$ rpki-client -vvf rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/54E9D878F08311EB8268373EC4F9AE02.roa File: 54E9D878F08311EB8268373EC4F9AE02.roa (raw, json) Hash identifier: 8y3Epn+RQPXFv9pgi5oZ0cHxkJmsNKiHePV1qSGzALU= Subject key identifier: 96:49:A7:64:04:75:12:65:83:B3:B7:7A:70:C3:F7:C2:F6:4A:DB:F1 Certificate issuer: /CN=A911418D/serialNumber=0E03D3C2E8F2C53582BED1C214C1FD3AAEA5AE5A Certificate serial: 057B Authority key identifier: 0E:03:D3:C2:E8:F2:C5:35:82:BE:D1:C2:14:C1:FD:3A:AE:A5:AE:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DgPTwujyxTWCvtHCFMH9Oq6lrlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/54E9D878F08311EB8268373EC4F9AE02.roa Signing time: Tue 29 Apr 2025 00:05:16 +0000 ROA not before: Tue 29 Apr 2025 00:05:16 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 137550 IP address blocks: 103.112.236.0/24 maxlen: 24 103.112.237.0/24 maxlen: 24 103.112.238.0/24 maxlen: 24 103.112.239.0/24 maxlen: 24 2406:d1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/DgPTwujyxTWCvtHCFMH9Oq6lrlo.crl rsync://rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/DgPTwujyxTWCvtHCFMH9Oq6lrlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DgPTwujyxTWCvtHCFMH9Oq6lrlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911418D, serialNumber=0E03D3C2E8F2C53582BED1C214C1FD3AAEA5AE5A Validity Not Before: Apr 29 00:05:16 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=681017bb-5e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6e:48:a9:bb:8e:20:c7:42:42:3c:01:4c:6e: 86:09:a3:d1:09:9f:dc:9a:0b:e2:1a:89:c0:8d:bb: ba:6a:ac:e4:46:6c:0e:50:cb:90:0a:e7:4c:c8:6c: 68:27:3a:70:37:4f:ea:2f:87:fa:37:c6:80:cf:29: 5b:7c:a6:c6:5b:b3:df:2b:2f:9f:0d:55:99:fc:2c: 9d:15:e8:08:80:f5:b3:07:e5:a7:ed:0f:d8:1f:20: cb:35:9b:da:b1:31:6a:1b:33:39:60:bc:83:be:63: 4a:36:a9:5b:2b:8e:80:13:92:7e:96:1e:75:c8:86: 8a:48:c6:a7:ea:e5:39:a9:46:bb:45:33:cc:86:b4: 63:ee:37:5e:f4:44:a0:9d:ff:8b:a5:c7:c6:9a:78: 55:7c:d3:d7:c7:97:25:af:df:4a:0a:51:45:76:c1: 1a:87:56:88:62:95:b8:5f:b9:ef:76:34:71:fe:c1: c9:e6:ca:2b:96:de:34:09:b6:9c:2e:5d:a2:ff:fe: 80:a1:2c:ac:f5:4f:77:38:b1:e6:a8:27:45:ec:c2: 46:fe:42:33:c4:c0:1f:93:2b:5a:b4:34:e8:c1:09: 5e:6d:5a:ba:0f:10:1a:d6:4b:e3:c1:ec:ef:ce:6f: 78:56:4b:cd:49:a1:37:6e:1b:60:8d:81:9f:9d:26: 11:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:49:A7:64:04:75:12:65:83:B3:B7:7A:70:C3:F7:C2:F6:4A:DB:F1 X509v3 Authority Key Identifier: keyid:0E:03:D3:C2:E8:F2:C5:35:82:BE:D1:C2:14:C1:FD:3A:AE:A5:AE:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/DgPTwujyxTWCvtHCFMH9Oq6lrlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DgPTwujyxTWCvtHCFMH9Oq6lrlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911418D/A3F6ACAEE07311EB8EF2BA73C4F9AE02/54E9D878F08311EB8268373EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.236.0/22 IPv6: 2406:d1c0::/32 Signature Algorithm: sha256WithRSAEncryption 04:51:18:97:83:b7:bc:4c:ac:3d:78:af:ef:b6:da:7d:88:c8: 68:11:57:cc:fc:12:6c:3c:ba:1f:6a:02:1c:90:bf:6d:fd:a5: 78:3e:ba:7a:16:2b:35:11:c7:0c:48:69:4d:15:64:55:79:dc: 4f:ca:f3:c7:6d:3d:3d:4d:5c:ab:5b:6a:dd:34:ff:41:e3:34: 25:40:17:22:fd:5b:f3:45:b3:dc:8a:c9:92:ae:51:7c:67:53: 22:e0:91:4c:3f:7c:e6:4a:58:c8:62:9c:e9:b6:78:30:c1:f8: 8a:88:a9:8b:09:74:71:88:e3:ce:6b:52:a2:b3:df:d6:31:0a: 66:2c:bb:75:7b:1c:bd:64:27:7f:99:50:b0:76:b6:96:ac:7e: be:ef:fa:1f:07:91:4e:fe:df:27:62:74:a5:c6:06:9a:bc:3b: ad:56:01:d2:46:4d:4a:37:69:5f:5e:32:19:a4:df:01:2f:23: be:eb:00:2c:f0:82:f2:54:2e:d1:fd:70:de:7d:4c:e6:cc:20: ee:8f:53:67:df:54:54:f8:89:19:4d:9c:ac:35:af:6f:7a:a7: 9a:82:90:38:55:00:a3:4c:be:da:f7:11:e0:65:0a:de:43:d3: 44:9b:cd:9c:28:c6:d5:1a:10:cc:60:a2:bd:5a:fa:6e:c2:6c: b8:1f:ef:1d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQxOEQxMTAvBgNVBAUTKDBFMDNEM0MyRThGMkM1MzU4MkJFRDFDMjE0QzFGRDNB QUVBNUFFNUEwHhcNMjUwNDI5MDAwNTE2WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMTdiYi01ZTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm5IqbuOIMdCQjwBTG6GCaPRCZ/cmgviGonAjbu6aqzkRmwOUMuQCudMyGxo JzpwN0/qL4f6N8aAzylbfKbGW7PfKy+fDVWZ/CydFegIgPWzB+Wn7Q/YHyDLNZva sTFqGzM5YLyDvmNKNqlbK46AE5J+lh51yIaKSMan6uU5qUa7RTPMhrRj7jde9ESg nf+LpcfGmnhVfNPXx5clr99KClFFdsEah1aIYpW4X7nvdjRx/sHJ5sorlt40Cbac Ll2i//6AoSys9U93OLHmqCdF7MJG/kIzxMAfkytatDTowQlebVq6DxAa1kvjwezv zm94VkvNSaE3bhtgjYGfnSYRawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJZJp2QE dRJlg7O3enDD98L2StvxMB8GA1UdIwQYMBaAFA4D08Lo8sU1gr7RwhTB/Tqupa5a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDE4RC9BM0Y2QUNBRUUw NzMxMUVCOEVGMkJBNzNDNEY5QUUwMi9EZ1BUd3VqeXhUV0N2dEhDRk1IOU9xNmxy bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RnUFR3dWp5eFRXQ3Z0SENGTUg5T3E2bHJsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQxOEQvQTNGNkFDQUVFMDczMTFFQjhFRjJCQTczQzRGOUFFMDIvNTRFOUQ4NzhG MDgzMTFFQjgyNjgzNzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncOwwDQQCAAIwBwMFACQG0cAwDQYJKoZIhvcNAQELBQAD ggEBAARRGJeDt7xMrD14r++22n2IyGgRV8z8Emw8uh9qAhyQv239pXg+unoWKzUR xwxIaU0VZFV53E/K88dtPT1NXKtbat00/0HjNCVAFyL9W/NFs9yKyZKuUXxnUyLg kUw/fOZKWMhinOm2eDDB+IqIqYsJdHGI485rUqKz39YxCmYsu3V7HL1kJ3+ZULB2 tpasfr7v+h8HkU7+3ydidKXGBpq8O61WAdJGTUo3aV9eMhmk3wEvI77rACzwgvJU LtH9cN59TObMIO6PU2ffVFT4iRlNnKw1r296p5qCkDhVAKNMvtr3EeBlCt5D00Sb zZwoxtUaEMxgor1a+m7CbLgf7x0= -----END CERTIFICATE-----Generated at Fri May 16 07:10:29 2025 by rpki-client