$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/833193B0203111F087083F1BC4F9AE02.roa File: 833193B0203111F087083F1BC4F9AE02.roa (raw, json) Hash identifier: YV5T5imQ3HkEMrAPPHtUQLHUahd06peqon3fIULPMyg= Subject key identifier: 06:A0:DD:EB:AA:F2:60:DE:6A:8D:00:5F:C3:7D:0B:F1:A6:10:11:B6 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 282D Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/833193B0203111F087083F1BC4F9AE02.roa Signing time: Mon 05 May 2025 07:08:53 +0000 ROA not before: Mon 05 May 2025 07:08:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7489 IP address blocks: 27.100.36.0/23 maxlen: 24 45.124.64.0/22 maxlen: 24 103.192.176.0/22 maxlen: 24 103.196.20.0/23 maxlen: 24 103.196.23.0/24 maxlen: 24 103.217.252.0/22 maxlen: 22 103.217.253.0/24 maxlen: 24 2402:9e80::/48 maxlen: 48 2402:9e80:1::/48 maxlen: 48 2402:9e80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10285 (0x282d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: May 5 07:08:53 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68186405-bc00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:42:a0:8e:17:7c:ce:7a:05:aa:f1:c7:e2:6f: 2d:f8:52:06:52:f4:51:85:5c:02:28:8c:1e:80:39: 45:79:56:b5:54:c4:a3:b1:ad:b8:09:a0:a4:37:73: 68:52:c3:f7:86:a5:57:22:b0:a6:6d:04:cd:8a:02: d5:bb:e6:da:11:c8:3c:6b:c7:65:59:06:9a:3d:8f: d2:d3:e6:d1:79:bb:17:0c:a1:7a:87:54:02:4d:28: 86:79:89:fb:ab:00:ef:5c:22:29:be:aa:37:53:b6: 41:40:61:ae:04:ce:df:79:57:4b:f2:42:d9:6a:be: ad:f2:2a:24:b6:95:ff:ef:f5:1d:ed:6b:01:9c:77: c9:18:d2:23:e0:f3:27:55:32:f8:37:66:30:6f:82: 74:2d:6d:59:0e:e0:be:e1:97:1e:9c:7a:3f:21:fa: d6:b6:97:f1:63:36:d8:e4:8b:6b:36:dc:51:f6:fb: f5:5c:bf:4d:bb:50:41:b8:2c:d8:0f:3d:2e:ba:c2: ce:50:ea:95:23:53:09:82:4f:41:2f:44:c5:7d:5d: c0:58:58:f6:57:f4:0c:56:77:e8:0b:40:e3:0f:80: 03:96:d7:34:0b:3d:4b:2a:c1:40:12:45:55:f7:9c: a7:dd:fb:8f:20:fa:b1:c0:7f:d4:4a:3d:8c:7b:cf: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A0:DD:EB:AA:F2:60:DE:6A:8D:00:5F:C3:7D:0B:F1:A6:10:11:B6 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/833193B0203111F087083F1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.100.36.0/23 45.124.64.0/22 103.192.176.0/22 103.196.20.0/23 103.196.23.0/24 103.217.252.0/22 IPv6: 2402:9e80::/47 2402:9e80:5::/48 Signature Algorithm: sha256WithRSAEncryption 8c:44:01:b4:a4:28:24:0f:02:c3:8b:c8:28:ac:ca:29:08:2e: a8:4b:aa:f9:18:f2:4e:17:d3:0a:3d:e9:a2:89:cc:0e:f4:b2: 40:99:0c:5e:9f:cd:4d:90:ca:bd:2d:f1:09:54:31:e1:cd:52: 82:eb:c7:1c:5a:d9:9c:b8:8d:bb:62:0c:92:cf:39:35:1a:8f: fa:69:45:f8:79:00:58:55:b8:bf:eb:b4:27:dc:e2:6e:5a:cb: b6:08:99:39:ce:44:ed:94:86:ca:52:2a:70:0c:64:86:cc:51: 71:03:fd:28:49:ec:48:07:b1:7c:a2:6e:0c:46:7d:9d:f5:08: 75:6d:1d:df:f0:64:f6:69:f2:57:db:8c:51:54:f2:7a:b0:98: 87:bd:fd:0d:76:ff:02:65:da:85:0c:58:88:a7:e6:07:be:68: 11:ca:4b:14:f7:c5:26:32:e6:5f:27:32:52:c1:49:e6:45:4a: 60:ba:88:9d:32:b9:07:8b:31:c5:55:d6:85:38:67:90:78:42: f0:72:6a:21:63:b0:13:ab:84:74:cf:0a:6d:f0:04:06:3a:e6: 07:8d:42:52:50:a6:a9:79:1f:29:94:06:08:bf:fd:87:e8:50: d2:37:93:61:c3:0f:fe:67:17:5a:a2:25:6b:4f:e4:74:f1:39: 65:fc:6e:3a -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgICKC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNTA1MDcwODUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4NjQwNS1iYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEKgjhd8znoFqvHH4m8t+FIGUvRRhVwCKIwegDlFeVa1VMSjsa24CaCkN3No UsP3hqVXIrCmbQTNigLVu+baEcg8a8dlWQaaPY/S0+bRebsXDKF6h1QCTSiGeYn7 qwDvXCIpvqo3U7ZBQGGuBM7feVdL8kLZar6t8ioktpX/7/Ud7WsBnHfJGNIj4PMn VTL4N2Ywb4J0LW1ZDuC+4ZcenHo/IfrWtpfxYzbY5ItrNtxR9vv1XL9Nu1BBuCzY Dz0uusLOUOqVI1MJgk9BL0TFfV3AWFj2V/QMVnfoC0DjD4ADltc0Cz1LKsFAEkVV 95yn3fuPIPqxwH/USj2Me89h2QIDAQABo4ICzTCCAskwHQYDVR0OBBYEFAag3euq 8mDeao0AX8N9C/GmEBG2MB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvODMzMTkzQjAy MDMxMTFGMDg3MDgzRjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E SDBGMCoEAgABMCQDBAEbZCQDBAItfEADBAJnwLADBAFnxBQDBABnxBcDBAJn2fww GAQCAAIwEgMHASQCnoAAAAMHACQCnoAABTANBgkqhkiG9w0BAQsFAAOCAQEAjEQB tKQoJA8Cw4vIKKzKKQguqEuq+RjyThfTCj3poonMDvSyQJkMXp/NTZDKvS3xCVQx 4c1SguvHHFrZnLiNu2IMks85NRqP+mlF+HkAWFW4v+u0J9ziblrLtgiZOc5E7ZSG ylIqcAxkhsxRcQP9KEnsSAexfKJuDEZ9nfUIdW0d3/Bk9mnyV9uMUVTyerCYh739 DXb/AmXahQxYiKfmB75oEcpLFPfFJjLmXycyUsFJ5kVKYLqInTK5B4sxxVXWhThn kHhC8HJqIWOwE6uEdM8KbfAEBjrmB41CUlCmqXkfKZQGCL/9h+hQ0jeTYcMP/mcX WqIla0/kdPE5ZfxuOg== -----END CERTIFICATE-----Generated at Mon May 12 19:55:49 2025 by rpki-client