$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa File: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (raw, json) Hash identifier: NYdc2f4yDizOBPmg8EBE/rQVPUKcax5Hh13GoWVtgRo= Subject key identifier: 00:CE:6A:FF:A2:31:25:AF:68:F2:72:DE:1E:EA:8C:2B:6D:17:F2:25 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 0A24 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa Signing time: Fri 16 May 2025 20:28:54 +0000 ROA not before: Fri 16 May 2025 20:28:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140502 IP address blocks: 103.150.6.0/23 maxlen: 23 103.150.6.0/24 maxlen: 24 103.150.7.0/24 maxlen: 24 2001:df3:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB, serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 16 20:28:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6827a006-9511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:64:d8:61:42:d8:37:54:7f:22:ae:cb:96:48: 56:b5:d9:a5:17:06:39:11:ea:cd:11:8f:31:e8:59: 13:ac:57:bf:e5:58:3d:29:06:52:c6:73:2f:bb:c7: 41:c2:15:76:83:1a:cd:d6:7a:f1:93:27:ee:30:a8: b5:5c:90:01:97:a4:71:33:65:b6:4f:77:d9:04:da: c7:f9:36:ca:72:d3:a8:ce:a3:0f:51:70:e8:59:1b: 9a:3f:5f:98:67:9a:5d:0a:37:71:d5:d4:92:6b:81: f7:7f:70:9e:e1:ab:f8:a5:65:a0:32:f7:ea:70:eb: 67:4a:9a:c6:c5:90:74:a2:36:69:07:39:3b:cd:a0: 92:88:c2:4a:42:20:d5:e7:d5:bc:50:51:7e:40:f3: 85:0b:c7:36:fc:75:21:34:7d:2b:42:82:9e:25:2c: 70:dc:55:b1:2e:8b:fc:93:51:b0:2f:7f:cb:90:02: 62:9d:e0:75:60:28:d4:2c:88:9c:c1:a2:6a:5a:9e: 3e:e2:c1:c3:11:a4:99:6d:f5:05:b0:51:d5:f8:78: 8e:2b:2a:1e:c8:08:49:60:55:b7:5c:e8:1a:0a:e2: 6c:05:47:a5:f4:cd:78:c0:17:57:91:69:2a:0a:fc: 84:4a:2f:b1:5f:96:9a:75:79:a1:df:6d:31:b6:e5: 40:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CE:6A:FF:A2:31:25:AF:68:F2:72:DE:1E:EA:8C:2B:6D:17:F2:25 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/4A074A90E19511EC8AD57C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.6.0/23 IPv6: 2001:df3:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 26:7c:08:0b:3c:38:79:9d:38:c3:6b:41:d2:a4:33:49:45:24: 3d:9b:54:a4:d7:21:c4:c2:62:e3:0e:df:dc:53:a2:8a:28:69: 05:88:eb:22:e4:3f:b4:91:ff:2b:07:ad:1e:9d:41:0f:85:08: 32:07:45:df:23:41:d1:fc:81:28:51:72:84:f9:41:6a:90:3d: 11:ef:c2:2b:18:0f:b9:da:59:c9:9b:9b:07:71:f5:4f:39:1c: 82:42:46:19:f2:ee:76:31:fa:61:c5:e9:00:f5:db:0d:64:1a: 42:fd:48:f9:2a:86:9a:d3:fa:15:b6:1a:92:85:66:2b:f3:8c: c8:41:b6:da:f3:fe:89:94:bb:86:49:bb:a9:44:4f:05:47:e3: fc:95:de:5e:73:a2:ec:f4:e9:8e:55:c7:de:d1:46:4d:42:0b: 4e:7b:92:7e:3d:bb:7b:1e:5e:52:ab:d2:74:49:a4:c8:66:67: 72:c2:49:3d:0b:e6:1e:58:a6:9e:bd:6b:08:90:93:16:9a:97: ab:3a:b7:7c:27:8f:a4:fd:62:3d:d1:38:b0:d4:93:b7:06:0a: be:5e:38:5e:b0:fc:3c:13:a0:dd:3b:95:59:0a:75:0e:0f:74: 3b:8e:e9:a0:4a:15:d4:be:25:45:fe:20:5f:ab:9c:18:4f:7d: 9b:57:2a:d2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjUwNTE2MjAyODU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3YTAwNi05NTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA82TYYULYN1R/Iq7LlkhWtdmlFwY5EerNEY8x6FkTrFe/5Vg9KQZSxnMvu8dB whV2gxrN1nrxkyfuMKi1XJABl6RxM2W2T3fZBNrH+TbKctOozqMPUXDoWRuaP1+Y Z5pdCjdx1dSSa4H3f3Ce4av4pWWgMvfqcOtnSprGxZB0ojZpBzk7zaCSiMJKQiDV 59W8UFF+QPOFC8c2/HUhNH0rQoKeJSxw3FWxLov8k1GwL3/LkAJineB1YCjULIic waJqWp4+4sHDEaSZbfUFsFHV+HiOKyoeyAhJYFW3XOgaCuJsBUel9M14wBdXkWkq CvyESi+xX5aadXmh320xtuVACwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFADOav+i MSWvaPJy3h7qjCttF/IlMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI3RUIvNzkxRjRFNzY3M0UzMTFFQUJBN0E4ODZFQzRGOUFFMDIvNEEwNzRBOTBF MTk1MTFFQzhBRDU3QzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlgYwDwQCAAIwCQMHACABDfNMgDANBgkqhkiG9w0BAQsF AAOCAQEAJnwICzw4eZ04w2tB0qQzSUUkPZtUpNchxMJi4w7f3FOiiihpBYjrIuQ/ tJH/KwetHp1BD4UIMgdF3yNB0fyBKFFyhPlBapA9Ee/CKxgPudpZyZubB3H1Tzkc gkJGGfLudjH6YcXpAPXbDWQaQv1I+SqGmtP6FbYakoVmK/OMyEG22vP+iZS7hkm7 qURPBUfj/JXeXnOi7PTpjlXH3tFGTUILTnuSfj27ex5eUqvSdEmkyGZncsJJPQvm Hlimnr1rCJCTFpqXqzq3fCePpP1iPdE4sNSTtwYKvl44XrD8PBOg3TuVWQp1Dg90 O47poEoV1L4lRf4gX6ucGE99m1cq0g== -----END CERTIFICATE-----Generated at Mon Jun 2 05:16:55 2025 by rpki-client