$ rpki-client -vvf rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/B492147E047B11EBBA181F4FC4F9AE02.roa File: B492147E047B11EBBA181F4FC4F9AE02.roa (raw, json) Hash identifier: KDA9/GHhy0rjdE5GkXBH2Mt48KB9YjSR7eGXIC67yec= Subject key identifier: 46:98:B1:0A:13:60:5D:E7:0F:6B:37:F6:EC:00:0D:5A:B1:11:3A:73 Certificate issuer: /CN=A915890D/serialNumber=8D37894B0941ECFD4D6B05E1E14CAB856987B05D Certificate serial: 20AB Authority key identifier: 8D:37:89:4B:09:41:EC:FD:4D:6B:05:E1:E1:4C:AB:85:69:87:B0:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/B492147E047B11EBBA181F4FC4F9AE02.roa Signing time: Mon 14 Apr 2025 16:23:39 +0000 ROA not before: Mon 14 Apr 2025 16:23:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10143 IP address blocks: 103.55.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.crl rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8363 (0x20ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915890D, serialNumber=8D37894B0941ECFD4D6B05E1E14CAB856987B05D Validity Not Before: Apr 14 16:23:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fd368a-4a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:60:9e:56:5e:d2:e6:4b:16:2c:23:e8:4f:02: 9c:8f:e7:5f:a1:85:f7:6c:48:0f:2e:ed:2f:d0:85: 18:81:c8:41:38:25:e4:dd:37:81:c2:1e:bf:4b:f0: 2b:cf:0d:01:56:f8:1c:7b:dc:26:c6:c7:18:7e:84: 90:3c:77:ef:d0:f3:9b:c6:57:d0:8d:e9:40:7c:e3: ac:5a:eb:5c:4f:e3:f5:c5:99:6e:b9:24:5b:85:45: a0:8e:49:13:55:b7:aa:d7:7d:56:d0:41:36:fc:53: 5a:68:78:d8:14:c3:7b:4e:7e:dd:4b:e8:95:5b:54: 47:1f:66:98:38:b7:d1:52:f6:21:d4:73:59:a6:3c: 80:fa:48:04:25:47:f7:ec:bb:26:15:c7:09:78:56: df:fb:14:88:2f:74:0f:04:5a:42:e1:7f:b3:3a:16: 96:70:9f:82:71:4c:61:17:6d:b0:68:dd:d2:be:b2: 1c:fb:47:e2:5a:a0:3a:01:7f:0d:c1:05:44:22:31: 58:8c:e4:bf:f9:45:28:1f:28:fc:a5:21:2c:ca:c8: 7e:27:8b:c4:cc:55:cd:54:9c:e0:f7:e2:75:fb:28: 52:2f:35:2d:61:e3:f3:66:bb:d7:d3:1e:78:41:12: 51:93:3d:29:1a:c3:54:b6:da:51:23:2f:8a:57:d7: 2f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:B1:0A:13:60:5D:E7:0F:6B:37:F6:EC:00:0D:5A:B1:11:3A:73 X509v3 Authority Key Identifier: keyid:8D:37:89:4B:09:41:EC:FD:4D:6B:05:E1:E1:4C:AB:85:69:87:B0:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/B492147E047B11EBBA181F4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.212.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:09:f9:04:b9:9c:da:40:ab:bd:f1:d8:86:a7:c5:3e:33:75: 27:44:43:da:ce:6a:7b:63:49:85:4a:ce:6a:94:16:1e:98:dd: dd:60:bc:65:91:77:7b:29:28:d5:8d:47:ca:de:50:eb:1c:7e: eb:a3:87:14:f5:3f:af:64:03:78:12:94:22:3d:dd:f4:98:f9: 0f:4d:fe:2e:91:af:ae:63:35:24:bb:eb:00:87:71:47:20:59: 30:8d:6d:86:f3:02:9e:ab:1e:01:a6:f8:29:68:90:a2:84:a0: ab:d5:24:4c:a7:f2:53:13:33:3a:7b:85:66:b2:b1:5a:84:0b: ad:35:8a:b6:80:1f:4a:46:52:96:75:ef:62:30:f0:a4:60:59: 94:c8:e8:25:16:c0:63:5c:38:80:d3:34:f8:f7:e9:fc:f4:96: 42:5d:cd:23:a8:4c:7b:a3:20:fe:90:65:19:7d:bd:d7:8d:08: ce:e5:63:c9:b4:b7:c4:16:a4:0c:b3:e4:1e:5d:4c:34:1b:ec: ca:32:87:ba:14:75:ec:0b:63:0e:3a:47:3a:28:84:b8:89:91: 14:a8:97:80:a2:55:80:df:f0:8d:6b:10:90:ab:b2:c9:c2:04: 09:13:d3:26:63:63:60:0c:d0:a9:41:32:85:a7:c6:a4:95:82: e5:18:ca:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5MEQxMTAvBgNVBAUTKDhEMzc4OTRCMDk0MUVDRkQ0RDZCMDVFMUUxNENBQjg1 Njk4N0IwNUQwHhcNMjUwNDE0MTYyMzM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkMzY4YS00YTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WCeVl7S5ksWLCPoTwKcj+dfoYX3bEgPLu0v0IUYgchBOCXk3TeBwh6/S/Ar zw0BVvgce9wmxscYfoSQPHfv0PObxlfQjelAfOOsWutcT+P1xZluuSRbhUWgjkkT Vbeq131W0EE2/FNaaHjYFMN7Tn7dS+iVW1RHH2aYOLfRUvYh1HNZpjyA+kgEJUf3 7LsmFccJeFbf+xSIL3QPBFpC4X+zOhaWcJ+CcUxhF22waN3SvrIc+0fiWqA6AX8N wQVEIjFYjOS/+UUoHyj8pSEsysh+J4vEzFXNVJzg9+J1+yhSLzUtYePzZrvX0x54 QRJRkz0pGsNUttpRIy+KV9cvewIDAQABo4IClTCCApEwHQYDVR0OBBYEFEaYsQoT YF3nD2s39uwADVqxETpzMB8GA1UdIwQYMBaAFI03iUsJQez9TWsF4eFMq4Vph7Bd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODkwRC8yMUI3QTgwRUZG RkMxMUU1ODZCNEQ5NjRDNEY5QUUwMi9qVGVKU3dsQjdQMU5hd1hoNFV5cmhXbUhz RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pUZUpTd2xCN1AxTmF3WGg0VXlyaFdtSHNGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg5MEQvMjFCN0E4MEVGRkZDMTFFNTg2QjREOTY0QzRGOUFFMDIvQjQ5MjE0N0Uw NDdCMTFFQkJBMTgxRjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnN9QwDQYJKoZIhvcNAQELBQADggEBAFsJ+QS5nNpAq73x 2IanxT4zdSdEQ9rOantjSYVKzmqUFh6Y3d1gvGWRd3spKNWNR8reUOscfuujhxT1 P69kA3gSlCI93fSY+Q9N/i6Rr65jNSS76wCHcUcgWTCNbYbzAp6rHgGm+ClokKKE oKvVJEyn8lMTMzp7hWaysVqEC601iraAH0pGUpZ172Iw8KRgWZTI6CUWwGNcOIDT NPj36fz0lkJdzSOoTHujIP6QZRl9vdeNCM7lY8m0t8QWpAyz5B5dTDQb7Moyh7oU dewLYw46RzoohLiJkRSol4CiVYDf8I1rEJCrssnCBAkT0yZjY2AM0KlBMoWnxqSV guUYytI= -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:24 2025 by rpki-client