$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa File: 235019148A3911EF864D8512C4F9AE02.roa (raw, json) Hash identifier: ya6jiJnMNDX1HzsS29yHChzvTETOzBsBcr2y+nIgd1Y= Subject key identifier: 7A:D1:3B:A6:AE:B8:E0:CC:C4:ED:91:70:C6:3F:88:94:AE:A5:BE:DF Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 223A Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa Signing time: Wed 28 May 2025 16:39:49 +0000 ROA not before: Wed 28 May 2025 16:39:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10103 IP address blocks: 59.153.31.0/24 maxlen: 24 180.210.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8762 (0x223a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: May 28 16:39:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68373c55-73dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:9f:52:e4:07:98:27:98:8e:1e:01:de:03: 4c:40:d2:bf:c4:7e:9c:49:75:11:cd:5d:dd:c8:26: 2b:61:14:6c:a8:a6:12:75:8f:ba:ce:f1:9b:d7:20: ff:83:c8:ae:0b:b0:38:c4:41:7d:cc:e6:e8:34:c7: 01:07:bf:8b:45:b5:47:89:71:3d:33:54:62:ca:a4: 1c:6c:a7:ea:f0:44:d2:b9:e4:9c:d2:48:cd:c0:36: c9:fd:6f:83:59:cc:50:f6:76:f0:cc:28:7c:fb:cd: 83:7c:c1:d9:91:e3:c7:16:f5:be:8e:11:d7:70:60: d8:26:15:d2:55:a4:da:53:c2:b8:fe:69:c4:dd:78: b8:5b:dd:52:44:68:18:72:d0:3f:0d:95:e4:f2:29: 2c:05:1a:6a:37:96:fd:5e:cf:7a:6b:94:d0:58:2f: 43:a6:0d:0f:b6:ea:d5:87:fb:ea:a6:7d:47:da:3f: 7d:2b:f1:ca:04:8b:aa:ba:ac:98:8b:89:ea:98:c5: 56:7f:51:a1:50:23:50:29:ce:8a:19:a5:86:4f:94: 54:b9:fe:7f:05:69:8a:72:96:76:db:bc:c7:90:17: dc:e8:b4:ea:66:f7:64:f3:cd:15:ec:c6:ba:23:db: fb:c8:3c:56:4d:9a:7c:8d:c0:b7:c8:c2:00:16:11: 41:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D1:3B:A6:AE:B8:E0:CC:C4:ED:91:70:C6:3F:88:94:AE:A5:BE:DF X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/235019148A3911EF864D8512C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.31.0/24 180.210.222.0/24 Signature Algorithm: sha256WithRSAEncryption 29:bf:e5:cc:3e:55:4c:31:6f:9d:36:e5:b0:3e:72:93:d1:b6: a0:44:3b:04:67:11:c5:f7:5e:a7:5d:16:96:bd:fe:2c:48:04: 39:72:f2:ea:8d:ce:50:02:35:67:35:01:47:38:dd:f4:0e:29: 95:5c:a0:6b:ef:97:09:ec:a0:a4:d5:0d:f0:2e:ae:3b:26:ab: 8c:bc:53:33:17:66:58:a9:3f:22:6f:2e:98:a0:8d:e0:6e:44: e5:f8:00:f3:4e:90:fa:68:86:32:74:2d:26:22:ca:d8:e5:1d: 02:ad:00:31:f5:cf:38:2f:f5:dd:5c:dc:62:0b:ab:c4:0b:23: 54:99:b0:68:77:85:ed:cd:0c:1b:f8:cf:05:91:c4:67:e6:32: 1e:76:ff:5a:6b:4c:d7:ab:1f:57:03:23:ea:ac:f8:7c:18:23: ed:38:f8:e1:7f:a5:64:95:71:6c:41:9e:2d:63:de:a3:c0:d0: 56:95:47:9b:9e:d3:09:ec:66:64:f9:8d:4b:33:d2:da:af:48: b1:b0:02:c6:18:e8:15:f8:87:46:b5:6a:23:12:9f:4e:e6:0a: 7c:ab:5c:92:81:2a:91:0a:f4:41:64:be:4a:6d:36:24:57:d1: 5b:db:69:11:9f:c6:69:0f:23:18:b5:a8:7e:95:c2:20:b7:7c: 0c:35:90:29 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICIjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwNTI4MTYzOTQ5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM3M2M1NS03M2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywmfUuQHmCeYjh4B3gNMQNK/xH6cSXURzV3dyCYrYRRsqKYSdY+6zvGb1yD/ g8iuC7A4xEF9zOboNMcBB7+LRbVHiXE9M1RiyqQcbKfq8ETSueSc0kjNwDbJ/W+D WcxQ9nbwzCh8+82DfMHZkePHFvW+jhHXcGDYJhXSVaTaU8K4/mnE3Xi4W91SRGgY ctA/DZXk8iksBRpqN5b9Xs96a5TQWC9Dpg0PturVh/vqpn1H2j99K/HKBIuquqyY i4nqmMVWf1GhUCNQKc6KGaWGT5RUuf5/BWmKcpZ227zHkBfc6LTqZvdk880V7Ma6 I9v7yDxWTZp8jcC3yMIAFhFBgwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHrRO6au uODMxO2RcMY/iJSupb7fMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvMjM1MDE5MTQ4 QTM5MTFFRjg2NEQ4NTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA7mR8DBAC00t4wDQYJKoZIhvcNAQELBQADggEBACm/5cw+ VUwxb5025bA+cpPRtqBEOwRnEcX3XqddFpa9/ixIBDly8uqNzlACNWc1AUc43fQO KZVcoGvvlwnsoKTVDfAurjsmq4y8UzMXZlipPyJvLpigjeBuROX4APNOkPpohjJ0 LSYiytjlHQKtADH1zzgv9d1c3GILq8QLI1SZsGh3he3NDBv4zwWRxGfmMh52/1pr TNerH1cDI+qs+HwYI+04+OF/pWSVcWxBni1j3qPA0FaVR5ue0wnsZmT5jUsz0tqv SLGwAsYY6BX4h0a1aiMSn07mCnyrXJKBKpEK9EFkvkptNiRX0VvbaRGfxmkPIxi1 qH6VwiC3fAw1kCk= -----END CERTIFICATE-----Generated at Mon Jun 2 07:19:54 2025 by rpki-client