$ rpki-client -vvf rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/AE5FD48E431911EAB8FF4125C4F9AE02.roa File: AE5FD48E431911EAB8FF4125C4F9AE02.roa (raw, json) Hash identifier: wUVOr7bU61HRquV+b+lva4AIoFme7G1z56Vw7wfpFH4= Subject key identifier: 08:D4:40:B8:A4:54:88:F5:92:F6:7D:31:7D:30:27:3C:02:79:22:91 Certificate issuer: /CN=A919F10A/serialNumber=2D5CCCF7C30EB63CDDEA34BE83BE60BB0E027A13 Certificate serial: 0AF0 Authority key identifier: 2D:5C:CC:F7:C3:0E:B6:3C:DD:EA:34:BE:83:BE:60:BB:0E:02:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVzM98MOtjzd6jS-g75guw4CehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/AE5FD48E431911EAB8FF4125C4F9AE02.roa Signing time: Wed 02 Apr 2025 19:49:34 +0000 ROA not before: Wed 02 Apr 2025 19:49:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135127 IP address blocks: 103.210.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/LVzM98MOtjzd6jS-g75guw4CehM.crl rsync://rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/LVzM98MOtjzd6jS-g75guw4CehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVzM98MOtjzd6jS-g75guw4CehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2800 (0xaf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F10A, serialNumber=2D5CCCF7C30EB63CDDEA34BE83BE60BB0E027A13 Validity Not Before: Apr 2 19:49:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed94cd-cd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:8b:43:e4:b6:7b:71:10:f4:51:37:26:22: 24:21:76:7d:11:e2:1b:57:83:b0:d5:82:26:c6:ac: 9a:7b:b7:02:dc:e8:88:2e:02:5e:c5:86:47:31:8b: 5d:7c:28:84:38:6b:04:46:4d:a4:31:e7:19:1c:a8: a7:0b:d8:41:8f:3b:5d:95:4e:2c:02:e8:c1:df:e8: b2:a2:5f:bf:b1:95:66:f0:49:2f:76:5e:c5:87:be: fd:d6:3f:2c:13:2d:1e:95:09:38:1e:f0:13:e8:6f: 0c:ce:ed:62:34:c3:64:a9:ed:73:5f:21:63:fa:ef: 77:71:f4:04:4c:c7:56:0b:d1:88:f6:fe:b4:e8:fe: b8:ec:19:36:7f:6f:41:2f:92:3a:9f:b0:3e:ed:4c: 66:1e:3e:bd:15:3d:75:87:81:ff:95:02:40:d7:c1: cd:37:cf:e6:72:68:15:6c:47:e1:74:0a:42:4e:6e: 6c:08:dc:47:9a:c6:89:d8:b8:eb:10:ca:75:53:b4: 6b:a4:c2:a4:ac:0f:9d:bf:32:e8:ea:44:2d:39:2a: 10:0d:99:01:3f:f2:60:33:6c:9d:ed:ea:7a:3e:cc: d8:ab:c6:e1:23:2b:31:05:f5:a8:0a:01:b7:44:e8: b3:ed:ec:6c:9e:14:5a:3f:91:46:a5:dd:95:f9:2c: cc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D4:40:B8:A4:54:88:F5:92:F6:7D:31:7D:30:27:3C:02:79:22:91 X509v3 Authority Key Identifier: keyid:2D:5C:CC:F7:C3:0E:B6:3C:DD:EA:34:BE:83:BE:60:BB:0E:02:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/LVzM98MOtjzd6jS-g75guw4CehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVzM98MOtjzd6jS-g75guw4CehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F10A/274557FE431811EAA7EC5F22C4F9AE02/AE5FD48E431911EAB8FF4125C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.11.0/24 Signature Algorithm: sha256WithRSAEncryption 15:40:ef:ed:b3:a6:a0:c6:fb:28:49:b6:bd:6f:ec:81:f6:42: 85:d6:3a:d1:8f:de:32:36:9a:65:1d:26:7b:6d:44:78:73:dc: dd:07:75:e4:99:a4:5f:f1:e9:28:26:70:62:12:62:29:0d:5f: 7a:d9:11:17:ed:d0:c8:28:6a:a7:e1:c6:3b:f2:4b:21:ab:51: b9:8b:27:27:3d:93:c2:ac:24:68:96:4d:58:cc:fe:0d:ae:30: 76:53:a1:5b:06:c8:28:23:14:67:8b:be:20:b2:69:4b:72:32: 70:3a:0e:6e:37:67:43:6a:b9:3a:e9:b9:00:57:86:9d:16:f5: a4:5f:5e:20:b3:a6:92:b5:66:a6:ba:d4:c7:11:38:4a:26:0b: aa:8c:c6:55:3e:32:37:fa:4d:1e:57:67:f0:8e:57:8d:27:66: 8f:97:fd:73:c6:ed:59:44:61:e4:46:e6:b4:bd:d2:81:31:8a: bd:93:d9:52:46:5c:d4:f0:f6:f6:43:7a:b5:c5:b8:e5:bc:5e: 49:2e:23:bc:13:a2:ef:c0:df:a2:51:06:40:45:b0:ed:8a:04: b4:49:8e:45:a1:a6:14:c5:16:00:9f:2b:ce:50:5b:a8:8e:9f: 21:a7:58:4a:ac:17:25:3c:5e:c1:0f:bb:80:90:97:53:ef:44: b5:3b:bd:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYxMEExMTAvBgNVBAUTKDJENUNDQ0Y3QzMwRUI2M0NEREVBMzRCRTgzQkU2MEJC MEUwMjdBMTMwHhcNMjUwNDAyMTk0OTM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTRjZC1jZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8SLQ+S2e3EQ9FE3JiIkIXZ9EeIbV4Ow1YImxqyae7cC3OiILgJexYZHMYtd fCiEOGsERk2kMecZHKinC9hBjztdlU4sAujB3+iyol+/sZVm8Ekvdl7Fh7791j8s Ey0elQk4HvAT6G8Mzu1iNMNkqe1zXyFj+u93cfQETMdWC9GI9v606P647Bk2f29B L5I6n7A+7UxmHj69FT11h4H/lQJA18HNN8/mcmgVbEfhdApCTm5sCNxHmsaJ2Ljr EMp1U7RrpMKkrA+dvzLo6kQtOSoQDZkBP/JgM2yd7ep6PszYq8bhIysxBfWoCgG3 ROiz7exsnhRaP5FGpd2V+SzMCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAjUQLik VIj1kvZ9MX0wJzwCeSKRMB8GA1UdIwQYMBaAFC1czPfDDrY83eo0voO+YLsOAnoT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjEwQS8yNzQ1NTdGRTQz MTgxMUVBQTdFQzVGMjJDNEY5QUUwMi9MVnpNOThNT3RqemQ2alMtZzc1Z3V3NENl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWek05OE1PdGp6ZDZqUy1nNzVndXc0Q2VoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYxMEEvMjc0NTU3RkU0MzE4MTFFQUE3RUM1RjIyQzRGOUFFMDIvQUU1RkQ0OEU0 MzE5MTFFQUI4RkY0MTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0gswDQYJKoZIhvcNAQELBQADggEBABVA7+2zpqDG+yhJ tr1v7IH2QoXWOtGP3jI2mmUdJnttRHhz3N0HdeSZpF/x6SgmcGISYikNX3rZERft 0MgoaqfhxjvySyGrUbmLJyc9k8KsJGiWTVjM/g2uMHZToVsGyCgjFGeLviCyaUty MnA6Dm43Z0NquTrpuQBXhp0W9aRfXiCzppK1Zqa61McROEomC6qMxlU+Mjf6TR5X Z/COV40nZo+X/XPG7VlEYeRG5rS90oExir2T2VJGXNTw9vZDerXFuOW8XkkuI7wT ou/A36JRBkBFsO2KBLRJjkWhphTFFgCfK85QW6iOnyGnWEqsFyU8XsEPu4CQl1Pv RLU7vd8= -----END CERTIFICATE-----Generated at Sat Apr 26 09:27:35 2025 by rpki-client