$ rpki-client -vvf rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/7B68D8F2A3E811EAB397F675C4F9AE02.roa File: 7B68D8F2A3E811EAB397F675C4F9AE02.roa (raw, json) Hash identifier: yNVnw0EXP1INvPZ4s9NoOnzSrgePvAYn9b5xTyExR54= Subject key identifier: 7F:FF:E1:A6:61:BD:E2:B5:DF:59:5D:A4:B2:93:28:18:11:4D:46:E6 Certificate issuer: /CN=A911E24A/serialNumber=CD4FB910F3E6F59C59CE5ACC9438EDD08D56FC88 Certificate serial: 0910 Authority key identifier: CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/7B68D8F2A3E811EAB397F675C4F9AE02.roa Signing time: Wed 14 May 2025 20:56:52 +0000 ROA not before: Wed 14 May 2025 20:56:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38478 IP address blocks: 103.53.224.0/24 maxlen: 24 103.53.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2320 (0x910) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E24A, serialNumber=CD4FB910F3E6F59C59CE5ACC9438EDD08D56FC88 Validity Not Before: May 14 20:56:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68250394-cece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:36:27:6c:2d:ee:99:25:82:b1:f3:ba:82:03: 92:4c:ca:e8:3b:41:d0:13:71:44:97:26:a6:31:fb: 3d:77:59:d0:e8:4a:2b:80:f5:ee:c8:62:26:45:cc: a1:bb:75:d4:24:c0:df:89:cb:16:da:3d:b0:fb:d5: d2:f8:82:7e:d6:a8:cc:a8:ca:99:01:66:2a:9f:c8: d4:0c:58:9a:c6:9c:fc:84:c8:30:20:49:59:81:eb: 03:ff:60:7c:7d:88:ee:c5:2d:f1:bc:4c:66:12:f8: 0e:ff:20:a0:4b:54:7c:43:31:f7:e3:b8:79:79:e6: 52:24:19:e8:99:45:41:b6:ba:0a:ac:f1:5e:ac:59: 97:50:e5:79:4b:57:d7:63:c9:a1:08:c2:01:4e:f6: b5:25:10:63:c6:8f:49:23:06:7a:a5:f8:46:b7:da: a6:68:0c:01:58:70:70:02:41:7c:b3:b0:a1:ea:3c: 98:1e:13:19:cb:cf:44:75:7a:65:97:97:d2:8a:21: 2f:da:62:04:3c:9d:97:3e:00:a2:29:6d:6f:6a:b9: 98:95:31:b7:47:6a:84:37:0c:44:5c:c6:6e:43:21: d2:99:f7:01:f8:93:b5:0d:01:b1:16:f9:14:e2:2d: 2d:66:1d:1a:99:66:80:be:86:d7:91:89:19:ed:f2: c9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FF:E1:A6:61:BD:E2:B5:DF:59:5D:A4:B2:93:28:18:11:4D:46:E6 X509v3 Authority Key Identifier: keyid:CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/7B68D8F2A3E811EAB397F675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.53.224.0/23 Signature Algorithm: sha256WithRSAEncryption 05:33:1f:57:6a:ba:6c:e0:e3:5e:29:29:cc:b3:0a:73:a1:03: c0:da:f3:01:f9:e8:59:5b:ac:79:01:9a:86:cd:b6:94:ee:20: ed:fe:dd:1f:99:bc:2e:8e:e5:b2:55:d3:cc:87:29:de:97:3c: 45:6e:ee:c4:0a:1f:b2:13:2c:09:d0:d0:b4:f7:28:45:dd:3d: 61:3d:3f:37:0a:33:e7:d4:c3:44:68:d1:cc:8f:9a:ca:46:b1: d5:74:dd:17:10:d5:f0:d8:90:33:9d:d4:a1:e2:30:02:13:45: e8:f4:72:ca:42:1b:78:c6:c7:7d:ec:a5:82:ab:ab:d1:f6:9f: 37:6c:c2:d4:a6:92:8f:c3:90:c6:16:59:92:94:b5:ac:72:ca: f2:a2:03:f2:00:0b:2d:a4:53:db:da:2c:78:5f:87:24:73:4b: ae:c3:0f:43:e6:30:c2:53:6a:a6:c6:49:1a:b7:4b:47:cc:f2: 20:a0:7d:ff:6b:8a:b6:63:97:e5:ae:77:e1:64:2a:88:d7:f1: 48:1d:5e:0c:42:f8:f4:36:e8:c8:63:0e:39:f4:e3:6a:28:6a: c6:51:88:e2:c5:52:f0:44:48:f1:1d:8c:58:db:7e:8a:ed:df: 85:f5:14:22:b2:d9:df:b5:20:1c:99:33:1e:8d:ad:7a:2a:bb: 1a:0a:bb:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUyNEExMTAvBgNVBAUTKENENEZCOTEwRjNFNkY1OUM1OUNFNUFDQzk0MzhFREQw OEQ1NkZDODgwHhcNMjUwNTE0MjA1NjUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MDM5NC1jZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzYnbC3umSWCsfO6ggOSTMroO0HQE3FElyamMfs9d1nQ6EorgPXuyGImRcyh u3XUJMDficsW2j2w+9XS+IJ+1qjMqMqZAWYqn8jUDFiaxpz8hMgwIElZgesD/2B8 fYjuxS3xvExmEvgO/yCgS1R8QzH347h5eeZSJBnomUVBtroKrPFerFmXUOV5S1fX Y8mhCMIBTva1JRBjxo9JIwZ6pfhGt9qmaAwBWHBwAkF8s7Ch6jyYHhMZy89EdXpl l5fSiiEv2mIEPJ2XPgCiKW1varmYlTG3R2qENwxEXMZuQyHSmfcB+JO1DQGxFvkU 4i0tZh0amWaAvobXkYkZ7fLJ/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFH//4aZh veK131ldpLKTKBgRTUbmMB8GA1UdIwQYMBaAFM1PuRDz5vWcWc5azJQ47dCNVvyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTI0QS82MzVDMDExOEEz RTcxMUVBQTZBOUQ5NzRDNEY5QUUwMi96VS01RVBQbTlaeFp6bHJNbERqdDBJMVdf SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVLTVFUFBtOVp4Wnpsck1sRGp0MEkxV19JZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUUyNEEvNjM1QzAxMThBM0U3MTFFQUE2QTlEOTc0QzRGOUFFMDIvN0I2OEQ4RjJB M0U4MTFFQUIzOTdGNjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnNeAwDQYJKoZIhvcNAQELBQADggEBAAUzH1dqumzg414p KcyzCnOhA8Da8wH56FlbrHkBmobNtpTuIO3+3R+ZvC6O5bJV08yHKd6XPEVu7sQK H7ITLAnQ0LT3KEXdPWE9PzcKM+fUw0Ro0cyPmspGsdV03RcQ1fDYkDOd1KHiMAIT Rej0cspCG3jGx33spYKrq9H2nzdswtSmko/DkMYWWZKUtaxyyvKiA/IACy2kU9va LHhfhyRzS67DD0PmMMJTaqbGSRq3S0fM8iCgff9rirZjl+Wud+FkKojX8UgdXgxC +PQ26MhjDjn042ooasZRiOLFUvBESPEdjFjbfort34X1FCKy2d+1IByZMx6NrXoq uxoKuyc= -----END CERTIFICATE-----Generated at Fri May 16 13:24:48 2025 by rpki-client