$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/50448A72911411EF9CAF3E55C4F9AE02.roa File: 50448A72911411EF9CAF3E55C4F9AE02.roa (raw, json) Hash identifier: f8EbYStIGSB7T55NTXn1S3YpmHpX1HZLI2JBGQCdMmI= Subject key identifier: E5:FC:47:59:06:26:4A:7C:FF:B8:75:91:BC:B7:EF:68:57:F4:A6:3D Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0B30 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/50448A72911411EF9CAF3E55C4F9AE02.roa Signing time: Wed 02 Apr 2025 19:50:31 +0000 ROA not before: Wed 02 Apr 2025 19:50:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136907 IP address blocks: 103.84.110.0/24 maxlen: 24 103.198.203.0/24 maxlen: 24 2404:a140:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2864 (0xb30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF Validity Not Before: Apr 2 19:50:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed9507-9eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c7:74:e0:98:76:06:22:62:c9:a5:f9:55:62: ec:f7:9a:58:13:60:c0:74:d0:e8:72:ef:a1:0e:08: 4b:f1:61:9b:16:48:f2:23:0f:8f:b2:2d:a0:72:6c: 0d:d3:02:34:c2:25:91:55:ec:12:81:8d:4a:42:8a: 57:e3:87:54:10:5e:00:69:f8:8a:5b:dc:09:8e:60: 4e:e5:49:1a:a7:91:72:1a:fe:ca:71:5a:7a:43:cd: 1a:32:28:82:25:1b:9e:a4:b1:09:c5:af:05:df:78: ad:00:f1:41:be:6f:9c:0f:fb:fa:9a:b0:31:d1:1f: 9e:5f:03:01:cd:fa:6c:e7:01:11:62:22:1a:61:bd: c6:46:01:f9:c3:87:eb:78:2b:c2:f0:7d:e7:8b:e2: be:8f:b5:ae:1a:5f:a4:c1:4d:50:85:f0:14:5b:e4: ba:32:2e:69:19:69:c5:0c:d9:65:a0:65:8f:a6:51: 4d:b8:10:c0:1b:fb:5f:0b:6d:76:ae:6f:6a:11:ba: 9b:84:c7:09:2b:10:e1:e3:ba:a1:d7:8a:7e:42:74: 7e:7b:c9:d6:e9:0a:cb:44:58:68:f4:d4:36:db:e7: a1:a0:8c:5c:26:14:8b:90:3c:eb:ca:96:14:ea:16: 6c:95:5a:d4:43:fa:88:1c:5a:92:2e:8b:08:29:55: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FC:47:59:06:26:4A:7C:FF:B8:75:91:BC:B7:EF:68:57:F4:A6:3D X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/50448A72911411EF9CAF3E55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.110.0/24 103.198.203.0/24 IPv6: 2404:a140:43::/48 Signature Algorithm: sha256WithRSAEncryption 38:a9:ea:0c:f2:c8:ce:e9:5f:b3:a8:94:7f:e7:c5:09:ba:d3: 20:0d:3b:fc:63:be:d0:12:cb:69:08:f6:ca:80:60:a0:79:3e: c4:75:ea:c6:b3:81:3e:07:81:00:6c:d4:78:f1:21:1a:b9:bb: 2a:a7:b5:10:8d:ed:cd:4f:86:e5:1e:fb:b8:9d:23:9b:4c:98: ab:96:8c:77:fd:e2:dd:14:04:c2:40:74:4b:2e:16:f8:7c:6b: f1:66:cf:b9:bb:b7:27:26:48:be:7a:37:cf:14:e8:df:7b:dc: 53:46:31:8e:c3:a6:41:60:f1:8c:9d:f2:4d:21:d2:ec:de:7b: 59:0d:f4:78:85:30:d0:89:e9:6e:86:06:25:fc:e9:7d:c6:9d: b4:af:7b:c8:5e:20:f5:99:94:78:83:c9:1f:56:f0:b6:d5:3f: b5:08:51:51:c3:a5:97:23:d5:75:1b:42:7b:6c:3e:31:e0:98: 2d:b1:35:f5:05:92:b6:72:65:eb:6e:f6:41:bc:2a:2a:39:a4: 59:60:c7:6f:3e:8d:0f:7d:9c:84:3a:7d:59:1f:c2:15:14:fb: 29:14:97:45:74:fa:2e:87:63:a6:fa:2b:69:a6:4a:96:5f:e6: b1:cf:e4:4a:f6:02:98:0d:9f:7e:ef:70:85:47:3c:32:91:c9: 2c:af:f8:73 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUwNDAyMTk1MDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTUwNy05ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocd04Jh2BiJiyaX5VWLs95pYE2DAdNDocu+hDghL8WGbFkjyIw+Psi2gcmwN 0wI0wiWRVewSgY1KQopX44dUEF4AafiKW9wJjmBO5Ukap5FyGv7KcVp6Q80aMiiC JRuepLEJxa8F33itAPFBvm+cD/v6mrAx0R+eXwMBzfps5wERYiIaYb3GRgH5w4fr eCvC8H3ni+K+j7WuGl+kwU1QhfAUW+S6Mi5pGWnFDNlloGWPplFNuBDAG/tfC212 rm9qEbqbhMcJKxDh47qh14p+QnR+e8nW6QrLRFho9NQ22+ehoIxcJhSLkDzrypYU 6hZslVrUQ/qIHFqSLosIKVUJQQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOX8R1kG Jkp8/7h1kby372hX9KY9MB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4QUYvRDFGNjRFNzI1RUVGMTFFQUE1NEU2QzZDQzRGOUFFMDIvNTA0NDhBNzI5 MTE0MTFFRjlDQUYzRTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnVG4DBABnxsswDwQCAAIwCQMHACQEoUAAQzANBgkqhkiG 9w0BAQsFAAOCAQEAOKnqDPLIzulfs6iUf+fFCbrTIA07/GO+0BLLaQj2yoBgoHk+ xHXqxrOBPgeBAGzUePEhGrm7Kqe1EI3tzU+G5R77uJ0jm0yYq5aMd/3i3RQEwkB0 Sy4W+Hxr8WbPubu3JyZIvno3zxTo33vcU0YxjsOmQWDxjJ3yTSHS7N57WQ30eIUw 0InpboYGJfzpfcadtK97yF4g9ZmUeIPJH1bwttU/tQhRUcOllyPVdRtCe2w+MeCY LbE19QWStnJl6272QbwqKjmkWWDHbz6ND32chDp9WR/CFRT7KRSXRXT6Lodjpvor aaZKll/msc/kSvYCmA2ffu9whUc8MpHJLK/4cw== -----END CERTIFICATE-----Generated at Sat Apr 5 07:16:42 2025 by rpki-client