$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa File: 894FFF40556111EDB7E45424C4F9AE02.roa (raw, json) Hash identifier: 3doq1VIPrTMuHeE3hP1dvsdzHHC8FVCO0WmVRpeSjbk= Subject key identifier: 50:B4:20:13:4C:C4:E5:DF:2F:96:2A:D0:09:92:DA:FA:FF:E6:9F:10 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 09B6 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa Signing time: Fri 02 May 2025 20:30:21 +0000 ROA not before: Fri 02 May 2025 20:30:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136499 IP address blocks: 103.88.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2486 (0x9b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: May 2 20:30:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68152b5c-7793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:fd:fa:31:e2:e2:48:cd:78:4c:05:2f:ba: 5d:50:1a:5f:46:8c:88:d1:a3:a5:32:ae:9e:66:c2: 9f:c5:83:49:26:8d:72:b4:7c:1c:5b:5a:5c:a1:83: fa:89:3e:84:8e:d3:12:3b:93:6b:b4:f5:2c:04:1d: aa:2b:9e:35:b5:20:16:9d:27:42:30:11:85:a5:ce: 1e:ad:a7:b9:64:4b:b5:da:e6:6b:0f:4e:04:05:bd: ae:88:85:f6:4b:95:cf:55:cd:ad:83:17:38:39:0b: 39:6b:37:a4:7e:80:dd:39:19:94:45:95:a4:ae:55: e0:87:39:5d:07:2b:73:4b:1d:82:77:e6:be:3b:ba: cc:50:c6:04:ad:e8:56:0c:1f:95:d9:54:ee:45:b2: 2d:c3:d5:b3:4e:28:5e:8a:8b:77:0c:13:84:57:5c: 12:ae:79:2b:02:e1:00:06:98:d7:3e:ee:e1:a2:ea: 77:a5:da:00:e3:e5:dc:f2:bb:ae:8e:09:54:33:c8: d0:96:2b:89:67:68:23:d0:32:3d:72:4e:e2:71:68: 3e:81:26:23:c2:78:02:91:67:fd:7c:86:07:7b:b0: 96:43:da:e4:c1:29:8a:7e:01:3e:32:60:dc:cf:08: bd:23:5b:53:9f:ed:44:ee:3d:18:8a:26:5b:da:21: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B4:20:13:4C:C4:E5:DF:2F:96:2A:D0:09:92:DA:FA:FF:E6:9F:10 X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.147.0/24 Signature Algorithm: sha256WithRSAEncryption ab:7e:59:43:56:60:d3:7d:d9:7d:a5:0b:e5:af:bd:79:e6:47: af:73:48:4e:1b:d2:cf:8e:8a:27:d7:01:6e:c5:26:d5:ad:78: e7:3b:b8:c6:28:f3:54:3b:41:c0:0e:1b:5e:1e:38:99:fe:b7: 09:ad:81:9a:12:60:71:c0:06:49:55:09:bd:2c:2e:13:af:2b: bf:a2:c7:09:dc:0c:6a:2f:a6:be:2a:75:bc:7a:fc:2a:96:11: 6e:b4:5b:c9:26:7d:88:ba:c1:db:11:cb:aa:ce:36:ec:0a:dc: 83:70:ab:d6:99:35:6c:37:78:0a:f3:ca:44:13:20:1e:bc:63: 4f:58:b9:63:de:4a:f9:4c:15:6d:63:26:1e:9d:e0:f3:b5:86: ab:b4:b5:51:e9:ba:f1:6b:14:0e:b2:69:dd:71:d1:ad:46:35: a9:e8:1d:1a:9e:ef:ec:16:fd:72:e6:17:52:9e:d2:86:22:6c: d1:3c:81:b1:c8:97:91:be:a3:11:35:1d:d1:b5:24:fe:3a:ad: 36:d0:6e:9a:d2:35:b8:76:e0:ae:35:3c:b5:75:69:8e:16:aa: 1f:78:26:52:2e:95:39:97:86:0e:b6:9c:f3:f2:08:2b:06:6b: de:46:5d:dc:1e:55:b6:3b:11:6a:b9:80:40:73:90:fd:d6:3c: 93:63:7c:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjUwNTAyMjAzMDIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MmI1Yy03NzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Tj9+jHi4kjNeEwFL7pdUBpfRoyI0aOlMq6eZsKfxYNJJo1ytHwcW1pcoYP6 iT6EjtMSO5NrtPUsBB2qK541tSAWnSdCMBGFpc4erae5ZEu12uZrD04EBb2uiIX2 S5XPVc2tgxc4OQs5azekfoDdORmURZWkrlXghzldBytzSx2Cd+a+O7rMUMYErehW DB+V2VTuRbItw9WzTiheiot3DBOEV1wSrnkrAuEABpjXPu7houp3pdoA4+Xc8ruu jglUM8jQliuJZ2gj0DI9ck7icWg+gSYjwngCkWf9fIYHe7CWQ9rkwSmKfgE+MmDc zwi9I1tTn+1E7j0YiiZb2iFkzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFC0IBNM xOXfL5Yq0AmS2vr/5p8QMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4NzkvQUFGQ0VGMEE4MzQ5MTFFQTg5REU2OTdCQzRGOUFFMDIvODk0RkZGNDA1 NTYxMTFFREI3RTQ1NDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWJMwDQYJKoZIhvcNAQELBQADggEBAKt+WUNWYNN92X2l C+WvvXnmR69zSE4b0s+OiifXAW7FJtWteOc7uMYo81Q7QcAOG14eOJn+twmtgZoS YHHABklVCb0sLhOvK7+ixwncDGovpr4qdbx6/CqWEW60W8kmfYi6wdsRy6rONuwK 3INwq9aZNWw3eArzykQTIB68Y09YuWPeSvlMFW1jJh6d4PO1hqu0tVHpuvFrFA6y ad1x0a1GNanoHRqe7+wW/XLmF1Ke0oYibNE8gbHIl5G+oxE1HdG1JP46rTbQbprS Nbh24K41PLV1aY4Wqh94JlIulTmXhg62nPPyCCsGa95GXdweVbY7EWq5gEBzkP3W PJNjfHg= -----END CERTIFICATE-----Generated at Wed May 14 21:07:34 2025 by rpki-client