59:46:f4:56:b0: f3:4e:fc:84:4e:50:ec:6d:ff:d6:cf:16:6d:07:69: e1:a5:a9:c6:cc:99:d1:2f:80:98:40:b7:8c:03:6a: 86:da:79:3d:cb:e4:87:c2:ab:7e:13:9d:22:4b:49: 32:e0:0d:13:b9:bc:81:1c:c9:8a:ea:53:74:4f:e6: f3:27:77:ae:0d:15:67:8a:56:fa:78:e4:52:5a:f8: 9f:23:f6:6c:db:75:70:13:72:50:d2:0e:7a:52:77: e3:8e:f0:0f:eb:8a:71:35:8d:e9:77:3d:2d:49:c4: 81:3f:8f:eb:11:49:07:81:4f:84:60:97:1a:b1:ee: b5:b0:f8:c0:9b:2e:ff:96:46:99:da:f9:a0:1e:67: d9:d2:da:bb:75:87:e9:a0:f4:86:1d:3c:67:60:2c: cb:e8:6c:82:61:7b:5c:c3:46:8e:fc:6e:13:65:07: 5e:a9:24:e4:3f:50:6a:c2:1f:45:ae:5f:b0:8e:6a: 8c:bf:f9:35:2d:8e:0a:ad:71:1d:b0:33:3b:88:f9: 65:ec:71:93:e0:0d:2a:e0:5c:03:b1:6b:e7:42:78: 20:4a:d0:16:cd:c7:aa:dc:18:9b:a9:02:60:b7:cd: ff:6a:e2:20:9d:df:48:d5:dc:9a:9b:2e:4c:83:d6: 7e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8A:A6:9B:F0:F8:EE:4D:19:A0:8E:11:72:3D:DB:86:DC:67:9F:8B X509v3 Authority Key Identifier: keyid:A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/2CB6A79C3C6411F098BE6F2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.26.0/24 Signature Algorithm: sha256WithRSAEncryption af:4d:ef:8f:1b:a8:ea:54:d6:0e:8c:ef:86:7c:b6:78:5e:8b: c7:ed:b1:73:cd:60:48:8d:07:21:66:aa:c8:e0:bb:ec:5d:f8: 23:6b:16:12:e0:5c:ab:cd:a7:2d:c9:dc:30:56:63:da:1e:64: 95:0a:33:b4:c0:61:5f:bc:9c:0e:37:4b:af:71:1d:33:f2:f5: d4:75:b8:78:b4:7f:ba:04:d4:0b:78:50:7a:d6:21:78:fa:5f: 7a:00:96:3b:27:c4:f7:6d:40:63:4f:40:16:f0:0b:13:18:e1: 18:6d:ed:1d:b8:32:96:8e:c1:8d:5f:b5:7b:68:34:8f:05:79: a0:cf:e6:6e:f2:d9:03:fd:a8:fc:cc:83:61:ed:e0:f2:80:32: c3:a3:45:8d:6f:16:4d:82:16:b9:99:f0:72:26:8f:25:e1:da: 79:0f:d7:84:e9:11:bf:61:50:c0:27:62:1b:46:ce:b8:be:ef: 9f:44:7b:ca:61:d4:c7:89:da:82:f2:04:07:d6:fa:50:0f:55: a9:db:b9:ca:fc:a9:61:a2:98:7d:38:34:60:b0:f5:f4:e7:17: 3e:ca:fb:4c:74:34:45:5d:12:73:2b:26:bb:20:69:ba:42:bd: cf:c8:75:1d:c6:29:c9:fd:06:31:26:0b:24:c1:c0:9c:a4:0b: f8:4f:39:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRDNDQxMTAvBgNVBAUTKEE2NDIxRkUxM0Q4QzkzQTdCRERGRjhCNTM3MTlCNTgw ODc0OEQwREYwHhcNMjUwNTI5MDgwODU5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4MTYxYi1iNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOkW/W02c40+WUb0VrDzTvyETlDsbf/WzxZtB2nhpanGzJnRL4CYQLeMA2qG 2nk9y+SHwqt+E50iS0ky4A0TubyBHMmK6lN0T+bzJ3euDRVnilb6eORSWvifI/Zs 23VwE3JQ0g56UnfjjvAP64pxNY3pdz0tScSBP4/rEUkHgU+EYJcase61sPjAmy7/ lkaZ2vmgHmfZ0tq7dYfpoPSGHTxnYCzL6GyCYXtcw0aO/G4TZQdeqSTkP1Bqwh9F rl+wjmqMv/k1LY4KrXEdsDM7iPll7HGT4A0q4FwDsWvnQnggStAWzceq3BibqQJg t83/auIgnd9I1dyamy5Mg9Z+TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEyKppvw +O5NGaCOEXI924bcZ5+LMB8GA1UdIwQYMBaAFKZCH+E9jJOnvd/4tTcZtYCHSNDf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREM0NC8yOUI2QkVEQUU0 RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2ZTkzX2kxTnhtMWdJZEkw TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BrSWY0VDJNazZlOTNfaTFOeG0xZ0lkSTBOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRDNDQvMjlCNkJFREFFNEZDMTFFOUIxM0I0ODYwQzRGOUFFMDIvMkNCNkE3OUMz QzY0MTFGMDk4QkU2RjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWRowDQYJKoZIhvcNAQELBQADggEBAK9N748bqOpU1g6M 74Z8tnhei8ftsXPNYEiNByFmqsjgu+xd+CNrFhLgXKvNpy3J3DBWY9oeZJUKM7TA YV+8nA43S69xHTPy9dR1uHi0f7oE1At4UHrWIXj6X3oAljsnxPdtQGNPQBbwCxMY 4Rht7R24MpaOwY1ftXtoNI8FeaDP5m7y2QP9qPzMg2Ht4PKAMsOjRY1vFk2CFrmZ 8HImjyXh2nkP14TpEb9hUMAnYhtGzri+759Ee8ph1MeJ2oLyBAfW+lAPVanbucr8 qWGimH04NGCw9fTnFz7K+0x0NEVdEnMrJrsgabpCvc/IdR3GKcn9BjEmCyTBwJyk C/hPOTg= -----END CERTIFICATE-----Generated at Wed Jun 18 01:48:59 2025 by rpki-client