$ rpki-client -vvf rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa File: 5B9A1DA0114211ED957E085DC4F9AE02.roa (raw, json) Hash identifier: xDgcDkh8p21+AliznpEFQBuprl49j0UXMdm05GJkH1E= Subject key identifier: 76:B2:19:58:F1:88:34:89:84:A8:74:0A:89:41:FA:F4:56:30:B9:DE Certificate issuer: /CN=A9144463/serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Certificate serial: 0273 Authority key identifier: 6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa Signing time: Tue 13 May 2025 02:19:50 +0000 ROA not before: Tue 13 May 2025 02:19:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56294 IP address blocks: 43.243.0.0/24 maxlen: 24 43.243.2.0/24 maxlen: 24 43.243.3.0/24 maxlen: 24 103.4.60.0/24 maxlen: 24 103.4.62.0/24 maxlen: 24 103.4.63.0/24 maxlen: 24 2401:2280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144463, serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037 Validity Not Before: May 13 02:19:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6822ac46-0adc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:54:e2:20:0d:b3:1e:f1:1b:61:07:f4:12:c6: c2:0f:4c:9f:28:c6:4a:54:74:66:2f:60:b7:bd:77: 10:2e:1f:a9:70:64:52:8f:95:43:dd:5d:26:59:3a: b9:a0:9d:74:cd:2c:37:30:54:7c:ff:5b:27:2d:4e: 5a:e4:e1:5c:3f:e4:0e:c3:c1:e7:9a:0b:2e:1f:93: af:5c:9f:e6:33:32:a8:08:64:5d:3f:ce:24:af:31: 45:62:8a:87:f7:33:79:34:b5:a2:ad:7a:89:ca:2f: b4:6f:5c:b2:2c:04:33:47:b6:a8:59:d7:7a:e1:15: b4:69:f5:3c:21:16:b7:01:19:8d:9c:92:f9:51:0e: 2b:bc:5b:72:64:ce:b6:18:e0:1e:74:41:ac:f7:0d: a3:d8:df:07:66:59:3b:58:19:b5:90:21:6e:d8:5a: da:03:49:91:fe:0c:31:ad:9e:de:19:01:03:dc:a4: 3f:cb:cd:1d:dd:46:f0:78:dc:b2:3f:da:4c:6f:6e: ca:b3:d2:c0:c9:f0:c9:8b:80:3a:64:9f:04:d3:75: eb:16:77:7f:d1:83:59:27:e8:59:d2:71:0a:9b:2d: 8e:4e:67:5c:46:76:5d:b8:57:4a:3c:c8:8a:b5:91: f7:22:a3:70:31:4d:db:75:84:c0:e4:5e:ab:8c:33: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B2:19:58:F1:88:34:89:84:A8:74:0A:89:41:FA:F4:56:30:B9:DE X509v3 Authority Key Identifier: keyid:6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/5B9A1DA0114211ED957E085DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.0.0/24 43.243.2.0/23 103.4.60.0/24 103.4.62.0/23 IPv6: 2401:2280::/32 Signature Algorithm: sha256WithRSAEncryption 63:81:dc:9f:9e:d3:a9:73:8a:c2:5e:6a:ee:61:0b:c4:d7:e8: 25:8f:05:cc:89:f4:78:46:93:6d:49:5e:a5:92:51:78:db:b5: a3:7d:ea:b6:82:36:fc:98:88:32:28:b9:1c:aa:20:f2:1a:ed: d4:ed:58:6b:9d:bf:15:d9:96:ed:69:f1:05:0f:c2:fb:a5:6f: ef:ea:c9:06:ba:27:f7:36:a8:14:b9:95:2e:e0:50:b1:e9:9c: 63:eb:6f:71:6c:8e:7a:d2:05:8f:56:02:5a:13:a8:66:1a:e7: 06:41:6b:fb:a1:09:dc:21:90:55:b1:d7:e7:a0:63:70:84:74: db:f6:2b:e7:6d:b5:41:d2:78:13:07:14:ec:97:91:3e:b7:01: 3f:3e:22:bf:4b:82:91:85:b7:83:69:7b:16:f3:34:af:eb:00: 1f:88:58:16:87:e5:f5:9a:9d:76:2c:5b:8a:24:a2:9c:64:5c: f1:79:91:a4:51:79:e5:02:77:46:5e:d6:59:6f:df:d1:4d:8e: 1a:ac:ed:ba:72:13:5e:19:34:b0:f3:7c:f4:db:8a:08:3f:3b: f9:c9:24:b9:1c:86:40:3f:65:db:d2:5f:b7:d6:9f:cf:27:f3: 0d:6b:a5:17:2d:2c:25:9c:e8:77:3a:96:b8:28:41:b8:e7:d2: 6f:96:85:d7 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0NjMxMTAvBgNVBAUTKDZCQUE1QzUyMEI4RTRCRjU2NEM0QkJGNDZFMUYzMTZC RDQ1RkEwMzcwHhcNMjUwNTEzMDIxOTUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyYWM0Ni0wYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FTiIA2zHvEbYQf0EsbCD0yfKMZKVHRmL2C3vXcQLh+pcGRSj5VD3V0mWTq5 oJ10zSw3MFR8/1snLU5a5OFcP+QOw8HnmgsuH5OvXJ/mMzKoCGRdP84krzFFYoqH 9zN5NLWirXqJyi+0b1yyLAQzR7aoWdd64RW0afU8IRa3ARmNnJL5UQ4rvFtyZM62 GOAedEGs9w2j2N8HZlk7WBm1kCFu2FraA0mR/gwxrZ7eGQED3KQ/y80d3UbweNyy P9pMb27Ks9LAyfDJi4A6ZJ8E03XrFnd/0YNZJ+hZ0nEKmy2OTmdcRnZduFdKPMiK tZH3IqNwMU3bdYTA5F6rjDOIlQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHayGVjx iDSJhKh0ColB+vRWMLneMB8GA1UdIwQYMBaAFGuqXFILjkv1ZMS79G4fMWvUX6A3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDQ2My84QkY1QTVENDEx MzYxMUVEOEYwQUI3MTJDNEY5QUUwMi9hNnBjVWd1T1NfVmt4THYwYmg4eGE5UmZv RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E2cGNVZ3VPU19Wa3hMdjBiaDh4YTlSZm9EYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0NjMvOEJGNUE1RDQxMTM2MTFFRDhGMEFCNzEyQzRGOUFFMDIvNUI5QTFEQTAx MTQyMTFFRDk1N0UwODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAAr8wADBAEr8wIDBABnBDwDBAFnBD4wDQQCAAIwBwMFACQB IoAwDQYJKoZIhvcNAQELBQADggEBAGOB3J+e06lzisJeau5hC8TX6CWPBcyJ9HhG k21JXqWSUXjbtaN96raCNvyYiDIouRyqIPIa7dTtWGudvxXZlu1p8QUPwvulb+/q yQa6J/c2qBS5lS7gULHpnGPrb3FsjnrSBY9WAloTqGYa5wZBa/uhCdwhkFWx1+eg Y3CEdNv2K+dttUHSeBMHFOyXkT63AT8+Ir9LgpGFt4NpexbzNK/rAB+IWBaH5fWa nXYsW4okopxkXPF5kaRReeUCd0Ze1llv39FNjhqs7bpyE14ZNLDzfPTbigg/O/nJ JLkchkA/ZdvSX7fWn88n8w1rpRctLCWc6Hc6lrgoQbjn0m+Whdc= -----END CERTIFICATE-----Generated at Wed May 14 14:10:36 2025 by rpki-client