$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/14A16ED4F0C011EFB89A0131C4F9AE02.roa File: 14A16ED4F0C011EFB89A0131C4F9AE02.roa (raw, json) Hash identifier: ZYu8wkQyBe+Xlv7OJ0sBhasK2S5cuBE7I2lX4r3jvJE= Subject key identifier: 5F:FF:8B:9B:83:C5:B8:CE:EF:4F:C1:B2:6F:02:0B:F1:43:C6:6E:9B Certificate issuer: /CN=A912DFFA/serialNumber=F9F7E9B4CC31F395C5CDB8FAC9F52FCA57524DE1 Certificate serial: 0277 Authority key identifier: F9:F7:E9:B4:CC:31:F3:95:C5:CD:B8:FA:C9:F5:2F:CA:57:52:4D:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/14A16ED4F0C011EFB89A0131C4F9AE02.roa Signing time: Sat 22 Feb 2025 01:55:24 +0000 ROA not before: Sat 22 Feb 2025 01:55:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150716 IP address blocks: 103.227.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.crl rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFFA Validity Not Before: Feb 22 01:55:24 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67b92e8c-8fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:59:21:3b:7c:74:f1:71:75:16:ac:47:47:d0: e8:b2:67:f0:40:97:3e:2c:23:b4:18:94:9b:b2:5f: dd:02:72:3a:36:73:e8:07:02:c7:73:16:c1:6e:44: 5f:57:17:cd:e1:cd:21:30:89:8d:68:ed:b1:4e:48: a3:b9:cd:05:34:c9:9f:54:0f:2f:d8:98:be:ae:58: d8:25:7f:e7:8b:d1:cb:d3:be:8f:1a:75:58:30:5c: 07:54:c8:00:4c:42:8c:69:01:94:15:d8:2d:fb:5d: f6:67:9a:4a:6e:a5:20:79:43:af:97:d0:f5:a8:10: 13:7d:e8:07:0e:e0:b8:28:21:0f:56:35:16:7f:78: f5:d1:ab:2f:0d:e0:49:f7:d1:53:5f:79:b4:58:c3: d5:6a:cc:9f:69:50:08:74:e6:7c:ed:d5:1a:3d:c7: af:26:c5:50:0d:61:19:47:d1:44:b0:d7:17:ea:2e: cd:5b:f3:44:b1:94:f7:2e:96:3d:0a:f2:ae:e5:c2: 38:3c:41:31:54:31:ad:af:62:a8:9c:6f:ba:91:95: f7:32:34:77:60:3a:89:40:e2:fc:10:98:c6:a3:0f: f3:3f:22:5f:81:93:3b:ca:43:5b:d8:2c:c1:84:ee: da:4a:c8:94:1c:4a:d5:0b:fe:99:05:ba:d2:35:ca: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FF:8B:9B:83:C5:B8:CE:EF:4F:C1:B2:6F:02:0B:F1:43:C6:6E:9B X509v3 Authority Key Identifier: keyid:F9:F7:E9:B4:CC:31:F3:95:C5:CD:B8:FA:C9:F5:2F:CA:57:52:4D:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/-ffptMwx85XFzbj6yfUvyldSTeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ffptMwx85XFzbj6yfUvyldSTeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFFA/CE81A514032C11EDA8CB406EC4F9AE02/14A16ED4F0C011EFB89A0131C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.208.0/24 Signature Algorithm: sha256WithRSAEncryption c3:50:be:30:f7:3c:6b:ee:17:3f:6f:75:53:eb:6d:c6:2b:0b: 41:e0:c0:e4:6b:f5:14:ad:ec:62:d9:c3:7d:99:00:99:5d:7b: 1d:4d:5a:71:93:16:3d:24:b3:5a:96:87:9c:ab:33:49:89:b0: 36:79:8c:bf:cf:ee:22:34:bb:ba:95:e1:47:9f:9b:17:d8:c8: 65:9e:a9:dd:93:fc:f1:a4:88:ff:8b:c2:86:45:1c:95:5e:89: 1b:80:96:6b:7a:a7:bf:32:86:e9:b8:50:0f:34:dd:5e:f7:f6: d6:27:2f:c2:e1:96:0e:fd:ce:0c:0c:ea:c2:7a:d0:3c:5a:28: c2:00:5f:80:76:5c:73:86:dd:93:2a:a7:4e:8f:ac:fb:00:86: f2:17:11:32:e3:5a:b0:1b:1a:d7:91:81:e9:87:39:a9:9e:cd: 85:ee:95:5e:c0:fb:25:44:5e:7c:b3:8c:6d:ce:b6:7c:fe:59: 6b:a6:6b:68:20:0f:25:51:ad:3f:ee:1d:7d:40:f8:e0:e6:5f: 3c:75:ac:34:7d:b8:ea:e2:12:b6:98:0c:b1:a2:fc:e5:b4:51: c7:9d:32:dc:cc:d2:65:e8:26:fa:62:d9:bf:6c:9c:3e:e4:22: d5:b5:46:80:88:4b:be:46:b2:d6:29:ea:4b:7e:e0:64:a7:0d: 76:10:7e:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGRkExMTAvBgNVBAUTKEY5RjdFOUI0Q0MzMUYzOTVDNUNEQjhGQUM5RjUyRkNB NTc1MjRERTEwHhcNMjUwMjIyMDE1NTI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I5MmU4Yy04ZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FkhO3x08XF1FqxHR9DosmfwQJc+LCO0GJSbsl/dAnI6NnPoBwLHcxbBbkRf VxfN4c0hMImNaO2xTkijuc0FNMmfVA8v2Ji+rljYJX/ni9HL076PGnVYMFwHVMgA TEKMaQGUFdgt+132Z5pKbqUgeUOvl9D1qBATfegHDuC4KCEPVjUWf3j10asvDeBJ 99FTX3m0WMPVasyfaVAIdOZ87dUaPcevJsVQDWEZR9FEsNcX6i7NW/NEsZT3LpY9 CvKu5cI4PEExVDGtr2KonG+6kZX3MjR3YDqJQOL8EJjGow/zPyJfgZM7ykNb2CzB hO7aSsiUHErVC/6ZBbrSNcqKQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF//i5uD xbjO70/Bsm8CC/FDxm6bMB8GA1UdIwQYMBaAFPn36bTMMfOVxc24+sn1L8pXUk3h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZGQS9DRTgxQTUxNDAz MkMxMUVEQThDQjQwNkVDNEY5QUUwMi8tZmZwdE13eDg1WEZ6Ymo2eWZVdnlsZFNU ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1mZnB0TXd4ODVYRnpiajZ5ZlV2eWxkU1RlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGRkEvQ0U4MUE1MTQwMzJDMTFFREE4Q0I0MDZFQzRGOUFFMDIvMTRBMTZFRDRG MEMwMTFFRkI4OUEwMTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn49AwDQYJKoZIhvcNAQELBQADggEBAMNQvjD3PGvuFz9v dVPrbcYrC0HgwORr9RSt7GLZw32ZAJldex1NWnGTFj0ks1qWh5yrM0mJsDZ5jL/P 7iI0u7qV4UefmxfYyGWeqd2T/PGkiP+LwoZFHJVeiRuAlmt6p78yhum4UA803V73 9tYnL8Lhlg79zgwM6sJ60DxaKMIAX4B2XHOG3ZMqp06PrPsAhvIXETLjWrAbGteR gemHOamezYXulV7A+yVEXnyzjG3Otnz+WWuma2ggDyVRrT/uHX1A+ODmXzx1rDR9 uOriEraYDLGi/OW0UcedMtzM0mXoJvpi2b9snD7kItW1RoCIS75GstYp6kt+4GSn DXYQfkU= -----END CERTIFICATE-----Generated at Sat Apr 5 18:50:12 2025 by rpki-client