$ rpki-client -vvf rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa File: F44E8EBCF3B511EE8451152DC4F9AE02.roa (raw, json) Hash identifier: +JGbQRGke2HupIxlNl9DhNlER0ydSKi+ap3XfaIlCYA= Subject key identifier: A8:72:48:4E:80:6E:B0:C5:B3:43:CE:3F:CB:8D:CA:C7:44:CF:12:7C Certificate issuer: /CN=A911A2B1/serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Certificate serial: D2 Authority key identifier: 1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:13 +0000 ROA not before: Sat 03 May 2025 05:12:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152680 IP address blocks: 117.103.112.0/23 maxlen: 23 117.103.112.0/24 maxlen: 24 117.103.113.0/24 maxlen: 24 2001:df3:a540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A2B1, serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Validity Not Before: May 3 05:12:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5ac-11b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:12:2a:0b:5b:f4:53:72:b0:e5:d0:ab:a6:61: 28:03:ad:0a:8b:f5:80:08:55:04:37:4e:37:b7:75: ac:eb:f0:07:00:f5:3a:8d:f0:d9:05:78:30:89:71: 28:9e:12:cf:36:e8:1c:c0:b5:b3:71:c2:75:f3:e8: c2:68:96:24:60:ff:4f:fe:1b:b5:7e:f3:e6:01:fe: bd:68:27:0a:28:d6:f5:fe:c0:7d:d7:10:19:95:2d: d1:aa:e1:68:ec:22:ce:44:ed:16:d0:b4:93:31:a2: e0:5b:fa:45:ff:49:a8:fb:36:38:5a:6b:86:1c:21: a4:0c:ac:f5:21:c5:38:ca:17:5f:8a:b6:37:a0:2f: 10:d9:82:18:0d:c0:d0:03:66:5f:7c:b2:d1:6b:70: e0:67:b8:da:d9:d4:15:27:cb:69:39:a4:46:41:ec: ac:10:33:df:35:6b:76:9c:ba:d0:24:77:6d:97:3f: 5e:82:f2:95:f1:b0:cc:7b:53:90:47:e4:6d:6c:a0: b5:f3:82:5c:93:08:1b:d3:c4:34:32:5d:44:6f:f6: 65:ba:99:4c:f8:85:85:54:58:70:2e:36:ba:45:3b: 85:d0:7e:6e:7e:49:cc:ca:bd:77:94:5b:9d:0f:66: 2f:b1:c2:ce:42:44:7d:db:6d:f6:b9:c1:6f:2f:f0: 48:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:72:48:4E:80:6E:B0:C5:B3:43:CE:3F:CB:8D:CA:C7:44:CF:12:7C X509v3 Authority Key Identifier: keyid:1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.103.112.0/23 IPv6: 2001:df3:a540::/48 Signature Algorithm: sha256WithRSAEncryption b0:a4:c2:e3:34:85:9a:e6:29:c8:b2:83:a1:de:c0:ee:60:18: 87:57:70:3d:5f:bd:6d:2f:90:8d:ec:e2:ce:ed:70:56:39:01: e7:64:0a:4c:b2:0e:87:51:0a:00:e7:0e:d0:0d:4b:55:f2:74: a5:81:13:bd:f2:bf:67:e6:56:d3:45:ce:e5:b1:52:08:27:a9: 46:30:d8:94:10:cc:e9:83:b4:55:26:b1:fe:79:fa:84:68:5e: 89:5a:bf:87:64:59:f4:17:3c:fb:c5:bf:a3:62:09:9b:03:69: 5d:f4:2b:3d:b7:7e:8d:26:4a:82:91:95:0d:d6:a0:a5:97:cf: 65:bb:aa:4d:ea:0e:82:88:f1:0e:3d:6a:d6:3e:5d:5b:55:90: a3:65:45:6d:fb:e0:10:ca:4b:bc:66:4b:32:34:66:a8:51:66: 92:1c:0b:3c:33:8b:58:45:7b:92:d6:5d:d3:d6:47:62:dc:65: 80:d8:68:38:84:bc:33:b4:7e:77:c8:6d:3c:0f:ab:58:20:df: 06:a3:57:f9:ce:32:71:33:b7:45:bd:f9:e5:16:9f:5c:53:ab: e4:f9:da:81:2d:19:ca:8c:b9:5c:f0:7b:5f:17:e0:b5:ce:7b: ee:65:12:7c:6e:79:e6:11:47:0c:3d:eb:ac:6a:be:a0:95:de: 48:e5:c5:f2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEyQjExMTAvBgNVBAUTKDFBNDUyNDdCM0ExQjAyNjkyNzFENzQ2QzVBNUZBQzAx NDVGRjMzMjIwHhcNMjUwNTAzMDUxMjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTVhYy0xMWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRIqC1v0U3Kw5dCrpmEoA60Ki/WACFUEN043t3Ws6/AHAPU6jfDZBXgwiXEo nhLPNugcwLWzccJ18+jCaJYkYP9P/hu1fvPmAf69aCcKKNb1/sB91xAZlS3RquFo 7CLORO0W0LSTMaLgW/pF/0mo+zY4WmuGHCGkDKz1IcU4yhdfirY3oC8Q2YIYDcDQ A2ZffLLRa3DgZ7ja2dQVJ8tpOaRGQeysEDPfNWt2nLrQJHdtlz9egvKV8bDMe1OQ R+RtbKC184Jckwgb08Q0Ml1Eb/ZluplM+IWFVFhwLja6RTuF0H5ufknMyr13lFud D2YvscLOQkR92232ucFvL/BIlQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKhySE6A brDFs0POP8uNysdEzxJ8MB8GA1UdIwQYMBaAFBpFJHs6GwJpJx10bFpfrAFF/zMi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTJCMS8xOUE4MkY2NkYz QjUxMUVFQjFFMjIzMEVDNEY5QUUwMi9Ha1VrZXpvYkFta25IWFJzV2wtc0FVWF9N eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drVWtlem9iQW1rbkhYUnNXbC1zQVVYX015SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUEyQjEvMTlBODJGNjZGM0I1MTFFRUIxRTIyMzBFQzRGOUFFMDIvRjQ0RThFQkNG M0I1MTFFRTg0NTExNTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAF1Z3AwDwQCAAIwCQMHACABDfOlQDANBgkqhkiG9w0BAQsF AAOCAQEAsKTC4zSFmuYpyLKDod7A7mAYh1dwPV+9bS+Qjezizu1wVjkB52QKTLIO h1EKAOcO0A1LVfJ0pYETvfK/Z+ZW00XO5bFSCCepRjDYlBDM6YO0VSax/nn6hGhe iVq/h2RZ9Bc8+8W/o2IJmwNpXfQrPbd+jSZKgpGVDdagpZfPZbuqTeoOgojxDj1q 1j5dW1WQo2VFbfvgEMpLvGZLMjRmqFFmkhwLPDOLWEV7ktZd09ZHYtxlgNhoOIS8 M7R+d8htPA+rWCDfBqNX+c4ycTO3Rb355RafXFOr5PnagS0Zyoy5XPB7Xxfgtc57 7mUSfG555hFHDD3rrGq+oJXeSOXF8g== -----END CERTIFICATE-----Generated at Fri May 16 01:07:59 2025 by rpki-client