$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa File: 1043B2347BBD11EA8356C986C4F9AE02.roa (raw, json) Hash identifier: 6YSal0k37yOUJLUbfkiKR/DSeI3K/4jgwnlzNntMzvg= Subject key identifier: 47:B5:67:8C:F7:7C:5D:20:65:21:E2:58:98:50:40:AE:32:90:18:C5 Certificate issuer: /CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Certificate serial: 0A1C Authority key identifier: 8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa Signing time: Thu 22 May 2025 20:05:52 +0000 ROA not before: Thu 22 May 2025 20:05:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137580 IP address blocks: 103.114.24.0/24 maxlen: 24 103.114.25.0/24 maxlen: 24 103.114.26.0/24 maxlen: 24 103.114.27.0/24 maxlen: 24 2407:44c0::/32 maxlen: 32 2407:44c0::/40 maxlen: 40 2407:44c0:1::/48 maxlen: 48 2407:44c0:8000::/48 maxlen: 48 2407:44c0:8001::/48 maxlen: 48 2407:44c0:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C51, serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Validity Not Before: May 22 20:05:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f83a0-e81d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3f:98:29:d7:58:bf:67:ab:5f:87:d3:d5:bc: 7c:4c:a8:4d:f0:d6:cf:70:d8:1f:65:b0:de:f8:ba: b7:2f:67:67:e3:56:37:92:bf:47:b3:36:56:c0:ea: 0d:2d:35:b7:1a:b2:0e:ca:e3:ea:db:22:52:5d:d4: 54:9a:38:b1:3b:c6:56:b0:95:d5:c0:65:d4:28:77: 37:da:86:d5:30:41:62:a8:9a:b7:8b:24:74:5d:b8: bb:bd:bc:b4:c6:ff:fb:3b:5c:96:42:0c:aa:26:31: c4:35:76:5c:6a:b6:77:77:5d:6c:44:95:a5:11:7b: 95:4d:c8:37:b2:db:88:ad:ca:a3:ce:d1:aa:0e:8f: 89:5e:c1:5e:ff:f6:09:6f:ad:56:a4:3a:08:7b:53: f5:9c:de:bc:28:49:69:40:4e:b5:14:8f:23:d8:8b: e6:1c:71:b4:2a:56:76:b9:b7:e1:48:6e:57:46:5f: e6:f9:34:29:2b:8f:22:dd:95:4a:4e:2f:b6:97:95: 0e:8c:fc:09:53:99:bf:e7:5e:70:eb:10:48:5e:9b: b0:20:4e:f4:e4:5b:6d:61:f8:27:ea:f9:5f:48:2d: ed:a9:4f:5a:51:3d:7c:42:dd:4f:80:7c:83:63:37: 6e:53:f8:b4:90:33:4b:b0:c4:30:d7:3f:46:4a:5c: b7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B5:67:8C:F7:7C:5D:20:65:21:E2:58:98:50:40:AE:32:90:18:C5 X509v3 Authority Key Identifier: keyid:8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.24.0/22 IPv6: 2407:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:76:9d:d3:bf:3a:5c:0c:93:1b:ae:a1:77:be:ae:04:27:c2: 68:00:68:5f:e6:f8:3e:b6:82:d8:45:ca:d6:73:c7:3d:b9:de: c6:2c:65:75:39:c9:f2:d6:fc:51:73:89:8e:3d:8f:0c:9c:d1: ed:e9:57:7c:75:79:e9:d2:9d:24:dc:63:20:f6:06:35:59:8e: 16:c8:96:6c:e4:84:de:67:d5:09:cb:cd:d2:df:dc:02:74:01: 72:f9:0a:be:54:9c:ef:f8:37:1e:23:a4:1b:df:bf:2b:db:4e: 79:92:7e:c6:2f:c2:a8:51:b4:78:84:86:84:e4:86:b6:ea:ec: 88:3f:b6:c4:51:53:8a:b6:30:67:c4:a6:89:09:90:dd:c8:3a: f9:6a:98:1d:a8:b2:7e:eb:ad:48:05:b9:5e:dd:b2:77:65:b1: 3f:6a:62:43:de:4b:83:62:ff:05:6c:e6:62:91:72:f0:59:2d: 4a:93:f2:e1:74:09:9c:64:d9:ad:66:10:fd:c1:ab:7d:c3:89: 08:39:9c:ca:22:01:42:cf:67:96:1f:47:c0:2f:97:4c:0b:f6: b7:93:f6:4b:be:88:b6:11:19:76:81:55:41:fa:ad:5c:d8:98: b3:bf:5d:1e:b0:65:d3:df:2d:07:d3:5c:3d:96:83:fd:1e:85: 27:3b:d3:96 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDNTExMTAvBgNVBAUTKDhEN0UzMDU4MzUwQkI4REZFRkZDRTc3NzBCQkM4Qzg2 Qjc2MkExRTQwHhcNMjUwNTIyMjAwNTUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODNhMC1lODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5D+YKddYv2erX4fT1bx8TKhN8NbPcNgfZbDe+Lq3L2dn41Y3kr9HszZWwOoN LTW3GrIOyuPq2yJSXdRUmjixO8ZWsJXVwGXUKHc32obVMEFiqJq3iyR0Xbi7vby0 xv/7O1yWQgyqJjHENXZcarZ3d11sRJWlEXuVTcg3stuIrcqjztGqDo+JXsFe//YJ b61WpDoIe1P1nN68KElpQE61FI8j2IvmHHG0KlZ2ubfhSG5XRl/m+TQpK48i3ZVK Ti+2l5UOjPwJU5m/515w6xBIXpuwIE705FttYfgn6vlfSC3tqU9aUT18Qt1PgHyD YzduU/i0kDNLsMQw1z9GSly3SwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEe1Z4z3 fF0gZSHiWJhQQK4ykBjFMB8GA1UdIwQYMBaAFI1+MFg1C7jf7/zndwu8jIa3YqHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM1MS80NzZBN0JFMDdC QkMxMUVBOTYzRjM2ODZDNEY5QUUwMi9qWDR3V0RVTHVOX3ZfT2QzQzd5TWhyZGlv ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pYNHdXRFVMdU5fdl9PZDNDN3lNaHJkaW9lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDNTEvNDc2QTdCRTA3QkJDMTFFQTk2M0YzNjg2QzRGOUFFMDIvMTA0M0IyMzQ3 QkJEMTFFQTgzNTZDOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnchgwDQQCAAIwBwMFACQHRMAwDQYJKoZIhvcNAQELBQAD ggEBADt2ndO/OlwMkxuuoXe+rgQnwmgAaF/m+D62gthFytZzxz253sYsZXU5yfLW /FFziY49jwyc0e3pV3x1eenSnSTcYyD2BjVZjhbIlmzkhN5n1QnLzdLf3AJ0AXL5 Cr5UnO/4Nx4jpBvfvyvbTnmSfsYvwqhRtHiEhoTkhrbq7Ig/tsRRU4q2MGfEpokJ kN3IOvlqmB2osn7rrUgFuV7dsndlsT9qYkPeS4Ni/wVs5mKRcvBZLUqT8uF0CZxk 2a1mEP3Bq33DiQg5nMoiAULPZ5YfR8Avl0wL9reT9ku+iLYRGXaBVUH6rVzYmLO/ XR6wZdPfLQfTXD2Wg/0ehSc705Y= -----END CERTIFICATE-----Generated at Mon Jun 2 07:17:56 2025 by rpki-client