$ rpki-client -vvf rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/DFF01B484A2B11EB8609481FC4F9AE02.roa File: DFF01B484A2B11EB8609481FC4F9AE02.roa (raw, json) Hash identifier: QxDHjOQ9h0AW1vKi1w4KSIHgeJrRV9wKcfKqmMmz5UM= Subject key identifier: 8F:6E:9C:06:82:8F:3E:29:FE:80:F6:8E:BE:D2:CA:2C:9C:F5:04:B1 Certificate issuer: /CN=A9113585/serialNumber=CEAD23FE4888E186873784018A76F94EE8897551 Certificate serial: 06DB Authority key identifier: CE:AD:23:FE:48:88:E1:86:87:37:84:01:8A:76:F9:4E:E8:89:75:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zq0j_kiI4YaHN4QBinb5TuiJdVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/DFF01B484A2B11EB8609481FC4F9AE02.roa Signing time: Sun 30 Mar 2025 21:53:08 +0000 ROA not before: Sun 30 Mar 2025 21:53:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59356 IP address blocks: 103.225.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/zq0j_kiI4YaHN4QBinb5TuiJdVE.crl rsync://rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/zq0j_kiI4YaHN4QBinb5TuiJdVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zq0j_kiI4YaHN4QBinb5TuiJdVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 21:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113585, serialNumber=CEAD23FE4888E186873784018A76F94EE8897551 Validity Not Before: Mar 30 21:53:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e9bd44-805f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:36:a7:72:98:de:2c:2e:fd:e0:01:ab:fb:60: a0:c0:72:96:96:ed:5e:0c:8c:5e:9e:80:fe:5a:18: 68:91:3a:6a:7b:d2:db:a8:b0:a2:3d:2c:6a:60:67: 1a:fa:69:35:c8:65:69:52:ca:af:1c:a2:e8:4b:33: 1f:61:b6:f2:dd:50:a1:7d:65:8c:37:fb:2f:fc:b5: 42:ce:de:ee:14:78:64:a2:98:2d:e0:d0:87:52:31: 95:80:63:cc:e6:17:5d:a5:1f:bc:c7:56:97:d6:25: 48:34:21:eb:3d:cc:1e:52:4c:7d:5d:a9:35:8d:f9: e2:c5:79:f8:49:77:42:3e:29:bf:f1:36:04:c5:45: f6:0c:d7:fb:a9:7c:eb:da:fb:c2:45:10:25:99:31: 6e:b7:9a:ec:1f:ff:55:93:1b:3a:15:de:a1:36:91: d4:d6:23:fd:a1:ab:6f:f9:b4:96:57:3d:e5:84:75: b1:b0:5d:36:4a:f3:0f:8d:62:87:9f:cb:3a:e4:b5: 25:36:af:d7:99:7b:50:d9:d8:87:78:66:77:4f:47: 6e:d0:29:05:e3:c5:9c:8a:25:c7:6f:25:48:c6:76: e3:d9:83:8b:34:60:d0:38:e7:25:8e:44:82:fd:5a: c4:d0:75:ef:c6:aa:a7:c2:08:f5:24:6e:8c:2e:d3: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6E:9C:06:82:8F:3E:29:FE:80:F6:8E:BE:D2:CA:2C:9C:F5:04:B1 X509v3 Authority Key Identifier: keyid:CE:AD:23:FE:48:88:E1:86:87:37:84:01:8A:76:F9:4E:E8:89:75:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/zq0j_kiI4YaHN4QBinb5TuiJdVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zq0j_kiI4YaHN4QBinb5TuiJdVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113585/2328250C49A211EB98097952C4F9AE02/DFF01B484A2B11EB8609481FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.160.0/22 Signature Algorithm: sha256WithRSAEncryption a6:96:45:9b:ce:4c:61:a3:13:ba:f1:e8:20:c0:6d:e3:08:d0: 31:b0:f5:e3:07:82:96:f1:51:b4:e6:bf:a8:c2:00:8a:21:f8: 89:fa:02:78:4b:bd:9a:73:e0:8e:9c:9f:f6:8d:67:74:be:ed: ee:83:28:ef:dd:6e:14:dd:15:d8:aa:94:ac:c8:5a:ee:41:26: 04:29:4e:0c:0b:e5:53:f9:49:a8:af:ef:31:2d:ff:5e:52:34: 5d:c8:dc:57:68:27:12:22:d3:5e:75:03:27:3e:39:88:7e:bf: 70:6f:2b:91:e9:fd:f1:ab:96:7e:7b:09:02:a2:77:63:b6:d7: 2b:e6:6a:95:b4:c3:de:f7:26:70:bc:bb:18:80:19:bc:59:2e: 69:94:27:53:b4:75:04:51:74:e9:43:39:f8:ff:e1:5d:b8:dc: 85:af:70:d2:ac:a1:84:e9:41:ed:24:01:23:3f:67:9e:7d:9f: 1e:17:61:cb:81:f6:0b:c1:d3:01:17:78:82:60:fd:c0:78:8d: 2d:17:3a:83:78:8c:70:69:7f:b3:27:e9:c7:1f:4e:6a:3a:e1: f4:64:f9:e2:9a:f7:6d:7b:96:c8:ad:5e:75:1c:12:9e:b6:ff: 34:37:eb:d1:fe:f7:9d:8c:2b:98:c7:36:74:3d:b4:12:06:ac: cc:19:48:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM1ODUxMTAvBgNVBAUTKENFQUQyM0ZFNDg4OEUxODY4NzM3ODQwMThBNzZGOTRF RTg4OTc1NTEwHhcNMjUwMzMwMjE1MzA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5YmQ0NC04MDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszancpjeLC794AGr+2CgwHKWlu1eDIxenoD+WhhokTpqe9LbqLCiPSxqYGca +mk1yGVpUsqvHKLoSzMfYbby3VChfWWMN/sv/LVCzt7uFHhkopgt4NCHUjGVgGPM 5hddpR+8x1aX1iVINCHrPcweUkx9Xak1jfnixXn4SXdCPim/8TYExUX2DNf7qXzr 2vvCRRAlmTFut5rsH/9Vkxs6Fd6hNpHU1iP9oatv+bSWVz3lhHWxsF02SvMPjWKH n8s65LUlNq/XmXtQ2diHeGZ3T0du0CkF48WciiXHbyVIxnbj2YOLNGDQOOcljkSC /VrE0HXvxqqnwgj1JG6MLtPuwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9unAaC jz4p/oD2jr7Syiyc9QSxMB8GA1UdIwQYMBaAFM6tI/5IiOGGhzeEAYp2+U7oiXVR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzU4NS8yMzI4MjUwQzQ5 QTIxMUVCOTgwOTc5NTJDNEY5QUUwMi96cTBqX2tpSTRZYUhONFFCaW5iNVR1aUpk VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pxMGpfa2lJNFlhSE40UUJpbmI1VHVpSmRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM1ODUvMjMyODI1MEM0OUEyMTFFQjk4MDk3OTUyQzRGOUFFMDIvREZGMDFCNDg0 QTJCMTFFQjg2MDk0ODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4aAwDQYJKoZIhvcNAQELBQADggEBAKaWRZvOTGGjE7rx 6CDAbeMI0DGw9eMHgpbxUbTmv6jCAIoh+In6AnhLvZpz4I6cn/aNZ3S+7e6DKO/d bhTdFdiqlKzIWu5BJgQpTgwL5VP5Saiv7zEt/15SNF3I3FdoJxIi0151Ayc+OYh+ v3BvK5Hp/fGrln57CQKid2O21yvmapW0w973JnC8uxiAGbxZLmmUJ1O0dQRRdOlD Ofj/4V243IWvcNKsoYTpQe0kASM/Z559nx4XYcuB9gvB0wEXeIJg/cB4jS0XOoN4 jHBpf7Mn6ccfTmo64fRk+eKa9217lsitXnUcEp62/zQ369H+952MK5jHNnQ9tBIG rMwZSLQ= -----END CERTIFICATE-----Generated at Tue Apr 22 04:28:11 2025 by rpki-client