$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa File: 42CFB44C141411F0BAD16274C4F9AE02.roa (raw, json) Hash identifier: NvkrBL0iNWC0KsiDXy6BO+nae3k0qk/y4fPT3v4Fzd4= Subject key identifier: 2A:C6:BF:63:97:6F:EB:7E:83:7B:7D:83:A6:EB:09:0F:87:B5:3B:3D Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: 02 Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa Signing time: Tue 08 Apr 2025 00:56:10 +0000 ROA not before: Tue 08 Apr 2025 00:56:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133326 IP address blocks: 103.93.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Apr 8 00:56:10 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67f4742a-6cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:88:19:3b:06:9b:b8:1f:27:0e:e7:66:1b:89: 09:54:2d:be:cb:a8:c4:83:c0:31:43:fd:22:bc:58: 89:79:cb:9e:67:ec:8d:65:c1:6b:9e:4d:24:02:ef: cd:ca:0e:14:b5:8b:71:55:c6:2f:91:39:17:72:61: 74:55:fc:15:68:13:5b:4e:2b:6b:c0:26:45:e7:7e: 36:c5:82:a6:b5:b2:4a:23:e2:ed:fd:38:c1:41:5b: 65:38:3b:4d:40:8e:84:ce:28:83:27:c5:e5:03:f8: 59:e3:42:ad:05:a6:41:f7:29:1b:82:30:56:8d:25: 01:97:4e:f4:b2:74:cb:40:f3:f8:87:c5:5e:77:fe: 82:5a:b9:05:eb:ed:f6:28:16:2a:d9:2c:13:9b:e4: 36:88:87:e5:8a:1a:0a:66:ff:0f:5d:8c:a3:32:0c: 3c:77:58:87:f4:94:34:17:ec:39:c6:61:5b:94:db: 14:72:44:92:57:16:12:c5:d5:41:cb:85:70:ec:73: b9:ce:67:2b:5e:49:8e:e6:25:26:cf:9c:96:f4:58: e6:0d:bf:2a:46:e2:70:f1:51:98:00:ca:38:34:d5: c1:ab:84:d7:9d:a5:4b:bf:ff:63:64:cb:60:31:ae: 98:79:84:fb:db:ad:9a:03:08:2e:4b:eb:ea:6d:09: 95:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C6:BF:63:97:6F:EB:7E:83:7B:7D:83:A6:EB:09:0F:87:B5:3B:3D X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.139.0/24 Signature Algorithm: sha256WithRSAEncryption 51:79:e5:fb:05:83:bf:52:92:a4:7c:3d:e1:d9:15:ef:f9:fd: 73:78:74:53:cb:9f:68:2e:67:83:a0:a9:eb:a6:3e:67:d3:1a: 16:3a:0d:7d:e3:4e:ec:ab:53:60:fb:65:71:1d:fd:6c:12:fa: 57:68:07:37:1a:77:1a:ef:42:e4:1e:0d:bc:87:0a:32:5a:06: c9:1e:4b:ff:8c:33:1d:9c:e0:79:d6:23:63:ae:ba:6c:bb:8b: 8c:1c:6a:c7:cd:d0:9e:07:95:1c:29:1d:14:43:c2:1f:83:38: 0e:f5:45:31:17:05:14:54:43:84:02:a9:0f:3e:6c:6a:b6:83: e7:dd:ea:65:76:c8:23:75:a4:db:f1:58:e2:28:62:3f:81:2d: 1e:54:22:0f:56:b6:d9:a3:63:1a:4b:36:9b:27:2d:e0:ab:ad: 98:24:ad:0e:89:a5:71:e6:12:c4:25:e8:2f:3d:57:db:e8:9a: 12:d0:48:09:8a:2c:52:46:ed:e6:f7:b1:16:d6:da:01:d6:54: 6d:0b:dc:83:0c:11:34:ea:79:37:76:2c:b9:49:dd:4b:36:cc: f1:69:bf:d1:98:f6:30:79:17:c5:cb:67:d9:67:ca:7b:9f:bb: 5f:a2:67:f2:6e:7b:e3:70:cd:72:91:9a:04:25:e2:39:44:cf: c3:d1:5a:8b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MEYyMTExMC8GA1UEBRMoNzBEMjYwMUNCMEQwRkE0RjlDNUYwRTAyODZEOEI2QUZE OTIzNUEwNjAeFw0yNTA0MDgwMDU2MTBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjQ3NDJhLTZjYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6iBk7Bpu4HycO52YbiQlULb7LqMSDwDFD/SK8WIl5y55n7I1lwWueTSQC783K DhS1i3FVxi+RORdyYXRV/BVoE1tOK2vAJkXnfjbFgqa1skoj4u39OMFBW2U4O01A joTOKIMnxeUD+FnjQq0FpkH3KRuCMFaNJQGXTvSydMtA8/iHxV53/oJauQXr7fYo FirZLBOb5DaIh+WKGgpm/w9djKMyDDx3WIf0lDQX7DnGYVuU2xRyRJJXFhLF1UHL hXDsc7nOZyteSY7mJSbPnJb0WOYNvypG4nDxUZgAyjg01cGrhNedpUu//2Nky2Ax rph5hPvbrZoDCC5L6+ptCZXVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKsa/Y5dv 636De32DpusJD4e1Oz0wHwYDVR0jBBgwFoAUcNJgHLDQ+k+cXw4Chti2r9kjWgYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwRjIxLzg1MTdGQjA4MTQx MzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWstY1h3NENodGkycjlraldn WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY05KZ0hMRFEtay1jWHc0Q2h0aTJyOWtqV2dZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEYyMS84NTE3RkIwODE0MTMxMUYwOEYxQTFENzNDNEY5QUUwMi80MkNGQjQ0QzE0 MTQxMUYwQkFEMTYyNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGddizANBgkqhkiG9w0BAQsFAAOCAQEAUXnl+wWDv1KSpHw9 4dkV7/n9c3h0U8ufaC5ng6Cp66Y+Z9MaFjoNfeNO7KtTYPtlcR39bBL6V2gHNxp3 Gu9C5B4NvIcKMloGyR5L/4wzHZzgedYjY666bLuLjBxqx83QngeVHCkdFEPCH4M4 DvVFMRcFFFRDhAKpDz5saraD593qZXbII3Wk2/FY4ihiP4EtHlQiD1a22aNjGks2 myct4KutmCStDomlceYSxCXoLz1X2+iaEtBICYosUkbt5vexFtbaAdZUbQvcgwwR NOp5N3YsuUndSzbM8Wm/0Zj2MHkXxctn2WfKe5+7X6Jn8m5743DNcpGaBCXiOUTP w9Faiw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:13:07 2025 by rpki-client