$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa File: 39E76DD0589311EF88BF4665C4F9AE02.roa (raw, json) Hash identifier: Zq031S+vIKwvUtyaWGsL0NF/sqhKajdnHiA3MDn79EA= Subject key identifier: 09:8B:FD:AE:48:E8:65:5A:F6:A4:15:97:88:19:2E:42:32:1A:39:11 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: 8D Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa Signing time: Tue 29 Apr 2025 06:43:01 +0000 ROA not before: Tue 29 Apr 2025 06:43:01 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 133952 IP address blocks: 43.230.136.0/22 maxlen: 24 103.49.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:41:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Apr 29 06:43:01 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=681074f4-c38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:31:78:3f:10:9c:24:2b:e4:54:69:17:fa: 1f:cf:44:bf:16:d5:48:7a:e6:07:e7:37:10:34:08: 9b:a9:cd:30:75:59:6f:1c:ad:6f:68:5d:1d:a3:5d: e0:06:6f:d1:48:ee:d6:be:86:21:2b:d3:0c:29:56: 1c:43:b7:bc:aa:13:e9:be:44:c3:1e:13:19:c8:2e: b6:52:32:7b:4c:ed:21:16:f4:46:88:5c:9d:43:d0: c2:1e:80:63:f1:b8:a0:2c:a8:d1:d7:8d:0d:97:14: ba:eb:29:55:f4:f6:0d:12:00:b5:d2:f3:e9:72:c5: e6:33:75:8d:cf:77:44:ed:33:18:eb:2c:8a:87:2c: 0a:36:0d:f5:5d:28:aa:bf:36:6c:ae:df:3e:68:01: 81:a4:78:59:49:6d:0e:c5:da:cb:2a:2c:dd:5a:7d: 49:91:e2:2c:e3:60:ad:6d:58:de:ed:ae:58:38:f6: 19:e6:5a:e2:eb:39:3a:bd:bd:cd:ae:3f:3e:ec:7c: a3:ac:9f:f9:ce:a5:73:94:ce:f2:5d:b8:d6:d1:e3: 4c:2f:1a:a4:bb:49:44:57:10:df:9e:a1:b3:6b:b7: 5e:cf:fc:a5:6e:21:31:78:eb:74:77:12:d8:34:a3: a0:8e:c4:6d:e3:ce:d6:ad:62:2c:32:a5:d7:c1:18: df:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8B:FD:AE:48:E8:65:5A:F6:A4:15:97:88:19:2E:42:32:1A:39:11 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.136.0/22 103.49.196.0/22 Signature Algorithm: sha256WithRSAEncryption 70:8a:52:84:28:77:0c:b2:30:a5:db:a6:79:ca:4f:f3:49:d4: 31:0c:80:b0:74:65:c6:ba:76:90:e8:6f:aa:b3:a2:d9:77:99: 4a:5b:ff:9d:c6:15:14:b3:25:c4:44:6b:43:e9:a0:23:73:b8: 23:c0:c4:b2:93:80:15:ca:0a:6b:7a:66:8a:5a:a3:f3:8a:e9: 99:48:0e:86:3b:eb:e4:53:18:ad:70:86:d0:6a:81:fe:d5:ed: 0b:76:9c:89:8b:fd:5d:de:db:6a:f8:98:01:63:bc:b7:b6:a8: 50:8b:8e:4a:7c:ef:0f:e6:d1:3d:c9:8e:c8:bc:f6:b1:35:ac: 5b:57:6f:61:bf:b6:36:ff:90:97:54:16:2c:40:af:03:ed:90: bc:c3:96:71:50:fc:a1:91:e9:b8:18:34:16:a3:58:97:52:fc: c2:75:00:de:05:4e:97:82:3c:36:4c:f7:3d:13:73:2b:c5:e0: 41:71:7a:62:4a:45:e6:91:a2:7e:45:08:c4:ca:64:40:89:b5: e3:68:97:16:bd:5c:8b:be:8f:bd:65:df:8c:fe:40:cd:d4:d2: 5a:e5:ec:c3:08:f5:59:1d:56:db:60:d4:a3:0f:6f:e4:c3:35: 86:87:08:5d:e2:fe:98:f7:4d:ce:c5:a8:b0:7d:1b:fc:91:30: 27:07:92:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNDI5MDY0MzAxWhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNzRmNC1jMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCUxeD8QnCQr5FRpF/ofz0S/FtVIeuYH5zcQNAibqc0wdVlvHK1vaF0do13g Bm/RSO7WvoYhK9MMKVYcQ7e8qhPpvkTDHhMZyC62UjJ7TO0hFvRGiFydQ9DCHoBj 8bigLKjR140NlxS66ylV9PYNEgC10vPpcsXmM3WNz3dE7TMY6yyKhywKNg31XSiq vzZsrt8+aAGBpHhZSW0OxdrLKizdWn1JkeIs42CtbVje7a5YOPYZ5lri6zk6vb3N rj8+7HyjrJ/5zqVzlM7yXbjW0eNMLxqku0lEVxDfnqGza7dez/ylbiExeOt0dxLY NKOgjsRt487WrWIsMqXXwRjfFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAmL/a5I 6GVa9qQVl4gZLkIyGjkRMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUE2OUEvOEIwRTczODA1ODkyMTFFRjg2QjEyNTY0QzRGOUFFMDIvMzlFNzZERDA1 ODkzMTFFRjg4QkY0NjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5ogDBAJnMcQwDQYJKoZIhvcNAQELBQADggEBAHCKUoQo dwyyMKXbpnnKT/NJ1DEMgLB0Zca6dpDob6qzotl3mUpb/53GFRSzJcREa0PpoCNz uCPAxLKTgBXKCmt6Zopao/OK6ZlIDoY76+RTGK1whtBqgf7V7Qt2nImL/V3e22r4 mAFjvLe2qFCLjkp87w/m0T3Jjsi89rE1rFtXb2G/tjb/kJdUFixArwPtkLzDlnFQ /KGR6bgYNBajWJdS/MJ1AN4FTpeCPDZM9z0TcyvF4EFxemJKReaRon5FCMTKZECJ teNolxa9XIu+j71l34z+QM3U0lrl7MMI9VkdVttg1KMPb+TDNYaHCF3i/pj3Tc7F qLB9G/yRMCcHktk= -----END CERTIFICATE-----Generated at Sat May 17 04:32:30 2025 by rpki-client