$ rpki-client -vvf rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa File: 211EA566FEC411EAA6579A78C4F9AE02.roa (raw, json) Hash identifier: gc5rodY7fMSUXMwplo20/FwcMcQwtcPfnanjg3iRFls= Subject key identifier: 72:2B:E3:7E:EF:C3:BA:7F:EB:74:86:CF:EF:96:DA:36:F1:DC:D2:02 Certificate issuer: /CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Certificate serial: 0787 Authority key identifier: 7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa Signing time: Fri 14 Feb 2025 22:39:40 +0000 ROA not before: Fri 14 Feb 2025 22:39:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 10143 IP address blocks: 103.47.233.0/24 maxlen: 24 203.19.75.0/24 maxlen: 24 203.30.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911784E Validity Not Before: Feb 14 22:39:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67afc62c-b199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:9b:8c:f3:e0:cb:97:55:51:95:8e:eb:31: 59:5f:ee:18:7c:29:4b:8d:83:29:c0:98:fc:47:64: cd:53:8a:26:f4:66:1a:10:3f:3c:65:e9:f2:8f:b9: c0:b8:50:de:fc:71:e7:08:cd:32:53:86:59:6e:e4: 7c:1e:5e:a8:f9:4d:c7:c1:89:f4:1c:9b:11:16:9d: f6:30:6b:5c:30:30:f6:dc:4e:68:e6:89:2b:9d:70: 4d:0c:d4:52:e7:ab:cf:23:ea:3b:24:d8:8f:a3:28: a9:a7:65:98:e0:f8:5f:93:69:93:bb:a0:8a:43:9c: 47:e8:69:e4:c6:d4:06:2d:d5:b0:3c:b6:19:06:ab: ef:59:fc:e2:e7:22:9f:0d:4c:d9:48:51:b8:d0:46: bd:fe:ed:62:67:60:36:6b:90:9c:23:29:87:5e:1b: 9d:31:3a:99:83:a4:aa:33:69:46:c6:4a:f1:cf:aa: 8f:71:b0:5a:e5:14:a9:e4:c9:7a:d4:64:d9:cc:fb: de:64:d9:26:fd:02:31:5e:3b:c3:89:7c:b7:d8:d0: 2a:e8:ce:2d:39:bd:75:27:5e:52:9a:39:7d:01:d6: 2e:b6:bc:03:55:fb:e8:33:7a:3a:77:5b:ac:bc:c5: 81:26:b7:d8:ad:29:dd:98:b2:91:1a:41:62:bd:fc: 3c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2B:E3:7E:EF:C3:BA:7F:EB:74:86:CF:EF:96:DA:36:F1:DC:D2:02 X509v3 Authority Key Identifier: keyid:7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.233.0/24 203.19.75.0/24 203.30.228.0/24 Signature Algorithm: sha256WithRSAEncryption 14:b0:55:31:04:1d:4f:97:d0:d0:03:02:84:c4:01:63:71:47: 89:df:88:58:53:98:2e:06:45:f5:88:57:dc:71:ee:e1:5b:69: 84:1a:d1:7a:db:cf:0d:97:d8:62:f3:c0:e2:4a:9f:0c:35:dc: d6:6d:45:a8:68:3e:90:f8:6b:29:50:25:1e:49:62:e0:f6:3b: 37:be:20:d1:f5:18:95:93:d0:57:2c:f7:8e:d2:7e:cc:b7:b0: c9:51:48:24:22:47:6c:89:47:e4:4d:ac:ae:e5:10:2a:32:54: f7:2e:fc:ed:00:9e:58:0c:b5:92:82:9b:24:1e:91:66:5d:02: 0f:ce:cc:cc:20:7a:09:79:17:42:0d:8d:dd:3d:ae:ec:ec:59: 7d:07:7f:95:68:9b:f9:cc:f4:66:5f:61:10:cc:88:e2:47:33: f3:af:8e:4f:0f:40:95:e0:d5:97:e6:df:ec:a8:6f:3e:64:68: d3:ba:eb:ef:d5:b2:d2:b0:d4:b4:95:37:e8:e1:ab:9d:d4:06: c0:91:5f:0d:0b:3e:64:19:10:6d:72:50:99:5d:a6:54:ab:ed: 2c:6c:3b:2b:d0:a1:03:a7:aa:d3:f5:10:8b:b6:13:36:f2:82: 05:2d:28:5b:11:e0:65:4c:6f:61:59:0c:17:f2:b0:58:0f:13: 87:59:36:69 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4NEUxMTAvBgNVBAUTKDdFN0UzQkU4ODkzNzBBNzFFNTUyMTU1N0JCMDNBMDBG MUIzOUJGRDgwHhcNMjUwMjE0MjIzOTQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FmYzYyYy1iMTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJubjPPgy5dVUZWO6zFZX+4YfClLjYMpwJj8R2TNU4om9GYaED88Zenyj7nA uFDe/HHnCM0yU4ZZbuR8Hl6o+U3HwYn0HJsRFp32MGtcMDD23E5o5okrnXBNDNRS 56vPI+o7JNiPoyipp2WY4Phfk2mTu6CKQ5xH6GnkxtQGLdWwPLYZBqvvWfzi5yKf DUzZSFG40Ea9/u1iZ2A2a5CcIymHXhudMTqZg6SqM2lGxkrxz6qPcbBa5RSp5Ml6 1GTZzPveZNkm/QIxXjvDiXy32NAq6M4tOb11J15Smjl9AdYutrwDVfvoM3o6d1us vMWBJrfYrSndmLKRGkFivfw84wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHIr437v w7p/63SGz++W2jbx3NICMB8GA1UdIwQYMBaAFH5+O+iJNwpx5VIVV7sDoA8bOb/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzg0RS82QjU0RDlDOEZF QzExMUVBOUU3MzMzNzVDNEY5QUUwMi9mbjQ3NklrM0NuSGxVaFZYdXdPZ0R4czV2 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuNDc2SWszQ25IbFVoVlh1d09nRHhzNXY5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4NEUvNkI1NEQ5QzhGRUMxMTFFQTlFNzMzMzc1QzRGOUFFMDIvMjExRUE1NjZG RUM0MTFFQUE2NTc5QTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnL+kDBADLE0sDBADLHuQwDQYJKoZIhvcNAQELBQADggEB ABSwVTEEHU+X0NADAoTEAWNxR4nfiFhTmC4GRfWIV9xx7uFbaYQa0Xrbzw2X2GLz wOJKnww13NZtRahoPpD4aylQJR5JYuD2Oze+INH1GJWT0Fcs947Sfsy3sMlRSCQi R2yJR+RNrK7lECoyVPcu/O0AnlgMtZKCmyQekWZdAg/OzMwgegl5F0INjd09ruzs WX0Hf5Vom/nM9GZfYRDMiOJHM/Ovjk8PQJXg1Zfm3+yobz5kaNO66+/VstKw1LSV N+jhq53UBsCRXw0LPmQZEG1yUJldplSr7SxsOyvQoQOnqtP1EIu2EzbyggUtKFsR 4GVMb2FZDBfysFgPE4dZNmk= -----END CERTIFICATE-----Generated at Sat Apr 5 06:58:13 2025 by rpki-client