$ rpki-client -vvf rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/C49CBEFCD27711ECAAC6BD51C4F9AE02.roa File: C49CBEFCD27711ECAAC6BD51C4F9AE02.roa (raw, json) Hash identifier: wKTcwQ/I5JRFgJ3BEd5QarAu/YHgWoWcx44Njrdtc4g= Subject key identifier: 40:E0:1E:1B:60:00:B5:6B:17:A1:F7:07:28:CB:AD:C7:28:2A:8A:6A Certificate issuer: /CN=A916559E/serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD Certificate serial: 2C06 Authority key identifier: 3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/C49CBEFCD27711ECAAC6BD51C4F9AE02.roa Signing time: Mon 02 Jun 2025 16:12:48 +0000 ROA not before: Mon 02 Jun 2025 16:12:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133535 IP address blocks: 103.233.240.0/24 maxlen: 24 103.233.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11270 (0x2c06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916559E, serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD Validity Not Before: Jun 2 16:12:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683dcd80-1da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b8:47:f9:a6:5a:b2:2a:fd:37:a5:cc:95:77: 3c:35:d8:54:f5:9f:0f:14:e1:7d:46:99:ab:9c:82: 9a:e6:89:e5:ac:02:59:2c:76:a3:29:12:39:96:57: e2:62:c5:ab:1a:4a:2e:f6:a5:ec:96:d9:96:9d:b1: 46:09:98:47:59:d5:51:49:2e:23:fb:f1:3c:28:8f: 66:b5:f5:ce:05:aa:5e:94:5f:00:f4:02:5d:c8:e1: dd:18:fa:d2:b6:48:95:ad:3e:51:06:67:ac:7a:54: 89:f3:a0:4a:7b:25:79:a5:37:03:9a:ab:38:83:ba: cd:fd:3c:79:9b:87:62:6a:4e:29:d4:2b:a8:b6:75: d6:3e:d8:79:41:97:85:73:63:de:e7:2a:ed:93:05: 52:4d:0e:ed:4f:39:84:3a:53:3d:49:2a:fc:1d:af: 86:fb:3d:28:d6:77:4e:2a:f8:95:7d:05:eb:f7:4f: 5b:f2:89:a1:93:63:d8:a6:22:73:0d:2b:0c:eb:e6: d1:82:e5:a6:ff:13:62:b3:bc:d4:b0:a5:55:fb:f1: ca:e5:3c:e1:73:34:d6:eb:50:c2:98:a2:c5:b5:d3: b5:4c:dd:dd:86:94:49:d6:20:37:f1:06:e1:ef:ba: 77:2b:c9:34:30:61:98:17:89:67:cf:39:bf:c1:ab: 02:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E0:1E:1B:60:00:B5:6B:17:A1:F7:07:28:CB:AD:C7:28:2A:8A:6A X509v3 Authority Key Identifier: keyid:3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/C49CBEFCD27711ECAAC6BD51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.240.0/23 Signature Algorithm: sha256WithRSAEncryption 18:71:ac:fd:44:4c:07:40:e5:ff:d6:ea:c9:c9:6a:a4:22:ce: 2d:ca:ed:88:b5:70:35:c1:f8:5e:15:2c:dd:f6:79:67:4d:30: bb:8b:b9:7a:86:f8:a9:86:fb:f5:48:ec:76:76:c1:a8:ae:0e: 95:30:87:cb:7d:8b:3c:bb:52:b7:ba:7a:6f:a3:c3:2f:43:fc: 37:9c:54:4b:cb:b0:a4:cf:75:da:e1:c4:21:ee:a5:48:fd:b9: f4:cd:ec:39:56:19:a1:cb:bf:15:de:a4:40:5b:e8:56:9d:92: 7f:2c:40:9a:2e:2a:38:4d:1c:14:ff:80:90:ca:10:18:cf:66: ba:9e:7a:5b:8f:7a:4c:72:1c:06:9e:a1:14:33:29:e9:64:77: d8:5f:69:a2:2e:96:fb:a2:92:4c:25:b1:6f:0f:d7:69:9c:2b: e5:86:75:a1:d7:8f:75:75:6b:2f:a6:32:9c:83:5f:63:56:5a: 01:80:39:a7:b7:94:de:fb:6a:0d:27:7b:7f:46:eb:3f:f7:d7: 66:94:45:e4:b8:8f:e1:7f:65:86:f3:60:b1:f7:25:dd:d0:bf: 09:5b:01:68:c7:a2:56:ee:8e:0e:2f:b8:b6:27:df:c7:30:d2: b8:0e:b8:99:45:c4:ef:19:32:e3:31:b4:8f:91:14:0c:29:ff: 2d:b6:7a:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICLAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1OUUxMTAvBgNVBAUTKDNFM0RDNjJBRDM2OTQxMjcwNzlBOTg3MTc2QzIxOEMw OUIzRUM5RkQwHhcNMjUwNjAyMTYxMjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkY2Q4MC0xZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLhH+aZasir9N6XMlXc8NdhU9Z8PFOF9RpmrnIKa5onlrAJZLHajKRI5llfi YsWrGkou9qXsltmWnbFGCZhHWdVRSS4j+/E8KI9mtfXOBapelF8A9AJdyOHdGPrS tkiVrT5RBmeselSJ86BKeyV5pTcDmqs4g7rN/Tx5m4diak4p1CuotnXWPth5QZeF c2Pe5yrtkwVSTQ7tTzmEOlM9SSr8Ha+G+z0o1ndOKviVfQXr909b8omhk2PYpiJz DSsM6+bRguWm/xNis7zUsKVV+/HK5TzhczTW61DCmKLFtdO1TN3dhpRJ1iA38Qbh 77p3K8k0MGGYF4lnzzm/wasCoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEDgHhtg ALVrF6H3ByjLrccoKopqMB8GA1UdIwQYMBaAFD49xirTaUEnB5qYcXbCGMCbPsn9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU5RS9ENDdGRUZDRUQ0 MEIxMUUzODVENDhBNzA1OTExRUEzMi9QajNHS3ROcFFTY0htcGh4ZHNJWXdKcy15 ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BqM0dLdE5wUVNjSG1waHhkc0lZd0pzLXlmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1OUUvRDQ3RkVGQ0VENDBCMTFFMzg1RDQ4QTcwNTkxMUVBMzIvQzQ5Q0JFRkNE Mjc3MTFFQ0FBQzZCRDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6fAwDQYJKoZIhvcNAQELBQADggEBABhxrP1ETAdA5f/W 6snJaqQizi3K7Yi1cDXB+F4VLN32eWdNMLuLuXqG+KmG+/VI7HZ2waiuDpUwh8t9 izy7Ure6em+jwy9D/DecVEvLsKTPddrhxCHupUj9ufTN7DlWGaHLvxXepEBb6Fad kn8sQJouKjhNHBT/gJDKEBjPZrqeeluPekxyHAaeoRQzKelkd9hfaaIulvuikkwl sW8P12mcK+WGdaHXj3V1ay+mMpyDX2NWWgGAOae3lN77ag0ne39G6z/312aUReS4 j+F/ZYbzYLH3Jd3QvwlbAWjHolbujg4vuLYn38cw0rgOuJlFxO8ZMuMxtI+RFAwp /y22eio= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:28 2025 by rpki-client