$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/623283BC2E8D11F099F38C68C4F9AE02.roa File: 623283BC2E8D11F099F38C68C4F9AE02.roa (raw, json) Hash identifier: g+TJ2RbeRLlUsgRaIQX7+NMc+cBZoi70QxzoNuHppo4= Subject key identifier: D9:9F:AE:0E:94:6E:45:18:6A:A2:1E:85:E3:08:10:66:70:A4:3B:65 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 0FE0 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/623283BC2E8D11F099F38C68C4F9AE02.roa Signing time: Sun 11 May 2025 17:28:42 +0000 ROA not before: Sun 11 May 2025 17:28:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134153 IP address blocks: 103.138.26.0/23 maxlen: 23 103.138.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4064 (0xfe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: May 11 17:28:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6820de4a-dbe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:d4:11:a8:a9:11:0b:f4:21:04:44:88:cb: 3a:fe:b6:8d:20:5a:a5:8b:01:4f:c0:d8:a1:fc:d9: e0:ad:32:f1:0d:31:ec:b0:50:8f:d5:74:54:4a:b9: b8:d4:d8:20:29:5a:14:e2:ec:75:0c:e2:7b:97:9b: da:55:0e:a7:0a:cf:68:1f:0e:81:cb:da:87:07:d7: 0a:af:e1:9c:65:87:bc:27:ca:3b:fe:7d:4b:2d:70: b1:7c:eb:1e:94:54:16:e8:1f:f3:81:3a:d9:73:4d: e6:83:e4:35:25:99:f0:9a:b2:b7:36:01:33:34:55: da:ee:13:25:b0:79:6b:dc:63:b8:23:dc:67:e3:6b: 45:b8:49:0b:e7:95:ae:1a:05:e4:d7:30:02:83:40: f1:b3:1d:c2:03:04:af:ce:aa:b3:ad:e6:ca:ad:7f: e0:9a:2d:d4:5a:a3:61:54:03:54:33:75:21:a7:7d: f9:28:69:f9:2e:28:02:4b:62:db:c2:6b:df:6f:b5: 86:a2:43:4f:93:c4:70:25:94:b1:8b:2d:3b:b6:03: 72:7c:7a:2b:f3:db:4c:87:a3:c5:a6:79:9b:75:4c: 91:63:c5:8d:f2:a6:7c:2b:0e:85:64:69:b9:bd:0a: c3:a8:95:32:07:0e:0c:2d:a3:88:0d:3d:f0:40:3b: 74:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9F:AE:0E:94:6E:45:18:6A:A2:1E:85:E3:08:10:66:70:A4:3B:65 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/623283BC2E8D11F099F38C68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.26.0/23 Signature Algorithm: sha256WithRSAEncryption 19:f2:e2:f9:de:ab:04:a0:c0:3e:f6:2c:d4:42:0e:b1:ec:f2: 82:16:62:f7:fb:b9:94:10:d5:c6:a9:ae:fa:71:2a:8f:dd:05: bd:fe:dd:8a:8f:63:6d:99:89:6b:a6:b2:6a:df:a8:fa:d4:5d: f2:07:64:1e:10:35:df:49:b7:e4:a1:49:5a:56:f8:f8:e4:3f: 98:77:53:e0:18:de:44:84:bb:91:20:c9:07:67:80:d1:a9:6e: 24:2f:51:6b:e3:2f:50:9f:fb:cd:38:ff:6d:87:bf:70:9f:34: 97:fc:d2:95:a7:c6:90:b6:ec:b8:23:ef:c3:4a:a7:58:d9:75: 91:70:47:85:34:07:f0:6a:bb:a2:65:40:0f:51:42:4a:31:da: a3:c0:d7:f9:02:b1:65:19:41:94:03:29:98:36:92:03:a8:f6: 29:fb:a2:97:33:3d:6b:3b:fa:2e:a1:7b:13:1c:de:8f:bf:9e: f7:41:72:e0:8b:7e:d4:5c:f0:b3:e8:23:55:a8:a0:9d:27:81: 0e:ef:87:3e:6b:f0:b8:cd:a2:10:e1:55:5a:ba:e7:ae:17:cd: e5:96:d7:90:7c:83:d5:1e:4f:f0:00:f0:32:84:f6:59:56:bf: ac:05:f6:73:db:f0:4e:20:42:0d:d6:d3:16:d0:ab:43:e5:79: 62:8f:2b:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNTExMTcyODQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIwZGU0YS1kYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9bUEaipEQv0IQREiMs6/raNIFqliwFPwNih/NngrTLxDTHssFCP1XRUSrm4 1NggKVoU4ux1DOJ7l5vaVQ6nCs9oHw6By9qHB9cKr+GcZYe8J8o7/n1LLXCxfOse lFQW6B/zgTrZc03mg+Q1JZnwmrK3NgEzNFXa7hMlsHlr3GO4I9xn42tFuEkL55Wu GgXk1zACg0Dxsx3CAwSvzqqzrebKrX/gmi3UWqNhVANUM3Uhp335KGn5LigCS2Lb wmvfb7WGokNPk8RwJZSxiy07tgNyfHor89tMh6PFpnmbdUyRY8WN8qZ8Kw6FZGm5 vQrDqJUyBw4MLaOIDT3wQDt0gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmfrg6U bkUYaqIeheMIEGZwpDtlMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvNjIzMjgzQkMy RThEMTFGMDk5RjM4QzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnihowDQYJKoZIhvcNAQELBQADggEBABny4vneqwSgwD72 LNRCDrHs8oIWYvf7uZQQ1caprvpxKo/dBb3+3YqPY22ZiWumsmrfqPrUXfIHZB4Q Nd9Jt+ShSVpW+PjkP5h3U+AY3kSEu5EgyQdngNGpbiQvUWvjL1Cf+804/22Hv3Cf NJf80pWnxpC27Lgj78NKp1jZdZFwR4U0B/Bqu6JlQA9RQkox2qPA1/kCsWUZQZQD KZg2kgOo9in7opczPWs7+i6hexMc3o+/nvdBcuCLftRc8LPoI1WooJ0ngQ7vhz5r 8LjNohDhVVq6564XzeWW15B8g9UeT/AA8DKE9llWv6wF9nPb8E4gQg3W0xbQq0Pl eWKPK3M= -----END CERTIFICATE-----Generated at Wed May 14 18:14:03 2025 by rpki-client