$ rpki-client -vvf rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa File: 1C64580A4F6111ED9365FC4AC4F9AE02.roa (raw, json) Hash identifier: AMa7aYE2pQQRL34zPWU4u6hxNFQLAiVfzm0sTa2yekY= Subject key identifier: 17:81:31:22:3A:8F:ED:B3:AD:50:01:09:DD:B7:34:9D:0A:CE:3B:9D Certificate issuer: /CN=A919D209/serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Certificate serial: 0721 Authority key identifier: EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa Signing time: Tue 08 Apr 2025 22:02:23 +0000 ROA not before: Tue 08 Apr 2025 22:02:23 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56082 IP address blocks: 43.230.188.0/24 maxlen: 24 103.50.9.0/24 maxlen: 24 103.50.10.0/24 maxlen: 24 103.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D209, serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Validity Not Before: Apr 8 22:02:23 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f59cef-c60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:77:26:6a:22:01:94:02:5c:fb:fe:48:8c:ff: cb:6c:9c:82:58:80:d4:92:79:8c:5d:af:a1:f1:2b: 73:c5:f3:e6:46:8a:be:21:52:76:fc:dd:f5:e8:83: 8b:d3:82:9d:67:6e:55:67:78:f5:38:c0:c2:b9:26: d7:6a:b5:da:0a:7d:ce:1b:60:71:43:8d:48:63:db: 76:6c:90:62:81:a6:00:36:8e:30:6a:7d:92:4f:24: 72:48:d2:9e:9d:f5:87:b9:0c:5f:cc:57:f2:0a:e7: 5c:83:2f:2f:d2:b9:a6:7f:c5:59:02:53:7f:1c:b4: 9d:7d:8f:78:34:97:d7:8c:53:d3:09:05:1f:a8:4f: 23:46:9a:1d:8d:e2:a5:9a:07:7e:28:98:6c:0f:69: 9b:95:08:28:13:87:e6:9f:d8:f7:f3:e3:0f:06:af: 00:93:1f:7d:30:5a:3f:19:d3:a4:c4:49:be:a8:ba: da:c9:e1:2b:f9:0e:31:f9:04:a9:c2:90:d6:eb:bf: 78:e5:9f:0f:66:2c:bb:30:21:e6:1d:c1:3f:be:b5: d3:e3:79:3a:2b:e6:de:80:d6:e2:70:90:46:ae:a1: 61:95:c8:fc:11:79:5e:16:65:73:80:01:dd:a8:20: dd:da:1c:2b:05:7d:56:e5:5d:01:a3:5d:f5:e4:84: 21:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:81:31:22:3A:8F:ED:B3:AD:50:01:09:DD:B7:34:9D:0A:CE:3B:9D X509v3 Authority Key Identifier: keyid:EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.188.0/24 103.50.9.0-103.50.11.255 Signature Algorithm: sha256WithRSAEncryption 72:ac:e2:30:6e:20:b5:f3:e8:6c:e2:31:0c:ef:aa:dd:5f:20: 82:ef:7d:39:f4:6d:51:99:3d:d5:3d:a8:69:09:10:79:c1:e7: 2b:05:97:ed:ae:dd:2c:f4:45:0d:6f:96:82:5d:56:6a:cc:8e: 79:4e:5a:56:ca:49:ff:ff:85:a7:37:dc:8e:d0:3e:30:8a:81: 8c:cd:82:88:db:fc:96:65:92:03:6d:cb:f9:aa:37:66:36:ac: 47:88:f7:9e:15:97:bc:a9:ae:89:2d:1e:df:e9:ac:00:0a:1c: 16:d2:96:32:c1:b3:12:84:94:b8:d2:23:cd:2e:7f:7d:db:c0: 4d:52:dd:29:03:f5:98:cb:34:56:70:15:00:13:7d:18:75:1f: a3:eb:c3:b5:b9:3e:70:1b:3a:88:9e:6c:e0:57:d0:23:63:78: b8:74:46:3f:fd:3d:77:b5:f8:dd:95:f5:c1:39:5c:ca:eb:1d: 8f:16:ce:9b:e9:00:08:e3:ee:be:82:55:68:7b:ea:94:e1:19: dc:fc:7f:79:44:af:2a:5d:e9:bc:94:a1:7c:7f:38:5c:1f:44: 4a:6a:82:20:d2:1d:69:9f:e4:79:1e:f0:83:ee:8f:df:16:53: bb:23:79:e7:1e:d0:de:80:82:34:74:7c:d9:70:c0:41:8b:e8: a5:83:09:d0 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyMDkxMTAvBgNVBAUTKEVCNjJERkM3MzRBMjVCQzE1NEQzNjdBOThDRjI3RUQx NkY0MUVBRDAwHhcNMjUwNDA4MjIwMjIzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1OWNlZi1jNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXcmaiIBlAJc+/5IjP/LbJyCWIDUknmMXa+h8StzxfPmRoq+IVJ2/N316IOL 04KdZ25VZ3j1OMDCuSbXarXaCn3OG2BxQ41IY9t2bJBigaYANo4wan2STyRySNKe nfWHuQxfzFfyCudcgy8v0rmmf8VZAlN/HLSdfY94NJfXjFPTCQUfqE8jRpodjeKl mgd+KJhsD2mblQgoE4fmn9j38+MPBq8Akx99MFo/GdOkxEm+qLrayeEr+Q4x+QSp wpDW67945Z8PZiy7MCHmHcE/vrXT43k6K+begNbicJBGrqFhlcj8EXleFmVzgAHd qCDd2hwrBX1W5V0Bo1315IQhBQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFBeBMSI6 j+2zrVABCd23NJ0KzjudMB8GA1UdIwQYMBaAFOti38c0olvBVNNnqYzyftFvQerQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDIwOS9CMzM5N0I0QTM1 M0ExMUVCQjdFQjZCMThDNEY5QUUwMi82MkxmeHpTaVc4RlUwMmVwalBKLTBXOUI2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYyTGZ4elNpVzhGVTAyZXBqUEotMFc5QjZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyMDkvQjMzOTdCNEEzNTNBMTFFQkI3RUI2QjE4QzRGOUFFMDIvMUM2NDU4MEE0 RjYxMTFFRDkzNjVGQzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAAr5rwwDAMEAGcyCQMEAmcyCDANBgkqhkiG9w0BAQsFAAOC AQEAcqziMG4gtfPobOIxDO+q3V8ggu99OfRtUZk91T2oaQkQecHnKwWX7a7dLPRF DW+Wgl1WasyOeU5aVspJ//+FpzfcjtA+MIqBjM2CiNv8lmWSA23L+ao3ZjasR4j3 nhWXvKmuiS0e3+msAAocFtKWMsGzEoSUuNIjzS5/fdvATVLdKQP1mMs0VnAVABN9 GHUfo+vDtbk+cBs6iJ5s4FfQI2N4uHRGP/09d7X43ZX1wTlcyusdjxbOm+kACOPu voJVaHvqlOEZ3Px/eUSvKl3pvJShfH84XB9ESmqCINIdaZ/keR7wg+6P3xZTuyN5 5x7Q3oCCNHR82XDAQYvopYMJ0A== -----END CERTIFICATE-----Generated at Sat Apr 26 14:19:01 2025 by rpki-client