$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa File: 833934745B9E11EFA7D10E5BC4F9AE02.roa (raw, json) Hash identifier: Z7ymI4gwgufBDRVS5UuVZ13UBlK2Svt1pgBpOJn+u0U= Subject key identifier: ED:B9:7E:06:DF:19:C7:32:72:C3:72:B4:FD:AE:0A:99:4D:A8:A9:72 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: 63 Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa Signing time: Sat 15 Feb 2025 08:28:22 +0000 ROA not before: Sat 15 Feb 2025 08:28:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.207.24.0/22 maxlen: 22 210.16.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511 Validity Not Before: Feb 15 08:28:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b05025-3b36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:ed:86:5b:52:32:6e:82:49:fc:d9:a0:2c: 91:29:8d:09:6f:b3:12:a8:b3:b0:92:9c:38:61:10: 98:70:16:d6:92:6a:52:2d:03:ac:79:e9:d3:ec:37: 8e:0b:fb:06:dc:71:55:dd:78:54:80:32:3c:89:fd: f0:be:42:93:79:59:95:10:07:ff:46:bd:4e:6b:bd: cf:dd:ef:99:05:a1:fa:c4:ba:c3:ad:33:b1:ea:86: c5:38:8c:a2:a4:d1:e2:6a:4d:df:9e:fc:86:7c:e8: a3:4d:16:f5:6d:88:4e:da:8e:cc:2a:e2:f1:1c:e9: 2c:b9:eb:4b:7d:66:af:59:a9:ba:42:29:02:a5:8d: 11:d0:0a:3b:20:a2:e0:79:53:82:11:d4:57:29:04: d2:4a:da:d2:30:2d:c4:b4:5b:36:59:f9:25:c6:57: dd:8c:a6:f4:33:8e:5f:ce:15:50:67:08:f2:80:8a: 34:91:32:69:b1:e5:b7:e2:c7:93:e9:a0:59:69:e0: 41:5c:89:ca:9e:fb:8a:06:20:25:74:e9:7c:61:d8: 6e:c0:47:f9:04:79:e5:ae:e3:d6:30:32:fb:75:a2: 95:0c:7b:f8:f7:99:09:5a:0d:1d:03:64:22:60:2d: 6c:49:58:98:64:44:be:68:52:a9:35:7b:85:66:11: fa:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B9:7E:06:DF:19:C7:32:72:C3:72:B4:FD:AE:0A:99:4D:A8:A9:72 X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.24.0/22 210.16.96.0/22 Signature Algorithm: sha256WithRSAEncryption 36:ba:9f:b4:9f:4e:05:27:71:e0:87:0f:d5:51:f0:69:06:64: 96:46:f3:e1:1c:ec:a5:a1:12:49:ca:5f:f0:19:7e:13:b9:db: b4:97:ac:22:94:35:2c:05:6c:d0:89:68:82:bb:6e:4a:1f:6a: bb:7b:6d:aa:1c:09:fa:56:4a:5c:53:68:d3:cc:cf:76:51:35: 5d:66:03:fe:33:a9:29:58:77:fd:ae:3e:56:a3:39:11:a8:64: a3:ac:26:d0:ae:9a:93:01:cf:87:0c:e6:a5:31:32:09:4d:f0: dd:df:da:38:eb:86:c3:19:d5:11:d0:83:52:84:19:69:e7:18: a5:11:33:96:49:c6:d3:f2:5a:30:c0:0c:84:99:34:b4:e8:1e: 4b:fa:11:e7:e2:cb:d2:3a:a9:7b:e4:00:ea:3d:fc:34:32:7b: c9:cb:54:a2:6e:01:99:fa:1c:a0:f6:63:e2:14:09:ed:32:d2: 01:dd:2c:9d:f0:ee:21:1e:a4:d3:02:73:cb:b7:bb:a7:1f:7d: f2:db:29:f8:dc:d2:a2:82:24:dd:49:f3:f3:7b:7b:67:f4:45: e3:5f:c3:2e:4e:f7:af:da:f7:1f:49:29:bd:31:0d:7a:e9:20: 56:f8:b2:80:67:c6:a9:82:9e:75:9b:3a:b8:0a:22:6f:13:da: 89:2e:c2:0f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUxMTExMC8GA1UEBRMoODI5QUQ4NTc1NzI1Njg3QjFGMEE0QzU1Rjk0MjJBRjMz QjAwRkNCMTAeFw0yNTAyMTUwODI4MjJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjA1MDI1LTNiMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Vu2GW1IyboJJ/NmgLJEpjQlvsxKos7CSnDhhEJhwFtaSalItA6x56dPsN44L +wbccVXdeFSAMjyJ/fC+QpN5WZUQB/9GvU5rvc/d75kFofrEusOtM7HqhsU4jKKk 0eJqTd+e/IZ86KNNFvVtiE7ajswq4vEc6Sy560t9Zq9ZqbpCKQKljRHQCjsgouB5 U4IR1FcpBNJK2tIwLcS0WzZZ+SXGV92MpvQzjl/OFVBnCPKAijSRMmmx5bfix5Pp oFlp4EFcicqe+4oGICV06Xxh2G7AR/kEeeWu49YwMvt1opUMe/j3mQlaDR0DZCJg LWxJWJhkRL5oUqk1e4VmEfrbAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU7bl+Bt8Z xzJyw3K0/a4KmU2oqXIwHwYDVR0jBBgwFoAUgprYV1claHsfCkxV+UIq8zsA/LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTExLzJEQ0ZGNjEyNUI5 RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9M RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3ByWVYxY2xhSHNmQ2t4Vi1VSXE4enNBX0xFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUxMS8yRENGRjYxMjVCOUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi84MzM5MzQ3NDVC OUUxMUVGQTdEMTBFNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfPGAMEAtIQYDANBgkqhkiG9w0BAQsFAAOCAQEANrqftJ9O BSdx4IcP1VHwaQZklkbz4RzspaESScpf8Bl+E7nbtJesIpQ1LAVs0IlogrtuSh9q u3ttqhwJ+lZKXFNo08zPdlE1XWYD/jOpKVh3/a4+VqM5Eahko6wm0K6akwHPhwzm pTEyCU3w3d/aOOuGwxnVEdCDUoQZaecYpREzlknG0/JaMMAMhJk0tOgeS/oR5+LL 0jqpe+QA6j38NDJ7yctUom4BmfocoPZj4hQJ7TLSAd0snfDuIR6k0wJzy7e7px99 8tsp+NzSooIk3Unz83t7Z/RF41/DLk73r9r3H0kpvTENeukgVviygGfGqYKedZs6 uAoibxPaiS7CDw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:44 2025 by rpki-client