$ rpki-client -vvf rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa File: F696778AFE6C11EF8DF5DD5FC4F9AE02.roa (raw, json) Hash identifier: C5/o5aDwWxMI021UTT3+Muuzc6BZ58/1ktFFSh5UflU= Subject key identifier: 13:BD:70:52:92:86:2B:74:CC:EC:C9:1E:5E:FA:07:4A:B5:A5:62:E7 Certificate issuer: /CN=A913C04E/serialNumber=AADCDB89E54B677C410463799F9586815C40FA4B Certificate serial: 0122 Authority key identifier: AA:DC:DB:89:E5:4B:67:7C:41:04:63:79:9F:95:86:81:5C:40:FA:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa Signing time: Tue 11 Mar 2025 11:35:42 +0000 ROA not before: Tue 11 Mar 2025 11:35:42 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138677 IP address blocks: 119.235.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.crl rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C04E Validity Not Before: Mar 11 11:35:42 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67d0200e-b684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:89:76:15:1b:bf:e7:ca:ee:df:f7:2c:a6:05: f8:65:0a:fe:af:fa:c7:af:67:84:5d:86:f6:71:37: ca:6b:da:ce:1b:17:8b:56:02:7d:d2:f7:f0:30:8f: 74:4a:23:3e:83:d2:75:d6:6e:2d:20:e4:46:e3:de: d8:1e:e7:b3:ee:7d:cc:ae:a2:ad:6e:65:91:39:1b: aa:6d:7b:b3:2b:01:96:c2:33:be:c9:75:4e:0b:ca: c7:01:d0:a1:22:a7:2d:5b:a0:5e:bd:94:62:9f:07: 1f:5d:85:d3:f2:20:5c:67:39:c7:7a:bd:12:81:71: d7:91:55:e2:c9:b8:de:62:69:a6:1e:c4:d1:a3:fd: 08:ac:0f:94:7d:50:7c:8e:1e:5a:9d:9d:31:a4:e9: 38:ab:9b:60:b7:10:af:1a:28:86:54:b2:da:76:2c: 78:1d:46:f2:6f:67:89:bf:5d:2c:5c:81:a2:e0:39: 50:16:02:c7:f5:b3:88:4b:c2:12:7e:4f:6b:38:b5: 6d:43:5f:8a:4c:bd:3d:e6:93:d9:f3:75:66:b4:54: 23:e1:3a:92:04:42:70:f2:5c:39:49:2c:3a:16:0c: 31:1f:5c:53:97:c0:a0:c7:f5:d9:06:3e:13:2d:0e: 4d:d8:0f:22:0a:e6:65:e8:1f:3c:d9:e1:71:2d:9a: b1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BD:70:52:92:86:2B:74:CC:EC:C9:1E:5E:FA:07:4A:B5:A5:62:E7 X509v3 Authority Key Identifier: keyid:AA:DC:DB:89:E5:4B:67:7C:41:04:63:79:9F:95:86:81:5C:40:FA:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/qtzbieVLZ3xBBGN5n5WGgVxA-ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtzbieVLZ3xBBGN5n5WGgVxA-ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C04E/22E68526513211EE964CCF5BC4F9AE02/F696778AFE6C11EF8DF5DD5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.235.11.0/24 Signature Algorithm: sha256WithRSAEncryption 50:b2:40:9f:2d:cd:82:bf:5c:09:4b:51:6a:ce:40:f4:32:c2: d2:d6:66:6f:6d:c5:4c:d0:d1:80:37:a0:e8:ec:99:be:8c:15: 30:cc:f1:4f:84:37:a5:43:d8:64:ee:79:80:79:ab:9f:6d:e0: 98:49:c9:9e:b4:0e:09:15:3c:96:10:30:72:c1:da:df:49:30: 80:86:89:c4:63:9f:4b:d2:3a:7d:9f:ce:2d:6e:e1:01:bd:ad: fd:2b:0c:df:1e:5c:6c:6a:31:7b:79:ce:82:46:bb:ae:55:36: 90:bd:c4:87:80:2f:f6:2c:b5:e0:78:78:4b:d8:6c:ac:27:4c: 9d:75:ca:6b:e6:65:c3:d6:31:f2:a9:78:1c:e5:89:9d:88:7b: 7a:0b:c9:1f:3c:7f:fa:40:2f:b2:6e:d2:af:1c:0a:f3:13:75: f9:07:f8:d1:ec:01:96:f1:29:df:0b:3a:64:f6:ce:78:70:0b: c9:53:0e:7e:56:ea:94:64:e3:19:24:9a:1c:d5:3a:00:26:9e: 0b:d4:89:50:70:82:d9:37:a0:6a:f3:bd:bc:64:f1:16:32:ea: 6f:34:ef:83:d5:c6:80:3a:4c:fb:71:d1:f8:32:2f:0a:29:55: 14:d1:c7:2f:e2:c3:ca:ce:27:bb:65:14:bc:7a:bd:30:69:cd: 42:40:4d:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwNEUxMTAvBgNVBAUTKEFBRENEQjg5RTU0QjY3N0M0MTA0NjM3OTlGOTU4Njgx NUM0MEZBNEIwHhcNMjUwMzExMTEzNTQyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QwMjAwZS1iNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYl2FRu/58ru3/cspgX4ZQr+r/rHr2eEXYb2cTfKa9rOGxeLVgJ90vfwMI90 SiM+g9J11m4tIORG497YHuez7n3MrqKtbmWRORuqbXuzKwGWwjO+yXVOC8rHAdCh IqctW6BevZRinwcfXYXT8iBcZznHer0SgXHXkVXiybjeYmmmHsTRo/0IrA+UfVB8 jh5anZ0xpOk4q5tgtxCvGiiGVLLadix4HUbyb2eJv10sXIGi4DlQFgLH9bOIS8IS fk9rOLVtQ1+KTL095pPZ83VmtFQj4TqSBEJw8lw5SSw6FgwxH1xTl8Cgx/XZBj4T LQ5N2A8iCuZl6B882eFxLZqx7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBO9cFKS hit0zOzJHl76B0q1pWLnMB8GA1UdIwQYMBaAFKrc24nlS2d8QQRjeZ+VhoFcQPpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzA0RS8yMkU2ODUyNjUx MzIxMUVFOTY0Q0NGNUJDNEY5QUUwMi9xdHpiaWVWTFozeEJCR041bjVXR2dWeEEt a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0emJpZVZMWjN4QkJHTjVuNVdHZ1Z4QS1rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwNEUvMjJFNjg1MjY1MTMyMTFFRTk2NENDRjVCQzRGOUFFMDIvRjY5Njc3OEFG RTZDMTFFRjhERjVERDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB36wswDQYJKoZIhvcNAQELBQADggEBAFCyQJ8tzYK/XAlL UWrOQPQywtLWZm9txUzQ0YA3oOjsmb6MFTDM8U+EN6VD2GTueYB5q59t4JhJyZ60 DgkVPJYQMHLB2t9JMICGicRjn0vSOn2fzi1u4QG9rf0rDN8eXGxqMXt5zoJGu65V NpC9xIeAL/YsteB4eEvYbKwnTJ11ymvmZcPWMfKpeBzliZ2Ie3oLyR88f/pAL7Ju 0q8cCvMTdfkH+NHsAZbxKd8LOmT2znhwC8lTDn5W6pRk4xkkmhzVOgAmngvUiVBw gtk3oGrzvbxk8RYy6m8074PVxoA6TPtx0fgyLwopVRTRxy/iw8rOJ7tlFLx6vTBp zUJATSM= -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:31 2025 by rpki-client