$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/65B83800104811F0B4EB540DC4F9AE02.roa File: 65B83800104811F0B4EB540DC4F9AE02.roa (raw, json) Hash identifier: gPeEj7TbdMJkFsvZpQ/te6RCgN+nHiYNDmZuf4HaJ1I= Subject key identifier: 67:96:72:CC:81:81:13:6A:4E:10:7B:65:29:92:DB:BE:6B:09:37:52 Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 0132 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/65B83800104811F0B4EB540DC4F9AE02.roa Signing time: Thu 03 Apr 2025 05:33:26 +0000 ROA not before: Thu 03 Apr 2025 05:33:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 10103 IP address blocks: 43.231.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647, serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: Apr 3 05:33:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ee1da6-9905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b5:62:01:3c:1f:69:00:f8:ad:b1:ee:1f:c9: 42:3e:de:9b:60:9c:bf:59:98:3d:d4:81:91:24:87: c1:fc:92:98:2a:8e:ff:3e:b9:92:75:0d:5f:e9:25: eb:e9:a8:14:a7:94:34:67:73:18:b5:4b:5f:06:6f: 32:ea:a6:39:0e:02:c9:48:21:5d:8c:b8:9e:e0:c5: 4a:67:79:9a:f4:0e:72:0e:22:cc:af:de:63:87:fa: 6c:7b:ff:fe:f6:24:33:e5:02:e1:27:96:de:79:ee: 97:d7:04:0b:a0:9e:7c:f1:0f:20:97:46:70:8e:7b: d9:33:56:e6:99:ed:e2:f8:7e:21:e3:d6:66:32:25: 5a:82:67:17:9a:15:93:88:b3:ab:3e:7c:2d:8b:2d: db:8f:fb:b7:11:6b:77:d2:80:02:40:0c:5c:cc:e5: 35:e4:d0:ec:9b:b4:bc:a2:62:52:0b:8e:3a:af:44: 0f:72:d5:ef:e0:d0:18:dd:9f:4e:e7:48:a7:8f:d4: 5f:80:23:c7:a1:7b:84:ce:f5:4c:49:d0:bf:ba:47: df:9f:aa:be:06:14:49:23:b1:fe:9a:b8:89:ab:1c: 45:4f:52:42:3d:31:2c:f1:c0:3b:d4:c7:23:95:14: 92:19:cc:6d:98:8f:46:a0:ac:44:a4:bb:8c:e1:fa: 1f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:96:72:CC:81:81:13:6A:4E:10:7B:65:29:92:DB:BE:6B:09:37:52 X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/65B83800104811F0B4EB540DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.207.0/24 Signature Algorithm: sha256WithRSAEncryption 71:13:b8:1a:75:6e:64:de:3b:b6:c0:27:3a:60:1b:b6:1d:8a: 5f:34:03:66:14:31:3a:db:ac:14:87:27:2a:6a:35:bc:54:33: e3:c9:db:c7:d5:57:e1:68:24:95:2e:12:06:75:24:64:d9:a0: 37:fd:ca:09:72:c0:3f:61:47:ce:19:7a:e5:32:09:74:48:76: b2:25:06:76:11:f9:80:7f:6b:4b:31:32:83:7f:91:d1:93:95: 8c:87:a8:65:ed:f0:c1:97:07:d3:eb:50:f5:ed:b2:97:62:37: f3:cd:1d:05:02:06:55:93:2e:01:74:45:6e:ea:e4:bb:3f:bc: 19:38:b7:be:07:7e:33:b3:42:b4:48:97:fc:19:82:6f:19:70: 3e:18:d2:ea:21:8c:5c:d1:31:4c:43:e1:8f:56:ae:e4:17:3a: 94:dd:d6:d9:22:6b:13:45:ed:95:fd:ce:c2:69:ae:fa:6b:0c: bf:41:01:f9:63:b2:d0:8f:33:d4:73:94:5f:24:fd:af:0c:d3: 49:a9:3c:b6:2f:bd:d0:e8:dd:0b:3b:19:bf:bb:98:ce:88:22: a9:43:13:3f:2f:73:49:18:77:b7:36:9a:12:48:90:77:a1:1b: bc:42:d6:98:aa:8b:04:e4:59:75:c7:a7:4b:d0:f1:3e:33:fb: f6:46:a7:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw MEQ3ODhCRkIwHhcNMjUwNDAzMDUzMzI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMWRhNi05OTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLViATwfaQD4rbHuH8lCPt6bYJy/WZg91IGRJIfB/JKYKo7/PrmSdQ1f6SXr 6agUp5Q0Z3MYtUtfBm8y6qY5DgLJSCFdjLie4MVKZ3ma9A5yDiLMr95jh/pse//+ 9iQz5QLhJ5beee6X1wQLoJ588Q8gl0ZwjnvZM1bmme3i+H4h49ZmMiVagmcXmhWT iLOrPnwtiy3bj/u3EWt30oACQAxczOU15NDsm7S8omJSC446r0QPctXv4NAY3Z9O 50inj9RfgCPHoXuEzvVMSdC/ukffn6q+BhRJI7H+mriJqxxFT1JCPTEs8cA71Mcj lRSSGcxtmI9GoKxEpLuM4fof8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeWcsyB gRNqThB7ZSmS275rCTdSMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvNjVCODM4MDAx MDQ4MTFGMEI0RUI1NDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr588wDQYJKoZIhvcNAQELBQADggEBAHETuBp1bmTeO7bA JzpgG7Ydil80A2YUMTrbrBSHJypqNbxUM+PJ28fVV+FoJJUuEgZ1JGTZoDf9ygly wD9hR84ZeuUyCXRIdrIlBnYR+YB/a0sxMoN/kdGTlYyHqGXt8MGXB9PrUPXtspdi N/PNHQUCBlWTLgF0RW7q5Ls/vBk4t74HfjOzQrRIl/wZgm8ZcD4Y0uohjFzRMUxD 4Y9WruQXOpTd1tkiaxNF7ZX9zsJprvprDL9BAfljstCPM9RzlF8k/a8M00mpPLYv vdDo3Qs7Gb+7mM6IIqlDEz8vc0kYd7c2mhJIkHehG7xC1piqiwTkWXXHp0vQ8T4z +/ZGp0I= -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:00 2025 by rpki-client