$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A155AE68315611F0B557CE7CC4F9AE02.roa File: A155AE68315611F0B557CE7CC4F9AE02.roa (raw, json) Hash identifier: QGMsCxHtn5F+EfUp5uawCMMpfTHEMExN77Hj2Muh93w= Subject key identifier: 14:95:08:A0:04:C6:5B:95:A3:CE:A6:61:42:4D:32:FF:11:81:0E:94 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07D0 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A155AE68315611F0B557CE7CC4F9AE02.roa Signing time: Thu 15 May 2025 06:34:19 +0000 ROA not before: Thu 15 May 2025 06:34:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140630 IP address blocks: 103.209.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: May 15 06:34:19 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68258aeb-f7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:80:85:ae:13:01:10:ff:bc:17:37:bd:2e: 28:64:48:18:dc:e5:27:f7:92:6e:4a:23:27:68:48: 45:1b:39:60:c3:21:78:ff:7e:84:49:59:33:cf:c6: d4:a7:e6:61:be:05:90:84:e6:03:09:b1:64:73:a7: 1a:b1:23:e1:70:78:3c:c0:55:4a:c8:7e:fa:71:df: a7:6a:4f:9d:f9:72:8f:d9:cd:95:ba:33:62:a0:38: d7:3a:e7:e7:b6:24:9c:83:fc:f4:93:b0:d8:2a:77: 02:5e:7d:ec:bb:21:66:03:37:bb:b0:d2:ae:7d:ee: 20:00:23:4a:c3:09:c5:a8:e6:3e:22:4d:f0:17:cb: 5c:4a:ba:3a:0f:db:40:65:55:31:4a:c2:95:fa:6f: e2:af:a8:37:dc:aa:8b:d2:c8:e0:c8:10:2d:93:99: 43:3b:99:bc:e4:73:ca:32:b4:b5:14:65:c5:e9:01: 45:df:66:a4:d9:34:30:30:88:58:bf:00:5f:14:79: 0c:d0:10:6b:20:9f:96:8e:c6:b0:5b:4f:7f:6f:96: 6c:84:22:b3:ce:c2:7a:6d:83:52:de:61:bc:82:1d: 30:6d:c6:81:d0:ce:59:43:b6:04:e6:20:c2:6d:5e: e1:08:82:fc:2c:08:90:39:a3:c3:ba:ac:08:65:1b: d6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:95:08:A0:04:C6:5B:95:A3:CE:A6:61:42:4D:32:FF:11:81:0E:94 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A155AE68315611F0B557CE7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.235.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:98:c6:95:89:54:1b:47:99:f0:d9:06:69:cf:e3:34:27:6e: ca:da:4b:23:ee:42:1f:b2:d1:4e:77:d4:31:e0:74:29:1d:c1: 02:86:a4:4c:ac:5a:af:42:7d:de:95:d2:c2:d1:ac:f9:e6:bf: d0:d7:1b:ca:45:e6:11:04:fd:ee:69:1d:3f:bf:60:bf:8d:b0: 62:62:af:4d:ea:0a:1c:41:f8:54:2c:21:0d:07:41:16:cb:31: 5a:da:0a:48:09:87:94:7e:85:3d:bb:7d:c7:f4:4e:bf:cf:fb: 1a:e2:82:b6:65:ba:81:52:77:41:7b:2f:55:ab:63:5b:df:fd: 8c:2d:97:0b:43:98:ba:b0:fc:65:3b:10:72:17:c0:ff:de:8c: 6b:5e:8d:0d:e9:01:e0:fb:68:b2:82:1f:68:4d:af:8c:4d:9b: 74:68:68:eb:48:2b:3c:e3:22:c8:bc:7e:d9:6a:49:d3:0e:86: a9:61:e1:58:21:97:47:2a:08:1b:61:49:fd:ff:b2:0f:e4:50: 4d:fc:53:dc:88:0a:8c:f2:ca:61:0d:41:b2:b2:ae:c0:29:6e: 03:a6:44:5c:fe:62:af:7f:b0:c1:13:28:31:e8:4a:09:a0:5a: 0e:2f:2b:d3:27:1c:af:5d:ab:09:ea:6d:62:e7:81:21:ab:23: 68:50:c3:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNTE1MDYzNDE5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1OGFlYi1mN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpyAha4TARD/vBc3vS4oZEgY3OUn95JuSiMnaEhFGzlgwyF4/36ESVkzz8bU p+ZhvgWQhOYDCbFkc6casSPhcHg8wFVKyH76cd+nak+d+XKP2c2VujNioDjXOufn tiScg/z0k7DYKncCXn3suyFmAze7sNKufe4gACNKwwnFqOY+Ik3wF8tcSro6D9tA ZVUxSsKV+m/ir6g33KqL0sjgyBAtk5lDO5m85HPKMrS1FGXF6QFF32ak2TQwMIhY vwBfFHkM0BBrIJ+WjsawW09/b5ZshCKzzsJ6bYNS3mG8gh0wbcaB0M5ZQ7YE5iDC bV7hCIL8LAiQOaPDuqwIZRvWAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBSVCKAE xluVo86mYUJNMv8RgQ6UMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvQTE1NUFFNjgz MTU2MTFGMEI1NTdDRTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0eswDQYJKoZIhvcNAQELBQADggEBAF6YxpWJVBtHmfDZ BmnP4zQnbsraSyPuQh+y0U531DHgdCkdwQKGpEysWq9Cfd6V0sLRrPnmv9DXG8pF 5hEE/e5pHT+/YL+NsGJir03qChxB+FQsIQ0HQRbLMVraCkgJh5R+hT27fcf0Tr/P +xrigrZluoFSd0F7L1WrY1vf/YwtlwtDmLqw/GU7EHIXwP/ejGtejQ3pAeD7aLKC H2hNr4xNm3RoaOtIKzzjIsi8ftlqSdMOhqlh4Vghl0cqCBthSf3/sg/kUE38U9yI CozyymENQbKyrsApbgOmRFz+Yq9/sMETKDHoSgmgWg4vK9MnHK9dqwnqbWLngSGr I2hQwxg= -----END CERTIFICATE-----Generated at Sat May 17 16:49:30 2025 by rpki-client