$ rpki-client -vvf rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa File: 274C6AEA11F811EFAE75044FC4F9AE02.roa (raw, json) Hash identifier: jYT3h3nuK8EuInDGgHZ314Lk8EIylHxKqFUTo50wOF8= Subject key identifier: F5:1D:2D:A8:76:62:CB:53:46:19:F1:F7:BF:E5:19:D8:5B:8B:B9:6D Certificate issuer: /CN=A911B6FB/serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Certificate serial: CA Authority key identifier: AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa Signing time: Tue 03 Jun 2025 06:04:59 +0000 ROA not before: Tue 03 Jun 2025 06:04:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152479 IP address blocks: 103.158.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B6FB, serialNumber=AD234E3F1EBBADAD019FE09AFFF70E8075AFDE17 Validity Not Before: Jun 3 06:04:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e908b-3e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f8:5d:8f:d4:a6:d3:6b:17:72:8c:91:60:de: 1c:79:1b:97:11:b1:51:10:11:76:54:ee:db:a6:fa: 4a:70:b1:99:f0:d7:c6:a6:8a:05:69:c0:9d:e8:98: bb:80:8d:8d:41:18:0c:2c:b7:0e:f1:76:30:af:c1: c4:c6:32:b2:71:98:d2:c1:75:d9:fb:a4:30:97:d0: de:5c:b1:55:f9:75:33:ac:4f:f7:c4:54:4e:ed:dc: 5b:cc:e5:2a:29:81:1c:21:b3:6e:5e:3e:59:81:14: 9f:1e:9e:6d:34:6d:08:a1:c0:84:ee:bc:6b:6c:42: 63:76:4a:65:b2:2a:3b:88:2a:37:70:fd:c8:20:7f: 84:26:13:09:fe:9d:9e:7a:37:c2:64:5d:c6:d9:3f: 2a:15:bb:1f:d5:74:59:80:2b:e9:2e:98:f7:8c:81: 50:cb:dd:46:5a:74:1a:85:ec:8c:e6:19:f3:d7:27: 20:cf:21:2b:2f:c3:94:81:69:2a:ef:c2:13:55:e9: 21:95:a0:e0:60:9e:b1:a9:f0:66:b2:96:ca:09:4b: d1:25:1f:f6:47:d4:a7:af:3e:83:13:d1:5c:5c:e2: 65:c1:c6:99:86:4b:10:8e:a9:ab:31:24:34:ea:6a: c3:ff:ba:aa:45:ca:f8:c2:6e:d4:35:af:9e:8c:9c: 54:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1D:2D:A8:76:62:CB:53:46:19:F1:F7:BF:E5:19:D8:5B:8B:B9:6D X509v3 Authority Key Identifier: keyid:AD:23:4E:3F:1E:BB:AD:AD:01:9F:E0:9A:FF:F7:0E:80:75:AF:DE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/rSNOPx67ra0Bn-Ca__cOgHWv3hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSNOPx67ra0Bn-Ca__cOgHWv3hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B6FB/D9CC9EDE11F711EF93BD944EC4F9AE02/274C6AEA11F811EFAE75044FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.118.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:c4:63:73:61:11:41:6f:cd:43:8b:a3:49:56:e3:50:a2:56: 24:73:72:bb:11:b6:16:67:d5:d9:e4:55:bd:46:bc:1f:eb:ea: 48:b3:fa:10:ae:05:ba:d0:fe:19:43:d4:40:ef:4b:8b:6f:b2: 27:72:61:19:dd:7a:51:60:64:f3:6d:05:de:e1:45:54:8f:f5: bb:e8:f6:70:be:57:13:96:71:0b:74:1b:e0:35:97:18:69:33: 65:91:dc:c5:48:8c:6e:7b:e3:78:a4:12:8f:64:50:67:bf:71: 4c:2a:d8:99:b2:b7:66:fa:6d:27:1c:bb:42:2b:dd:c1:bd:b9: 7a:4c:a4:f3:6d:92:0e:82:fd:7a:db:38:1b:a1:e1:8c:63:51: 51:ab:13:c9:f0:5b:8b:d0:70:76:ea:1e:05:dc:3a:95:41:c2: 5a:d3:23:52:cd:59:dc:7c:1e:d8:0f:21:0e:eb:ee:ef:14:26: f6:b8:f2:6f:ed:c6:0c:45:87:c8:cf:75:db:3d:b7:6a:d6:a2: 39:84:a1:e4:ac:06:b9:d1:c4:c1:18:5d:18:78:72:c6:9f:8b: 2e:27:54:92:ad:51:f7:09:29:19:eb:46:4d:90:59:64:b9:48: 6e:28:14:9a:d7:84:d9:32:00:93:88:9b:7a:84:32:54:e7:66: ed:c9:68:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI2RkIxMTAvBgNVBAUTKEFEMjM0RTNGMUVCQkFEQUQwMTlGRTA5QUZGRjcwRTgw NzVBRkRFMTcwHhcNMjUwNjAzMDYwNDU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlOTA4Yi0zZTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfhdj9Sm02sXcoyRYN4ceRuXEbFREBF2VO7bpvpKcLGZ8NfGpooFacCd6Ji7 gI2NQRgMLLcO8XYwr8HExjKycZjSwXXZ+6Qwl9DeXLFV+XUzrE/3xFRO7dxbzOUq KYEcIbNuXj5ZgRSfHp5tNG0IocCE7rxrbEJjdkplsio7iCo3cP3IIH+EJhMJ/p2e ejfCZF3G2T8qFbsf1XRZgCvpLpj3jIFQy91GWnQaheyM5hnz1ycgzyErL8OUgWkq 78ITVekhlaDgYJ6xqfBmspbKCUvRJR/2R9Snrz6DE9FcXOJlwcaZhksQjqmrMSQ0 6mrD/7qqRcr4wm7UNa+ejJxU2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPUdLah2 YstTRhnx97/lGdhbi7ltMB8GA1UdIwQYMBaAFK0jTj8eu62tAZ/gmv/3DoB1r94X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjZGQi9EOUNDOUVERTEx RjcxMUVGOTNCRDk0NEVDNEY5QUUwMi9yU05PUHg2N3JhMEJuLUNhX19jT2dIV3Yz aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTTk9QeDY3cmEwQm4tQ2FfX2NPZ0hXdjNoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI2RkIvRDlDQzlFREUxMUY3MTFFRjkzQkQ5NDRFQzRGOUFFMDIvMjc0QzZBRUEx MUY4MTFFRkFFNzUwNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnnYwDQYJKoZIhvcNAQELBQADggEBAB7EY3NhEUFvzUOL o0lW41CiViRzcrsRthZn1dnkVb1GvB/r6kiz+hCuBbrQ/hlD1EDvS4tvsidyYRnd elFgZPNtBd7hRVSP9bvo9nC+VxOWcQt0G+A1lxhpM2WR3MVIjG5743ikEo9kUGe/ cUwq2Jmyt2b6bSccu0Ir3cG9uXpMpPNtkg6C/XrbOBuh4YxjUVGrE8nwW4vQcHbq HgXcOpVBwlrTI1LNWdx8HtgPIQ7r7u8UJva48m/txgxFh8jPdds9t2rWojmEoeSs BrnRxMEYXRh4csafiy4nVJKtUfcJKRnrRk2QWWS5SG4oFJrXhNkyAJOIm3qEMlTn Zu3JaAQ= -----END CERTIFICATE-----Generated at Wed Jun 4 00:06:55 2025 by rpki-client