$ rpki-client -vvf rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/E5DE3744492611EAA7ADEB71C4F9AE02.roa File: E5DE3744492611EAA7ADEB71C4F9AE02.roa (raw, json) Hash identifier: 6/Bcw5YjZPi9shssWW0OtrdPJZKAVnJFq1ohKYFJu8E= Subject key identifier: F3:4E:E6:FF:D2:0F:BE:FE:37:1D:8C:95:9F:08:EA:47:4B:4E:A3:2F Certificate issuer: /CN=A9148827/serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Certificate serial: 0AE4 Authority key identifier: 48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/E5DE3744492611EAA7ADEB71C4F9AE02.roa Signing time: Wed 26 Mar 2025 19:29:42 +0000 ROA not before: Wed 26 Mar 2025 19:29:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136450 IP address blocks: 103.88.140.0/22 maxlen: 24 116.204.230.0/24 maxlen: 24 2400:e340::/32 maxlen: 32 2400:e340:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148827, serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Validity Not Before: Mar 26 19:29:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e455a6-6351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:6d:2c:bc:bc:ef:01:12:b7:5e:ee:f4:c6: 88:16:d0:a6:c7:65:13:92:22:c1:bd:fe:3a:6d:87: bc:79:d6:eb:29:11:3f:19:50:90:b8:15:cb:8e:21: 10:b5:0d:5b:39:0c:ac:8d:b9:dc:36:8c:01:52:db: ee:ac:d5:5c:e5:c1:8c:19:5b:1c:f2:1c:8b:33:a0: b0:c7:29:c0:1c:a9:11:6e:72:54:50:d5:50:17:9d: 4e:7b:56:09:0f:9d:62:3e:d3:4e:e8:06:20:42:32: b2:57:b0:3e:c9:8d:04:44:6f:9c:0f:41:57:c7:a5: 00:d6:bb:df:36:6a:bd:d9:26:fa:0d:28:c4:7e:a3: ec:18:d2:4d:eb:a1:1f:80:7d:e7:96:a5:1f:00:21: 64:cf:75:de:d6:c8:9a:b6:50:02:8f:ae:e3:0e:6c: 81:33:88:34:1d:13:85:06:5c:15:50:26:fb:ab:4d: 16:4d:3c:13:7f:8d:aa:84:bf:0f:7b:7b:6c:bb:bf: d2:f6:4e:92:64:32:46:67:37:e6:23:a1:1b:74:32: 6a:da:58:ce:cb:c1:ae:18:ec:f0:dc:95:f7:ea:49: 27:a6:38:75:f6:c7:21:4d:90:2e:7f:03:1c:b9:5c: ee:fa:38:b1:7a:4b:e2:21:6f:f8:11:9d:1e:c6:35: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4E:E6:FF:D2:0F:BE:FE:37:1D:8C:95:9F:08:EA:47:4B:4E:A3:2F X509v3 Authority Key Identifier: keyid:48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/E5DE3744492611EAA7ADEB71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.140.0/22 116.204.230.0/24 IPv6: 2400:e340::/32 Signature Algorithm: sha256WithRSAEncryption 5a:63:b0:cc:27:40:23:d4:ff:f9:29:55:3c:97:15:de:c1:12: 83:28:2c:ff:4b:9c:38:59:63:c0:2b:c0:70:26:8b:eb:d6:05: 8f:18:b6:9f:8a:b6:05:22:81:75:14:3e:9e:26:01:14:86:7b: ca:15:d5:88:76:72:14:7f:c0:43:5f:ef:11:04:9b:1a:52:e0: 28:33:2c:e3:ab:6e:c9:86:d3:2a:46:cf:59:99:31:5b:da:34: 7d:a6:0d:bd:80:f1:8e:97:d9:29:b8:24:b6:83:0a:d2:7b:f0: 55:35:95:23:a9:e1:0d:89:af:98:f6:eb:cb:f0:eb:3f:06:06: 62:a1:79:02:a0:13:8a:6b:23:d3:da:fa:e8:56:1b:ab:26:35: e2:67:8a:ce:c4:cd:a5:d6:8b:5b:d1:b8:b9:38:5c:ee:4e:cb: 31:7f:0d:f9:29:70:3e:2e:c6:42:31:1e:a0:39:65:da:33:0f: b5:1e:0a:2a:0f:d4:0d:ee:fc:44:9d:1f:29:2d:2f:a5:35:07: 00:95:2e:ee:05:28:47:cf:dc:51:d3:1a:60:84:eb:2b:17:32: 2c:f1:02:20:1f:26:97:c3:4d:f7:ed:d2:8a:d1:b3:a4:c0:a0: 97:17:50:72:5e:5c:6a:ca:97:52:35:39:09:94:53:dc:16:cc: 38:9c:73:a8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg4MjcxMTAvBgNVBAUTKDQ4NEFFOEMwRDE1Nzk5QjVGRjA4MUZFNDBDM0UxRTAw RTRFODk0NzgwHhcNMjUwMzI2MTkyOTQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NTVhNi02MzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2VtLLy87wESt17u9MaIFtCmx2UTkiLBvf46bYe8edbrKRE/GVCQuBXLjiEQ tQ1bOQysjbncNowBUtvurNVc5cGMGVsc8hyLM6CwxynAHKkRbnJUUNVQF51Oe1YJ D51iPtNO6AYgQjKyV7A+yY0ERG+cD0FXx6UA1rvfNmq92Sb6DSjEfqPsGNJN66Ef gH3nlqUfACFkz3Xe1siatlACj67jDmyBM4g0HROFBlwVUCb7q00WTTwTf42qhL8P e3tsu7/S9k6SZDJGZzfmI6EbdDJq2ljOy8GuGOzw3JX36kknpjh19schTZAufwMc uVzu+jixekviIW/4EZ0exjXnZQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPNO5v/S D77+Nx2MlZ8I6kdLTqMvMB8GA1UdIwQYMBaAFEhK6MDRV5m1/wgf5Aw+HgDk6JR4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODgyNy84ODg3MTkzNjQ5 MjUxMUVBQTk0NDk3NkZDNEY5QUUwMi9TRXJvd05GWG1iWF9DQl9rREQ0ZUFPVG9s SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFcm93TkZYbWJYX0NCX2tERDRlQU9Ub2xIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg4MjcvODg4NzE5MzY0OTI1MTFFQUE5NDQ5NzZGQzRGOUFFMDIvRTVERTM3NDQ0 OTI2MTFFQUE3QURFQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnWIwDBAB0zOYwDQQCAAIwBwMFACQA40AwDQYJKoZIhvcN AQELBQADggEBAFpjsMwnQCPU//kpVTyXFd7BEoMoLP9LnDhZY8ArwHAmi+vWBY8Y tp+KtgUigXUUPp4mARSGe8oV1Yh2chR/wENf7xEEmxpS4CgzLOOrbsmG0ypGz1mZ MVvaNH2mDb2A8Y6X2Sm4JLaDCtJ78FU1lSOp4Q2Jr5j268vw6z8GBmKheQKgE4pr I9Pa+uhWG6smNeJnis7EzaXWi1vRuLk4XO5OyzF/DfkpcD4uxkIxHqA5ZdozD7Ue CioP1A3u/ESdHyktL6U1BwCVLu4FKEfP3FHTGmCE6ysXMizxAiAfJpfDTfft0orR s6TAoJcXUHJeXGrKl1I1OQmUU9wWzDicc6g= -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:16 2025 by rpki-client