$ rpki-client -vvf rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/8BB3088E982F11ED9D647578C4F9AE02.roa File: 8BB3088E982F11ED9D647578C4F9AE02.roa (raw, json) Hash identifier: A1w8tHzqGX+jD/ISNBe9aPcQuL2J3HJQzhH/YAzCdq0= Subject key identifier: F3:B7:F6:79:AE:25:6C:37:F6:11:86:10:B9:E0:B0:46:77:B5:0A:DB Certificate issuer: /CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Certificate serial: 07EE Authority key identifier: B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/8BB3088E982F11ED9D647578C4F9AE02.roa Signing time: Sun 04 May 2025 21:01:26 +0000 ROA not before: Sun 04 May 2025 21:01:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59200 IP address blocks: 103.149.58.0/24 maxlen: 24 103.149.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2030 (0x7ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E83B, serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Validity Not Before: May 4 21:01:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817d5a5-6ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:28:a2:b2:28:db:2f:5b:9d:ed:6a:e9:32:5b: 86:8f:1c:02:e5:16:ab:9c:d7:e4:67:27:9c:c1:ca: a1:ab:69:44:c0:60:17:15:95:2f:fd:0a:57:7e:3c: f9:78:42:2b:b5:07:1e:5a:6a:ec:d3:2f:88:ae:a3: c1:1e:1b:34:79:1e:e5:70:4c:f7:c9:fe:ba:02:73: 22:8c:30:40:4e:4b:53:6a:e9:46:60:cf:06:a6:eb: eb:64:89:e0:b8:b3:1c:73:90:ba:b8:2a:4c:e0:d4: 8b:21:11:62:ab:a8:67:44:d3:0c:83:8a:83:49:84: f9:c1:c6:d4:e3:08:f4:83:00:6b:5e:7c:5f:79:6d: 72:09:24:2d:db:0a:54:58:b0:28:22:47:6a:fb:ae: cc:9e:d8:83:ac:ef:01:51:fb:fb:26:c8:49:74:af: cd:78:86:a2:60:d6:a9:fd:4d:80:24:93:6f:55:4d: 0d:d7:f8:3f:60:6d:96:36:1c:68:e6:8a:f9:c5:fd: 73:16:09:e1:00:ea:df:ef:2f:6d:8c:46:27:dd:7e: 5d:64:63:b9:38:1f:fa:9d:8c:89:ce:66:2a:54:e6: fc:2e:dd:13:04:c9:6f:64:70:63:3e:b7:02:ed:c9: 46:b1:8e:94:17:6e:a4:a1:cf:3e:f5:84:61:22:f5: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B7:F6:79:AE:25:6C:37:F6:11:86:10:B9:E0:B0:46:77:B5:0A:DB X509v3 Authority Key Identifier: keyid:B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/8BB3088E982F11ED9D647578C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.58.0/23 Signature Algorithm: sha256WithRSAEncryption a7:81:59:00:ae:d4:94:97:4a:36:1d:e3:4b:18:f0:85:45:9a: 19:d3:47:48:11:70:2d:99:d7:fb:d0:0c:9b:a6:12:e9:b3:a9: 15:f6:1e:29:c7:19:74:6b:66:81:0a:d4:eb:77:a6:01:19:d4: 99:5a:f3:93:44:9a:e8:b8:b6:81:45:ad:06:41:7d:43:81:dc: 9e:35:17:02:3d:d2:3e:a6:f5:bd:e0:1a:b0:3d:7c:18:5b:82: 43:fa:c6:7e:9b:88:04:89:96:c7:e7:3a:1f:37:50:9e:15:9d: 76:ca:8e:59:51:3b:63:17:9b:e0:70:0f:41:38:d4:1f:32:0f: 08:37:72:36:c7:eb:27:37:c7:37:c9:58:df:8b:2c:b1:26:3c: c2:5f:49:68:02:b1:42:22:d6:8a:ad:b7:88:08:94:ca:91:ae: 45:26:18:34:ae:66:9d:19:be:46:cd:65:f5:8b:16:65:53:22: 61:06:59:81:5f:f2:e9:63:c8:20:a0:b6:fa:7e:1c:55:63:ec: 43:c5:2f:72:49:2e:28:41:10:d8:2d:2b:e1:de:a6:29:e1:58: ce:30:6f:70:01:aa:b6:7a:a7:6f:31:d5:c1:7a:7e:2c:95:1d: 92:86:27:de:c0:18:88:7c:21:a5:88:c9:ab:39:ac:b0:5b:37: c6:46:64:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4M0IxMTAvBgNVBAUTKEI4QTYyQ0YxREU4QjI2MkUxNDczN0Q5M0VFM0U2RjM2 QzNBMEUxQzkwHhcNMjUwNTA0MjEwMTI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3ZDVhNS02ZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCiisijbL1ud7WrpMluGjxwC5RarnNfkZyecwcqhq2lEwGAXFZUv/QpXfjz5 eEIrtQceWmrs0y+IrqPBHhs0eR7lcEz3yf66AnMijDBATktTaulGYM8GpuvrZIng uLMcc5C6uCpM4NSLIRFiq6hnRNMMg4qDSYT5wcbU4wj0gwBrXnxfeW1yCSQt2wpU WLAoIkdq+67MntiDrO8BUfv7JshJdK/NeIaiYNap/U2AJJNvVU0N1/g/YG2WNhxo 5or5xf1zFgnhAOrf7y9tjEYn3X5dZGO5OB/6nYyJzmYqVOb8Lt0TBMlvZHBjPrcC 7clGsY6UF26koc8+9YRhIvWgRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPO39nmu JWw39hGGELngsEZ3tQrbMB8GA1UdIwQYMBaAFLimLPHeiyYuFHN9k+4+bzbDoOHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTgzQi83OTJEMTQ4QUYy ODExMUVBOEE2RkM2NkRDNEY5QUUwMi91S1lzOGQ2TEppNFVjMzJUN2o1dk5zT2c0 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLWXM4ZDZMSmk0VWMzMlQ3ajV2TnNPZzRjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU4M0IvNzkyRDE0OEFGMjgxMTFFQThBNkZDNjZEQzRGOUFFMDIvOEJCMzA4OEU5 ODJGMTFFRDlENjQ3NTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlTowDQYJKoZIhvcNAQELBQADggEBAKeBWQCu1JSXSjYd 40sY8IVFmhnTR0gRcC2Z1/vQDJumEumzqRX2HinHGXRrZoEK1Ot3pgEZ1Jla85NE mui4toFFrQZBfUOB3J41FwI90j6m9b3gGrA9fBhbgkP6xn6biASJlsfnOh83UJ4V nXbKjllRO2MXm+BwD0E41B8yDwg3cjbH6yc3xzfJWN+LLLEmPMJfSWgCsUIi1oqt t4gIlMqRrkUmGDSuZp0ZvkbNZfWLFmVTImEGWYFf8uljyCCgtvp+HFVj7EPFL3JJ LihBENgtK+HepinhWM4wb3ABqrZ6p28x1cF6fiyVHZKGJ97AGIh8IaWIyas5rLBb N8ZGZBM= -----END CERTIFICATE-----Generated at Wed May 14 04:25:11 2025 by rpki-client