$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa File: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (raw, json) Hash identifier: 4d2KlklIZM7tVEP8ubOJA37PmKcvU69K0Aouv/dc9Vg= Subject key identifier: 4B:20:8F:B4:E2:7C:6E:BE:2D:33:E4:FD:55:31:2B:B4:61:1D:E6:67 Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01BA Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa Signing time: Wed 28 May 2025 17:25:44 +0000 ROA not before: Wed 28 May 2025 17:25:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141393 IP address blocks: 103.84.58.0/24 maxlen: 24 103.84.59.0/24 maxlen: 24 2001:df1:f040::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: May 28 17:25:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68374718-105f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6a:20:df:04:84:27:d6:7b:d0:df:ed:4f:be: e0:02:d5:c0:58:bc:a4:c0:35:81:41:cf:f4:56:9f: d4:5b:67:38:a2:6a:4b:66:5b:26:ed:dd:8d:c2:78: 30:71:8d:00:19:70:ae:19:7c:c7:a6:3a:62:e9:08: 8f:bd:0c:73:b2:f9:63:82:db:6c:11:07:e2:83:c9: 1f:f2:57:d6:8b:78:8f:ec:4c:6a:6b:9d:37:26:45: 79:29:2d:d1:0b:2c:20:4c:33:88:4a:20:6f:3b:81: 73:53:6e:53:42:82:92:16:72:49:83:be:a5:9e:8e: ad:51:38:9d:a7:3b:aa:5f:39:ca:6f:59:39:46:2b: c2:81:2d:5d:e9:26:60:88:63:24:49:a5:1b:3d:a7: 5a:75:d5:2e:00:83:67:c4:87:57:39:8d:da:09:67: 84:f9:9b:9f:4a:9b:5a:17:14:19:38:38:ae:8d:44: 66:3e:c5:2a:04:df:6a:fa:30:0b:b7:f9:e4:a4:89: 35:18:9b:7c:9f:e6:82:58:45:1e:51:ee:5f:af:c0: 33:4d:4c:20:25:f7:77:e1:3a:8f:47:3f:d5:59:98: 53:48:c3:83:67:d6:72:c5:ee:d5:1d:ae:2f:bf:d4: d5:28:b1:d2:dc:b4:be:d6:87:9a:9e:83:c1:ba:3b: 0c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:20:8F:B4:E2:7C:6E:BE:2D:33:E4:FD:55:31:2B:B4:61:1D:E6:67 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.58.0/23 IPv6: 2001:df1:f040::/48 Signature Algorithm: sha256WithRSAEncryption 92:c6:b8:8e:36:89:33:3d:ee:93:c5:82:1d:7d:8f:a0:b6:46: e0:9f:e8:7a:77:c9:85:b1:15:1c:73:35:d4:dd:13:5c:7d:ed: 2b:a0:9f:f1:12:da:38:d6:98:a7:b6:55:3a:90:3c:ab:10:a7: e1:bf:3b:8b:d5:37:a9:13:fe:b7:9b:46:4b:ec:b9:4c:3c:2e: 6a:ba:bd:06:6a:7b:e7:6c:0c:dc:5a:ff:f5:fa:47:64:74:82: 80:f0:96:9d:97:02:9e:17:8e:1e:ab:50:39:de:79:b8:fe:e1: 94:c7:21:f0:4f:2e:d0:83:e8:a9:5f:f8:0e:26:f4:9f:57:b2: a3:f7:fb:ae:fc:9b:1c:ed:bb:51:fb:39:7b:4a:bb:39:cb:ac: 39:ee:07:84:61:27:c6:1c:97:fc:57:27:1f:90:1f:f5:d1:37: 43:28:5b:b1:df:28:55:3e:c7:5a:03:98:85:a2:f5:93:cd:d3: c9:75:56:31:84:a4:ac:34:e9:e3:c4:b3:99:79:e2:a2:5d:5c: d6:a5:03:3d:d3:e8:ea:70:2f:d0:f5:23:7c:88:6f:15:28:a6: a3:29:9a:99:ed:97:91:73:50:6b:10:8b:3e:33:cc:4b:41:4b: 1e:83:34:b6:58:78:a8:ad:43:4c:c7:88:f3:e8:e0:13:d2:d9: 82:10:b9:cc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwNTI4MTcyNTQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM3NDcxOC0xMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmog3wSEJ9Z70N/tT77gAtXAWLykwDWBQc/0Vp/UW2c4ompLZlsm7d2Nwngw cY0AGXCuGXzHpjpi6QiPvQxzsvljgttsEQfig8kf8lfWi3iP7Exqa503JkV5KS3R CywgTDOISiBvO4FzU25TQoKSFnJJg76lno6tUTidpzuqXznKb1k5RivCgS1d6SZg iGMkSaUbPadaddUuAINnxIdXOY3aCWeE+ZufSptaFxQZODiujURmPsUqBN9q+jAL t/nkpIk1GJt8n+aCWEUeUe5fr8AzTUwgJfd34TqPRz/VWZhTSMODZ9Zyxe7VHa4v v9TVKLHS3LS+1oeanoPBujsMxwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEsgj7Ti fG6+LTPk/VUxK7RhHeZnMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIzMTAvM0VCRDE3QzJBRDEwMTFFRDg1NEEzRTFEQzRGOUFFMDIvRjJBOUQ0QkFD MzYyMTFFRDlENzlFRDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnVDowDwQCAAIwCQMHACABDfHwQDANBgkqhkiG9w0BAQsF AAOCAQEAksa4jjaJMz3uk8WCHX2PoLZG4J/oenfJhbEVHHM11N0TXH3tK6Cf8RLa ONaYp7ZVOpA8qxCn4b87i9U3qRP+t5tGS+y5TDwuarq9Bmp752wM3Fr/9fpHZHSC gPCWnZcCnheOHqtQOd55uP7hlMch8E8u0IPoqV/4Dib0n1eyo/f7rvybHO27Ufs5 e0q7OcusOe4HhGEnxhyX/FcnH5Af9dE3Qyhbsd8oVT7HWgOYhaL1k83TyXVWMYSk rDTp48SzmXniol1c1qUDPdPo6nAv0PUjfIhvFSimoymame2XkXNQaxCLPjPMS0FL HoM0tlh4qK1DTMeI8+jgE9LZghC5zA== -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:29 2025 by rpki-client