$ rpki-client -vvf rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/2DCC2988982711ED9D75C85AC4F9AE02.roa File: 2DCC2988982711ED9D75C85AC4F9AE02.roa (raw, json) Hash identifier: cXIuMnEWUiuT4kupzUNHJo4zj/W45Qb9cwkr7yvw0vc= Subject key identifier: 92:D0:86:2B:E7:2B:14:FC:EF:21:07:8D:B1:79:35:74:61:F6:D8:33 Certificate issuer: /CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Certificate serial: 07F0 Authority key identifier: B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/2DCC2988982711ED9D75C85AC4F9AE02.roa Signing time: Sun 04 May 2025 21:01:28 +0000 ROA not before: Sun 04 May 2025 21:01:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9829 IP address blocks: 103.149.58.0/24 maxlen: 24 103.149.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E83B, serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Validity Not Before: May 4 21:01:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817d5a8-6260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d4:88:4a:dd:93:bc:21:c9:8d:4d:57:8a:82: a3:b8:95:7d:a1:78:33:e5:77:84:f7:eb:da:4e:25: 64:fa:ff:1b:e9:3b:26:20:68:f2:f0:ff:05:ca:d7: 5b:a7:79:64:c9:c9:a4:75:03:e2:d8:ff:ac:71:2b: e0:ce:27:69:47:32:a0:a2:5a:14:2f:13:23:dd:f1: cb:de:b8:7b:62:b5:7f:03:ee:0d:a0:95:d7:04:34: 0b:1b:15:50:9b:44:07:e0:98:a6:da:e1:92:af:ba: cc:10:b6:8f:0d:19:5e:63:b8:70:c3:99:de:fd:47: 7a:54:7f:bd:06:d3:95:00:d5:fc:98:d8:7a:32:ae: 4f:d5:6d:30:ae:5c:e6:51:dc:b9:5f:c7:41:ec:22: 60:92:8f:4e:a3:bd:85:5c:bb:ac:ba:0b:2e:8d:5f: 88:89:34:76:87:b1:ce:52:c6:37:b5:43:ae:c3:f7: 8d:65:74:49:80:1b:bc:ab:2e:95:d4:89:ba:5f:20: 57:c0:22:8e:23:e0:d3:9d:6c:7c:26:e4:35:53:f7: e7:61:7d:c7:70:53:b6:93:a6:b1:bf:1c:c1:ee:30: 1a:6d:51:0c:bc:75:4a:fb:db:b1:3e:2e:29:38:79: 27:88:2d:c3:6b:26:b1:72:e8:f6:db:a2:d1:30:81: af:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D0:86:2B:E7:2B:14:FC:EF:21:07:8D:B1:79:35:74:61:F6:D8:33 X509v3 Authority Key Identifier: keyid:B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/2DCC2988982711ED9D75C85AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.58.0/23 Signature Algorithm: sha256WithRSAEncryption 88:19:c8:1f:2a:9c:8e:d4:23:eb:78:42:fd:be:32:44:5e:92: dc:ec:28:aa:c0:67:06:71:80:b1:53:93:d6:0a:55:b9:1b:73: 4a:c3:1f:1a:41:8a:de:80:f4:9c:4b:19:da:0d:12:71:ff:62: b6:ff:2c:e4:b7:ec:94:b6:01:95:3e:bc:c3:69:94:d4:24:24: 9a:b3:fc:ae:4d:3c:c5:c2:83:d3:e3:8b:48:a1:0f:aa:74:a5: c9:eb:de:93:bd:c9:5e:38:1f:8b:a9:31:6f:4d:4a:69:9f:f8: b0:6c:5d:24:c2:16:f2:06:e0:4e:a2:85:37:8b:a7:aa:da:08: e3:96:b2:e1:c3:02:9c:56:1e:7a:31:cc:e0:3e:86:72:a0:d3: 5d:b3:d8:0a:9e:53:5a:d6:99:0e:79:39:e6:4d:c6:b3:29:85: b3:fb:52:40:da:65:54:a6:71:7e:e5:93:5a:fe:23:49:e3:43: 2f:57:1a:20:6d:5e:b4:d9:a2:2a:0c:af:11:83:b5:92:2d:c2: 28:f2:99:e9:15:7b:14:6b:be:87:35:9b:14:f9:92:19:cc:e8: eb:18:2b:1e:0e:63:73:f2:50:34:1c:76:2d:bd:c7:9d:e1:8f: a6:c2:1e:10:56:d1:68:a3:c1:7c:31:80:65:ac:3e:ef:63:e3: a8:0a:b9:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4M0IxMTAvBgNVBAUTKEI4QTYyQ0YxREU4QjI2MkUxNDczN0Q5M0VFM0U2RjM2 QzNBMEUxQzkwHhcNMjUwNTA0MjEwMTI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3ZDVhOC02MjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tSISt2TvCHJjU1XioKjuJV9oXgz5XeE9+vaTiVk+v8b6TsmIGjy8P8Fytdb p3lkycmkdQPi2P+scSvgzidpRzKgoloULxMj3fHL3rh7YrV/A+4NoJXXBDQLGxVQ m0QH4Jim2uGSr7rMELaPDRleY7hww5ne/Ud6VH+9BtOVANX8mNh6Mq5P1W0wrlzm Udy5X8dB7CJgko9Oo72FXLusugsujV+IiTR2h7HOUsY3tUOuw/eNZXRJgBu8qy6V 1Im6XyBXwCKOI+DTnWx8JuQ1U/fnYX3HcFO2k6axvxzB7jAabVEMvHVK+9uxPi4p OHkniC3Dayaxcuj226LRMIGvJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJLQhivn KxT87yEHjbF5NXRh9tgzMB8GA1UdIwQYMBaAFLimLPHeiyYuFHN9k+4+bzbDoOHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTgzQi83OTJEMTQ4QUYy ODExMUVBOEE2RkM2NkRDNEY5QUUwMi91S1lzOGQ2TEppNFVjMzJUN2o1dk5zT2c0 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLWXM4ZDZMSmk0VWMzMlQ3ajV2TnNPZzRjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU4M0IvNzkyRDE0OEFGMjgxMTFFQThBNkZDNjZEQzRGOUFFMDIvMkRDQzI5ODg5 ODI3MTFFRDlENzVDODVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlTowDQYJKoZIhvcNAQELBQADggEBAIgZyB8qnI7UI+t4 Qv2+MkRektzsKKrAZwZxgLFTk9YKVbkbc0rDHxpBit6A9JxLGdoNEnH/Yrb/LOS3 7JS2AZU+vMNplNQkJJqz/K5NPMXCg9Pji0ihD6p0pcnr3pO9yV44H4upMW9NSmmf +LBsXSTCFvIG4E6ihTeLp6raCOOWsuHDApxWHnoxzOA+hnKg012z2AqeU1rWmQ55 OeZNxrMphbP7UkDaZVSmcX7lk1r+I0njQy9XGiBtXrTZoioMrxGDtZItwijymekV exRrvoc1mxT5khnM6OsYKx4OY3PyUDQcdi29x53hj6bCHhBW0WijwXwxgGWsPu9j 46gKubE= -----END CERTIFICATE-----Generated at Sun May 11 22:38:35 2025 by rpki-client