$ rpki-client -vvf rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa File: 3D5EC616694B11EFABF9221EC4F9AE02.roa (raw, json) Hash identifier: 8alxfWhIp7fRhom5siOZsw/HKgS/bAz4IL2gvyTSJPI= Subject key identifier: 03:CF:C1:D1:6A:4C:0E:DC:CA:10:77:74:62:A3:60:40:1C:B3:F6:6E Certificate issuer: /CN=A911DE88/serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641 Certificate serial: 01BC Authority key identifier: BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa Signing time: Mon 05 May 2025 02:39:30 +0000 ROA not before: Mon 05 May 2025 02:39:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151477 IP address blocks: 103.112.43.0/24 maxlen: 24 2001:df2:1d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.crl rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DE88, serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641 Validity Not Before: May 5 02:39:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681824e2-71c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:03:dd:c9:90:3c:99:78:57:d1:b6:67:c8: fd:87:60:31:ee:d0:2f:3c:c0:8a:19:f5:8f:e4:ed: 63:98:17:77:5e:97:9f:e0:0d:9e:b2:d9:69:6a:46: 6c:4c:af:fd:97:72:e8:81:4d:aa:e1:14:18:b3:f8: 31:b1:1e:23:80:cd:fa:ea:01:ec:b4:bf:62:75:01: 61:58:4e:50:88:00:bc:d4:72:18:36:4a:72:ba:16: 94:f7:2c:4f:e6:9c:c8:1f:39:31:fe:29:d4:97:39: 40:51:bb:ef:30:6e:11:73:61:c1:83:75:8c:6a:2e: 69:ef:bc:0e:fa:dd:ba:e3:67:b6:78:e9:70:eb:79: 6e:d9:3d:51:3f:b6:8e:33:04:0f:f2:bf:c6:72:69: a4:75:d0:69:8c:2b:1f:88:c7:15:21:de:05:cb:de: d4:23:ee:b5:db:87:a5:2a:8d:3b:59:7c:c1:02:f8: c3:74:c4:54:6e:60:28:a2:e4:23:5d:61:fa:77:7e: 08:f3:10:27:4e:99:82:1f:8f:36:59:c4:7f:44:e6: 75:66:c7:96:1a:8a:b1:a2:65:42:44:6a:81:f0:e5: 3c:97:bb:1f:87:c4:28:c9:8d:6e:3f:2c:3d:7d:a8: f1:15:8c:90:5c:72:a8:52:7f:59:ee:b2:4f:d3:47: c6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CF:C1:D1:6A:4C:0E:DC:CA:10:77:74:62:A3:60:40:1C:B3:F6:6E X509v3 Authority Key Identifier: keyid:BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.43.0/24 IPv6: 2001:df2:1d40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:3d:bd:8b:4c:e3:79:63:e8:7f:27:2a:eb:13:06:a8:2b:34: c4:1a:48:a7:d4:87:c2:5f:00:c4:6d:75:66:7d:bd:e3:b6:eb: b4:02:7b:40:a7:79:1f:ca:5e:11:12:59:c6:2e:81:3e:1c:9b: cf:3a:18:e1:54:e6:7c:68:f7:f6:22:46:45:47:92:d4:57:90: ce:7e:7e:27:f6:d7:3d:fb:9a:b3:34:46:6b:7c:e7:90:c3:4b: 5b:f7:c4:f1:de:e3:e0:04:8e:e6:c7:ce:01:40:e4:6b:7e:6c: 7f:e0:f0:1f:43:2c:c0:5e:58:9c:cc:e0:ce:1f:70:2d:8b:df: 0f:9e:4a:aa:a8:69:29:3c:aa:9b:ef:0d:d3:99:c1:5d:f3:c2: 4b:fd:cc:17:b2:e0:1f:1d:d3:70:86:bd:8f:d5:b2:a7:19:a8: 72:da:1c:f4:10:74:f4:9d:99:5d:a8:78:55:89:f6:74:3e:fe: 5d:ed:49:8f:67:e2:cc:9e:4d:0c:66:03:d8:13:0f:bb:89:95: 48:64:00:69:73:64:ed:ed:6f:48:65:1f:7d:ef:26:ef:cb:e6: 1c:2d:3d:40:db:a4:85:13:40:04:5f:97:9f:36:f9:ac:38:95: ce:3b:b8:94:26:99:3a:a9:cd:27:7b:18:08:56:cf:e4:72:fc: a7:37:0a:71 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFODgxMTAvBgNVBAUTKEJFM0Y4QkRGODFCNjZCNEVEMkUxQzc0RUI1RDVGQjAx QjVGNzc2NDEwHhcNMjUwNTA1MDIzOTMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MjRlMi03MWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNMD3cmQPJl4V9G2Z8j9h2Ax7tAvPMCKGfWP5O1jmBd3Xpef4A2estlpakZs TK/9l3LogU2q4RQYs/gxsR4jgM366gHstL9idQFhWE5QiAC81HIYNkpyuhaU9yxP 5pzIHzkx/inUlzlAUbvvMG4Rc2HBg3WMai5p77wO+t2642e2eOlw63lu2T1RP7aO MwQP8r/GcmmkddBpjCsfiMcVId4Fy97UI+6124elKo07WXzBAvjDdMRUbmAoouQj XWH6d34I8xAnTpmCH482WcR/ROZ1ZseWGoqxomVCRGqB8OU8l7sfh8QoyY1uPyw9 fajxFYyQXHKoUn9Z7rJP00fGeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAPPwdFq TA7cyhB3dGKjYEAcs/ZuMB8GA1UdIwQYMBaAFL4/i9+BtmtO0uHHTrXV+wG193ZB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREU4OC80QkZDQTE0MkMz RUUxMUVEOTIyQTExNTRDNEY5QUUwMi92ai1MMzRHMmEwN1M0Y2RPdGRYN0FiWDNk a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqLUwzNEcyYTA3UzRjZE90ZFg3QWJYM2RrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFODgvNEJGQ0ExNDJDM0VFMTFFRDkyMkExMTU0QzRGOUFFMDIvM0Q1RUM2MTY2 OTRCMTFFRkFCRjkyMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABncCswDwQCAAIwCQMHACABDfIdQDANBgkqhkiG9w0BAQsF AAOCAQEAaj29i0zjeWPofycq6xMGqCs0xBpIp9SHwl8AxG11Zn2947brtAJ7QKd5 H8peERJZxi6BPhybzzoY4VTmfGj39iJGRUeS1FeQzn5+J/bXPfuaszRGa3znkMNL W/fE8d7j4ASO5sfOAUDka35sf+DwH0MswF5YnMzgzh9wLYvfD55KqqhpKTyqm+8N 05nBXfPCS/3MF7LgHx3TcIa9j9Wypxmoctoc9BB09J2ZXah4VYn2dD7+Xe1Jj2fi zJ5NDGYD2BMPu4mVSGQAaXNk7e1vSGUffe8m78vmHC09QNukhRNABF+Xnzb5rDiV zju4lCaZOqnNJ3sYCFbP5HL8pzcKcQ== -----END CERTIFICATE-----Generated at Thu May 15 00:32:37 2025 by rpki-client