$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa File: 73D33FA24A8611F08884C659C4F9AE02.roa (raw, json) Hash identifier: dYbJZqNom/l1NiiDKkOTw8oOoBqhK67yv8UuGT2by2s= Subject key identifier: CE:E7:E3:B1:D7:59:F1:70:59:1D:44:D2:B6:30:94:A9:2A:49:79:C2 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07EA Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa Signing time: Mon 16 Jun 2025 07:49:38 +0000 ROA not before: Mon 16 Jun 2025 07:49:38 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 197537 IP address blocks: 43.252.209.0/24 maxlen: 24 103.225.196.0/24 maxlen: 24 103.234.54.0/24 maxlen: 24 150.107.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jun 16 07:49:38 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684fcc92-a3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:96:15:69:ad:1e:15:97:eb:7e:57:81:c1: 48:0f:bf:dd:ee:62:49:6d:a2:99:6a:a8:3b:73:b8: 50:d8:2d:f7:1d:e0:08:ff:f5:ae:36:4e:ef:55:ce: 1d:bd:44:20:f8:a0:0e:3f:4d:51:37:c4:f7:dd:71: 59:16:8a:e2:90:c9:28:26:a7:46:c0:e4:9a:35:1c: 65:48:cf:23:ca:ce:0f:f9:ae:83:69:06:6a:37:9d: fa:b0:8b:78:24:0b:2b:6c:cb:f7:0a:08:43:16:5e: 23:ba:b4:26:13:5c:b3:07:fe:42:17:35:c7:12:d1: 42:51:e3:45:83:15:d7:17:9f:66:2e:b7:50:c9:9c: 2d:ca:35:f5:05:0e:79:b2:f7:e3:36:7c:23:4f:07: c2:ea:ad:6c:8d:73:04:80:3d:94:c5:97:8e:eb:fe: af:4e:d0:3b:e6:7d:22:15:6a:4c:9f:26:fa:ac:21: 7a:72:c5:2b:4c:53:79:7b:ba:90:35:c8:10:4f:e9: b7:7a:d7:d7:1e:0a:87:a2:1a:f5:a9:55:48:c4:c9: b8:92:81:0c:32:fb:fe:99:f2:9e:30:73:b1:7e:e8: 0d:c5:06:db:4a:1d:86:57:d9:e9:db:4d:2b:5d:c5: 05:d7:1f:79:a7:da:83:5d:bd:8b:7a:cf:70:83:fc: 59:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E7:E3:B1:D7:59:F1:70:59:1D:44:D2:B6:30:94:A9:2A:49:79:C2 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.209.0/24 103.225.196.0/24 103.234.54.0/24 150.107.2.0/24 Signature Algorithm: sha256WithRSAEncryption 87:eb:53:7c:07:3d:70:78:36:08:dc:77:70:0f:53:06:18:3b: 5d:28:42:a9:44:19:12:87:f5:33:f6:d7:8d:61:07:57:dd:34: 4c:58:d4:61:27:ff:8d:39:75:65:dc:b7:2a:8d:fa:7d:a7:f1: 5d:23:d8:a9:f9:c3:27:50:b3:cd:67:46:57:e0:9d:67:67:f8: 8b:4d:24:d6:0d:5c:5a:16:5f:82:ba:09:40:b0:25:0b:ac:d5: a2:cb:26:3c:d9:12:d3:67:f7:73:11:1c:cf:db:bf:ad:7f:36: de:23:e5:53:c5:07:98:2c:94:9e:cf:50:a6:2f:a2:2a:8d:e4: 99:3f:72:76:7f:b7:2d:f4:09:c6:01:2e:60:37:c1:83:0f:d2: c3:70:16:7b:bd:3f:7a:ea:20:2b:29:ff:93:28:d3:a2:d2:39: 4b:f9:12:df:21:68:84:89:95:43:f4:1b:01:1f:28:6a:c0:25: 27:65:5e:78:9e:7b:7e:90:08:d9:19:79:be:86:4e:43:0b:cd: 9b:33:63:b6:0b:90:1c:b3:fd:74:e7:bc:1a:bc:a3:17:b0:68: 6d:bd:2a:b0:56:7b:91:6c:a2:ef:cc:46:68:8f:37:57:ca:7f: 6f:bd:88:1a:75:34:aa:ed:72:08:a6:5c:99:fc:15:c8:ce:25: 52:15:67:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNjE2MDc0OTM4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmY2M5Mi1hM2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ+WFWmtHhWX635XgcFID7/d7mJJbaKZaqg7c7hQ2C33HeAI//WuNk7vVc4d vUQg+KAOP01RN8T33XFZForikMkoJqdGwOSaNRxlSM8jys4P+a6DaQZqN536sIt4 JAsrbMv3CghDFl4jurQmE1yzB/5CFzXHEtFCUeNFgxXXF59mLrdQyZwtyjX1BQ55 svfjNnwjTwfC6q1sjXMEgD2UxZeO6/6vTtA75n0iFWpMnyb6rCF6csUrTFN5e7qQ NcgQT+m3etfXHgqHohr1qVVIxMm4koEMMvv+mfKeMHOxfugNxQbbSh2GV9np200r XcUF1x95p9qDXb2Les9wg/xZIwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFM7n47HX WfFwWR1E0rYwlKkqSXnCMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzNEMzNGQTI0 QTg2MTFGMDg4ODRDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr/NEDBABn4cQDBABn6jYDBACWawIwDQYJKoZIhvcNAQEL BQADggEBAIfrU3wHPXB4Ngjcd3APUwYYO10oQqlEGRKH9TP2141hB1fdNExY1GEn /405dWXctyqN+n2n8V0j2Kn5wydQs81nRlfgnWdn+ItNJNYNXFoWX4K6CUCwJQus 1aLLJjzZEtNn93MRHM/bv61/Nt4j5VPFB5gslJ7PUKYvoiqN5Jk/cnZ/ty30CcYB LmA3wYMP0sNwFnu9P3rqICsp/5Mo06LSOUv5Et8haISJlUP0GwEfKGrAJSdlXnie e36QCNkZeb6GTkMLzZszY7YLkByz/XTnvBq8oxewaG29KrBWe5Fsou/MRmiPN1fK f2+9iBp1NKrtcgimXJn8FcjOJVIVZyE= -----END CERTIFICATE-----Generated at Thu Jul 3 08:47:01 2025 by rpki-client