$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/23803F800C9C11ED82C8955BC4F9AE02.roa File: 23803F800C9C11ED82C8955BC4F9AE02.roa (raw, json) Hash identifier: Ny3HF6QiqyIBzWklmUHinHzimYgWUBmeHFmleIQ1/IQ= Subject key identifier: 11:DA:87:7E:34:78:19:C5:C2:78:0D:E7:9A:BD:5A:24:E9:E8:32:8C Certificate issuer: /CN=A911BDAE/serialNumber=E9FE83A94C01BB13D5357F370C765973E997F4D0 Certificate serial: 0242 Authority key identifier: E9:FE:83:A9:4C:01:BB:13:D5:35:7F:37:0C:76:59:73:E9:97:F4:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f6DqUwBuxPVNX83DHZZc-mX9NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/23803F800C9C11ED82C8955BC4F9AE02.roa Signing time: Wed 29 Jan 2025 01:34:45 +0000 ROA not before: Wed 29 Jan 2025 01:34:45 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38851 IP address blocks: 43.226.232.0/22 maxlen: 23 103.46.144.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/6f6DqUwBuxPVNX83DHZZc-mX9NA.crl rsync://rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/6f6DqUwBuxPVNX83DHZZc-mX9NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f6DqUwBuxPVNX83DHZZc-mX9NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDAE Validity Not Before: Jan 29 01:34:45 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679985b5-5854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:b8:17:c6:d1:a9:85:89:44:da:9c:e2:52: 22:31:3f:ab:26:29:47:90:9c:06:2c:6b:b7:5c:63: 94:f7:b0:ef:74:cd:c8:90:b1:6f:a1:5f:64:18:ac: f0:54:4d:9b:e7:73:43:b8:4c:75:e9:59:d3:bc:ee: 09:f8:a5:2f:35:af:c2:a7:ee:2f:47:ce:7c:cd:c8: 74:48:19:a0:74:2d:1d:bb:12:5c:98:b0:ef:d2:b7: cd:52:63:ce:d7:54:79:b7:a6:31:3d:f7:49:1a:00: 36:e0:58:5e:7c:2e:60:8c:68:ed:ca:c7:b3:63:74: 8a:b0:21:e2:92:02:9d:3f:30:26:d3:10:d9:9a:c4: 43:b3:a0:e7:31:b4:fb:45:99:1a:66:42:3d:56:d4: b0:cc:8d:3a:75:e0:fe:82:05:24:35:5a:95:d6:b8: 8c:6d:08:18:85:34:2b:49:b3:ca:e2:06:6c:45:a4: d1:7e:42:08:c4:e0:b7:e4:e8:3b:13:eb:c6:3a:20: f7:a5:ac:07:f9:34:2d:57:87:44:25:14:0e:e3:1e: 78:a4:74:d4:59:ae:6d:bf:d1:b1:d8:0e:c9:a7:be: 64:a0:41:51:aa:15:b4:b1:ee:07:1a:5a:0f:84:0f: 89:4d:70:67:b8:c3:c7:3e:b1:7c:a8:81:5f:94:2b: d5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DA:87:7E:34:78:19:C5:C2:78:0D:E7:9A:BD:5A:24:E9:E8:32:8C X509v3 Authority Key Identifier: keyid:E9:FE:83:A9:4C:01:BB:13:D5:35:7F:37:0C:76:59:73:E9:97:F4:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/6f6DqUwBuxPVNX83DHZZc-mX9NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6f6DqUwBuxPVNX83DHZZc-mX9NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDAE/E8F129980C9511ED88625634C4F9AE02/23803F800C9C11ED82C8955BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.232.0/22 103.46.144.0/22 Signature Algorithm: sha256WithRSAEncryption 25:12:c2:c8:b6:13:84:7a:e4:79:ea:6b:f9:84:a8:89:0c:02: d4:b4:69:8a:4c:83:92:2a:4b:12:12:b5:c8:45:54:79:74:a0: 96:ef:78:9a:56:aa:fc:cc:af:4d:eb:07:8a:93:68:6b:6c:ee: 76:67:88:9e:89:19:0b:82:70:6f:cf:1c:41:97:76:dd:31:78: 05:6c:7c:e5:3f:bc:02:a4:58:6b:0c:8d:5d:fd:c1:ca:dd:7c: 0f:c8:11:ab:5b:cd:a6:83:31:5b:9d:d3:34:0c:d2:78:4b:85: 4e:a6:d9:b3:0d:43:c1:c5:4a:80:32:ad:ae:2a:e9:5f:1c:49: d3:15:3b:88:2a:60:73:b7:3f:15:2c:ec:ff:17:49:ee:67:67: cf:60:7d:b7:79:1f:2b:91:4a:3a:d7:1a:a7:27:46:80:d5:28: c8:80:2c:05:55:34:79:fb:f8:df:7c:b9:cb:32:af:24:16:50: ab:1a:1e:51:df:e7:25:17:3a:c3:d4:b5:00:38:ac:59:79:44: 83:6e:89:15:b7:ce:63:4d:c7:1f:45:e4:3c:b5:6f:3d:34:08: 67:2e:a3:c6:de:10:e7:d2:ab:48:d5:e9:e5:d9:f3:5e:14:81: 28:dd:15:75:01:0d:4b:e5:1c:00:57:e2:e3:63:f5:1f:37:13: 0a:59:b6:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQUUxMTAvBgNVBAUTKEU5RkU4M0E5NEMwMUJCMTNENTM1N0YzNzBDNzY1OTcz RTk5N0Y0RDAwHhcNMjUwMTI5MDEzNDQ1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5ODViNS01ODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx124F8bRqYWJRNqc4lIiMT+rJilHkJwGLGu3XGOU97DvdM3IkLFvoV9kGKzw VE2b53NDuEx16VnTvO4J+KUvNa/Cp+4vR858zch0SBmgdC0duxJcmLDv0rfNUmPO 11R5t6YxPfdJGgA24FhefC5gjGjtysezY3SKsCHikgKdPzAm0xDZmsRDs6DnMbT7 RZkaZkI9VtSwzI06deD+ggUkNVqV1riMbQgYhTQrSbPK4gZsRaTRfkIIxOC35Og7 E+vGOiD3pawH+TQtV4dEJRQO4x54pHTUWa5tv9Gx2A7Jp75koEFRqhW0se4HGloP hA+JTXBnuMPHPrF8qIFflCvVOwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBHah340 eBnFwngN55q9WiTp6DKMMB8GA1UdIwQYMBaAFOn+g6lMAbsT1TV/Nwx2WXPpl/TQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBRS9FOEYxMjk5ODBD OTUxMUVEODg2MjU2MzRDNEY5QUUwMi82ZjZEcVV3QnV4UFZOWDgzREhaWmMtbVg5 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZmNkRxVXdCdXhQVk5YODNESFpaYy1tWDlOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJEQUUvRThGMTI5OTgwQzk1MTFFRDg4NjI1NjM0QzRGOUFFMDIvMjM4MDNGODAw QzlDMTFFRDgyQzg5NTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4ugDBAJnLpAwDQYJKoZIhvcNAQELBQADggEBACUSwsi2 E4R65Hnqa/mEqIkMAtS0aYpMg5IqSxIStchFVHl0oJbveJpWqvzMr03rB4qTaGts 7nZniJ6JGQuCcG/PHEGXdt0xeAVsfOU/vAKkWGsMjV39wcrdfA/IEatbzaaDMVud 0zQM0nhLhU6m2bMNQ8HFSoAyra4q6V8cSdMVO4gqYHO3PxUs7P8XSe5nZ89gfbd5 HyuRSjrXGqcnRoDVKMiALAVVNHn7+N98ucsyryQWUKsaHlHf5yUXOsPUtQA4rFl5 RINuiRW3zmNNxx9F5Dy1bz00CGcuo8beEOfSq0jV6eXZ814UgSjdFXUBDUvlHABX 4uNj9R83EwpZtmo= -----END CERTIFICATE-----Generated at Sat Apr 5 22:04:34 2025 by rpki-client