$ rpki-client -vvf rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/2DED090C18F211F0B4DFD036C4F9AE02.roa File: 2DED090C18F211F0B4DFD036C4F9AE02.roa (raw, json) Hash identifier: /C0qtTA5i0rVvnV/xAh9o5sYCzRTxWzn/hNOktwoiis= Subject key identifier: 5C:C6:7E:B1:C6:03:61:64:88:D5:92:B6:0D:2E:5E:AF:E5:B0:EA:2E Certificate issuer: /CN=A9134E35/serialNumber=F3F929FF5855ED244FC5833E25ECDF553A58FA67 Certificate serial: 0231 Authority key identifier: F3:F9:29:FF:58:55:ED:24:4F:C5:83:3E:25:EC:DF:55:3A:58:FA:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_kp_1hV7SRPxYM-JezfVTpY-mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/2DED090C18F211F0B4DFD036C4F9AE02.roa Signing time: Mon 14 Apr 2025 05:34:48 +0000 ROA not before: Mon 14 Apr 2025 05:34:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139358 IP address blocks: 103.211.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/8_kp_1hV7SRPxYM-JezfVTpY-mc.crl rsync://rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/8_kp_1hV7SRPxYM-JezfVTpY-mc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_kp_1hV7SRPxYM-JezfVTpY-mc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134E35, serialNumber=F3F929FF5855ED244FC5833E25ECDF553A58FA67 Validity Not Before: Apr 14 05:34:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fc9e78-ba18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f3:01:39:ad:03:9e:61:96:0f:25:a3:cf:9e: 13:ba:59:38:71:34:54:a1:a2:35:7a:0f:4f:ff:07: 73:e3:c5:ad:38:fb:ed:e3:65:00:3f:f4:0c:7f:45: 93:09:9f:32:4c:57:e3:88:af:00:61:1f:e4:30:79: 01:e0:b5:94:d1:7b:dc:58:c4:73:0e:61:2f:f2:5c: 14:3e:d1:1c:fb:b3:6e:f2:bd:9f:b9:f4:bd:7a:23: 1c:cd:cb:3c:00:1b:1e:46:1b:87:c9:3b:4a:10:94: b0:c7:75:7b:51:56:ab:11:4b:cd:e8:a7:95:76:ce: 5d:91:dc:0d:8e:ae:07:cd:f1:e5:72:a6:9a:bc:ea: ed:a2:f6:31:7b:58:92:c1:28:82:3a:4f:6b:48:2d: b3:d0:fa:00:dd:79:01:83:8a:de:e4:82:24:af:ce: d6:6e:ce:e1:5e:28:03:9c:a7:83:ce:6e:9c:a5:7a: 92:64:a1:95:d5:28:d3:be:8e:19:32:66:89:9f:94: 85:3c:9f:74:ef:c3:88:2c:a4:68:d7:36:08:ef:9f: f8:c9:4d:7b:6e:92:3b:cd:e4:ea:24:3f:37:d6:9f: a7:39:7e:18:99:99:66:cd:67:f3:0d:3d:45:29:d9: 29:bb:0d:1d:00:be:b7:83:52:67:52:93:98:31:b9: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C6:7E:B1:C6:03:61:64:88:D5:92:B6:0D:2E:5E:AF:E5:B0:EA:2E X509v3 Authority Key Identifier: keyid:F3:F9:29:FF:58:55:ED:24:4F:C5:83:3E:25:EC:DF:55:3A:58:FA:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/8_kp_1hV7SRPxYM-JezfVTpY-mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_kp_1hV7SRPxYM-JezfVTpY-mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134E35/0E7AB332277B11ED80A38328C4F9AE02/2DED090C18F211F0B4DFD036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.71.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:e8:a0:4f:36:a8:4f:25:22:c0:0e:cd:d9:99:fb:de:0c:f5: 48:53:59:5b:23:7a:f9:41:18:8c:d2:29:a0:7b:03:6c:f7:19: 66:b5:a8:b3:74:d2:31:cf:74:80:bd:46:f1:d2:eb:ae:c4:4d: 9a:d4:6c:5b:cf:ea:00:65:6d:99:d6:07:c0:49:74:0a:0c:5e: 1d:26:a9:76:e7:25:a7:9b:cc:12:28:85:80:b9:1b:ed:db:f7: 9b:47:48:ab:f3:4a:d8:66:61:67:a8:68:e3:0c:4c:17:4b:21: 23:cc:23:9e:0f:58:cd:14:92:d1:bd:aa:23:b0:2b:0b:04:58: b0:30:54:01:95:66:73:23:ab:27:bb:f7:40:73:8b:e1:ae:7a: 2c:f2:6b:91:bd:dd:56:3b:94:ea:0d:ce:04:c0:8b:a5:28:f3: fe:82:4c:12:62:7b:95:69:24:4e:47:6a:1b:0a:86:82:18:54: 1f:28:c0:15:eb:74:04:1b:4d:09:25:27:87:1f:02:0d:68:4b: 04:67:08:52:c1:a8:09:b9:a4:31:5b:cf:ad:4a:7c:69:90:93: fb:7c:3b:87:4a:09:8d:07:e4:5b:fe:c4:c6:d5:71:db:b6:1b: aa:29:f4:90:fc:ca:8b:03:a9:94:7b:c9:95:97:71:76:2e:fd: 73:2d:b3:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRFMzUxMTAvBgNVBAUTKEYzRjkyOUZGNTg1NUVEMjQ0RkM1ODMzRTI1RUNERjU1 M0E1OEZBNjcwHhcNMjUwNDE0MDUzNDQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZjOWU3OC1iYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/MBOa0DnmGWDyWjz54Tulk4cTRUoaI1eg9P/wdz48WtOPvt42UAP/QMf0WT CZ8yTFfjiK8AYR/kMHkB4LWU0XvcWMRzDmEv8lwUPtEc+7Nu8r2fufS9eiMczcs8 ABseRhuHyTtKEJSwx3V7UVarEUvN6KeVds5dkdwNjq4HzfHlcqaavOrtovYxe1iS wSiCOk9rSC2z0PoA3XkBg4re5IIkr87Wbs7hXigDnKeDzm6cpXqSZKGV1SjTvo4Z MmaJn5SFPJ9078OILKRo1zYI75/4yU17bpI7zeTqJD831p+nOX4YmZlmzWfzDT1F Kdkpuw0dAL63g1JnUpOYMbkDWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzGfrHG A2FkiNWStg0uXq/lsOouMB8GA1UdIwQYMBaAFPP5Kf9YVe0kT8WDPiXs31U6WPpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEUzNS8wRTdBQjMzMjI3 N0IxMUVEODBBMzgzMjhDNEY5QUUwMi84X2twXzFoVjdTUlB4WU0tSmV6ZlZUcFkt bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhfa3BfMWhWN1NSUHhZTS1KZXpmVlRwWS1tYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRFMzUvMEU3QUIzMzIyNzdCMTFFRDgwQTM4MzI4QzRGOUFFMDIvMkRFRDA5MEMx OEYyMTFGMEI0REZEMDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn00cwDQYJKoZIhvcNAQELBQADggEBAJzooE82qE8lIsAO zdmZ+94M9UhTWVsjevlBGIzSKaB7A2z3GWa1qLN00jHPdIC9RvHS667ETZrUbFvP 6gBlbZnWB8BJdAoMXh0mqXbnJaebzBIohYC5G+3b95tHSKvzSthmYWeoaOMMTBdL ISPMI54PWM0UktG9qiOwKwsEWLAwVAGVZnMjqye790Bzi+Gueizya5G93VY7lOoN zgTAi6Uo8/6CTBJie5VpJE5HahsKhoIYVB8owBXrdAQbTQklJ4cfAg1oSwRnCFLB qAm5pDFbz61KfGmQk/t8O4dKCY0H5Fv+xMbVcdu2G6op9JD8yosDqZR7yZWXcXYu /XMts40= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:39 2025 by rpki-client