$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/BE430FFA699011EE96387F19C4F9AE02.roa File: BE430FFA699011EE96387F19C4F9AE02.roa (raw, json) Hash identifier: eghTnl4+9Hou7Dvhi8Y2Dc5HYMDvdB3RFP+Hf9xhTd4= Subject key identifier: 96:F6:66:1D:2A:11:D4:87:89:63:7B:F5:23:22:E2:07:57:E4:23:5D Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Certificate serial: 31D6 Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/BE430FFA699011EE96387F19C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:18 +0000 ROA not before: Wed 30 Apr 2025 15:52:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141180 IP address blocks: 115.108.58.0/24 maxlen: 24 115.108.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12758 (0x31d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CE75, serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Validity Not Before: Apr 30 15:52:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124732-d594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e3:88:7a:e2:9c:ef:d4:54:52:02:e8:3b:71: 97:08:e2:dc:8e:9a:24:ce:05:9b:4d:9a:de:6f:b6: ab:ed:e2:f4:af:fd:6e:69:f2:7c:35:f4:e4:e3:8b: 8f:b4:b9:1e:07:97:80:a0:a7:6e:46:69:d5:2e:34: 1b:98:0f:57:f9:fc:57:7a:2c:c3:33:91:47:c7:26: fb:c7:80:82:f1:ad:76:5d:48:b0:7c:c0:3c:fb:1c: cc:ab:6f:a2:43:9b:8c:91:9f:9e:d5:d3:94:93:ff: fa:de:0c:cf:22:95:e7:2e:a9:40:0a:b0:6e:0d:28: 8f:35:99:35:0d:b2:54:3c:c1:7d:3e:01:aa:be:37: f8:ba:83:e1:02:49:66:14:d0:d0:a6:52:e9:3a:eb: 5d:69:64:75:30:4e:c5:a0:de:f8:05:c5:6c:e5:16: 8f:2a:de:66:c3:3b:cc:e5:12:1d:59:2b:a1:52:67: 3c:50:ee:f2:2b:16:09:61:25:12:1e:a1:97:0e:4e: 0f:1f:f6:ed:c8:20:b9:59:14:bd:d9:a7:90:52:4c: c4:df:b5:42:1b:ab:88:74:81:52:e6:d1:69:b3:99: 17:5a:ea:51:58:70:7d:da:b6:0c:d9:c0:40:78:f8: a9:b6:b2:04:08:17:eb:dd:38:dd:3b:f8:fd:2c:e1: 32:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F6:66:1D:2A:11:D4:87:89:63:7B:F5:23:22:E2:07:57:E4:23:5D X509v3 Authority Key Identifier: keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/BE430FFA699011EE96387F19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.108.58.0/24 115.108.62.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:19:16:7b:b2:e5:4d:f9:22:60:e4:82:5f:ac:c7:f2:61:8b: ec:05:a5:dc:6b:1e:94:0f:fb:21:17:c5:65:b7:65:ab:ce:50: b7:a7:dd:b0:4d:0c:2e:90:74:94:6c:5d:f7:82:36:3f:80:42: fb:27:eb:10:cc:9c:48:1c:8a:4b:12:3c:89:66:53:de:57:73: 42:00:81:91:95:66:02:40:da:65:7d:b9:f4:8f:f6:4c:e2:7e: c8:e5:06:b5:6c:e6:44:65:d5:25:36:a3:d7:dd:e6:1f:32:d3: fc:50:a1:ac:bb:d3:9a:54:82:b9:7f:a4:40:c0:ef:80:22:45: 1d:c5:b9:42:21:5d:e7:c5:49:30:a4:dd:11:9c:f2:b9:cb:d3: 85:4e:cb:d6:23:e3:b1:61:cd:6c:57:42:ed:9c:23:d6:ea:a2: fc:27:38:32:b2:04:fb:e3:32:06:2b:73:00:d2:49:de:58:db: 4e:02:68:de:a5:08:38:38:d9:86:8b:e9:8e:13:cd:78:0e:26: 13:40:29:28:a8:2e:43:99:cb:06:34:db:46:5d:35:5d:d1:c2: 7c:f1:95:06:bb:b6:8a:6c:2b:53:46:c4:e4:00:76:20:a9:3f: 56:5d:bd:a3:ff:a8:a5:31:78:c8:39:e8:3a:be:c1:86:b6:b7: 06:3a:6d:93 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICMdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3 OUJFQTZBODUwHhcNMjUwNDMwMTU1MjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDczMi1kNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+OIeuKc79RUUgLoO3GXCOLcjpokzgWbTZreb7ar7eL0r/1uafJ8NfTk44uP tLkeB5eAoKduRmnVLjQbmA9X+fxXeizDM5FHxyb7x4CC8a12XUiwfMA8+xzMq2+i Q5uMkZ+e1dOUk//63gzPIpXnLqlACrBuDSiPNZk1DbJUPMF9PgGqvjf4uoPhAklm FNDQplLpOutdaWR1ME7FoN74BcVs5RaPKt5mwzvM5RIdWSuhUmc8UO7yKxYJYSUS HqGXDk4PH/btyCC5WRS92aeQUkzE37VCG6uIdIFS5tFps5kXWupRWHB92rYM2cBA ePiptrIECBfr3TjdO/j9LOEyDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJb2Zh0q EdSHiWN79SMi4gdX5CNdMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvQkU0MzBGRkE2 OTkwMTFFRTk2Mzg3RjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABzbDoDBABzbD4wDQYJKoZIhvcNAQELBQADggEBADoZFnuy 5U35ImDkgl+sx/Jhi+wFpdxrHpQP+yEXxWW3ZavOULen3bBNDC6QdJRsXfeCNj+A Qvsn6xDMnEgciksSPIlmU95Xc0IAgZGVZgJA2mV9ufSP9kzifsjlBrVs5kRl1SU2 o9fd5h8y0/xQoay705pUgrl/pEDA74AiRR3FuUIhXefFSTCk3RGc8rnL04VOy9Yj 47FhzWxXQu2cI9bqovwnODKyBPvjMgYrcwDSSd5Y204CaN6lCDg42YaL6Y4TzXgO JhNAKSioLkOZywY020ZdNV3RwnzxlQa7topsK1NGxOQAdiCpP1ZdvaP/qKUxeMg5 6Dq+wYa2twY6bZM= -----END CERTIFICATE-----Generated at Sat May 17 09:47:44 2025 by rpki-client