$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa File: 1D956B9E858811ED9CDCC91BC4F9AE02.roa (raw, json) Hash identifier: SS3DT3rVQ2RIIspyHG3PNw/Nkcbg7KmAnjQNkHYA/tU= Subject key identifier: 1A:81:1F:CC:AE:FE:02:A8:0E:ED:A1:1A:06:AB:41:7E:AE:9C:FA:45 Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 01E0 Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa Signing time: Tue 01 Apr 2025 02:58:33 +0000 ROA not before: Tue 01 Apr 2025 02:58:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.86.122.0/24 maxlen: 24 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621 Validity Not Before: Apr 1 02:58:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb5658-8868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:be:d5:c0:5c:b6:df:c3:56:92:5f:b7:31: de:83:13:fc:b7:d9:60:47:c0:cd:26:4a:ec:f7:6b: 6d:58:f4:ab:d5:c4:e4:89:2c:30:20:50:e8:58:f4: 6d:50:e6:ca:4f:26:4e:c3:67:26:7e:b3:fa:59:78: d9:14:14:92:a3:c3:24:08:ba:31:be:22:6e:a3:40: 0a:4a:d7:92:fc:9e:52:4c:eb:f1:59:10:18:10:fe: 7c:96:57:10:41:5b:26:b1:53:ba:ce:28:64:a4:90: e0:56:26:e2:2e:90:b1:9b:5f:87:91:43:3b:5d:90: 27:2f:29:3a:34:c0:4b:35:29:3d:14:51:b8:aa:97: ff:f8:eb:57:31:3c:cc:51:36:c4:0d:4e:87:e5:4a: 45:6a:51:66:33:6c:73:47:8a:b0:8e:98:43:75:67: 28:d1:53:a3:46:85:25:86:13:de:09:96:da:98:89: 0c:e4:61:0b:b0:76:f2:9e:73:2e:88:70:8c:83:7d: 4e:93:13:0a:16:97:c5:c9:fe:44:93:e0:a1:d8:e1: aa:92:67:be:3a:62:66:79:1c:8f:69:d1:06:b4:fb: 57:5f:e5:20:d5:fa:4f:a2:fc:52:1d:4c:a7:08:4a: 2d:22:45:9d:23:e5:ac:d6:be:0d:48:9e:5f:fd:d2: 34:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:81:1F:CC:AE:FE:02:A8:0E:ED:A1:1A:06:AB:41:7E:AE:9C:FA:45 X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.122.0/23 Signature Algorithm: sha256WithRSAEncryption 29:a2:57:e7:a2:0b:82:9d:46:b3:fb:cd:22:1a:0c:d0:35:f4: 43:4d:d6:10:09:b5:8b:ee:e2:d5:b6:33:df:de:1d:12:4d:3c: 1e:13:e7:f8:45:cb:d0:dd:81:46:7c:8a:03:34:59:5f:25:03: 35:d1:a3:e8:ef:7c:72:45:a6:ed:37:3e:7e:a1:d8:36:db:2c: fd:06:fd:c8:8a:3a:f7:ac:3f:e3:e0:f4:27:83:a5:24:9a:ce: e5:6c:4a:bd:de:76:19:c2:1d:11:5e:be:ec:83:7f:0a:4f:f4: c7:e5:3e:77:f1:da:8c:ea:31:dd:5c:c1:4e:a1:ab:d7:23:50: ed:e3:a3:c1:c6:3f:ff:4a:3d:10:d0:ae:0b:e3:68:d8:ea:b7: d3:ef:67:37:df:d2:e8:52:5e:5a:ce:71:66:6a:8f:b1:ba:96: 87:9f:58:01:ba:18:d3:00:44:d2:c3:12:d0:6a:c7:ee:a7:b8: 3e:0b:69:4c:36:54:74:17:ee:00:00:f3:4e:00:15:e9:a4:2e: 6a:00:17:99:4e:58:70:e9:e2:58:36:5b:6b:50:97:d2:13:09: 2a:ed:9a:f2:56:6c:6c:f6:71:5a:9a:4f:83:5c:b4:6b:dc:21: 60:e7:a1:47:90:41:6d:0b:3a:66:15:fd:77:ae:5e:8b:f0:da: c4:fb:6e:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjUwNDAxMDI1ODMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViNTY1OC04ODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9++1cBctt/DVpJftzHegxP8t9lgR8DNJkrs92ttWPSr1cTkiSwwIFDoWPRt UObKTyZOw2cmfrP6WXjZFBSSo8MkCLoxviJuo0AKSteS/J5STOvxWRAYEP58llcQ QVsmsVO6zihkpJDgVibiLpCxm1+HkUM7XZAnLyk6NMBLNSk9FFG4qpf/+OtXMTzM UTbEDU6H5UpFalFmM2xzR4qwjphDdWco0VOjRoUlhhPeCZbamIkM5GELsHbynnMu iHCMg31OkxMKFpfFyf5Ek+Ch2OGqkme+OmJmeRyPadEGtPtXX+Ug1fpPovxSHUyn CEotIkWdI+Ws1r4NSJ5f/dI0jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqBH8yu /gKoDu2hGgarQX6unPpFMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvMUQ5NTZCOUU4 NTg4MTFFRDlDRENDOTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVnowDQYJKoZIhvcNAQELBQADggEBACmiV+eiC4KdRrP7 zSIaDNA19ENN1hAJtYvu4tW2M9/eHRJNPB4T5/hFy9DdgUZ8igM0WV8lAzXRo+jv fHJFpu03Pn6h2DbbLP0G/ciKOvesP+Pg9CeDpSSazuVsSr3edhnCHRFevuyDfwpP 9MflPnfx2ozqMd1cwU6hq9cjUO3jo8HGP/9KPRDQrgvjaNjqt9PvZzff0uhSXlrO cWZqj7G6loefWAG6GNMARNLDEtBqx+6nuD4LaUw2VHQX7gAA804AFemkLmoAF5lO WHDp4lg2W2tQl9ITCSrtmvJWbGz2cVqaT4NctGvcIWDnoUeQQW0LOmYV/XeuXovw 2sT7bp8= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:10 2025 by rpki-client