$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa File: EC985F92AD6D11EE83DA6253C4F9AE02.roa (raw, json) Hash identifier: w8uUD+FE/qLP77HxuP2e7CVi5lI4nhNhSCuDldSdTWM= Subject key identifier: 45:28:4F:3C:23:2C:1B:A6:17:B0:07:F6:74:98:7F:55:E2:D3:94:E8 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: F8 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa Signing time: Fri 03 Jan 2025 04:07:28 +0000 ROA not before: Fri 03 Jan 2025 04:07:28 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136593 IP address blocks: 103.94.185.0/24 maxlen: 24 103.99.115.0/24 maxlen: 24 103.99.178.0/23 maxlen: 23 103.99.179.0/24 maxlen: 24 202.91.33.0/24 maxlen: 24 202.91.34.0/24 maxlen: 24 202.91.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C Validity Not Before: Jan 3 04:07:28 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67776280-859f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:bc:4a:6e:64:56:3e:64:32:24:a2:20:59: d3:31:cd:87:fe:65:e0:9d:68:03:31:9b:39:64:34: e0:e8:ee:f0:ba:11:37:9e:34:fd:92:07:d0:33:2a: 4f:c3:88:f9:3d:d6:4a:6a:54:29:04:2b:f9:47:7a: 1e:27:aa:a7:cd:30:6b:4e:06:88:39:93:24:2d:a0: b6:ec:5e:4b:18:c7:72:0c:9a:57:a3:76:6f:0d:dd: 39:c9:db:f0:17:da:06:98:58:fa:ad:a7:c2:7a:74: 26:bf:aa:a0:35:dd:82:23:75:7b:e2:e7:97:f8:b6: 0e:ee:ca:f8:45:b9:2b:a2:a5:07:71:37:50:64:b8: aa:ab:54:0f:91:57:8e:d1:f3:cf:ec:d1:cd:68:57: 48:46:22:c1:e2:e3:41:02:84:b2:9f:ac:2f:82:a8: 75:f9:bd:76:90:41:f6:4a:93:fc:2b:ca:0a:01:b0: 8f:3f:cd:70:b0:38:95:04:c6:2d:93:3c:2b:88:17: ae:f1:3d:7e:bc:ac:5a:2d:c9:87:e5:93:07:5b:48: c3:a0:9a:0f:1e:34:d5:b5:2e:8c:15:d6:18:ec:90: 85:5b:88:42:a0:f2:89:c9:e2:ce:11:8c:af:7e:00: 7b:e8:33:71:ec:00:4d:df:f3:14:f2:53:65:19:18: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:28:4F:3C:23:2C:1B:A6:17:B0:07:F6:74:98:7F:55:E2:D3:94:E8 X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.185.0/24 103.99.115.0/24 103.99.178.0/23 202.91.33.0-202.91.35.255 Signature Algorithm: sha256WithRSAEncryption 74:37:34:44:a6:5f:9f:bc:0f:54:d5:6c:1b:4b:96:86:cf:43: 8d:4c:92:de:a3:54:d3:71:89:1c:52:bb:cf:a0:47:af:18:e3: 97:f7:ec:ed:68:82:aa:35:9a:91:8d:55:55:a7:f0:b2:d5:c1: d1:f0:40:41:01:84:3f:10:c1:a4:19:33:ee:ad:5f:48:98:22: a8:bb:1b:3f:56:6e:16:8b:13:fe:5f:f9:4d:17:31:21:43:3c: 92:4b:49:46:3f:93:f6:7b:f6:95:8b:21:06:69:72:5a:1e:1f: 2a:c9:a8:66:a9:f1:eb:00:2e:fd:9c:2b:0f:51:e0:71:e4:a9: 22:37:25:a1:88:db:98:58:9d:9f:32:ea:17:00:51:3e:4d:ba: de:6a:59:c9:3a:e9:6c:8b:e6:d7:3a:a3:a4:99:ec:fa:9e:ef: 98:8f:fc:74:1b:d9:b7:cf:57:1c:94:ad:95:36:af:7e:e2:74: ee:23:49:98:8d:11:b0:f2:52:ce:d3:6c:43:b6:e8:73:ba:4f: f1:ed:14:7b:e3:ae:6f:3f:df:04:52:85:c3:c4:ed:a2:e0:38: 73:25:7f:99:85:4b:e1:a4:da:26:11:bf:51:db:87:0c:38:9b: b8:71:89:4a:06:83:8d:30:e5:e0:4f:c9:f1:f2:da:36:d9:1b: aa:60:1c:7e -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUwMTAzMDQwNzI4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NjI4MC04NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV68Sm5kVj5kMiSiIFnTMc2H/mXgnWgDMZs5ZDTg6O7wuhE3njT9kgfQMypP w4j5PdZKalQpBCv5R3oeJ6qnzTBrTgaIOZMkLaC27F5LGMdyDJpXo3ZvDd05ydvw F9oGmFj6rafCenQmv6qgNd2CI3V74ueX+LYO7sr4RbkroqUHcTdQZLiqq1QPkVeO 0fPP7NHNaFdIRiLB4uNBAoSyn6wvgqh1+b12kEH2SpP8K8oKAbCPP81wsDiVBMYt kzwriBeu8T1+vKxaLcmH5ZMHW0jDoJoPHjTVtS6MFdYY7JCFW4hCoPKJyeLOEYyv fgB76DNx7ABN3/MU8lNlGRg+QQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEUoTzwj LBumF7AH9nSYf1Xi05ToMB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVEMkMvMDAzNzNDNkM5QkJDMTFFRTg1MUFERDUwQzRGOUFFMDIvRUM5ODVGOTJB RDZEMTFFRTgzREE2MjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABnXrkDBABnY3MDBAFnY7IwDAMEAMpbIQMEAspbIDANBgkq hkiG9w0BAQsFAAOCAQEAdDc0RKZfn7wPVNVsG0uWhs9DjUyS3qNU03GJHFK7z6BH rxjjl/fs7WiCqjWakY1VVafwstXB0fBAQQGEPxDBpBkz7q1fSJgiqLsbP1ZuFosT /l/5TRcxIUM8kktJRj+T9nv2lYshBmlyWh4fKsmoZqnx6wAu/ZwrD1HgceSpIjcl oYjbmFidnzLqFwBRPk263mpZyTrpbIvm1zqjpJns+p7vmI/8dBvZt89XHJStlTav fuJ07iNJmI0RsPJSztNsQ7boc7pP8e0Ue+Oubz/fBFKFw8TtouA4cyV/mYVL4aTa JhG/UduHDDibuHGJSgaDjTDl4E/J8fLaNtkbqmAcfg== -----END CERTIFICATE-----Generated at Sat Apr 5 03:52:12 2025 by rpki-client