$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6932258C2F1C11EDA3E29B09C4F9AE02.roa File: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: lSOlJAUUKdf/oxORuEf9BSblv8TlMMz6ihd34X0wQsM= Subject key identifier: 49:85:51:6A:DC:66:C1:78:F1:E7:AA:08:BA:5F:2B:2F:CE:93:FE:C8 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0AC3 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6932258C2F1C11EDA3E29B09C4F9AE02.roa Signing time: Mon 02 Dec 2024 19:38:19 +0000 ROA not before: Mon 02 Dec 2024 19:38:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132827 IP address blocks: 103.11.236.0/24 maxlen: 24 103.11.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2755 (0xac3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Dec 2 19:38:19 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e0cab-80fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:da:a7:94:98:24:53:68:ee:0f:2a:1c:06:c8: 74:7c:5e:00:63:45:10:d8:36:e8:b6:60:e9:82:44: f9:f6:23:2d:10:9e:4e:96:cd:47:99:10:71:b1:7b: 9a:44:aa:4c:b0:eb:ad:ba:c9:f3:f4:50:54:d8:d6: 0c:a0:de:7b:05:05:66:ac:c5:8d:3a:ce:d1:f3:a5: 18:83:53:a2:cf:5e:6e:5f:e1:3e:07:19:0b:67:d0: 4d:02:19:cd:c6:89:79:ec:fe:4b:c8:4d:de:10:90: 10:02:a0:ab:e9:5d:0d:3f:61:8e:78:df:b1:00:fb: 3a:b6:99:86:66:81:19:f0:af:93:75:4b:31:63:19: 5f:67:99:36:7b:d8:30:f6:e3:28:9c:af:bd:2d:67: de:80:d1:52:e3:47:bc:c1:b1:4b:48:50:02:82:e8: 97:bd:b5:ae:d2:7e:f9:d2:b8:69:cf:17:ca:6f:89: 29:70:35:df:8d:c4:3e:fc:b0:da:ed:dd:f9:c2:0c: a7:f7:90:5d:20:a0:92:4e:8d:96:71:26:de:9b:48: 0e:cc:28:d0:b8:2f:7a:59:88:a8:86:25:95:24:b0: 20:45:dd:54:4e:b1:72:a2:fb:1e:5a:2d:56:96:a0: f1:43:2c:7d:a2:de:6a:27:2a:c2:e8:5e:3b:93:18: 5f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:85:51:6A:DC:66:C1:78:F1:E7:AA:08:BA:5F:2B:2F:CE:93:FE:C8 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/6932258C2F1C11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.236.0/24 103.11.238.0/24 Signature Algorithm: sha256WithRSAEncryption da:75:4c:c3:8d:72:da:98:67:59:50:24:70:02:ed:e1:b1:8d: be:89:a5:50:ca:d0:9b:cc:bf:bb:69:05:1a:8c:49:70:69:82: fc:38:30:b8:0d:1f:66:15:10:78:03:4a:f6:bd:14:ee:0b:b1: 95:8a:25:1c:38:eb:c8:4d:b9:ae:9d:f0:fe:f5:a2:17:22:e6: 47:23:b9:26:4f:e3:52:1d:1b:01:82:d4:ec:5f:ac:ef:9f:23: 26:bd:4a:9f:92:8e:d0:31:2e:4f:6e:24:9c:0c:bb:91:b6:8e: c2:92:02:51:8a:e3:ff:31:3e:24:23:fc:c1:24:d5:83:96:74: c7:96:5b:b3:73:d1:65:08:2f:be:0a:44:ae:c3:21:69:f1:eb: 3c:90:37:c8:28:7f:94:18:ab:67:8d:b5:73:86:c5:e9:27:e6: 0b:fb:4e:19:29:6c:e3:39:e5:83:47:43:f0:1e:80:8a:12:7c: f0:f0:85:9e:f9:68:36:6b:ef:52:8f:d0:3e:b7:55:a2:87:ea: 12:fa:ec:78:b3:a5:bd:71:b1:fa:60:d8:89:ec:cb:ad:1b:24: 68:c9:b0:6f:c8:68:e7:f3:7c:46:40:92:fb:d2:35:02:7f:48: 23:b3:8c:20:92:c4:50:96:cb:8d:16:31:e4:d8:99:b7:dc:03: 79:01:ae:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjQxMjAyMTkzODE5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlMGNhYi04MGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdqnlJgkU2juDyocBsh0fF4AY0UQ2DbotmDpgkT59iMtEJ5Ols1HmRBxsXua RKpMsOutusnz9FBU2NYMoN57BQVmrMWNOs7R86UYg1Oiz15uX+E+BxkLZ9BNAhnN xol57P5LyE3eEJAQAqCr6V0NP2GOeN+xAPs6tpmGZoEZ8K+TdUsxYxlfZ5k2e9gw 9uMonK+9LWfegNFS40e8wbFLSFACguiXvbWu0n750rhpzxfKb4kpcDXfjcQ+/LDa 7d35wgyn95BdIKCSTo2WcSbem0gOzCjQuC96WYiohiWVJLAgRd1UTrFyovseWi1W lqDxQyx9ot5qJyrC6F47kxhfmwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEmFUWrc ZsF48eeqCLpfKy/Ok/7IMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I3QjIvNDA2NjUwMDg0MTZGMTFFQUI1QzdDQTY1QzRGOUFFMDIvNjkzMjI1OEMy RjFDMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnC+wDBABnC+4wDQYJKoZIhvcNAQELBQADggEBANp1TMON ctqYZ1lQJHAC7eGxjb6JpVDK0JvMv7tpBRqMSXBpgvw4MLgNH2YVEHgDSva9FO4L sZWKJRw468hNua6d8P71ohci5kcjuSZP41IdGwGC1OxfrO+fIya9Sp+SjtAxLk9u JJwMu5G2jsKSAlGK4/8xPiQj/MEk1YOWdMeWW7Nz0WUIL74KRK7DIWnx6zyQN8go f5QYq2eNtXOGxekn5gv7ThkpbOM55YNHQ/AegIoSfPDwhZ75aDZr71KP0D63VaKH 6hL67Hizpb1xsfpg2Insy60bJGjJsG/IaOfzfEZAkvvSNQJ/SCOzjCCSxFCWy40W MeTYmbfcA3kBruM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:40 2025 by rpki-client