$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa File: 747C668ECCD911EF9B52C877C4F9AE02.roa (raw, json) Hash identifier: vVZpZ/GG/1Ru9DW9P38xQ7eaFTzhr71A4G/otG0nIJg= Subject key identifier: FC:ED:4F:00:27:D2:B3:F1:3F:72:A7:2A:3C:4A:CD:AE:58:00:93:E4 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 79 Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa Signing time: Tue 15 Apr 2025 15:14:18 +0000 ROA not before: Tue 15 Apr 2025 15:14:18 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153325 IP address blocks: 103.251.25.0/24 maxlen: 24 116.206.148.0/24 maxlen: 24 116.206.150.0/24 maxlen: 24 203.19.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Apr 15 15:14:18 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67fe77ca-6e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:71:fb:e7:ec:4e:b4:f5:62:c6:f8:13:c3:e2: 75:23:d8:2e:04:0f:e2:f4:ba:25:ab:31:35:95:d8: 53:3f:f0:c0:a7:6e:86:08:36:b7:2a:9b:eb:67:ef: 6f:f2:45:e9:8c:9d:59:20:a2:be:f5:7b:f1:b3:29: 1d:fd:ea:0f:46:45:b3:e3:6d:04:53:95:64:72:77: 68:69:d3:f3:cb:fc:22:29:96:2c:58:73:db:25:3a: cd:58:81:5c:5a:a0:3b:e5:1c:ad:a9:c9:fb:ae:5b: 3f:e4:bd:f3:dc:04:59:61:51:4c:a2:62:58:09:34: 75:44:96:8c:37:48:b6:35:6c:c2:68:d2:c9:ab:af: 2e:ac:02:54:0f:31:c2:6a:f8:22:ac:69:61:ab:25: 50:85:00:33:a7:03:d7:82:a9:ca:bf:ac:3e:ac:7b: 81:c5:04:b7:9b:13:b7:90:7e:d3:9b:f3:ee:b1:74: 7e:62:6c:07:75:88:ea:ab:34:60:d5:6b:7e:43:4e: 4c:6a:38:68:6e:e7:d8:d5:20:ca:b3:22:21:b6:e0: 7e:b5:f3:dd:3f:fe:4c:9b:51:89:60:31:11:34:bb: 59:61:2e:35:c0:5d:31:16:b0:9a:b5:d2:d7:6c:be: eb:76:da:73:16:82:fe:d8:57:7d:5c:a4:9d:52:25: f4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:ED:4F:00:27:D2:B3:F1:3F:72:A7:2A:3C:4A:CD:AE:58:00:93:E4 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.251.25.0/24 116.206.148.0/24 116.206.150.0/24 203.19.243.0/24 Signature Algorithm: sha256WithRSAEncryption b6:ee:08:a5:ee:e5:c2:d9:d5:a6:33:eb:4b:d0:5c:9c:e7:a9: bf:e7:01:11:45:0e:7d:76:0a:4c:15:21:cd:3d:83:f3:18:e3: 33:0d:b6:41:8f:ef:19:67:ab:32:50:3c:12:85:b7:d7:77:c8: 95:95:5b:92:c2:02:1a:83:41:51:8a:2e:19:94:26:6a:32:f6: 7a:57:3f:c8:c1:6a:43:99:da:fc:b5:ad:5f:5b:75:5f:e0:0c: 17:1b:d2:5a:7f:0e:4e:b5:b0:ef:cc:8c:d0:eb:39:b3:71:fe: 18:b0:1d:4f:36:4a:a1:22:b1:a0:11:81:87:e3:ae:38:9a:5c: 15:c5:46:2b:19:43:d9:0e:75:e3:2a:72:48:0c:a8:da:cd:1e: 33:0a:5b:79:3c:96:03:36:b2:1e:04:c9:f4:fa:98:53:b0:9b: 9c:da:6e:1f:fb:37:cb:f7:7d:58:a6:64:3d:2e:0b:1b:1c:18: f0:21:59:72:cb:06:59:c7:81:5b:24:81:2d:c9:b1:17:a8:03: 02:3a:da:29:23:33:f6:34:87:bd:70:b3:61:64:64:e1:8a:b4: a9:df:67:e8:00:28:ba:22:96:eb:8e:c0:e1:f5:5b:f9:c4:65: 83:eb:26:44:b3:20:06:a4:39:22:48:d7:2a:ba:51:89:6c:a1: ab:56:75:78 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTkzMjExMC8GA1UEBRMoNjVFMTc3MEU3ODg1NTEwQTE4Q0U5MEQ4QUFERDlFREU3 RDVCMzU1MzAeFw0yNTA0MTUxNTE0MThaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmU3N2NhLTZlNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxcfvn7E609WLG+BPD4nUj2C4ED+L0uiWrMTWV2FM/8MCnboYINrcqm+tn72/y RemMnVkgor71e/GzKR396g9GRbPjbQRTlWRyd2hp0/PL/CIplixYc9slOs1YgVxa oDvlHK2pyfuuWz/kvfPcBFlhUUyiYlgJNHVElow3SLY1bMJo0smrry6sAlQPMcJq +CKsaWGrJVCFADOnA9eCqcq/rD6se4HFBLebE7eQftOb8+6xdH5ibAd1iOqrNGDV a35DTkxqOGhu59jVIMqzIiG24H61890//kybUYlgMRE0u1lhLjXAXTEWsJq10tds vut22nMWgv7YV31cpJ1SJfQvAgMBAAGjggKnMIICozAdBgNVHQ4EFgQU/O1PACfS s/E/cqcqPErNrlgAk+QwHwYDVR0jBBgwFoAUZeF3DniFUQoYzpDYqt2e3n1bNVMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxOTMyLzUyMUM4RTVDNzIw NzExRUY5REM4QkEyMUM0RjlBRTAyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5W TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWmVGM0RuaUZVUW9ZenBEWXF0MmUzbjFiTlZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi83NDdDNjY4RUND RDkxMUVGOUI1MkM4NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAGf7GQMEAHTOlAMEAHTOlgMEAMsT8zANBgkqhkiG9w0BAQsF AAOCAQEAtu4Ipe7lwtnVpjPrS9BcnOepv+cBEUUOfXYKTBUhzT2D8xjjMw22QY/v GWerMlA8EoW313fIlZVbksICGoNBUYouGZQmajL2elc/yMFqQ5na/LWtX1t1X+AM FxvSWn8OTrWw78yM0Os5s3H+GLAdTzZKoSKxoBGBh+OuOJpcFcVGKxlD2Q514ypy SAyo2s0eMwpbeTyWAzayHgTJ9PqYU7CbnNpuH/s3y/d9WKZkPS4LGxwY8CFZcssG WceBWySBLcmxF6gDAjraKSMz9jSHvXCzYWRk4Yq0qd9n6AAouiKW647A4fVb+cRl g+smRLMgBqQ5IkjXKrpRiWyhq1Z1eA== -----END CERTIFICATE-----Generated at Sun May 4 15:00:36 2025 by rpki-client