$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa File: C1D49C12AEDF11EE96155C68C4F9AE02.roa (raw, json) Hash identifier: g1jIfsO6mvnPQ5u6rCHd1+bi2Eyo0F5psuhhGonMZAg= Subject key identifier: 04:38:E6:61:2B:35:5C:F4:BE:06:0E:FF:21:8E:31:C4:C8:53:02:B3 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: FB Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa Signing time: Sun 27 Apr 2025 04:11:32 +0000 ROA not before: Sun 27 Apr 2025 04:11:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132787 IP address blocks: 43.242.244.0/24 maxlen: 24 43.242.245.0/24 maxlen: 24 43.242.246.0/24 maxlen: 24 43.242.247.0/24 maxlen: 24 103.24.172.0/24 maxlen: 24 103.24.173.0/24 maxlen: 24 103.24.174.0/24 maxlen: 24 103.24.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 03:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Apr 27 04:11:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680dae73-31e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2d:ce:a9:18:b8:e8:1a:b4:c6:42:ae:10:e1: a7:dd:6e:3f:e8:8f:e8:40:85:55:66:c0:4e:cb:bb: 29:65:07:a2:25:ae:28:73:ca:17:62:57:ac:a3:d6: 9d:31:bc:80:96:a1:29:9f:7b:fe:d4:a0:96:88:60: fc:fa:91:d7:82:92:67:36:fb:18:8b:06:8e:a1:9e: 32:9f:19:96:ff:67:4f:86:9e:75:fb:80:9c:61:a2: 23:01:f0:b4:5d:23:96:79:8e:9d:b9:c1:a6:e8:4f: 62:ae:62:d0:30:36:bf:ac:2a:3c:89:e9:9d:05:c4: e9:05:a6:46:89:98:ee:4f:54:aa:c3:b8:f0:16:db: b5:55:e0:82:6b:f0:84:db:86:8e:5f:c8:84:9b:d0: 7e:a6:65:fb:93:2f:5c:68:33:b1:e6:80:87:9b:68: 55:70:23:bf:a3:3d:8f:17:6d:02:da:a4:b4:53:4b: e9:7f:87:66:0b:2c:ab:34:5f:65:c9:b9:67:cf:65: 3d:8f:04:7b:8d:87:5c:6c:99:48:d9:56:a7:d3:38: 03:38:97:a4:d5:f6:2b:45:77:a5:d0:e1:f7:10:f6: d2:bb:58:b9:e6:6b:6d:83:0c:3f:4f:2d:a3:db:66: 2a:17:51:01:be:f1:68:3d:df:7a:db:c4:4d:f7:64: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:38:E6:61:2B:35:5C:F4:BE:06:0E:FF:21:8E:31:C4:C8:53:02:B3 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.244.0/22 103.24.172.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:a1:41:f7:87:db:cc:d7:ac:e5:68:93:7f:82:4c:f5:0e:9a: 9e:14:b0:ec:5e:af:e1:49:09:f0:a9:36:53:fa:5c:3a:6a:c4: 7f:d5:c4:88:5d:e7:27:e2:a8:8d:4b:66:57:48:fc:b0:f6:ed: 47:1e:ec:ae:20:c0:da:4c:69:3e:2c:2c:80:99:15:60:2c:84: 61:96:fe:ac:e7:4a:fe:49:ac:7b:92:0a:f7:4d:40:7f:a5:4a: 8d:17:f7:65:ec:65:75:80:f4:14:53:2f:e1:01:51:6f:70:51: 98:99:3d:8e:a0:f8:fa:3a:6d:50:89:f8:90:10:26:62:5d:0a: 26:0c:de:1c:4c:1f:a4:0c:26:a4:d2:ab:a5:27:89:18:c3:b9: 4f:61:31:f1:1a:81:ff:e5:37:91:3b:b6:85:8c:7e:eb:18:c5: 80:f7:da:5a:c0:6b:fa:a6:ee:40:d2:67:7e:44:24:bc:3a:57: 94:1d:8a:27:7a:90:14:27:a2:2f:70:c0:12:cb:a4:f4:33:f5: 5d:55:29:77:fb:17:94:38:f0:67:98:e2:85:7d:90:71:ec:cd: 7e:78:36:82:31:33:5f:1d:54:0a:d5:32:7f:31:77:a3:f0:4d: d1:be:b8:ae:6f:78:74:58:27:49:14:b3:d0:48:81:16:8a:63: e0:91:3f:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjUwNDI3MDQxMTMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkYWU3My0zMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty3OqRi46Bq0xkKuEOGn3W4/6I/oQIVVZsBOy7spZQeiJa4oc8oXYleso9ad MbyAlqEpn3v+1KCWiGD8+pHXgpJnNvsYiwaOoZ4ynxmW/2dPhp51+4CcYaIjAfC0 XSOWeY6ducGm6E9irmLQMDa/rCo8iemdBcTpBaZGiZjuT1Sqw7jwFtu1VeCCa/CE 24aOX8iEm9B+pmX7ky9caDOx5oCHm2hVcCO/oz2PF20C2qS0U0vpf4dmCyyrNF9l yblnz2U9jwR7jYdcbJlI2Van0zgDOJek1fYrRXel0OH3EPbSu1i55mttgww/Ty2j 22YqF1EBvvFoPd9628RN92RQ4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAQ45mEr NVz0vgYO/yGOMcTIUwKzMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0MTMvNzU5QUQyNENBQjlFMTFFRTk2M0QzMTdEQzRGOUFFMDIvQzFENDlDMTJB RURGMTFFRTk2MTU1QzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8vQDBAJnGKwwDQYJKoZIhvcNAQELBQADggEBAD6hQfeH 28zXrOVok3+CTPUOmp4UsOxer+FJCfCpNlP6XDpqxH/VxIhd5yfiqI1LZldI/LD2 7Uce7K4gwNpMaT4sLICZFWAshGGW/qznSv5JrHuSCvdNQH+lSo0X92XsZXWA9BRT L+EBUW9wUZiZPY6g+Po6bVCJ+JAQJmJdCiYM3hxMH6QMJqTSq6UniRjDuU9hMfEa gf/lN5E7toWMfusYxYD32lrAa/qm7kDSZ35EJLw6V5Qdiid6kBQnoi9wwBLLpPQz 9V1VKXf7F5Q48GeY4oV9kHHszX54NoIxM18dVArVMn8xd6PwTdG+uK5veHRYJ0kU s9BIgRaKY+CRP9k= -----END CERTIFICATE-----Generated at Mon Jun 9 21:47:39 2025 by rpki-client