$ rpki-client -vvf rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa File: 766689D21EB111F0ADA9B872C4F9AE02.roa (raw, json) Hash identifier: jo+62bvnD8mjSHhUGwNwlfo2qu5IakOWUAY3Ax2OYvQ= Subject key identifier: 58:5E:A2:98:B2:AF:D4:4B:9E:D8:F6:D9:BF:5C:E8:22:6E:72:90:17 Certificate issuer: /CN=A9119F89/serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Certificate serial: 067E Authority key identifier: 55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa Signing time: Mon 21 Apr 2025 13:12:09 +0000 ROA not before: Mon 21 Apr 2025 13:12:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 51847 IP address blocks: 103.24.207.0/24 maxlen: 24 103.100.158.0/24 maxlen: 24 103.137.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119F89, serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Validity Not Before: Apr 21 13:12:09 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=68064428-9059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b6:2c:22:1f:ca:32:b2:3e:e0:46:9c:0c:73: e4:fd:eb:3c:9c:be:58:d3:60:25:c2:a0:54:45:80: 25:d0:53:14:c7:9e:9f:8e:4c:d8:43:d1:97:07:dd: 4a:f3:75:05:77:62:b1:7e:06:a7:69:56:f2:ac:35: be:44:51:9c:a8:7f:30:73:09:ab:4d:68:45:2f:7d: 82:76:37:c5:12:55:0f:e5:89:f7:1f:e1:66:be:1b: e0:74:2b:8c:8c:af:3a:a0:22:9c:b5:1f:a0:4d:77: d1:f8:85:5b:6e:e1:91:e8:f5:18:e4:25:30:79:40: 86:9e:73:ec:68:6c:39:37:a1:e3:7e:dc:bd:f3:91: a4:1b:03:b6:4a:39:d2:5f:aa:b5:17:19:4c:89:44: 87:86:a8:38:e0:57:14:cd:19:6a:b6:9e:6f:56:3f: 25:43:4a:a3:5d:94:6e:25:ea:b8:44:55:c8:7c:c0: 5b:3a:5f:99:c4:21:5c:b3:0f:6f:98:d8:dd:15:d0: 53:6f:db:d1:4d:af:1d:c7:4b:a4:d2:c5:30:6d:0b: 57:19:79:61:5d:f4:a1:bb:5c:4c:16:79:14:70:bd: cb:eb:1e:a8:60:13:db:0b:c9:63:a8:a6:fd:04:f4: e9:8b:7b:c1:33:76:1d:5d:56:20:5b:25:c3:4c:14: 06:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5E:A2:98:B2:AF:D4:4B:9E:D8:F6:D9:BF:5C:E8:22:6E:72:90:17 X509v3 Authority Key Identifier: keyid:55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.207.0/24 103.100.158.0/24 103.137.215.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:eb:f3:db:a0:1f:26:95:42:fa:13:fc:e3:45:26:21:fc:b7: 98:d4:03:e7:ea:0e:91:e2:b6:d8:2a:f0:ea:97:7e:a0:7a:e7: bc:da:ef:73:b1:92:97:25:e2:d1:d3:8d:b8:d0:c7:01:81:25: c8:df:88:12:eb:57:c8:ed:59:74:e1:1e:8a:37:15:b0:98:82: 89:02:6c:40:74:7c:f6:db:0c:6d:4e:2f:9b:32:c0:83:ed:5f: 80:63:8b:7e:5d:a7:48:71:88:38:a1:5e:f6:ba:30:db:95:98: be:89:5d:b2:4b:67:dc:8a:7f:c6:91:a9:ab:22:e0:0e:38:b5: b9:32:93:e5:18:f8:63:0c:32:65:24:c6:72:26:42:01:c1:f9: 01:e9:d4:b8:45:29:18:99:a1:00:0a:ff:ff:98:fc:15:eb:05: 72:f7:60:4e:31:98:c9:b4:c8:80:1c:8d:a9:21:c7:bd:ad:2f: 9a:80:40:a4:7e:35:5f:d7:c8:af:ec:da:84:76:77:51:2d:ac: ce:b5:15:bf:32:f5:1a:50:f8:6f:54:a1:93:e0:41:72:9f:b1: fb:9a:f6:d4:22:16:90:65:16:4c:a3:16:c4:8f:dc:6d:43:15: 11:3d:78:0f:02:d0:62:b1:df:f8:87:45:a0:f6:a3:4a:0d:cc: 6f:db:45:76 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlGODkxMTAvBgNVBAUTKDU1MDg4QTMxNUJDQjUwOThCRUVGNjY1QUE5Q0JERkQz MkEyMDU4MjAwHhcNMjUwNDIxMTMxMjA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA2NDQyOC05MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLYsIh/KMrI+4EacDHPk/es8nL5Y02AlwqBURYAl0FMUx56fjkzYQ9GXB91K 83UFd2KxfganaVbyrDW+RFGcqH8wcwmrTWhFL32CdjfFElUP5Yn3H+FmvhvgdCuM jK86oCKctR+gTXfR+IVbbuGR6PUY5CUweUCGnnPsaGw5N6Hjfty985GkGwO2SjnS X6q1FxlMiUSHhqg44FcUzRlqtp5vVj8lQ0qjXZRuJeq4RFXIfMBbOl+ZxCFcsw9v mNjdFdBTb9vRTa8dx0uk0sUwbQtXGXlhXfShu1xMFnkUcL3L6x6oYBPbC8ljqKb9 BPTpi3vBM3YdXVYgWyXDTBQGzwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFheopiy r9RLntj22b9c6CJucpAXMB8GA1UdIwQYMBaAFFUIijFby1CYvu9mWqnL39MqIFgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUY4OS9EMzVBQTVBQTdC RTExMUVCOEZGNUY3NTJDNEY5QUUwMi9WUWlLTVZ2TFVKaS03MlphcWN2ZjB5b2dX Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZRaUtNVnZMVUppLTcyWmFxY3ZmMHlvZ1dDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlGODkvRDM1QUE1QUE3QkUxMTFFQjhGRjVGNzUyQzRGOUFFMDIvNzY2Njg5RDIx RUIxMTFGMEFEQTlCODcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnGM8DBABnZJ4DBABnidcwDQYJKoZIhvcNAQELBQADggEB AEzr89ugHyaVQvoT/ONFJiH8t5jUA+fqDpHittgq8OqXfqB657za73Oxkpcl4tHT jbjQxwGBJcjfiBLrV8jtWXThHoo3FbCYgokCbEB0fPbbDG1OL5sywIPtX4Bji35d p0hxiDihXva6MNuVmL6JXbJLZ9yKf8aRqasi4A44tbkyk+UY+GMMMmUkxnImQgHB +QHp1LhFKRiZoQAK//+Y/BXrBXL3YE4xmMm0yIAcjakhx72tL5qAQKR+NV/XyK/s 2oR2d1EtrM61Fb8y9RpQ+G9UoZPgQXKfsfua9tQiFpBlFkyjFsSP3G1DFRE9eA8C 0GKx3/iHRaD2o0oNzG/bRXY= -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:56 2025 by rpki-client