$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa File: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (raw, json) Hash identifier: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE= Subject key identifier: 42:C3:92:66:34:C9:7D:6B:A8:C0:24:29:EC:FC:A2:CA:42:E8:CD:AE Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0A91 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:37 +0000 ROA not before: Wed 30 Apr 2025 19:29:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23959 IP address blocks: 43.239.249.0/24 maxlen: 24 103.150.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2705 (0xa91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:29:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a21-7675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d3:b2:9b:7d:94:9a:ac:2d:db:5d:81:70:c3: 4e:de:99:b7:88:f8:99:d3:af:60:f6:9d:31:7a:30: 8d:f5:a1:dd:ef:e9:a4:60:43:e7:5d:ab:7f:37:9e: 60:cd:8f:39:05:52:b7:e4:da:97:75:8b:68:c0:50: dd:32:b3:73:e4:1a:71:46:8a:20:c0:55:75:2f:6e: 2e:17:20:84:9d:4a:ba:2f:f7:73:6a:1a:fe:f0:f4: 7a:0a:70:f8:e3:cf:76:03:09:83:eb:47:5d:dd:5f: 7e:c0:bc:9b:16:fb:80:4e:f8:01:b8:7c:06:f0:6d: 82:c3:7d:28:d5:0b:d3:9f:71:07:7e:a5:9f:19:06: 2d:95:ba:ae:31:6c:ab:f3:d6:f1:7f:59:b9:36:78: 98:2a:dd:5a:31:17:c1:42:2e:f3:b4:0b:41:ab:c5: aa:6d:50:f7:1c:ba:10:d1:da:48:54:b5:8c:64:63: 9a:ab:7f:24:ba:43:98:c7:76:84:ad:74:f4:0e:8f: 82:c7:95:59:30:f5:91:c0:75:02:7d:30:c9:f9:19: 5c:86:f9:51:74:4d:c2:c9:2a:a2:ac:92:5a:5e:45: 62:09:ae:8d:16:08:ef:0d:52:97:b2:98:0d:db:dc: 7c:cd:42:d0:9f:d0:62:db:4d:88:fe:3f:b5:b0:a5: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C3:92:66:34:C9:7D:6B:A8:C0:24:29:EC:FC:A2:CA:42:E8:CD:AE X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.249.0/24 103.150.8.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b3:10:0e:9e:f4:75:03:0e:44:c3:14:3f:7a:47:a0:8d:ba: 3c:8b:26:38:78:37:e7:32:ec:e0:b2:e1:4f:a1:28:c0:28:46: 1d:1d:cd:fa:1d:74:56:15:24:78:5f:ee:67:24:1f:bc:0b:b9: d3:27:18:67:6c:e8:b7:fa:be:6d:cf:05:31:f6:38:f6:ac:b9: 2c:52:77:7c:03:d4:78:f4:fd:36:b4:38:ae:94:9a:d3:17:d0: ef:1e:bf:aa:f4:30:a6:8c:4b:80:eb:bb:fd:a9:76:74:45:d0: cc:90:f5:71:ed:43:3c:36:66:41:d3:53:af:95:10:10:80:c4: 7e:31:61:87:64:5e:5c:61:7f:42:77:60:29:70:7a:35:41:75: 25:37:a5:b8:1b:e9:96:ac:b2:49:7c:ad:94:3c:34:8e:a6:f7: 26:92:63:d0:31:28:57:bd:bc:cb:68:31:1a:20:bd:a3:5c:eb: d7:c4:2a:ca:b6:5e:2a:e7:c2:ff:a0:fe:55:71:dc:ab:38:1b: 33:c8:2f:12:66:ab:17:61:a9:f4:89:a5:ae:76:b1:49:f4:2b: 82:ae:e3:17:0e:cc:9c:d1:56:e9:aa:f8:b5:bb:a9:4d:e0:ed: 89:8f:db:bf:0c:2a:8a:1b:b1:a4:c3:60:4f:c1:2d:93:1a:3a: 51:57:ec:e5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNDMwMTkyOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyMS03Njc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstOym32Umqwt212BcMNO3pm3iPiZ069g9p0xejCN9aHd7+mkYEPnXat/N55g zY85BVK35NqXdYtowFDdMrNz5BpxRoogwFV1L24uFyCEnUq6L/dzahr+8PR6CnD4 4892AwmD60dd3V9+wLybFvuATvgBuHwG8G2Cw30o1QvTn3EHfqWfGQYtlbquMWyr 89bxf1m5NniYKt1aMRfBQi7ztAtBq8WqbVD3HLoQ0dpIVLWMZGOaq38kukOYx3aE rXT0Do+Cx5VZMPWRwHUCfTDJ+RlchvlRdE3CySqirJJaXkViCa6NFgjvDVKXspgN 29x8zULQn9Bi202I/j+1sKWVEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFELDkmY0 yX1rqMAkKez8ospC6M2uMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvN0UxMkY4REM0 QzBBMTFFQ0FDQjdGOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr7/kDBABnlggwDQYJKoZIhvcNAQELBQADggEBADWzEA6e 9HUDDkTDFD96R6CNujyLJjh4N+cy7OCy4U+hKMAoRh0dzfoddFYVJHhf7mckH7wL udMnGGds6Lf6vm3PBTH2OPasuSxSd3wD1Hj0/Ta0OK6UmtMX0O8ev6r0MKaMS4Dr u/2pdnRF0MyQ9XHtQzw2ZkHTU6+VEBCAxH4xYYdkXlxhf0J3YClwejVBdSU3pbgb 6Zasskl8rZQ8NI6m9yaSY9AxKFe9vMtoMRogvaNc69fEKsq2Xirnwv+g/lVx3Ks4 GzPILxJmqxdhqfSJpa52sUn0K4Ku4xcOzJzRVumq+LW7qU3g7YmP278MKoobsaTD YE/BLZMaOlFX7OU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:42 2025 by rpki-client