$ rpki-client -vvf rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/A2BE54D2228B11F09A2FAA12C4F9AE02.roa File: A2BE54D2228B11F09A2FAA12C4F9AE02.roa (raw, json) Hash identifier: KFzJJioj1JdEaM7mj8QrDhe5X+FxHdHyz1gyMqXEJCI= Subject key identifier: 3B:5E:5A:A9:31:8A:5A:6C:6C:B5:64:A0:5E:9E:1F:71:92:C2:F5:01 Certificate issuer: /CN=A9133953/serialNumber=1E678C6A217D715B30D9CB22D5F884D17C5699B6 Certificate serial: 1870 Authority key identifier: 1E:67:8C:6A:21:7D:71:5B:30:D9:CB:22:D5:F8:84:D1:7C:56:99:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/A2BE54D2228B11F09A2FAA12C4F9AE02.roa Signing time: Sat 26 Apr 2025 10:45:57 +0000 ROA not before: Sat 26 Apr 2025 10:45:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 147302 IP address blocks: 103.83.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.crl rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 10:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6256 (0x1870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133953, serialNumber=1E678C6A217D715B30D9CB22D5F884D17C5699B6 Validity Not Before: Apr 26 10:45:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=680cb965-f1ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:df:32:2f:61:6a:d0:b1:b2:60:d6:9a:4f: 47:a1:86:fd:5f:11:11:d3:8d:d9:23:69:4c:95:a4: 32:25:aa:31:ea:43:32:06:a0:28:a8:80:1c:6d:b3: fd:32:54:ac:28:78:13:62:a4:12:dd:bb:75:df:3a: 02:9e:f2:43:59:78:15:d1:91:46:96:0c:b3:a7:0e: 3f:03:f1:7d:b9:f9:25:50:e4:f1:fc:8d:e7:3c:ad: 9c:33:ad:0e:11:b0:c0:f9:b6:ca:0e:fd:7a:2a:99: 38:63:57:9a:14:69:87:df:48:b4:3c:92:2b:5f:8b: 83:f6:cb:08:9f:db:05:ea:24:be:0a:b9:29:17:24: 89:34:f2:4f:e4:3e:d4:b6:07:93:94:b4:e5:9f:4f: d0:40:25:a6:dd:56:79:24:8f:5f:ac:64:1d:e2:99: c0:a4:b2:25:e7:71:82:db:ae:44:c8:5b:88:29:7f: 19:3a:7f:42:bf:c5:6e:b0:f0:28:03:aa:6c:5c:ce: 4c:67:cd:1a:5f:77:55:7a:75:de:f5:15:b6:77:c8: 36:d3:a4:13:61:d0:0c:b1:ff:37:62:b3:63:df:80: 7f:ed:96:e1:3d:26:ce:b2:a5:f0:b9:b7:b3:89:08: 90:67:4b:ac:31:bd:bb:35:4b:3d:9b:9e:7b:95:c1: 4b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5E:5A:A9:31:8A:5A:6C:6C:B5:64:A0:5E:9E:1F:71:92:C2:F5:01 X509v3 Authority Key Identifier: keyid:1E:67:8C:6A:21:7D:71:5B:30:D9:CB:22:D5:F8:84:D1:7C:56:99:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/HmeMaiF9cVsw2csi1fiE0XxWmbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmeMaiF9cVsw2csi1fiE0XxWmbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133953/122D8D28A49611E7A926ED4DC4F9AE02/A2BE54D2228B11F09A2FAA12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.89.0/24 Signature Algorithm: sha256WithRSAEncryption 15:9b:96:d8:d9:97:c3:af:46:33:68:c3:18:fc:50:6e:61:fb: ef:67:c9:74:b9:04:ba:0a:56:f1:2f:b4:55:86:a9:ab:b4:d2: bb:00:b2:55:c8:8a:9b:a5:93:55:27:03:d2:18:d1:c1:f7:4a: b5:80:c8:a7:fa:20:fe:3a:fd:83:73:75:36:34:8f:e0:9e:6c: 3e:db:41:69:a2:de:1d:f7:47:99:df:44:8a:f2:59:df:29:9d: b3:84:ca:82:ab:e9:01:af:57:22:db:29:21:60:1c:df:d2:a9: 4a:e0:5d:61:74:75:5e:02:a2:49:27:e8:57:37:9d:67:ff:bd: ef:41:bb:b0:27:4b:f8:ab:80:03:12:30:3b:43:f6:89:d2:e0: a5:75:83:f2:7e:71:d1:5d:0a:c1:60:81:cb:eb:bb:36:ac:f4: c2:44:74:fa:ad:95:85:85:16:72:6b:15:c5:0e:d7:05:2f:a7: b6:68:4d:fc:44:d0:cc:24:a9:99:9e:6d:7a:18:32:36:ce:f5: 34:f8:58:97:99:38:97:5a:7e:aa:fb:47:82:47:a2:85:6e:b8: 52:02:df:31:32:09:eb:bb:9c:95:21:d1:9b:73:49:30:39:94: fd:01:25:2b:05:a5:a4:82:5b:00:22:da:bd:af:22:22:eb:6a: db:24:28:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM5NTMxMTAvBgNVBAUTKDFFNjc4QzZBMjE3RDcxNUIzMEQ5Q0IyMkQ1Rjg4NEQx N0M1Njk5QjYwHhcNMjUwNDI2MTA0NTU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBjYjk2NS1mMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswrfMi9hatCxsmDWmk9HoYb9XxER043ZI2lMlaQyJaox6kMyBqAoqIAcbbP9 MlSsKHgTYqQS3bt13zoCnvJDWXgV0ZFGlgyzpw4/A/F9ufklUOTx/I3nPK2cM60O EbDA+bbKDv16Kpk4Y1eaFGmH30i0PJIrX4uD9ssIn9sF6iS+CrkpFySJNPJP5D7U tgeTlLTln0/QQCWm3VZ5JI9frGQd4pnApLIl53GC265EyFuIKX8ZOn9Cv8VusPAo A6psXM5MZ80aX3dVenXe9RW2d8g206QTYdAMsf83YrNj34B/7ZbhPSbOsqXwubez iQiQZ0usMb27NUs9m557lcFLaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDteWqkx ilpsbLVkoF6eH3GSwvUBMB8GA1UdIwQYMBaAFB5njGohfXFbMNnLItX4hNF8Vpm2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzk1My8xMjJEOEQyOEE0 OTYxMUU3QTkyNkVENERDNEY5QUUwMi9IbWVNYWlGOWNWc3cyY3NpMWZpRTBYeFdt YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htZU1haUY5Y1ZzdzJjc2kxZmlFMFh4V21iWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM5NTMvMTIyRDhEMjhBNDk2MTFFN0E5MjZFRDREQzRGOUFFMDIvQTJCRTU0RDIy MjhCMTFGMDlBMkZBQTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnU1kwDQYJKoZIhvcNAQELBQADggEBABWbltjZl8OvRjNo wxj8UG5h++9nyXS5BLoKVvEvtFWGqau00rsAslXIipulk1UnA9IY0cH3SrWAyKf6 IP46/YNzdTY0j+CebD7bQWmi3h33R5nfRIryWd8pnbOEyoKr6QGvVyLbKSFgHN/S qUrgXWF0dV4Cokkn6Fc3nWf/ve9Bu7AnS/irgAMSMDtD9onS4KV1g/J+cdFdCsFg gcvruzas9MJEdPqtlYWFFnJrFcUO1wUvp7ZoTfxE0MwkqZmebXoYMjbO9TT4WJeZ OJdafqr7R4JHooVuuFIC3zEyCeu7nJUh0ZtzSTA5lP0BJSsFpaSCWwAi2r2vIiLr atskKJg= -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:30 2025 by rpki-client