$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/74BA16C04A8611F08884C659C4F9AE02.roa File: 74BA16C04A8611F08884C659C4F9AE02.roa (raw, json) Hash identifier: j+WGmLwArNdHL1JjdRwu3siLk/ufBfcUnE+rg1B5suo= Subject key identifier: 00:2D:A9:FD:68:87:93:63:75:F3:71:08:72:AF:5E:16:2D:96:1C:FA Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07EB Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/74BA16C04A8611F08884C659C4F9AE02.roa Signing time: Mon 16 Jun 2025 07:49:39 +0000 ROA not before: Mon 16 Jun 2025 07:49:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 23532 IP address blocks: 43.252.209.0/24 maxlen: 24 103.225.196.0/24 maxlen: 24 103.234.54.0/24 maxlen: 24 150.107.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jun 16 07:49:39 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684fcc93-8431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d1:90:65:ab:17:34:0c:07:de:e1:74:ee:4a: 72:29:2a:b6:f5:e7:a7:67:a6:fb:ee:e6:1a:ce:a0: 4c:c9:0c:ad:0e:1a:69:25:d1:41:ee:96:f9:fc:5b: 9f:84:6f:9a:3d:16:c1:26:df:7d:45:bc:6b:3f:e4: 42:07:e1:80:a6:47:18:8a:bd:77:a0:7e:4b:87:7d: 0a:37:62:94:1f:72:60:5c:36:1b:3a:59:ec:dc:7c: 42:65:2d:13:05:cd:fd:59:b7:d3:4d:5f:40:42:70: f8:ee:62:44:b5:77:18:77:f0:f5:38:69:c5:cd:5c: 36:fe:e4:14:98:00:30:04:bd:e5:a7:fc:3e:db:0e: 38:e7:58:c2:f2:cc:20:0e:b2:66:b4:e0:88:0f:2c: e7:88:21:b1:f8:26:b2:d3:ec:57:4e:3f:51:cf:8c: 41:97:ec:43:b2:cc:44:fd:4a:3b:18:26:a0:e8:00: b0:95:ac:ec:39:b2:cd:ca:51:07:b8:fa:53:4e:51: b7:88:b5:20:c2:3a:45:45:cb:ca:16:8d:98:0c:1b: 53:5c:d1:41:29:98:9e:69:41:3a:16:54:00:a8:02: d5:40:8b:c2:98:ef:74:83:55:42:a5:22:14:8b:09: 1e:5f:9f:73:75:ee:b3:a8:bd:0a:31:59:ad:ee:db: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2D:A9:FD:68:87:93:63:75:F3:71:08:72:AF:5E:16:2D:96:1C:FA X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/74BA16C04A8611F08884C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.209.0/24 103.225.196.0/24 103.234.54.0/24 150.107.2.0/24 Signature Algorithm: sha256WithRSAEncryption aa:f6:5e:7d:92:20:01:5a:75:18:ed:58:d9:06:bf:b4:29:5d: 49:6c:85:70:37:c6:70:e8:8b:ea:d6:69:c1:52:4b:27:d0:32: 95:6f:54:a9:31:7d:58:7e:df:35:82:23:23:c9:a3:0c:ec:91: cb:79:76:16:d6:09:ac:d3:95:1c:3a:cd:02:c3:cf:40:ce:3a: 03:24:22:52:0c:b7:3d:bd:24:ef:c0:28:bb:f5:17:20:14:fd: e7:20:32:9d:23:7d:11:e9:de:4c:a0:79:8c:13:5f:0a:11:ca: f5:10:0e:8a:c1:71:fd:9a:5b:d7:62:86:07:be:73:36:32:fd: 1e:1a:15:0a:1b:5c:05:cc:ab:41:3a:2f:72:fa:2c:11:88:8b: 80:5b:22:dc:05:86:86:50:7d:3c:e1:ea:cb:72:4e:d7:8c:3f: e9:2c:50:44:c1:35:76:30:69:b9:ef:75:e7:2b:4b:8a:50:52: 83:92:f6:ae:fd:db:ed:6f:19:cc:b8:f5:ad:d4:63:f4:a2:a7: 3e:2a:43:be:59:d7:d1:e9:25:4e:89:13:b7:3a:8b:8d:87:39: 17:0e:4c:52:9e:54:92:f0:a5:f1:fe:86:d9:a9:8b:74:ea:ab: aa:fb:d6:08:f2:ff:92:ae:66:10:0c:bd:d7:0e:82:33:9c:86: 06:80:ca:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNjE2MDc0OTM5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmY2M5My04NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudGQZasXNAwH3uF07kpyKSq29eenZ6b77uYazqBMyQytDhppJdFB7pb5/Fuf hG+aPRbBJt99RbxrP+RCB+GApkcYir13oH5Lh30KN2KUH3JgXDYbOlns3HxCZS0T Bc39WbfTTV9AQnD47mJEtXcYd/D1OGnFzVw2/uQUmAAwBL3lp/w+2w4451jC8swg DrJmtOCIDyzniCGx+Cay0+xXTj9Rz4xBl+xDssxE/Uo7GCag6ACwlazsObLNylEH uPpTTlG3iLUgwjpFRcvKFo2YDBtTXNFBKZieaUE6FlQAqALVQIvCmO90g1VCpSIU iwkeX59zde6zqL0KMVmt7tvwZQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAAtqf1o h5NjdfNxCHKvXhYtlhz6MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzRCQTE2QzA0 QTg2MTFGMDg4ODRDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr/NEDBABn4cQDBABn6jYDBACWawIwDQYJKoZIhvcNAQEL BQADggEBAKr2Xn2SIAFadRjtWNkGv7QpXUlshXA3xnDoi+rWacFSSyfQMpVvVKkx fVh+3zWCIyPJowzskct5dhbWCazTlRw6zQLDz0DOOgMkIlIMtz29JO/AKLv1FyAU /ecgMp0jfRHp3kygeYwTXwoRyvUQDorBcf2aW9dihge+czYy/R4aFQobXAXMq0E6 L3L6LBGIi4BbItwFhoZQfTzh6styTteMP+ksUETBNXYwabnvdecrS4pQUoOS9q79 2+1vGcy49a3UY/Sipz4qQ75Z19HpJU6JE7c6i42HORcOTFKeVJLwpfH+htmpi3Tq q6r71gjy/5KuZhAMvdcOgjOchgaAygw= -----END CERTIFICATE-----Generated at Thu Jul 3 02:47:52 2025 by rpki-client