$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa File: 0A3DB3DCD0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: p+z2UT/W5OYfrXw3co6VYs+yj2ELqUUcJwCs0uSGYiM= Subject key identifier: 42:56:1B:EF:37:A5:19:3A:AB:B7:C4:66:D1:25:4F:A7:2F:38:CF:41 Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 0808 Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa Signing time: Tue 18 Feb 2025 22:09:55 +0000 ROA not before: Tue 18 Feb 2025 22:09:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198381 IP address blocks: 103.255.128.0/24 maxlen: 24 103.255.129.0/24 maxlen: 24 103.255.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C Validity Not Before: Feb 18 22:09:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67b50532-9335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:aa:6b:44:60:30:6b:11:2a:29:be:bc:7a:b7: 12:8f:8f:55:0b:e9:2c:54:2c:3c:e9:c9:4d:38:ce: f4:80:f6:ef:d0:8b:4b:ef:bd:96:64:34:35:dd:76: a8:af:a4:0e:20:c0:0e:97:35:2f:c1:0c:6e:cd:32: b5:d1:59:5c:64:ce:57:0c:da:19:59:ae:26:c6:80: 5d:39:9e:7f:ce:d2:aa:91:bd:97:a8:37:8b:27:a5: 6f:10:d4:5a:42:17:3e:cf:ce:9e:c9:f9:4c:5a:27: 9a:af:31:01:50:03:ea:e9:5b:a0:b8:3b:3a:12:89: fc:02:e6:f2:64:a1:14:d5:5d:26:39:1f:f8:e1:b8: 28:c3:b3:1c:52:2a:76:db:15:a8:6e:42:0f:20:50: 58:7a:50:3f:0c:a3:b9:3a:ef:57:07:54:37:86:01: e2:2b:a9:4b:f1:02:20:ff:5b:9d:20:38:dd:65:60: c2:f3:05:d6:61:07:58:75:8d:e6:8d:dd:a6:c6:9e: 51:38:9f:21:95:06:20:bd:1f:e7:e7:56:01:80:d1: f0:8a:5f:bf:aa:4a:9b:eb:d0:e2:00:8a:ba:95:83: 92:dd:0c:0c:70:83:19:25:9a:86:01:4e:50:e5:08: 51:f2:1c:ff:e3:32:0a:b5:07:21:f2:68:2a:8e:97: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:56:1B:EF:37:A5:19:3A:AB:B7:C4:66:D1:25:4F:A7:2F:38:CF:41 X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.128.0-103.255.130.255 Signature Algorithm: sha256WithRSAEncryption 3a:14:3a:48:7d:9e:52:25:e4:33:87:e1:36:f3:88:f5:45:b7: 48:6e:22:2e:01:26:e9:fe:39:f8:82:c4:99:21:42:c7:50:73: 48:09:9d:30:39:56:90:81:72:c2:00:1b:6a:39:c4:9b:4e:c4: 4b:68:3e:b7:f3:fa:fa:00:02:74:8b:19:9d:8c:52:58:e4:c8: 73:c5:af:f1:a0:4c:d8:8d:56:aa:e1:93:59:1a:80:7e:ae:84: 76:b2:a0:12:3d:97:d8:a9:be:e8:11:db:18:dd:cc:5c:28:ce: b6:c0:e3:79:d2:e0:0e:f6:1a:7c:8e:92:6e:c9:c1:3f:18:73: 74:b8:a6:8e:ba:aa:85:44:9a:48:71:b1:70:4d:53:1b:b9:05: 88:9f:e9:58:4b:6a:61:a4:f6:3f:fc:e1:2e:4b:70:a0:b2:88: 29:fa:c1:39:b5:95:00:de:e0:d1:a9:07:ce:60:1d:4f:10:1e: 29:35:32:28:1f:11:5f:64:e1:ac:69:6f:ee:51:3a:2d:0c:90: 66:e4:d9:f8:87:a7:dd:13:01:83:33:c9:5d:50:33:39:f4:e9: 1b:55:4d:c3:13:29:96:89:04:d4:22:74:8c:d1:32:aa:1c:79: c2:03:e5:d8:4f:59:f1:56:45:01:55:2a:f2:32:a7:d9:64:cc: c6:cc:eb:5e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjUwMjE4MjIwOTU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1MDUzMi05MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qprRGAwaxEqKb68ercSj49VC+ksVCw86clNOM70gPbv0ItL772WZDQ13Xao r6QOIMAOlzUvwQxuzTK10VlcZM5XDNoZWa4mxoBdOZ5/ztKqkb2XqDeLJ6VvENRa Qhc+z86eyflMWiearzEBUAPq6VuguDs6Eon8AubyZKEU1V0mOR/44bgow7McUip2 2xWobkIPIFBYelA/DKO5Ou9XB1Q3hgHiK6lL8QIg/1udIDjdZWDC8wXWYQdYdY3m jd2mxp5ROJ8hlQYgvR/n51YBgNHwil+/qkqb69DiAIq6lYOS3QwMcIMZJZqGAU5Q 5QhR8hz/4zIKtQch8mgqjpehewIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEJWG+83 pRk6q7fEZtElT6cvOM9BMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEEzREIzRENE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB2f/gAMEAGf/gjANBgkqhkiG9w0BAQsFAAOCAQEAOhQ6 SH2eUiXkM4fhNvOI9UW3SG4iLgEm6f45+ILEmSFCx1BzSAmdMDlWkIFywgAbajnE m07ES2g+t/P6+gACdIsZnYxSWOTIc8Wv8aBM2I1WquGTWRqAfq6EdrKgEj2X2Km+ 6BHbGN3MXCjOtsDjedLgDvYafI6SbsnBPxhzdLimjrqqhUSaSHGxcE1TG7kFiJ/p WEtqYaT2P/zhLktwoLKIKfrBObWVAN7g0akHzmAdTxAeKTUyKB8RX2ThrGlv7lE6 LQyQZuTZ+Ien3RMBgzPJXVAzOfTpG1VNwxMplokE1CJ0jNEyqhx5wgPl2E9Z8VZF AVUq8jKn2WTMxszrXg== -----END CERTIFICATE-----Generated at Sat Apr 5 10:44:17 2025 by rpki-client