$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa File: 627B1438281211EA881CC32DC4F9AE02.roa (raw, json) Hash identifier: uO9dKN19ATuVxFqwADIfuDOdZhJHHOsW2uFtJZD9uM4= Subject key identifier: 96:59:39:43:B5:11:99:1E:78:BE:58:81:9E:39:46:E7:5B:DE:5A:BC Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0BE3 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa Signing time: Tue 20 May 2025 19:14:29 +0000 ROA not before: Tue 20 May 2025 19:14:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 20 19:14:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682cd495-1e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1e:19:25:5a:5e:af:3c:f6:fd:0c:06:82:ca: 26:7d:52:82:4d:e7:7d:10:ef:a3:5c:f2:1a:e6:78: 94:e7:84:91:82:d7:34:78:29:c7:90:07:85:a0:9e: 8b:67:76:fe:d3:83:cc:8e:74:f7:cb:11:71:1e:45: 4b:23:8f:b5:b5:a1:b2:78:91:bd:cf:56:c8:b4:c0: b4:b2:b5:91:8d:be:e0:23:61:0e:57:54:76:5a:6b: 45:8e:01:ae:2c:f4:fa:4a:b8:2d:49:d8:f9:7e:0f: 31:22:19:0d:49:10:8b:d3:74:f3:94:90:b2:57:cc: 9b:de:5b:49:75:c4:c8:fe:f9:01:7d:ec:1e:b5:8d: 3a:72:7f:6f:28:e6:ed:e2:e0:ca:62:8b:5a:76:7c: 6b:8d:1e:85:a8:67:00:2b:e7:35:ed:5c:cd:9e:af: ca:88:68:f5:ad:b9:d6:96:b2:82:c9:ff:cd:c4:8e: d5:2b:9a:00:bf:8f:86:ed:63:36:3b:e1:bc:ad:89: 3b:ba:db:61:16:2f:21:41:7f:82:a2:f2:ed:b5:1a: b5:7e:b4:51:56:21:54:df:78:1f:6e:cc:21:65:ff: bc:23:89:f3:d4:cd:f8:2a:13:b2:c0:92:67:f3:e8: 61:20:27:1a:de:59:24:4d:68:c9:24:bf:e5:42:0d: 20:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:59:39:43:B5:11:99:1E:78:BE:58:81:9E:39:46:E7:5B:DE:5A:BC X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption c8:a3:0f:11:78:2d:0c:2e:ed:60:69:c7:95:67:ad:f2:54:e4: 36:33:b9:01:67:5f:40:ad:a1:7d:e4:36:d9:02:f3:28:da:1d: c5:c3:01:12:d0:c9:ef:36:20:4b:0e:b3:0e:31:37:a2:8b:63: 5e:16:01:8b:f6:95:49:9e:83:4b:5b:c6:3b:4f:6a:22:52:e2: 53:28:5d:e5:03:5d:8b:3d:54:b1:37:b7:d5:6b:29:a7:35:8d: 98:3e:1f:d0:9c:92:3d:1e:a7:39:72:5f:76:d1:df:bb:43:12: da:47:c7:f5:50:73:1c:aa:87:6b:e4:b0:6e:ea:8e:08:33:fa: 5c:22:95:49:c5:4e:b8:ac:5f:5f:d8:54:96:33:c3:6e:90:1f: f9:a8:a6:27:49:e6:06:43:64:5c:3b:7a:dd:0f:08:02:ad:a4: 48:cf:f4:9c:00:ac:27:dd:a6:2e:d5:ee:e8:67:28:d1:7f:5a: b0:ce:89:07:f9:cf:ee:ca:48:74:74:82:0d:bc:04:d3:76:d5: ef:e4:fd:7c:e3:33:28:c8:28:3d:6f:e3:c2:28:06:aa:6a:67: 85:ac:a9:1f:33:70:70:68:64:c0:48:fd:08:30:85:6f:79:5d: 4e:4d:91:8f:7d:ba:63:97:a2:3b:f2:26:03:7c:50:12:da:2a: 05:9c:b2:18 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjUwNTIwMTkxNDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZDQ5NS0xZTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh4ZJVperzz2/QwGgsomfVKCTed9EO+jXPIa5niU54SRgtc0eCnHkAeFoJ6L Z3b+04PMjnT3yxFxHkVLI4+1taGyeJG9z1bItMC0srWRjb7gI2EOV1R2WmtFjgGu LPT6SrgtSdj5fg8xIhkNSRCL03TzlJCyV8yb3ltJdcTI/vkBfewetY06cn9vKObt 4uDKYotadnxrjR6FqGcAK+c17VzNnq/KiGj1rbnWlrKCyf/NxI7VK5oAv4+G7WM2 O+G8rYk7utthFi8hQX+CovLttRq1frRRViFU33gfbswhZf+8I4nz1M34KhOywJJn 8+hhICca3lkkTWjJJL/lQg0gIQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJZZOUO1 EZkeeL5YgZ45Rudb3lq8MB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNjI3QjE0Mzgy ODEyMTFFQTg4MUNDMzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2flCAMEAGflCjANBgkqhkiG9w0BAQsFAAOCAQEAyKMP EXgtDC7tYGnHlWet8lTkNjO5AWdfQK2hfeQ22QLzKNodxcMBEtDJ7zYgSw6zDjE3 ootjXhYBi/aVSZ6DS1vGO09qIlLiUyhd5QNdiz1UsTe31WsppzWNmD4f0JySPR6n OXJfdtHfu0MS2kfH9VBzHKqHa+SwbuqOCDP6XCKVScVOuKxfX9hUljPDbpAf+aim J0nmBkNkXDt63Q8IAq2kSM/0nACsJ92mLtXu6Gco0X9asM6JB/nP7spIdHSCDbwE 03bV7+T9fOMzKMgoPW/jwigGqmpnhaypHzNwcGhkwEj9CDCFb3ldTk2Rj326Y5ei O/ImA3xQEtoqBZyyGA== -----END CERTIFICATE-----Generated at Mon Jun 2 07:14:17 2025 by rpki-client