$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/E8F2B1C224E911F0B5C26715C4F9AE02.roa File: E8F2B1C224E911F0B5C26715C4F9AE02.roa (raw, json) Hash identifier: G8jsJ+mpJjx+P09daIjyz9j+xHd4TGz4K0la+7J5BHY= Subject key identifier: 4E:6D:77:40:FE:28:86:9D:39:F8:5F:01:12:30:8B:D4:EC:9F:45:C9 Certificate issuer: /CN=A911BDDF/serialNumber=E3E1CCCF83D52CB8A3C987A811E1F807F3393E7F Certificate serial: 01D5 Authority key identifier: E3:E1:CC:CF:83:D5:2C:B8:A3:C9:87:A8:11:E1:F8:07:F3:39:3E:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-HMz4PVLLijyYeoEeH4B_M5Pn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/E8F2B1C224E911F0B5C26715C4F9AE02.roa Signing time: Tue 29 Apr 2025 11:05:50 +0000 ROA not before: Tue 29 Apr 2025 11:05:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137997 IP address blocks: 103.48.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/4-HMz4PVLLijyYeoEeH4B_M5Pn8.crl rsync://rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/4-HMz4PVLLijyYeoEeH4B_M5Pn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-HMz4PVLLijyYeoEeH4B_M5Pn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDDF, serialNumber=E3E1CCCF83D52CB8A3C987A811E1F807F3393E7F Validity Not Before: Apr 29 11:05:50 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6810b28e-5daf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:68:53:b5:2c:8e:29:ad:83:13:f4:ae:98:30: e5:7a:c8:5b:33:c7:c1:19:5a:8c:2f:cb:07:55:c8: 7e:30:1c:4b:c2:13:c7:7e:9d:41:f4:49:2e:09:1e: be:ea:e3:74:d3:1d:40:b8:33:13:8f:ec:c1:29:f7: 8c:d2:bd:30:d5:dd:81:c3:ee:d5:28:ae:76:43:89: fb:61:61:7b:a0:52:f7:78:6d:17:2b:a5:11:56:1e: a5:2d:72:02:b9:3b:a9:a2:5e:17:12:b7:07:34:bf: fa:b1:dd:67:d9:67:e0:7c:f8:ae:84:8f:74:a9:4b: d4:32:c3:e6:f6:6d:31:73:76:c9:fc:5a:68:f3:ff: af:00:bc:42:41:b6:ae:fe:76:b6:c3:fe:3f:97:19: ec:9d:e0:d7:a9:18:be:c3:a7:27:8c:96:33:3c:b9: ff:94:46:01:93:61:01:16:41:1b:04:9d:58:59:3d: 6d:9a:a4:c0:ab:9b:bb:bc:b7:83:8e:54:42:8d:4c: 09:eb:0b:18:1d:93:6f:d7:40:64:d2:c3:34:c7:c8: 0d:11:ff:e5:88:bc:88:03:31:74:34:32:71:bd:a0: db:be:8f:ca:b9:dc:ee:3c:2e:cd:91:03:ba:64:79: 4c:f9:36:23:10:05:a5:8e:67:3a:c6:fe:7d:45:3a: 53:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:6D:77:40:FE:28:86:9D:39:F8:5F:01:12:30:8B:D4:EC:9F:45:C9 X509v3 Authority Key Identifier: keyid:E3:E1:CC:CF:83:D5:2C:B8:A3:C9:87:A8:11:E1:F8:07:F3:39:3E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/4-HMz4PVLLijyYeoEeH4B_M5Pn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-HMz4PVLLijyYeoEeH4B_M5Pn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDDF/A212768C760B11ED8C6CF24EC4F9AE02/E8F2B1C224E911F0B5C26715C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.163.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:20:55:99:74:c2:b7:a0:57:e3:39:0c:50:57:7e:22:7e:fc: 73:7c:3e:d5:88:ef:2f:4d:cc:c0:cf:04:d6:5a:dd:30:cb:92: 7e:f9:c4:b4:70:2c:53:e1:16:77:6f:5e:5a:f4:a1:b5:b2:5e: a8:6d:60:de:43:17:b9:c3:84:fc:62:fc:5f:df:1c:53:8e:58: f8:e9:f7:ea:46:fb:e2:3b:b6:d1:44:39:87:07:3a:32:6f:22: a8:8c:94:67:8d:31:67:8a:84:d1:99:ae:82:95:3f:c4:09:b9: c9:89:b1:b6:d0:56:ba:b6:ba:5a:f7:8e:d2:d3:0c:ee:6f:06: 2b:33:a8:37:54:1b:c8:07:74:e0:47:3c:ec:b5:2c:9a:e2:1e: e9:65:26:09:7b:b4:79:60:b7:30:54:2a:b0:ff:26:37:d5:20: a8:b5:6a:6e:89:40:0e:ff:91:c1:f6:1d:d9:2c:67:d9:d0:f3: b9:41:6a:72:fa:eb:4b:f1:89:e3:a3:ee:39:30:1f:9d:90:d2: 24:03:46:da:76:ce:ad:98:46:3c:e1:33:45:b6:7e:a3:ba:e2: 3d:8e:d8:7e:80:1d:15:82:88:19:02:87:96:02:5f:a9:6d:7e: ff:3d:05:49:47:c2:1e:7f:71:16:62:ce:99:3b:8a:fc:c7:b4: c6:46:c7:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEREYxMTAvBgNVBAUTKEUzRTFDQ0NGODNENTJDQjhBM0M5ODdBODExRTFGODA3 RjMzOTNFN0YwHhcNMjUwNDI5MTEwNTUwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwYjI4ZS01ZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGhTtSyOKa2DE/SumDDleshbM8fBGVqML8sHVch+MBxLwhPHfp1B9EkuCR6+ 6uN00x1AuDMTj+zBKfeM0r0w1d2Bw+7VKK52Q4n7YWF7oFL3eG0XK6URVh6lLXIC uTupol4XErcHNL/6sd1n2WfgfPiuhI90qUvUMsPm9m0xc3bJ/Fpo8/+vALxCQbau /na2w/4/lxnsneDXqRi+w6cnjJYzPLn/lEYBk2EBFkEbBJ1YWT1tmqTAq5u7vLeD jlRCjUwJ6wsYHZNv10Bk0sM0x8gNEf/liLyIAzF0NDJxvaDbvo/KudzuPC7NkQO6 ZHlM+TYjEAWljmc6xv59RTpTAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE5td0D+ KIadOfhfARIwi9Tsn0XJMB8GA1UdIwQYMBaAFOPhzM+D1Sy4o8mHqBHh+AfzOT5/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRERi9BMjEyNzY4Qzc2 MEIxMUVEOEM2Q0YyNEVDNEY5QUUwMi80LUhNejRQVkxMaWp5WWVvRWVINEJfTTVQ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtSE16NFBWTExpanlZZW9FZUg0Ql9NNVBuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJEREYvQTIxMjc2OEM3NjBCMTFFRDhDNkNGMjRFQzRGOUFFMDIvRThGMkIxQzIy NEU5MTFGMEI1QzI2NzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnMKMwDQYJKoZIhvcNAQELBQADggEBAAsgVZl0wregV+M5 DFBXfiJ+/HN8PtWI7y9NzMDPBNZa3TDLkn75xLRwLFPhFndvXlr0obWyXqhtYN5D F7nDhPxi/F/fHFOOWPjp9+pG++I7ttFEOYcHOjJvIqiMlGeNMWeKhNGZroKVP8QJ ucmJsbbQVrq2ulr3jtLTDO5vBiszqDdUG8gHdOBHPOy1LJriHullJgl7tHlgtzBU KrD/JjfVIKi1am6JQA7/kcH2HdksZ9nQ87lBanL660vxieOj7jkwH52Q0iQDRtp2 zq2YRjzhM0W2fqO64j2O2H6AHRWCiBkCh5YCX6ltfv89BUlHwh5/cRZizpk7ivzH tMZGx54= -----END CERTIFICATE-----Generated at Sun May 11 22:34:03 2025 by rpki-client