$ rpki-client -vvf rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa File: FAFC712C485611EDB713C522C4F9AE02.roa (raw, json) Hash identifier: fq5HCtnKfkn7/JuyPv2TRFDGy6fu3YXaJZP30LJYt74= Subject key identifier: 8F:2B:BD:51:6A:24:C7:45:AA:FD:67:B9:24:97:CD:C0:77:7F:B7:ED Certificate issuer: /CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897 Certificate serial: 0764 Authority key identifier: 7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa Signing time: Wed 02 Apr 2025 21:53:50 +0000 ROA not before: Wed 02 Apr 2025 21:53:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132337 IP address blocks: 103.69.212.0/22 maxlen: 24 103.148.238.0/23 maxlen: 23 103.148.238.0/24 maxlen: 24 103.148.239.0/24 maxlen: 24 103.196.48.0/22 maxlen: 24 113.30.156.0/22 maxlen: 24 113.30.228.0/22 maxlen: 24 121.50.216.0/21 maxlen: 24 2406:c140::/32 maxlen: 32 2406:c140:31::/48 maxlen: 48 2406:c140:33::/48 maxlen: 48 2406:c140:65::/48 maxlen: 48 2406:c140:86::/48 maxlen: 48 2406:c140:238::/48 maxlen: 48 2406:c140:239::/48 maxlen: 48 2406:c140:852::/48 maxlen: 48 2406:c140:886::/48 maxlen: 48 2406:c140:1200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115964 Validity Not Before: Apr 2 21:53:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edb1ee-20ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f5:8f:31:db:6e:ad:97:1e:2f:fb:46:b9:b2: 1d:8e:f2:09:e6:d4:90:33:2b:b8:c4:48:9a:34:4a: c0:ae:48:32:b7:49:a5:ae:6d:50:3b:1f:d0:c4:2f: fb:a6:36:aa:fc:fd:08:fb:50:a5:c9:cc:05:d2:1d: 13:1c:3f:11:db:4b:fd:b9:c6:fb:2f:e1:22:85:5c: 27:36:b0:6a:d8:ba:58:05:2a:f8:93:ce:04:80:b7: 64:c8:a9:f1:46:47:28:32:f5:b4:aa:06:5e:82:37: 9e:2d:75:a3:70:f5:ae:36:43:08:56:98:b5:12:69: d2:b3:73:ff:3d:d0:30:89:66:b4:11:d3:36:d6:54: 08:f4:f3:b1:96:94:46:3e:5b:f3:ca:90:55:70:5f: e6:c9:84:03:4a:3b:69:27:02:8d:91:a6:c3:18:38: c7:c5:c0:ba:70:92:17:ad:56:f9:a9:df:ea:59:f6: ef:7c:7a:42:8f:99:90:2a:9f:b9:01:13:aa:e8:fc: 23:ad:d5:b8:16:c1:be:33:70:5b:10:c0:de:b1:55: 0f:5d:cc:0d:45:0d:62:10:25:51:62:9c:aa:c1:db: e9:99:6f:56:11:26:22:c5:8c:6a:51:82:78:92:f2: 46:fb:4c:9e:ca:44:c4:64:8c:47:a7:ae:33:bf:40: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2B:BD:51:6A:24:C7:45:AA:FD:67:B9:24:97:CD:C0:77:7F:B7:ED X509v3 Authority Key Identifier: keyid:7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.212.0/22 103.148.238.0/23 103.196.48.0/22 113.30.156.0/22 113.30.228.0/22 121.50.216.0/21 IPv6: 2406:c140::/32 Signature Algorithm: sha256WithRSAEncryption 19:4f:96:52:fd:20:8d:14:35:ed:d7:ae:ce:98:27:7d:fb:c5: dd:56:f7:38:2e:97:60:5d:63:04:74:c9:96:30:ac:d1:6b:5e: a8:9c:bf:13:b9:30:e1:fa:c7:60:f3:fa:d4:85:cf:d4:8c:ed: 17:f8:5f:64:78:72:0d:ca:5b:2d:88:80:9b:b4:b4:49:f9:ec: 28:b0:91:76:d2:e5:d0:a0:15:4b:80:94:c1:05:3c:28:04:2c: 1c:37:64:e5:92:49:3a:99:a4:b8:28:a8:ab:49:e7:5c:95:71: 5e:ad:45:b0:f2:4c:d7:cb:1e:b0:45:30:ba:d3:c8:52:ee:81: 06:63:3a:00:a3:f1:88:fb:16:9f:90:1a:c9:0a:4f:b1:67:d4: c1:e9:b0:7e:d2:b5:2b:92:b5:e0:59:18:4e:81:02:79:0c:f6: b1:8d:6d:64:29:8e:ad:ef:81:e4:90:ad:a5:db:0d:4e:d1:6a: 0b:70:9a:19:29:1a:c3:00:a9:df:a0:46:0e:7b:d9:07:97:d6: a0:6d:b8:85:ee:5f:34:3e:cf:a1:75:9c:f4:78:db:38:b9:51: e1:f3:e6:2a:aa:a9:1e:a6:ef:ff:e4:cc:c6:c6:2b:98:ff:21: 8d:28:17:d8:9d:59:f3:fa:40:2e:c4:06:f0:93:78:83:a3:38: 12:25:9e:a5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5NjQxMTAvBgNVBAUTKDdCNzIxMzg4RkQxM0U4QUU0M0M5N0YwMzAxOTgxRDIy OTJDODg4OTcwHhcNMjUwNDAyMjE1MzUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYjFlZS0yMGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/WPMdturZceL/tGubIdjvIJ5tSQMyu4xEiaNErArkgyt0mlrm1QOx/QxC/7 pjaq/P0I+1ClycwF0h0THD8R20v9ucb7L+EihVwnNrBq2LpYBSr4k84EgLdkyKnx RkcoMvW0qgZegjeeLXWjcPWuNkMIVpi1EmnSs3P/PdAwiWa0EdM21lQI9POxlpRG PlvzypBVcF/myYQDSjtpJwKNkabDGDjHxcC6cJIXrVb5qd/qWfbvfHpCj5mQKp+5 AROq6PwjrdW4FsG+M3BbEMDesVUPXcwNRQ1iECVRYpyqwdvpmW9WESYixYxqUYJ4 kvJG+0yeykTEZIxHp64zv0Cp1wIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFI8rvVFq JMdFqv1nuSSXzcB3f7ftMB8GA1UdIwQYMBaAFHtyE4j9E+iuQ8l/AwGYHSKSyIiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTk2NC9FRkMyQ0NCQzI3 MEYxMUVCQURFNkMwMTlDNEY5QUUwMi9lM0lUaVAwVDZLNUR5WDhEQVpnZElwTElp SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzSVRpUDBUNks1RHlYOERBWmdkSXBMSWlKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTU5NjQvRUZDMkNDQkMyNzBGMTFFQkFERTZDMDE5QzRGOUFFMDIvRkFGQzcxMkM0 ODU2MTFFREI3MTNDNTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnRdQDBAFnlO4DBAJnxDADBAJxHpwDBAJxHuQDBAN5Mtgw DQQCAAIwBwMFACQGwUAwDQYJKoZIhvcNAQELBQADggEBABlPllL9II0UNe3Xrs6Y J337xd1W9zgul2BdYwR0yZYwrNFrXqicvxO5MOH6x2Dz+tSFz9SM7Rf4X2R4cg3K Wy2IgJu0tEn57CiwkXbS5dCgFUuAlMEFPCgELBw3ZOWSSTqZpLgoqKtJ51yVcV6t RbDyTNfLHrBFMLrTyFLugQZjOgCj8Yj7Fp+QGskKT7Fn1MHpsH7StSuSteBZGE6B AnkM9rGNbWQpjq3vgeSQraXbDU7RagtwmhkpGsMAqd+gRg572QeX1qBtuIXuXzQ+ z6F1nPR42zi5UeHz5iqqqR6m7//kzMbGK5j/IY0oF9idWfP6QC7EBvCTeIOjOBIl nqU= -----END CERTIFICATE-----Generated at Sun Apr 6 06:37:57 2025 by rpki-client