$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa File: 24241410E2A211EEBFC9412EC4F9AE02.roa (raw, json) Hash identifier: /HUgZFHQdOKqVGsoyIo8SC7cdtj7Z66CHfzRpJ6gBOI= Subject key identifier: 24:75:25:64:C6:A1:41:42:73:67:7F:10:D9:09:DD:A7:E8:D7:78:6E Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: EA Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa Signing time: Tue 27 May 2025 05:41:04 +0000 ROA not before: Tue 27 May 2025 05:41:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63981 IP address blocks: 45.251.67.0/24 maxlen: 24 103.206.88.0/22 maxlen: 24 2401:3e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4, serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: May 27 05:41:04 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6835506f-a225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6d:55:44:28:78:07:6e:8f:57:15:13:d5:80: ee:ec:a1:d9:49:f5:ce:40:be:f9:00:34:01:a9:e5: e7:d1:98:d4:93:2e:e1:86:c2:c8:f9:65:7f:80:1a: d0:45:03:72:24:f3:d9:53:3c:a7:60:e9:3f:96:20: ac:2e:74:04:5f:ef:9c:11:9f:60:33:10:a1:9a:a0: 4b:8d:b1:77:6b:e1:d2:0c:de:22:19:f7:4e:0f:7b: 59:d2:14:a4:1d:09:d0:66:fd:e6:57:fc:b2:c6:df: d9:f5:12:a7:93:c5:49:d2:50:a3:be:0f:cf:c9:ac: 65:ca:72:8d:75:ae:0a:53:30:31:94:8f:96:8f:b2: 25:a8:a1:06:32:df:26:a7:0b:36:60:75:ec:67:51: 19:24:d5:29:32:4e:c7:8d:07:6d:5f:ee:68:4d:58: 4e:0a:99:0d:2c:a4:5c:25:6f:86:68:28:75:68:25: f1:91:43:4f:64:79:51:3c:5f:19:ab:02:b1:97:e1: 76:37:03:6c:a3:1c:9d:f4:67:04:4d:99:9f:64:44: c0:6a:d2:6e:0a:88:64:75:cd:8a:57:64:74:1e:2f: 54:ff:18:5f:5d:1d:49:a9:ba:63:fd:5a:87:f3:c1: 12:45:1c:12:65:75:8a:9d:18:95:22:81:56:b0:fe: 26:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:75:25:64:C6:A1:41:42:73:67:7F:10:D9:09:DD:A7:E8:D7:78:6E X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.67.0/24 103.206.88.0/22 IPv6: 2401:3e0::/32 Signature Algorithm: sha256WithRSAEncryption 42:8d:86:c1:a0:80:9e:b0:d7:e3:8a:61:cf:e2:df:f5:ba:11: 9a:d5:61:f2:66:1b:5a:95:55:5e:6a:f7:c3:41:c3:ce:f7:9f: 4f:92:27:14:1e:a4:63:c7:7f:fb:33:3d:e8:18:48:86:08:68: ec:38:b6:85:82:63:e8:2d:ed:43:84:8e:00:39:b5:8c:3d:0e: df:c1:4b:b3:46:ad:f5:ca:27:cc:04:19:c9:0b:ea:b8:d5:94: 48:4c:26:49:30:0a:a0:84:a2:bb:d7:d3:c5:2c:4b:de:35:7a: 8e:24:2e:c1:e8:1b:b9:84:39:6e:21:01:2b:36:e0:48:e7:7e: fc:b5:90:58:8c:91:c0:6e:7c:cd:a7:9c:82:c7:38:d1:9c:5c: b0:79:b5:a4:7c:0d:5e:02:00:7b:07:86:0c:26:8a:e9:20:5b: 3d:be:1e:4f:66:90:56:97:48:62:77:fe:03:21:55:d9:53:4c: 89:a0:9a:c3:92:98:62:f2:de:99:a5:ac:6a:a4:34:e9:da:be: f9:b2:08:9c:b1:2f:fb:69:94:f6:dd:80:0d:3b:aa:90:be:bf: 1a:5b:98:c9:07:00:19:9d:1e:17:3a:57:56:5c:8a:1e:a8:8c: 7f:46:0b:5b:a4:cb:0a:29:33:56:ce:66:34:72:9c:fe:f5:4a: a1:16:10:19 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVDQTQxMTAvBgNVBAUTKDhDMUMxNERDMTY3NERCQjY4QjQ5NDMwMTU4N0IzRDJG OThFRDcwMUIwHhcNMjUwNTI3MDU0MTA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NTA2Zi1hMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6m1VRCh4B26PVxUT1YDu7KHZSfXOQL75ADQBqeXn0ZjUky7hhsLI+WV/gBrQ RQNyJPPZUzynYOk/liCsLnQEX++cEZ9gMxChmqBLjbF3a+HSDN4iGfdOD3tZ0hSk HQnQZv3mV/yyxt/Z9RKnk8VJ0lCjvg/PyaxlynKNda4KUzAxlI+Wj7IlqKEGMt8m pws2YHXsZ1EZJNUpMk7HjQdtX+5oTVhOCpkNLKRcJW+GaCh1aCXxkUNPZHlRPF8Z qwKxl+F2NwNsoxyd9GcETZmfZETAatJuCohkdc2KV2R0Hi9U/xhfXR1Jqbpj/VqH 88ESRRwSZXWKnRiVIoFWsP4mBwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCR1JWTG oUFCc2d/ENkJ3afo13huMB8GA1UdIwQYMBaAFIwcFNwWdNu2i0lDAVh7PS+Y7XAb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUNBNC80ODVGMzM2QURD RUQxMUVFQkJCRjQwMkZDNEY5QUUwMi9qQndVM0JaMDI3YUxTVU1CV0hzOUw1anRj QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkVDQTQvNDg1RjMzNkFEQ0VEMTFFRUJCQkY0MDJGQzRGOUFFMDIvMjQyNDE0MTBF MkEyMTFFRUJGQzk0MTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAAt+0MDBAJnzlgwDQQCAAIwBwMFACQBA+AwDQYJKoZIhvcN AQELBQADggEBAEKNhsGggJ6w1+OKYc/i3/W6EZrVYfJmG1qVVV5q98NBw873n0+S JxQepGPHf/szPegYSIYIaOw4toWCY+gt7UOEjgA5tYw9Dt/BS7NGrfXKJ8wEGckL 6rjVlEhMJkkwCqCEorvX08UsS941eo4kLsHoG7mEOW4hASs24Ejnfvy1kFiMkcBu fM2nnILHONGcXLB5taR8DV4CAHsHhgwmiukgWz2+Hk9mkFaXSGJ3/gMhVdlTTImg msOSmGLy3pmlrGqkNOnavvmyCJyxL/tplPbdgA07qpC+vxpbmMkHABmdHhc6V1Zc ih6ojH9GC1ukywopM1bOZjRynP71SqEWEBk= -----END CERTIFICATE-----Generated at Wed Jul 2 05:32:03 2025 by rpki-client