$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/449C08948D1211EBB9548186C4F9AE02.roa File: 449C08948D1211EBB9548186C4F9AE02.roa (raw, json) Hash identifier: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o= Subject key identifier: 60:94:7C:11:83:62:5E:C4:B6:DD:B3:76:78:03:AB:20:45:D7:68:EC Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 206C Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/449C08948D1211EBB9548186C4F9AE02.roa Signing time: Wed 14 May 2025 16:05:38 +0000 ROA not before: Wed 14 May 2025 16:05:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132819 IP address blocks: 103.25.198.0/24 maxlen: 24 103.25.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 16:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8300 (0x206c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: May 14 16:05:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6824bf51-2f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:19:36:cf:7e:e1:d1:0b:92:54:b6:51:db: e6:09:b6:49:43:87:8c:64:cb:5f:84:a5:2f:47:de: cb:ec:55:a9:f4:9d:dc:17:3f:b5:f8:fd:79:4d:af: bd:7a:06:38:c1:22:b1:22:96:01:74:51:d9:d3:11: 0f:f2:86:55:06:70:40:cc:2b:a8:2d:87:7e:0b:1b: f7:5c:04:0f:17:42:d9:73:da:1c:51:b7:63:8e:15: d9:e4:fd:7d:57:1f:3b:c0:ed:6b:40:9f:53:15:bb: 97:6c:72:ea:16:11:04:c8:5a:51:c8:9f:b2:5e:80: 22:72:b0:13:76:39:a4:8e:23:e5:01:53:ec:30:92: 16:f0:13:41:d3:b5:96:44:97:37:a7:10:9d:44:7d: b8:ba:cf:52:4b:bd:67:1b:bc:7a:5f:ab:b2:f4:f1: 6d:3c:0a:18:5a:28:8e:85:40:f0:14:e4:18:d4:5e: 0a:e0:6e:a0:47:36:5c:fd:1b:c6:38:f7:1e:49:b8: 39:b9:60:d8:c4:c5:3f:c0:50:e5:90:17:39:fa:4d: 9e:95:4e:28:ee:32:dc:84:b4:0e:fb:56:60:e4:bb: 0a:da:51:4c:10:9e:af:f1:c5:63:fc:71:cf:1b:f0: 6c:23:46:db:7a:bd:c7:b0:64:f9:bf:f7:63:9c:12: 0c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:94:7C:11:83:62:5E:C4:B6:DD:B3:76:78:03:AB:20:45:D7:68:EC X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/449C08948D1211EBB9548186C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.198.0/23 Signature Algorithm: sha256WithRSAEncryption 48:1f:68:d9:26:e8:08:9f:ae:60:b8:63:ea:ac:2e:65:80:bb: 3c:ed:f3:4a:33:b4:4c:2f:a9:a8:8e:28:a0:75:12:cd:8c:04: d2:8f:6c:25:bf:33:78:5d:c5:8a:7a:74:d2:c1:b9:79:ad:c9: 27:3d:df:fb:ad:78:b3:3e:18:86:d9:55:a4:1f:e3:0b:58:9c: 0c:f5:c6:6f:94:e8:d0:7d:28:3d:94:2b:9f:f9:ac:88:d7:3d: 9a:27:ef:3a:33:56:c4:f5:bd:9a:43:0c:2f:1a:db:99:d6:64: 07:a6:0f:5c:2d:57:69:86:95:65:db:60:e4:54:f8:2e:31:6c: c3:da:56:1f:a9:63:59:3a:af:08:db:17:65:72:11:67:4e:04: 82:00:81:0e:38:ee:b6:43:4c:e5:33:d1:49:00:08:40:c3:e4: 8d:96:d1:f1:33:13:3f:d6:f4:8f:0c:00:b2:d5:84:89:3b:de: 10:4a:01:61:a0:39:f3:e9:6a:3f:c8:6f:59:4e:44:84:b1:5d: e6:34:51:86:0e:cf:7f:3e:9c:58:04:ed:50:c6:34:22:3c:ee: 7a:05:ef:94:e4:82:ac:e7:2d:80:65:14:77:ff:92:6e:fb:22: a2:ea:a5:98:02:c0:bc:c2:06:a0:78:74:e2:ac:6f:9d:0c:ba: 94:53:1c:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUwNTE0MTYwNTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0YmY1MS0yZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDgZNs9+4dELklS2UdvmCbZJQ4eMZMtfhKUvR97L7FWp9J3cFz+1+P15Ta+9 egY4wSKxIpYBdFHZ0xEP8oZVBnBAzCuoLYd+Cxv3XAQPF0LZc9ocUbdjjhXZ5P19 Vx87wO1rQJ9TFbuXbHLqFhEEyFpRyJ+yXoAicrATdjmkjiPlAVPsMJIW8BNB07WW RJc3pxCdRH24us9SS71nG7x6X6uy9PFtPAoYWiiOhUDwFOQY1F4K4G6gRzZc/RvG OPceSbg5uWDYxMU/wFDlkBc5+k2elU4o7jLchLQO+1Zg5LsK2lFMEJ6v8cVj/HHP G/BsI0bber3HsGT5v/djnBIMzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGCUfBGD Yl7Ett2zdngDqyBF12jsMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNCRkYvRjI5MDgyOUExMERBMTFFNjg1QzRCQjNEQzRGOUFFMDIvNDQ5QzA4OTQ4 RDEyMTFFQkI5NTQ4MTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGcYwDQYJKoZIhvcNAQELBQADggEBAEgfaNkm6AifrmC4 Y+qsLmWAuzzt80oztEwvqaiOKKB1Es2MBNKPbCW/M3hdxYp6dNLBuXmtySc93/ut eLM+GIbZVaQf4wtYnAz1xm+U6NB9KD2UK5/5rIjXPZon7zozVsT1vZpDDC8a25nW ZAemD1wtV2mGlWXbYORU+C4xbMPaVh+pY1k6rwjbF2VyEWdOBIIAgQ447rZDTOUz 0UkACEDD5I2W0fEzEz/W9I8MALLVhIk73hBKAWGgOfPpaj/Ib1lORISxXeY0UYYO z38+nFgE7VDGNCI87noF75TkgqznLYBlFHf/km77IqLqpZgCwLzCBqB4dOKsb50M upRTHFI= -----END CERTIFICATE-----Generated at Sat May 17 08:58:25 2025 by rpki-client