$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa File: 595310E440C911EE9F1D5F41C4F9AE02.roa (raw, json) Hash identifier: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k= Subject key identifier: 04:FB:F8:6B:A6:1E:A9:1C:0F:FB:3C:5F:EF:DA:98:1E:8F:53:C7:D4 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 10E4 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa Signing time: Fri 28 Feb 2025 18:26:57 +0000 ROA not before: Fri 28 Feb 2025 18:26:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135413 IP address blocks: 103.132.248.0/22 maxlen: 22 103.132.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4324 (0x10e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Feb 28 18:26:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c1fff0-8d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:6e:25:b0:1c:44:c3:a1:ed:94:49:ce:af: 76:54:d7:a7:8d:a5:56:1e:99:64:20:0b:3f:d5:7e: 60:69:41:d5:c6:e7:28:0f:b9:04:9e:9b:c6:01:0b: 62:c9:d8:c2:f3:af:1a:67:89:c3:9d:ab:fa:04:88: 33:12:07:16:0e:54:f4:ba:b4:21:b4:21:0d:dd:ce: 91:15:1f:78:56:91:e3:95:bd:57:ea:2e:b9:46:3d: 78:28:8a:df:19:0f:fb:ad:30:1b:c1:71:a3:fb:f7: 5c:2a:ec:f3:37:c7:21:10:ac:4e:74:20:fb:ef:57: ae:ac:94:75:29:7a:42:a8:06:6f:e3:f6:6c:fc:da: bb:80:b0:27:d1:ce:bc:83:6f:9d:55:39:23:4e:7d: 06:ea:7c:b3:ea:17:f2:18:f2:f5:f5:09:23:ba:94: 59:9b:f3:29:59:b8:07:35:70:fc:09:a5:a1:65:3d: ec:28:6c:bd:94:36:00:91:04:50:ae:e4:e3:fe:aa: f9:c9:ab:84:20:dc:5e:32:5f:47:9f:1d:bd:79:23: 17:79:90:e8:d7:5e:cf:ac:d0:aa:d3:c7:95:da:3c: b3:a9:ab:ea:cc:01:7e:bd:22:0d:d9:0c:58:63:f4: 26:37:0f:a9:6f:d1:58:6c:70:20:97:a6:97:f5:5b: 9d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FB:F8:6B:A6:1E:A9:1C:0F:FB:3C:5F:EF:DA:98:1E:8F:53:C7:D4 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.248.0/22 Signature Algorithm: sha256WithRSAEncryption 21:d3:a9:04:90:fa:2b:dc:1c:0f:de:7d:9b:fb:ca:3d:26:52: df:12:9b:d3:e9:a0:c5:8d:bc:8c:1d:03:52:3f:17:5e:8b:31: ce:c7:49:38:bb:cb:68:a9:8f:28:31:05:a2:bc:33:09:4e:ab: 63:c4:5e:eb:7f:e6:23:75:6e:09:30:9c:a6:31:e6:7a:f7:24: e8:01:0e:bf:30:b0:25:18:7f:75:17:4c:d6:8c:82:23:1a:ca: f8:26:b9:ef:23:56:32:9f:43:a7:71:df:17:3c:6b:60:91:73: e4:ab:e8:57:35:2d:a3:7b:b2:bb:32:8c:0d:2b:05:ae:58:e8: bc:e0:8a:c0:19:29:7c:6d:6b:44:37:b9:47:ae:44:7b:30:49: 0d:5e:2c:3a:b9:59:49:bc:6e:eb:9c:bd:05:2d:1f:3b:c3:2b: 5b:68:6b:44:16:93:67:55:73:53:f5:77:e5:93:be:0b:78:0d: e8:84:16:08:e9:3f:bf:6d:02:8d:bf:4b:16:d8:80:21:10:63: 60:c2:41:eb:69:40:90:94:a7:07:5d:90:cc:db:95:9b:6a:cf: fa:b9:4f:19:06:30:66:d7:d2:d5:52:43:ca:e6:8e:fa:e4:46: 03:ac:9e:1e:b8:6a:ee:b6:0d:05:61:4c:26:79:9e:c1:72:05: d9:73:cc:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUwMjI4MTgyNjU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxZmZmMC04ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iduJbAcRMOh7ZRJzq92VNenjaVWHplkIAs/1X5gaUHVxucoD7kEnpvGAQti ydjC868aZ4nDnav6BIgzEgcWDlT0urQhtCEN3c6RFR94VpHjlb1X6i65Rj14KIrf GQ/7rTAbwXGj+/dcKuzzN8chEKxOdCD771eurJR1KXpCqAZv4/Zs/Nq7gLAn0c68 g2+dVTkjTn0G6nyz6hfyGPL19QkjupRZm/MpWbgHNXD8CaWhZT3sKGy9lDYAkQRQ ruTj/qr5yauEINxeMl9Hnx29eSMXeZDo117PrNCq08eV2jyzqavqzAF+vSIN2QxY Y/QmNw+pb9FYbHAgl6aX9Vud5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAT7+Gum HqkcD/s8X+/amB6PU8fUMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3OTcvMDlGMkQ5OTQxQTIyMTFFOUJDMDZEMzBBQzRGOUFFMDIvNTk1MzEwRTQ0 MEM5MTFFRTlGMUQ1RjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhPgwDQYJKoZIhvcNAQELBQADggEBACHTqQSQ+ivcHA/e fZv7yj0mUt8Sm9PpoMWNvIwdA1I/F16LMc7HSTi7y2ipjygxBaK8MwlOq2PEXut/ 5iN1bgkwnKYx5nr3JOgBDr8wsCUYf3UXTNaMgiMayvgmue8jVjKfQ6dx3xc8a2CR c+Sr6Fc1LaN7srsyjA0rBa5Y6LzgisAZKXxta0Q3uUeuRHswSQ1eLDq5WUm8buuc vQUtHzvDK1toa0QWk2dVc1P1d+WTvgt4DeiEFgjpP79tAo2/SxbYgCEQY2DCQetp QJCUpwddkMzblZtqz/q5TxkGMGbX0tVSQ8rmjvrkRgOsnh64au62DQVhTCZ5nsFy BdlzzO0= -----END CERTIFICATE-----Generated at Sat Apr 26 17:08:20 2025 by rpki-client