$ rpki-client -vvf rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CF53E5E6240411F0B73CB374C4F9AE02.roa File: CF53E5E6240411F0B73CB374C4F9AE02.roa (raw, json) Hash identifier: aGXXY3h8pMjRmE6vJ9+0EmvsUGymYki2tMrN0LjTaWE= Subject key identifier: 0F:8B:57:71:08:B3:9B:9C:DB:1A:0D:CB:07:74:29:B8:14:81:6D:6D Certificate issuer: /CN=A913E62B/serialNumber=F2E073092976058EB98656141437F8FB68B7215D Certificate serial: 0B Authority key identifier: F2:E0:73:09:29:76:05:8E:B9:86:56:14:14:37:F8:FB:68:B7:21:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CF53E5E6240411F0B73CB374C4F9AE02.roa Signing time: Wed 07 May 2025 07:43:56 +0000 ROA not before: Wed 07 May 2025 07:43:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135425 IP address blocks: 203.34.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.crl rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E62B, serialNumber=F2E073092976058EB98656141437F8FB68B7215D Validity Not Before: May 7 07:43:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681b0f3c-894b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:df:06:34:12:a2:d1:13:30:a0:5f:87:c5:f5: a4:eb:f7:15:0a:7d:7b:de:80:1d:d2:f9:aa:23:89: ab:d5:3d:62:94:1c:15:15:1c:01:86:1e:70:2e:98: bd:e9:ed:a0:31:fe:de:17:fe:fc:b1:bc:c2:f7:5a: bf:53:95:71:15:3a:e7:09:e8:5a:75:ee:4d:f5:83: dc:84:5e:18:b8:d6:40:07:32:9f:29:67:ec:9c:0d: c3:be:83:10:a5:ea:00:8a:81:d9:6f:86:15:49:09: c2:7d:8c:56:55:49:ad:f0:14:12:b0:a7:93:80:65: 5e:f3:8c:4a:6d:67:8c:62:81:55:51:c2:df:a0:a4: 13:1d:c7:33:ad:10:2d:11:53:29:20:c8:f6:5a:90: af:18:75:30:57:b6:00:0f:24:4a:42:d7:27:26:e2: 8f:25:d5:63:8e:6b:13:6a:01:c8:3a:9f:54:44:c9: ec:c4:57:79:36:5c:19:31:ac:de:8f:c2:be:52:f6: 5c:57:a6:6d:58:c7:89:51:a0:79:7d:a3:70:05:11: 95:3c:05:86:0d:a8:0d:be:27:f3:97:95:13:98:31: e6:8f:c0:9d:f7:a9:f0:bf:5c:a7:29:c0:43:5c:d7: 06:fe:37:aa:99:06:e0:c6:a9:e3:70:d1:1a:39:81: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8B:57:71:08:B3:9B:9C:DB:1A:0D:CB:07:74:29:B8:14:81:6D:6D X509v3 Authority Key Identifier: keyid:F2:E0:73:09:29:76:05:8E:B9:86:56:14:14:37:F8:FB:68:B7:21:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CF53E5E6240411F0B73CB374C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.212.0/24 Signature Algorithm: sha256WithRSAEncryption d2:65:e7:d7:f1:84:f4:f6:6b:b2:bc:63:19:a9:ce:92:4e:15: 4c:91:a9:ee:a6:ef:14:2a:40:38:e4:79:ae:7b:85:58:b5:22: 8b:7e:74:fe:f6:74:5b:8e:be:77:0d:bf:e7:5e:14:a2:6b:68: e4:b5:db:e8:79:83:11:cd:9f:ce:e8:59:9d:83:22:55:17:8f: 84:18:f3:60:c7:0a:5d:4f:e8:4a:84:5c:66:91:4f:fc:d5:75: 2a:b8:3b:8c:8b:80:42:46:f7:69:df:9d:85:5a:63:44:d5:3c: 82:9f:0e:cd:ee:15:a3:f5:a2:bf:80:f1:5b:94:ac:07:e9:b0: 16:12:6c:a7:05:20:29:2f:dc:de:44:02:23:7b:2f:8a:f1:f1: 9f:d6:5a:c3:d4:cc:c8:28:38:cb:0e:e4:ed:f0:50:22:29:f8: 88:95:a1:96:2b:10:0d:bd:7c:d4:62:44:d6:ab:c4:c9:b7:99: 64:95:9c:60:8f:42:c8:99:d2:63:f3:cb:f2:3e:6c:62:64:fc: 6d:2c:10:25:e6:d8:77:41:c3:70:c2:25:0d:f5:6e:f5:fd:2c: 15:45:15:cc:02:ec:e7:b4:c5:bb:55:8f:93:35:2d:16:3d:e6: c4:6e:f0:02:30:28:9d:07:e4:0c:85:fb:52:a7:b9:c1:62:43: 6f:d1:bb:a9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RTYyQjExMC8GA1UEBRMoRjJFMDczMDkyOTc2MDU4RUI5ODY1NjE0MTQzN0Y4RkI2 OEI3MjE1RDAeFw0yNTA1MDcwNzQzNTZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWIwZjNjLTg5NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc3wY0EqLREzCgX4fF9aTr9xUKfXvegB3S+aojiavVPWKUHBUVHAGGHnAumL3p 7aAx/t4X/vyxvML3Wr9TlXEVOucJ6Fp17k31g9yEXhi41kAHMp8pZ+ycDcO+gxCl 6gCKgdlvhhVJCcJ9jFZVSa3wFBKwp5OAZV7zjEptZ4xigVVRwt+gpBMdxzOtEC0R UykgyPZakK8YdTBXtgAPJEpC1ycm4o8l1WOOaxNqAcg6n1REyezEV3k2XBkxrN6P wr5S9lxXpm1Yx4lRoHl9o3AFEZU8BYYNqA2+J/OXlROYMeaPwJ33qfC/XKcpwENc 1wb+N6qZBuDGqeNw0Ro5gbdXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUD4tXcQiz m5zbGg3LB3QpuBSBbW0wHwYDVR0jBBgwFoAU8uBzCSl2BY65hlYUFDf4+2i3IV0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFNjJCLzYxQjM1NjE2MjQw NDExRjBBNEQwNzI3M0M0RjlBRTAyLzh1QnpDU2wyQlk2NWhsWVVGRGY0LTJpM0lW MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOHVCekNTbDJCWTY1aGxZVUZEZjQtMmkzSVYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTYyQi82MUIzNTYxNjI0MDQxMUYwQTREMDcyNzNDNEY5QUUwMi9DRjUzRTVFNjI0 MDQxMUYwQjczQ0IzNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsi1DANBgkqhkiG9w0BAQsFAAOCAQEA0mXn1/GE9PZrsrxj GanOkk4VTJGp7qbvFCpAOOR5rnuFWLUii350/vZ0W46+dw2/514Uomto5LXb6HmD Ec2fzuhZnYMiVRePhBjzYMcKXU/oSoRcZpFP/NV1Krg7jIuAQkb3ad+dhVpjRNU8 gp8Oze4Vo/Wiv4DxW5SsB+mwFhJspwUgKS/c3kQCI3svivHxn9Zaw9TMyCg4yw7k 7fBQIin4iJWhlisQDb181GJE1qvEybeZZJWcYI9CyJnSY/PL8j5sYmT8bSwQJebY d0HDcMIlDfVu9f0sFUUVzALs57TFu1WPkzUtFj3mxG7wAjAonQfkDIX7Uqe5wWJD b9G7qQ== -----END CERTIFICATE-----Generated at Mon May 12 01:26:09 2025 by rpki-client