$ rpki-client -vvf rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa File: 543AF5B283D911E78F2FA066C4F9AE02.roa (raw, json) Hash identifier: PICALzvWwC2BCBHA+goW7MkEqKBmFK0k5ksrLUCg2MM= Subject key identifier: D5:BE:94:0F:B2:9B:22:57:A8:2B:E9:BF:C4:11:A5:07:D0:88:72:59 Certificate issuer: /CN=A911A0C0/serialNumber=16064EAB81AE1873A1019D092896F9227A5EEF45 Certificate serial: 18F6 Authority key identifier: 16:06:4E:AB:81:AE:18:73:A1:01:9D:09:28:96:F9:22:7A:5E:EF:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa Signing time: Mon 31 Mar 2025 16:44:38 +0000 ROA not before: Mon 31 Mar 2025 16:44:38 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 17882 IP address blocks: 103.80.210.0/23 maxlen: 24 103.206.152.0/23 maxlen: 24 203.217.138.0/23 maxlen: 23 203.217.138.0/24 maxlen: 24 203.217.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.crl rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 16:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6390 (0x18f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A0C0 Validity Not Before: Mar 31 16:44:38 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eac676-0c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:e5:5b:de:a4:df:4a:fe:f9:76:a0:8e:e4: 93:c4:17:07:f6:8e:bc:d2:ba:14:34:31:00:b2:8c: c5:ba:7b:97:e3:61:56:c1:d9:b7:a4:f8:7a:c6:c0: f0:83:03:f8:85:77:18:2b:e1:6f:b6:2f:ce:63:6c: 94:1e:53:b6:90:46:6e:ef:d0:c2:85:ab:02:19:fc: 97:f5:9f:f4:0c:3d:61:4d:91:3b:c9:e9:5d:71:68: bc:52:47:f0:fd:88:85:85:ea:e5:49:78:86:3b:3b: 5b:cd:b9:88:ba:9c:b0:27:d1:bb:37:e5:b7:ed:16: 4b:83:2b:e2:4b:92:73:43:dd:54:18:18:ab:07:80: 11:bd:03:3e:5b:79:19:93:a8:04:19:0f:53:e1:9f: d4:73:44:f0:05:95:73:5f:5e:68:37:a6:42:55:b3: 1d:55:2a:b4:6c:57:57:22:f3:a5:2c:85:0a:d0:26: a1:74:5b:bd:47:4a:b1:e0:43:e5:3b:eb:d9:d7:94: 55:c2:3c:c6:b7:40:f2:15:54:38:76:3c:e7:77:e4: 83:05:c9:e2:8d:4b:ae:20:35:54:db:08:bb:a1:00: c5:61:c7:0a:e1:99:65:d0:97:f3:99:dd:b3:66:25: fd:ff:a1:c5:35:19:8d:ed:ae:bc:3e:e5:34:17:d8: 9d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BE:94:0F:B2:9B:22:57:A8:2B:E9:BF:C4:11:A5:07:D0:88:72:59 X509v3 Authority Key Identifier: keyid:16:06:4E:AB:81:AE:18:73:A1:01:9D:09:28:96:F9:22:7A:5E:EF:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/FgZOq4GuGHOhAZ0JKJb5Inpe70U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgZOq4GuGHOhAZ0JKJb5Inpe70U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A0C0/0B30467083D811E7B75F2565C4F9AE02/543AF5B283D911E78F2FA066C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.210.0/23 103.206.152.0/23 203.217.138.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:e3:fd:65:28:88:3f:fa:21:b5:9d:dd:0b:dd:b4:02:cd:92: 44:dc:9a:ea:04:48:93:79:4e:c6:99:b7:c8:44:33:36:2a:9d: 47:bc:01:d4:df:13:19:6e:65:a8:d4:2e:c4:cb:b5:27:2f:90: e2:04:d0:95:3e:45:8a:ec:ee:d2:40:5f:3e:3c:3f:4c:7d:33: 25:19:07:0f:00:fa:eb:d9:14:5c:99:64:8b:91:fc:d8:3b:a1: 72:62:f4:f4:ef:94:bf:19:7c:e7:0b:f2:b3:82:17:96:75:95: 93:48:ca:8e:9f:25:44:b9:b2:29:16:96:c0:af:d3:46:f3:98: 2b:4d:45:3d:cd:04:5a:e0:1e:bf:5b:8d:a3:97:a8:09:75:29: 2c:fa:19:9f:15:06:40:c1:3d:9d:c7:46:01:f8:cb:6d:50:fe: 83:55:b8:62:09:1e:bc:71:a7:5c:31:8a:71:59:28:9b:c7:bf: 86:26:fd:43:ec:12:b1:59:87:48:13:8d:fa:bc:c5:2e:71:d8: b8:58:ba:46:5a:02:4e:1f:13:56:2d:87:a3:68:51:aa:a5:64: 9c:eb:b8:f6:80:ed:7d:44:67:58:75:ff:e6:35:0e:ea:08:d8: f2:df:30:77:e7:b6:8a:fc:47:7c:a3:a8:7e:cd:0e:91:aa:24: f3:f4:c0:32 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEwQzAxMTAvBgNVBAUTKDE2MDY0RUFCODFBRTE4NzNBMTAxOUQwOTI4OTZGOTIy N0E1RUVGNDUwHhcNMjUwMzMxMTY0NDM4WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhYzY3Ni0wYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk/lW96k30r++XagjuSTxBcH9o680roUNDEAsozFunuX42FWwdm3pPh6xsDw gwP4hXcYK+Fvti/OY2yUHlO2kEZu79DChasCGfyX9Z/0DD1hTZE7yeldcWi8Ukfw /YiFherlSXiGOztbzbmIupywJ9G7N+W37RZLgyviS5JzQ91UGBirB4ARvQM+W3kZ k6gEGQ9T4Z/Uc0TwBZVzX15oN6ZCVbMdVSq0bFdXIvOlLIUK0CahdFu9R0qx4EPl O+vZ15RVwjzGt0DyFVQ4djznd+SDBcnijUuuIDVU2wi7oQDFYccK4Zll0Jfzmd2z ZiX9/6HFNRmN7a68PuU0F9idKQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNW+lA+y myJXqCvpv8QRpQfQiHJZMB8GA1UdIwQYMBaAFBYGTquBrhhzoQGdCSiW+SJ6Xu9F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTBDMC8wQjMwNDY3MDgz RDgxMUU3Qjc1RjI1NjVDNEY5QUUwMi9GZ1pPcTRHdUdIT2hBWjBKS0piNUlucGU3 MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnWk9xNEd1R0hPaEFaMEpLSmI1SW5wZTcwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUEwQzAvMEIzMDQ2NzA4M0Q4MTFFN0I3NUYyNTY1QzRGOUFFMDIvNTQzQUY1QjI4 M0Q5MTFFNzhGMkZBMDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnUNIDBAFnzpgDBAHL2YowDQYJKoZIhvcNAQELBQADggEB AC/j/WUoiD/6IbWd3QvdtALNkkTcmuoESJN5TsaZt8hEMzYqnUe8AdTfExluZajU LsTLtScvkOIE0JU+RYrs7tJAXz48P0x9MyUZBw8A+uvZFFyZZIuR/Ng7oXJi9PTv lL8ZfOcL8rOCF5Z1lZNIyo6fJUS5sikWlsCv00bzmCtNRT3NBFrgHr9bjaOXqAl1 KSz6GZ8VBkDBPZ3HRgH4y21Q/oNVuGIJHrxxp1wxinFZKJvHv4Ym/UPsErFZh0gT jfq8xS5x2LhYukZaAk4fE1Yth6NoUaqlZJzruPaA7X1EZ1h1/+Y1DuoI2PLfMHfn tor8R3yjqH7NDpGqJPP0wDI= -----END CERTIFICATE-----Generated at Mon Apr 7 13:57:32 2025 by rpki-client