$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa File: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (raw, json) Hash identifier: y+1LcMZWVq0sxCzTaWENpdmxk9z32hroZYUL1UHWPKM= Subject key identifier: 53:57:84:4B:06:29:4F:AC:59:E4:BC:04:9E:1B:24:03:17:66:7F:0E Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0952 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa Signing time: Tue 20 May 2025 15:56:58 +0000 ROA not before: Tue 20 May 2025 15:56:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138077 IP address blocks: 61.29.241.0/24 maxlen: 24 61.29.249.0/24 maxlen: 24 103.216.100.0/24 maxlen: 24 103.216.101.0/24 maxlen: 24 157.119.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: May 20 15:56:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682ca649-f268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:c5:03:73:7c:2f:d4:e2:1d:35:18:11:34: 1a:ac:52:33:ba:3c:72:68:b9:a4:54:53:0e:a1:19: 2e:5c:f1:35:a6:04:6c:ad:7f:d1:26:90:df:a3:9d: 22:d0:ab:82:7c:8b:40:82:7f:31:b6:29:f3:d0:66: e5:a8:b4:0f:1e:25:9f:dd:f9:66:5e:f8:21:47:c9: 5b:4d:40:c8:7b:97:f5:2f:a5:33:7f:23:46:54:b8: 57:a1:62:94:78:af:06:61:0e:fc:3e:8c:03:19:6b: c1:bb:d8:be:1d:c8:32:76:7b:ea:c3:eb:a0:cb:6a: b4:87:df:3d:a1:ed:fd:c1:a3:26:dc:40:59:c5:2b: 89:4b:73:65:b5:5c:ec:a7:eb:ed:34:b1:6a:91:eb: 49:5d:7f:ed:17:67:43:32:92:58:0c:93:f3:94:c3: cf:f1:24:93:a7:b9:aa:d0:c4:b9:e6:68:30:6e:41: 40:a6:e5:c2:07:94:b8:4b:0e:b4:24:2e:e7:ff:59: 04:f1:00:77:89:35:a7:e2:6c:51:83:fb:b0:33:d3: dc:12:67:ab:f4:2d:3e:10:87:01:07:44:61:51:ef: 5d:43:b0:db:cd:c5:05:62:cb:4a:ae:87:1b:8e:56: f0:79:bc:99:99:59:d3:54:a4:2b:b0:78:a3:68:37: b7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:57:84:4B:06:29:4F:AC:59:E4:BC:04:9E:1B:24:03:17:66:7F:0E X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.29.241.0/24 61.29.249.0/24 103.216.100.0/23 157.119.235.0/24 Signature Algorithm: sha256WithRSAEncryption 94:19:36:f4:45:50:1c:e9:4c:84:26:c0:23:ac:29:48:a1:1f: 6c:85:55:5f:70:23:72:d5:91:a2:e3:bc:a6:28:d4:3c:4a:73: 95:4a:7d:6c:24:d6:ab:4b:d1:05:1a:c8:7b:11:1e:c3:d0:41: 1f:d3:0e:ec:17:9c:8f:f1:a7:60:d3:79:e6:fa:29:9b:83:10: d9:36:b7:e4:58:86:78:0d:37:d7:49:87:7a:92:1e:80:6b:df: e9:3f:42:77:b0:75:a3:a9:33:e0:ff:a7:5f:a6:df:f0:12:9e: 7a:48:3c:b8:ed:ea:b5:1e:68:15:00:50:33:26:df:7d:6f:01: e1:8a:6f:f7:9c:7e:16:84:c8:ca:72:38:19:b8:8c:0e:4b:e6: 16:54:70:98:c6:65:2a:8e:51:5d:c3:7a:6a:45:46:16:0f:a2: 0d:e8:86:e0:6a:04:de:b5:85:95:c4:22:84:79:2a:76:2b:c3: 0b:bd:1b:63:4f:0e:65:34:dc:5d:31:32:cd:41:8a:34:9f:84: ea:6a:d7:18:f5:17:90:03:b6:29:ed:40:ff:5b:0c:97:80:0b: 55:80:dd:82:83:5f:d0:0c:2c:4d:99:f1:16:e3:60:8e:ce:c8: 22:9b:68:60:bf:ea:e8:7d:27:74:e4:21:3d:df:eb:a1:38:07: d9:cf:0e:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUwNTIwMTU1NjU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYTY0OS1mMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuHFA3N8L9TiHTUYETQarFIzujxyaLmkVFMOoRkuXPE1pgRsrX/RJpDfo50i 0KuCfItAgn8xtinz0GblqLQPHiWf3flmXvghR8lbTUDIe5f1L6UzfyNGVLhXoWKU eK8GYQ78PowDGWvBu9i+Hcgydnvqw+ugy2q0h989oe39waMm3EBZxSuJS3NltVzs p+vtNLFqketJXX/tF2dDMpJYDJPzlMPP8SSTp7mq0MS55mgwbkFApuXCB5S4Sw60 JC7n/1kE8QB3iTWn4mxRg/uwM9PcEmer9C0+EIcBB0RhUe9dQ7DbzcUFYstKrocb jlbwebyZmVnTVKQrsHijaDe3ewIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFNXhEsG KU+sWeS8BJ4bJAMXZn8OMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvMkUxOEVCMTA1 RDBDMTFFRTg3M0IxQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA9HfEDBAA9HfkDBAFn2GQDBACdd+swDQYJKoZIhvcNAQEL BQADggEBAJQZNvRFUBzpTIQmwCOsKUihH2yFVV9wI3LVkaLjvKYo1DxKc5VKfWwk 1qtL0QUayHsRHsPQQR/TDuwXnI/xp2DTeeb6KZuDENk2t+RYhngNN9dJh3qSHoBr 3+k/QnewdaOpM+D/p1+m3/ASnnpIPLjt6rUeaBUAUDMm331vAeGKb/ecfhaEyMpy OBm4jA5L5hZUcJjGZSqOUV3DempFRhYPog3ohuBqBN61hZXEIoR5KnYrwwu9G2NP DmU03F0xMs1BijSfhOpq1xj1F5ADtintQP9bDJeAC1WA3YKDX9AMLE2Z8RbjYI7O yCKbaGC/6uh9J3TkIT3f66E4B9nPDp4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:53 2025 by rpki-client