$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/1FC5063AE0D411ECB6C0B01CC4F9AE02.roa File: 1FC5063AE0D411ECB6C0B01CC4F9AE02.roa (raw, json) Hash identifier: nc7TBefBbU0mXqPXG5FtS5khsHRLeEqmotd1zbLKCfY= Subject key identifier: A6:05:BE:EB:0A:E7:94:80:E7:61:85:A8:E6:27:DD:A8:FA:43:DA:94 Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Certificate serial: 0C93 Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/1FC5063AE0D411ECB6C0B01CC4F9AE02.roa Signing time: Fri 02 May 2025 18:56:46 +0000 ROA not before: Fri 02 May 2025 18:56:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141010 IP address blocks: 103.206.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 18:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F9C, serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Validity Not Before: May 2 18:56:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815156e-40fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:8a:3e:b3:33:56:3b:6c:90:7c:4b:4e:09: b5:f5:bd:ce:0d:77:76:2a:07:45:44:04:0d:42:68: 99:47:5e:d6:11:31:b6:aa:0a:80:b6:bb:da:06:f0: 6c:a4:1e:83:8a:04:6d:d0:56:29:f2:58:61:56:c3: 35:4d:d0:26:22:99:22:0a:89:c2:cf:46:ee:92:97: 33:67:ee:19:0d:c0:87:2f:e0:55:fc:ac:a0:25:bc: d6:a5:b7:7e:46:51:d5:ad:21:7c:f1:61:c6:ec:4d: f9:1e:eb:f3:5f:7f:77:bb:63:e0:c5:ed:f6:94:c3: 2f:e3:82:35:b5:65:bf:e1:dc:1a:c4:2e:77:9a:ea: 45:51:cf:99:ac:a2:72:56:71:75:78:51:b6:5c:aa: d8:bc:12:b2:df:33:35:a6:f7:83:7c:e4:4d:66:e9: 23:c1:b6:bb:ce:6b:86:b9:14:78:c1:47:f3:37:16: d0:56:66:6e:87:b6:e7:3e:3d:f8:33:2d:f9:7d:50: d7:7d:d9:c5:6c:d6:68:d3:f1:47:02:6d:ec:58:cb: 77:8e:b7:aa:29:c2:ae:cc:55:ff:ab:6f:90:29:ad: 02:cc:b1:69:3a:cf:c5:6f:00:f7:39:f9:05:65:3e: dc:a3:8c:c7:a7:59:8f:18:78:c1:1f:84:f1:ec:4b: 77:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:05:BE:EB:0A:E7:94:80:E7:61:85:A8:E6:27:DD:A8:FA:43:DA:94 X509v3 Authority Key Identifier: keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/1FC5063AE0D411ECB6C0B01CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.231.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:f7:3a:97:e8:00:db:03:5e:f5:0f:1e:25:6a:d7:8b:7b:18: fb:3c:05:7b:d5:72:41:52:71:c2:a7:a7:12:b0:f7:ef:3d:4b: d1:0f:10:73:b6:0e:eb:83:35:79:0b:a3:d6:57:80:c3:32:e8: 54:74:8e:89:17:d7:5d:c2:35:7e:9d:34:e3:64:65:0c:42:1b: 31:85:ea:25:79:72:80:5a:99:58:ba:cc:e3:fc:3d:86:97:56: c9:e5:d0:d7:9d:39:d3:b3:1d:0f:da:13:82:2e:24:ac:2c:ed: df:81:d7:c9:73:1f:4e:03:80:2e:92:ff:b2:6a:cd:a3:99:f6: c4:18:dc:30:e7:28:90:39:30:45:01:91:5d:6b:53:36:88:b7: 03:f2:3f:c9:c2:ed:da:1a:21:3f:8b:d4:bd:71:d1:d0:2d:bf: 3d:d5:03:bf:1d:66:ae:45:2a:4e:a9:04:74:eb:c2:1d:4a:3a: bd:6e:e7:65:40:4c:36:d5:2f:fc:b1:ad:26:bb:01:e3:ac:4e: ae:04:bd:2e:77:4a:10:2a:14:e8:e7:d7:41:4e:c5:df:df:15: 8d:e4:03:f6:3d:e0:69:16:22:18:cb:62:dc:13:a9:b2:1a:fc: 7a:e1:4e:d6:b9:83:60:9d:51:a0:57:90:ff:97:69:de:82:0d: e5:0b:e8:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC MjFDNERCMDkwHhcNMjUwNTAyMTg1NjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MTU2ZS00MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9qKPrMzVjtskHxLTgm19b3ODXd2KgdFRAQNQmiZR17WETG2qgqAtrvaBvBs pB6DigRt0FYp8lhhVsM1TdAmIpkiConCz0bukpczZ+4ZDcCHL+BV/KygJbzWpbd+ RlHVrSF88WHG7E35HuvzX393u2Pgxe32lMMv44I1tWW/4dwaxC53mupFUc+ZrKJy VnF1eFG2XKrYvBKy3zM1pveDfORNZukjwba7zmuGuRR4wUfzNxbQVmZuh7bnPj34 My35fVDXfdnFbNZo0/FHAm3sWMt3jreqKcKuzFX/q2+QKa0CzLFpOs/FbwD3OfkF ZT7co4zHp1mPGHjBH4Tx7Et3fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKYFvusK 55SA52GFqOYn3aj6Q9qUMB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvMUZDNTA2M0FF MEQ0MTFFQ0I2QzBCMDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzucwDQYJKoZIhvcNAQELBQADggEBAD73OpfoANsDXvUP HiVq14t7GPs8BXvVckFSccKnpxKw9+89S9EPEHO2DuuDNXkLo9ZXgMMy6FR0jokX 113CNX6dNONkZQxCGzGF6iV5coBamVi6zOP8PYaXVsnl0NedOdOzHQ/aE4IuJKws 7d+B18lzH04DgC6S/7JqzaOZ9sQY3DDnKJA5MEUBkV1rUzaItwPyP8nC7doaIT+L 1L1x0dAtvz3VA78dZq5FKk6pBHTrwh1KOr1u52VATDbVL/yxrSa7AeOsTq4EvS53 ShAqFOjn10FOxd/fFY3kA/Y94GkWIhjLYtwTqbIa/HrhTta5g2CdUaBXkP+Xad6C DeUL6Oo= -----END CERTIFICATE-----Generated at Sat May 3 18:02:38 2025 by rpki-client