$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa File: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (raw, json) Hash identifier: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU= Subject key identifier: 08:19:37:EA:C7:38:B1:0C:24:73:53:ED:D0:B0:8D:63:0D:EF:2F:68 Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0A92 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:38 +0000 ROA not before: Wed 30 Apr 2025 19:29:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 3258 IP address blocks: 43.239.249.0/24 maxlen: 24 103.150.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2706 (0xa92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:29:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a21-3343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:25:57:71:df:b8:1c:7c:69:af:0e:20:b1:6e: 85:76:3a:5c:ec:2a:b2:59:41:a0:98:21:71:b1:ef: 81:3c:4a:21:ec:a5:50:20:9e:33:be:95:c1:13:98: fa:5a:e4:af:56:d0:06:29:e9:7b:7b:6d:09:79:6d: 4b:d3:39:41:fd:b1:ba:97:71:6b:ed:04:a2:7c:b5: 49:ab:04:00:3f:a0:c7:9f:88:93:f8:4e:a4:db:a2: 39:9e:dd:eb:dd:63:29:56:16:05:88:0d:fc:0e:8e: cd:d5:2d:ee:47:9e:98:b8:a4:23:a8:fd:90:8c:2d: 23:dc:bc:5e:43:03:14:2f:30:6f:36:30:3b:1c:d9: a2:08:17:bb:bd:a3:a1:de:27:d0:f9:1e:a6:cd:44: a1:8f:85:69:a1:43:d5:de:68:af:4e:9c:2d:49:95: 01:ec:8d:3d:6d:6f:e7:35:37:8f:9c:ab:cd:50:e4: a5:84:8c:9a:d2:7d:32:a2:6c:94:7d:1b:b7:a4:5d: f7:d4:81:3f:d2:83:60:2f:87:26:be:53:f2:6d:cc: ee:c2:f3:80:5b:86:e4:ef:77:7b:1d:ab:71:f5:af: 28:bb:bb:58:0f:7e:b1:72:04:a9:5c:62:e4:45:1a: 52:b0:bf:24:16:7e:c0:86:42:58:8c:a0:c6:ca:21: fe:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:19:37:EA:C7:38:B1:0C:24:73:53:ED:D0:B0:8D:63:0D:EF:2F:68 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.249.0/24 103.150.8.0/24 Signature Algorithm: sha256WithRSAEncryption b4:9e:1b:f0:34:2c:38:0e:13:04:78:76:41:a0:35:1b:1d:b3: 5e:72:e5:4b:fc:5d:55:0b:19:a3:b5:3e:9a:f9:41:0e:ee:fa: fc:19:b2:99:a0:6e:bf:e4:21:f7:ca:45:e8:5d:d3:2a:e4:ad: d5:53:90:36:5d:17:79:62:36:43:0b:6c:53:b7:3d:99:0a:a4: 8e:8c:32:ff:19:05:31:a9:bd:bc:5a:04:4f:00:3f:d5:3d:c4: b3:7c:cc:17:16:50:e3:3d:21:c7:25:b8:4a:fd:ce:e7:df:1b: c5:5a:a0:16:cb:c3:d4:dd:de:c2:bc:7f:38:ad:ba:cb:b7:6b: 30:c1:07:4d:e1:7e:68:e4:27:3a:b3:d0:b9:9b:7b:99:c2:a3: 04:26:ac:62:9b:87:00:b7:2d:aa:d4:26:1e:9f:58:cd:0f:33: d5:a1:f6:87:27:16:92:e5:49:c6:be:b5:51:dc:b8:d1:21:a6: ae:7e:4a:9d:b6:9e:b7:8b:63:a3:24:c7:61:c1:57:69:e8:27: ee:42:21:4e:52:7b:02:14:57:8b:42:d9:4d:b1:05:a7:76:1a: 7c:4c:84:c8:36:6c:6e:d9:cc:b9:c6:56:2f:40:4c:e3:a0:1e: ed:06:d0:0d:e5:79:fc:bc:12:13:54:03:e7:9d:9b:be:5c:d2: 58:2c:80:ef -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNDMwMTkyOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyMS0zMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yVXcd+4HHxprw4gsW6Fdjpc7CqyWUGgmCFxse+BPEoh7KVQIJ4zvpXBE5j6 WuSvVtAGKel7e20JeW1L0zlB/bG6l3Fr7QSifLVJqwQAP6DHn4iT+E6k26I5nt3r 3WMpVhYFiA38Do7N1S3uR56YuKQjqP2QjC0j3LxeQwMULzBvNjA7HNmiCBe7vaOh 3ifQ+R6mzUShj4VpoUPV3mivTpwtSZUB7I09bW/nNTePnKvNUOSlhIya0n0yomyU fRu3pF331IE/0oNgL4cmvlPybczuwvOAW4bk73d7Hatx9a8ou7tYD36xcgSpXGLk RRpSsL8kFn7AhkJYjKDGyiH+8QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAgZN+rH OLEMJHNT7dCwjWMN7y9oMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvNDZGNUJDMzIw NkEyMTFFRUJEQTREMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr7/kDBABnlggwDQYJKoZIhvcNAQELBQADggEBALSeG/A0 LDgOEwR4dkGgNRsds15y5Uv8XVULGaO1Ppr5QQ7u+vwZspmgbr/kIffKRehd0yrk rdVTkDZdF3liNkMLbFO3PZkKpI6MMv8ZBTGpvbxaBE8AP9U9xLN8zBcWUOM9Iccl uEr9zuffG8VaoBbLw9Td3sK8fzitusu3azDBB03hfmjkJzqz0Lmbe5nCowQmrGKb hwC3LarUJh6fWM0PM9Wh9ocnFpLlSca+tVHcuNEhpq5+Sp22nreLY6Mkx2HBV2no J+5CIU5SewIUV4tC2U2xBad2GnxMhMg2bG7ZzLnGVi9ATOOgHu0G0A3lefy8EhNU A+edm75c0lgsgO8= -----END CERTIFICATE-----Generated at Thu May 15 03:40:59 2025 by rpki-client