$ rpki-client -vvf rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa File: D985E93886B111EFA11BDF53C4F9AE02.roa (raw, json) Hash identifier: TCVr9sb5a2PjZec4AqxBAfKMx0zKz+J6E/1zvVYeY7U= Subject key identifier: 06:65:47:35:04:68:38:E9:23:48:71:BC:A7:55:6D:AB:9E:1D:4D:4E Certificate issuer: /CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Certificate serial: 8A Authority key identifier: 0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa Signing time: Thu 01 May 2025 06:13:21 +0000 ROA not before: Thu 01 May 2025 06:13:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38456 IP address blocks: 103.249.49.0/24 maxlen: 24 103.249.50.0/24 maxlen: 24 103.249.51.0/24 maxlen: 24 110.232.148.0/24 maxlen: 24 110.232.150.0/24 maxlen: 24 110.232.151.0/24 maxlen: 24 111.92.177.0/24 maxlen: 24 111.92.179.0/24 maxlen: 24 122.200.58.0/24 maxlen: 24 122.200.59.0/24 maxlen: 24 122.200.60.0/24 maxlen: 24 2406:5e00::/48 maxlen: 48 2406:5e00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913819A, serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Validity Not Before: May 1 06:13:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68131101-3b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:a4:1b:20:54:ef:e6:da:31:1d:73:29:a9: ee:c3:50:17:f7:dd:eb:ec:76:15:09:8d:d1:f9:ad: ae:e9:fb:01:dc:27:46:23:71:ac:5e:7b:9d:67:fa: ab:98:6a:3a:c8:0a:03:7f:95:c2:0d:db:af:d0:2f: 58:cd:e5:0d:47:2c:e2:93:76:54:40:9e:64:a0:9a: 48:be:af:83:ed:22:cd:f5:75:0e:8a:66:82:38:29: 90:ba:66:89:dc:63:f8:57:9f:4c:af:3d:26:99:dc: 96:d6:cf:f1:38:12:d9:46:8c:92:b8:35:01:ad:af: 18:d1:7a:4b:f5:99:1b:f8:8d:02:15:fc:d1:d6:44: 4f:be:61:6d:4b:93:82:02:4a:77:68:31:de:0a:12: 4a:e7:8f:41:4a:fe:34:2b:38:af:61:d4:69:db:dd: 0c:e9:cc:fc:ad:af:07:a3:0c:da:fc:3a:de:02:1e: 3f:b8:67:59:d0:ea:d8:cd:57:fb:44:70:b0:36:8e: b4:62:d1:da:14:c7:14:4a:31:cd:10:d3:b4:d5:5a: d7:29:09:a8:b7:5e:42:d7:38:40:6e:b1:f9:f8:da: 5f:8f:58:5a:1b:b3:6c:e1:f1:71:6c:fe:10:0c:77: 76:7d:7a:04:58:bb:f2:3c:e2:88:f9:75:7e:22:17: a5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:65:47:35:04:68:38:E9:23:48:71:BC:A7:55:6D:AB:9E:1D:4D:4E X509v3 Authority Key Identifier: keyid:0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.49.0-103.249.51.255 110.232.148.0/24 110.232.150.0/23 111.92.177.0/24 111.92.179.0/24 122.200.58.0-122.200.60.255 IPv6: 2406:5e00::/47 Signature Algorithm: sha256WithRSAEncryption 44:d1:8f:96:bb:10:5b:06:24:c1:37:6e:5f:4a:5f:f6:9b:45: b0:0d:51:3e:13:34:34:67:e2:0d:33:25:3a:cf:b2:a0:73:90: 45:b0:33:cf:98:98:0f:29:2d:3e:d2:10:be:89:ee:94:7c:57: 4d:51:15:0c:8b:92:00:e3:51:96:91:5e:52:a9:1f:a8:aa:49: 48:91:c2:10:ab:5d:5c:75:32:4a:0a:77:9a:3a:47:9b:81:0d: ee:21:78:cf:47:0a:7c:a3:b4:70:72:a7:b7:44:3f:65:32:21: 07:a7:74:bb:da:06:fe:43:9a:44:17:90:27:ae:2c:05:0b:49: 4c:f3:71:2f:02:29:18:5a:7c:a9:c9:9b:b7:af:ee:67:42:97: b6:0b:60:a0:5e:41:b9:6c:27:f2:ac:f1:57:80:36:c6:62:d8: 2d:3e:6f:bf:a8:4f:9b:7e:97:2e:41:85:c5:f2:57:e2:9b:99: 8e:2f:67:c0:2e:f8:36:a4:94:65:45:be:3f:f5:22:cc:ab:e3: 16:23:54:4e:20:01:69:a5:58:30:8f:54:98:70:6a:c8:1c:bd: 80:90:df:55:0e:1b:9a:59:af:31:3f:34:12:aa:ee:be:5b:90: d8:78:1f:50:0f:31:5d:8c:86:d4:da:50:1e:23:7a:c8:5f:8c: e2:9d:6d:d8 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxOUExMTAvBgNVBAUTKDBCMzY2RTA3MENGRTcwMEU0NzdFRTQ3NEQ2Qzk1NDlE RDNCMzhCRjIwHhcNMjUwNTAxMDYxMzIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEzMTEwMS0zYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHSkGyBU7+baMR1zKanuw1AX993r7HYVCY3R+a2u6fsB3CdGI3GsXnudZ/qr mGo6yAoDf5XCDduv0C9YzeUNRyzik3ZUQJ5koJpIvq+D7SLN9XUOimaCOCmQumaJ 3GP4V59Mrz0mmdyW1s/xOBLZRoySuDUBra8Y0XpL9Zkb+I0CFfzR1kRPvmFtS5OC Akp3aDHeChJK549BSv40KzivYdRp290M6cz8ra8Howza/DreAh4/uGdZ0OrYzVf7 RHCwNo60YtHaFMcUSjHNENO01VrXKQmot15C1zhAbrH5+Npfj1haG7Ns4fFxbP4Q DHd2fXoEWLvyPOKI+XV+IheltwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFAZlRzUE aDjpI0hxvKdVbaueHU1OMB8GA1UdIwQYMBaAFAs2bgcM/nAOR37kdNbJVJ3Ts4vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE5QS81Rjg5RjQzMDg2 QjExMUVGQUY2RUNCNTJDNEY5QUUwMi9Delp1Qnd6LWNBNUhmdVIwMXNsVW5kT3pp X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6WnVCd3otY0E1SGZ1UjAxc2xVbmRPemlfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxOUEvNUY4OUY0MzA4NkIxMTFFRkFGNkVDQjUyQzRGOUFFMDIvRDk4NUU5Mzg4 NkIxMTFFRkExMUJERjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMDoEAgABMDQwDAMEAGf5MQMEAmf5MAMEAG7olAMEAW7olgMEAG9csQMEAG9c szAMAwQBesg6AwQAesg8MA8EAgACMAkDBwEkBl4AAAAwDQYJKoZIhvcNAQELBQAD ggEBAETRj5a7EFsGJME3bl9KX/abRbANUT4TNDRn4g0zJTrPsqBzkEWwM8+YmA8p LT7SEL6J7pR8V01RFQyLkgDjUZaRXlKpH6iqSUiRwhCrXVx1MkoKd5o6R5uBDe4h eM9HCnyjtHByp7dEP2UyIQendLvaBv5DmkQXkCeuLAULSUzzcS8CKRhafKnJm7ev 7mdCl7YLYKBeQblsJ/Ks8VeANsZi2C0+b7+oT5t+ly5BhcXyV+KbmY4vZ8Au+Dak lGVFvj/1Isyr4xYjVE4gAWmlWDCPVJhwasgcvYCQ31UOG5pZrzE/NBKq7r5bkNh4 H1APMV2MhtTaUB4jeshfjOKdbdg= -----END CERTIFICATE-----Generated at Tue May 13 02:04:44 2025 by rpki-client