$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/01A8B084262811EA8269E33EC4F9AE02.roa File: 01A8B084262811EA8269E33EC4F9AE02.roa (raw, json) Hash identifier: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8= Subject key identifier: D4:CC:51:9F:D9:3B:AA:35:19:8E:4A:F8:A8:EC:E9:C3:7A:6F:B3:04 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0B8E Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/01A8B084262811EA8269E33EC4F9AE02.roa Signing time: Sun 06 Apr 2025 18:58:46 +0000 ROA not before: Sun 06 Apr 2025 18:58:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138634 IP address blocks: 103.135.37.0/24 maxlen: 24 103.150.58.0/24 maxlen: 24 2001:df7:e500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2958 (0xb8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Apr 6 18:58:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f2cee5-76d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c3:a3:b9:3c:3f:70:da:51:41:c0:e1:71:b5: de:af:f8:51:4d:7f:20:f1:db:7c:61:da:24:23:6c: ac:23:0e:32:80:2a:9a:22:3a:a3:ff:32:81:11:ba: 88:cf:e2:da:47:49:87:d9:8a:31:6b:69:66:72:98: a2:a6:52:40:2e:12:a5:ff:46:84:2e:89:c2:e3:da: 8a:79:34:01:76:66:f8:e8:3d:b4:fc:ef:c8:83:66: 51:17:4c:59:67:46:2e:2d:fe:a8:6d:d0:45:90:96: 57:ae:10:b0:fc:9c:e1:7d:6d:39:b6:56:6d:1e:8c: 73:5a:88:d5:36:15:12:1c:30:52:6b:e2:c3:87:99: 54:50:ae:17:6c:73:1a:5b:ac:e7:c7:59:67:61:af: 2f:36:48:e0:a8:6b:ef:d4:eb:51:d5:7a:a0:46:13: 3d:ea:3a:0f:00:61:cd:48:66:d0:3c:7a:91:85:be: d1:11:80:8b:25:19:30:35:c5:5f:2f:fc:cc:d1:04: 3c:ea:3a:ca:4b:3f:80:23:f8:b0:c0:56:7d:00:02: 4d:ff:a4:23:40:3d:a9:f7:e5:55:c6:a1:69:1e:be: 6c:62:9e:58:58:be:63:a2:26:3d:07:8d:07:ef:65: 38:7e:88:87:ce:82:9e:ee:3c:c9:2c:d8:3d:ab:73: 92:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CC:51:9F:D9:3B:AA:35:19:8E:4A:F8:A8:EC:E9:C3:7A:6F:B3:04 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/01A8B084262811EA8269E33EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.37.0/24 103.150.58.0/24 IPv6: 2001:df7:e500::/48 Signature Algorithm: sha256WithRSAEncryption 04:a3:81:bf:13:77:4f:6d:e1:9c:7e:ae:b4:db:1b:81:f8:0e: f9:40:66:72:e9:e1:82:24:fd:a1:2f:ec:96:09:09:6c:c8:3c: 7d:e0:67:68:8d:0f:a5:ca:31:b3:bc:7b:0e:ad:ce:3b:d1:cc: f3:d2:b8:5f:06:47:ef:79:b5:1b:5f:1a:28:0f:48:91:5b:e8: 9d:2a:26:bf:b5:96:e2:77:b6:b1:96:15:5a:70:6c:46:de:7e: 24:8e:50:20:77:6a:c0:ef:a8:97:f1:98:45:71:82:0f:96:94: d8:d2:18:17:6a:40:12:ec:98:00:0b:52:fd:ab:b8:75:09:d1: d5:5c:31:55:89:4b:9b:5a:82:2f:43:4c:b3:07:16:8f:36:58: fb:60:14:26:09:82:6a:2f:23:6e:bd:2a:21:ee:82:72:43:0b: f5:ca:7c:15:ce:e7:78:2a:45:d1:69:d5:68:00:6e:69:4f:e7: 07:f3:ef:d8:29:f5:cb:36:2f:61:c9:fb:90:30:d0:58:1f:f7: 60:f2:c7:c7:ab:f4:c9:7b:18:e3:4c:4b:1f:e1:86:c2:49:18: 9e:29:82:2e:3f:81:6e:43:8c:59:b8:30:6f:1c:36:8f:57:3d: 32:70:dd:91:71:9d:06:18:37:da:51:0a:66:af:39:80:86:83: 3c:f3:2e:cb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICC44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUwNDA2MTg1ODQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YyY2VlNS03NmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48OjuTw/cNpRQcDhcbXer/hRTX8g8dt8YdokI2ysIw4ygCqaIjqj/zKBEbqI z+LaR0mH2Yoxa2lmcpiiplJALhKl/0aELonC49qKeTQBdmb46D20/O/Ig2ZRF0xZ Z0YuLf6obdBFkJZXrhCw/JzhfW05tlZtHoxzWojVNhUSHDBSa+LDh5lUUK4XbHMa W6znx1lnYa8vNkjgqGvv1OtR1XqgRhM96joPAGHNSGbQPHqRhb7REYCLJRkwNcVf L/zM0QQ86jrKSz+AI/iwwFZ9AAJN/6QjQD2p9+VVxqFpHr5sYp5YWL5joiY9B40H 72U4foiHzoKe7jzJLNg9q3OSyQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNTMUZ/Z O6o1GY5K+Kjs6cN6b7MEMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFENzMvNUNDNjZCRDQyNjI2MTFFQTg1MjRFODNCQzRGOUFFMDIvMDFBOEIwODQy NjI4MTFFQTgyNjlFMzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnhyUDBABnljowDwQCAAIwCQMHACABDfflADANBgkqhkiG 9w0BAQsFAAOCAQEABKOBvxN3T23hnH6utNsbgfgO+UBmcunhgiT9oS/slgkJbMg8 feBnaI0Ppcoxs7x7Dq3OO9HM89K4XwZH73m1G18aKA9IkVvonSomv7WW4ne2sZYV WnBsRt5+JI5QIHdqwO+ol/GYRXGCD5aU2NIYF2pAEuyYAAtS/au4dQnR1VwxVYlL m1qCL0NMswcWjzZY+2AUJgmCai8jbr0qIe6CckML9cp8Fc7neCpF0WnVaABuaU/n B/Pv2Cn1yzYvYcn7kDDQWB/3YPLHx6v0yXsY40xLH+GGwkkYnimCLj+BbkOMWbgw bxw2j1c9MnDdkXGdBhg32lEKZq85gIaDPPMuyw== -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:32 2025 by rpki-client