$ rpki-client -vvf rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/F6542C72C53511ECA64F3010C4F9AE02.roa File: F6542C72C53511ECA64F3010C4F9AE02.roa (raw, json) Hash identifier: p0+cMHyUatjT2WLso8zM+Qkj3qxalubJRFVPjXCEC7c= Subject key identifier: E8:7F:B4:5F:0D:A6:A8:1B:2A:2C:E7:9A:1B:AD:CD:78:C2:33:70:4A Certificate issuer: /CN=A914FC2C/serialNumber=1AD9BD9DC77315BD102DAF5AA9F92566B2C2FB99 Certificate serial: 0341 Authority key identifier: 1A:D9:BD:9D:C7:73:15:BD:10:2D:AF:5A:A9:F9:25:66:B2:C2:FB:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gtm9ncdzFb0QLa9aqfklZrLC-5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/F6542C72C53511ECA64F3010C4F9AE02.roa Signing time: Sun 11 May 2025 01:07:33 +0000 ROA not before: Sun 11 May 2025 01:07:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 22552 IP address blocks: 103.24.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/Gtm9ncdzFb0QLa9aqfklZrLC-5k.crl rsync://rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/Gtm9ncdzFb0QLa9aqfklZrLC-5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gtm9ncdzFb0QLa9aqfklZrLC-5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FC2C, serialNumber=1AD9BD9DC77315BD102DAF5AA9F92566B2C2FB99 Validity Not Before: May 11 01:07:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ff855-8a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b2:db:87:38:2d:18:2f:2d:2e:ed:3c:bb:15: 57:6b:71:9d:a4:ab:4f:ed:c9:18:a0:b1:12:b7:52: e6:a8:5a:24:f0:5f:f2:9c:1f:94:5c:38:52:0c:5e: 9d:89:3a:38:01:e6:36:2d:ea:66:d4:d6:46:26:e2: 83:8a:8b:89:22:af:3f:02:8a:c2:b1:16:19:fb:c8: 78:83:99:fd:c1:61:31:a3:b4:79:34:da:7b:f3:57: 59:9b:1c:79:d7:48:26:3c:8b:28:48:f0:45:c5:ed: e1:4f:16:da:fa:ac:5b:32:22:d6:cc:94:66:07:b8: 88:c0:7e:39:93:ae:e2:e4:8b:a6:e8:db:39:66:0d: a1:43:aa:01:ec:4c:f1:7e:3f:fb:ac:e6:94:fe:87: b5:d6:03:63:f8:68:f4:b1:60:8e:d8:c6:dd:d4:dd: 5c:e3:aa:5d:f2:5c:da:24:7d:ef:6b:41:d8:49:11: 28:1c:8b:a6:76:81:64:6d:ad:04:53:87:a9:2a:cc: 5e:6e:4d:4c:e3:95:ac:a0:e0:26:aa:fa:36:96:05: ea:f6:a4:ac:19:a4:ee:73:27:cb:71:a2:ff:40:e4: d2:b4:61:96:77:c8:74:77:58:89:0e:12:f1:ed:a1: 02:9e:7c:39:17:ed:c0:a8:17:99:1a:1a:48:7e:ed: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7F:B4:5F:0D:A6:A8:1B:2A:2C:E7:9A:1B:AD:CD:78:C2:33:70:4A X509v3 Authority Key Identifier: keyid:1A:D9:BD:9D:C7:73:15:BD:10:2D:AF:5A:A9:F9:25:66:B2:C2:FB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/Gtm9ncdzFb0QLa9aqfklZrLC-5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gtm9ncdzFb0QLa9aqfklZrLC-5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FC2C/B04E919CC53311EC96DF310FC4F9AE02/F6542C72C53511ECA64F3010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.152.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:cd:89:10:9c:71:01:f3:d5:ee:1e:95:05:bd:e1:6a:a0:a3: d6:b2:cf:65:3f:66:4e:5c:75:d0:2c:38:2a:89:b7:96:de:28: 5d:69:89:b5:ed:14:95:d2:e6:9f:57:f9:a7:5a:6a:37:4e:c1: b3:68:63:02:07:f5:88:ce:d9:5f:7a:03:fa:39:46:71:17:e9: 5a:46:e6:71:90:aa:d3:dc:c8:d2:23:55:53:a3:9a:e1:f5:b1: 02:aa:5f:e4:41:bd:99:fb:f8:58:8b:b3:28:17:5e:82:86:b7: 63:47:bd:59:de:c5:42:f2:a2:16:bc:8b:a8:5d:d3:66:6d:72: 1d:28:4d:fe:25:33:03:6b:ee:de:4f:45:cf:fc:09:cd:91:9c: d5:5d:81:bb:71:7c:20:02:86:4f:f1:28:80:3b:dc:c0:99:91: 8a:bd:22:c2:50:f2:eb:9f:1d:ac:d8:74:e3:f4:67:c6:d5:3f: d1:fa:d3:a3:0d:4e:b3:64:08:ac:2c:7a:76:e6:7f:16:1f:45: bd:b3:bc:90:e6:c7:68:ea:2b:05:a2:60:ce:29:eb:e2:a0:45: fd:85:a8:75:73:7f:26:a3:c9:de:ef:ac:fd:8f:f1:d9:8b:31: 84:c7:ff:d9:86:8f:2a:60:82:55:84:65:14:9a:44:01:52:f2: 0d:1c:bd:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZDMkMxMTAvBgNVBAUTKDFBRDlCRDlEQzc3MzE1QkQxMDJEQUY1QUE5RjkyNTY2 QjJDMkZCOTkwHhcNMjUwNTExMDEwNzMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmZjg1NS04YTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybLbhzgtGC8tLu08uxVXa3GdpKtP7ckYoLESt1LmqFok8F/ynB+UXDhSDF6d iTo4AeY2Lepm1NZGJuKDiouJIq8/AorCsRYZ+8h4g5n9wWExo7R5NNp781dZmxx5 10gmPIsoSPBFxe3hTxba+qxbMiLWzJRmB7iIwH45k67i5Ium6Ns5Zg2hQ6oB7Ezx fj/7rOaU/oe11gNj+Gj0sWCO2Mbd1N1c46pd8lzaJH3va0HYSREoHIumdoFkba0E U4epKsxebk1M45WsoOAmqvo2lgXq9qSsGaTucyfLcaL/QOTStGGWd8h0d1iJDhLx 7aECnnw5F+3AqBeZGhpIfu1QZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOh/tF8N pqgbKiznmhutzXjCM3BKMB8GA1UdIwQYMBaAFBrZvZ3HcxW9EC2vWqn5JWaywvuZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkMyQy9CMDRFOTE5Q0M1 MzMxMUVDOTZERjMxMEZDNEY5QUUwMi9HdG05bmNkekZiMFFMYTlhcWZrbFpyTEMt NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d0bTluY2R6RmIwUUxhOWFxZmtsWnJMQy01ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZDMkMvQjA0RTkxOUNDNTMzMTFFQzk2REYzMTBGQzRGOUFFMDIvRjY1NDJDNzJD NTM1MTFFQ0E2NEYzMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGJgwDQYJKoZIhvcNAQELBQADggEBAJ/NiRCccQHz1e4e lQW94Wqgo9ayz2U/Zk5cddAsOCqJt5beKF1pibXtFJXS5p9X+adaajdOwbNoYwIH 9YjO2V96A/o5RnEX6VpG5nGQqtPcyNIjVVOjmuH1sQKqX+RBvZn7+FiLsygXXoKG t2NHvVnexULyoha8i6hd02Ztch0oTf4lMwNr7t5PRc/8Cc2RnNVdgbtxfCAChk/x KIA73MCZkYq9IsJQ8uufHazYdOP0Z8bVP9H606MNTrNkCKwsenbmfxYfRb2zvJDm x2jqKwWiYM4p6+KgRf2FqHVzfyajyd7vrP2P8dmLMYTH/9mGjypgglWEZRSaRAFS 8g0cvb4= -----END CERTIFICATE-----Generated at Wed May 14 11:46:10 2025 by rpki-client