$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/0A9169068B7811EFB0820F7AC4F9AE02.roa File: 0A9169068B7811EFB0820F7AC4F9AE02.roa (raw, json) Hash identifier: DswYDUP/RD9PbGNtXcWRx0rv+yAsEjlaJqRA+mnEXlQ= Subject key identifier: F8:C3:7F:2E:44:7C:94:20:6A:87:11:2C:31:5F:D3:C0:B6:9B:23:38 Certificate issuer: /CN=A9132FA5/serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Certificate serial: 0AA2 Authority key identifier: 8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/0A9169068B7811EFB0820F7AC4F9AE02.roa Signing time: Wed 02 Apr 2025 19:50:11 +0000 ROA not before: Wed 02 Apr 2025 19:50:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 148968 IP address blocks: 103.87.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FA5, serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Validity Not Before: Apr 2 19:50:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed94f3-c221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5a:e5:73:23:6b:66:97:1b:66:ae:59:b7:97: f5:f4:f0:b7:8e:05:f6:20:d5:98:d0:b3:22:12:ff: 3b:5e:44:72:69:1f:0d:db:48:1c:27:a1:7f:00:f7: de:ee:9b:e6:4a:48:7e:26:04:a4:3b:50:b5:3e:00: 72:04:6d:a5:f0:81:e9:c7:ac:f0:94:04:eb:d3:22: 27:cb:b0:b0:63:4c:ca:71:33:10:d9:c6:9c:e3:8c: e4:dd:68:c7:4b:dc:73:3c:61:b4:38:f1:7b:9e:da: 9a:dc:22:a6:0a:c6:22:65:7b:14:8b:8c:49:bb:93: b9:2f:0e:12:c8:9a:e2:c8:1a:bf:57:f9:65:46:47: be:b6:8f:d6:ee:79:0b:c8:19:8e:d6:90:a1:1e:28: f7:e5:12:03:55:b1:3a:c2:6a:da:b6:ba:7b:9b:89: 6d:51:34:00:03:78:e6:7b:a2:15:7b:d5:95:ff:55: ce:e3:04:50:64:e8:3c:5b:2c:c7:db:9e:2f:84:6e: fa:4b:01:39:56:61:be:d5:3b:c8:52:81:a9:c1:60: 06:28:11:31:91:d7:eb:12:41:a1:76:f0:ab:c8:bc: 8c:ed:8e:19:16:7f:32:b0:84:08:34:7e:23:7f:6b: 96:39:69:32:59:34:49:21:47:a5:a4:3a:3b:1a:fc: 56:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C3:7F:2E:44:7C:94:20:6A:87:11:2C:31:5F:D3:C0:B6:9B:23:38 X509v3 Authority Key Identifier: keyid:8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/0A9169068B7811EFB0820F7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.210.0/23 Signature Algorithm: sha256WithRSAEncryption 42:dd:68:ad:34:b8:29:b2:6c:a0:9d:7b:d9:00:99:55:d1:39: 4b:eb:02:fe:ad:40:35:48:77:d8:4e:b1:a6:93:41:97:14:45: de:28:b4:bf:da:fe:b0:d6:dd:a3:0f:dc:d9:79:6e:ad:79:e6: 3c:8b:ae:fa:c9:00:96:d3:28:5c:fa:9b:aa:5c:2f:f6:8c:60: bf:94:2b:32:5f:d3:c3:b6:11:c2:ae:33:f8:b6:03:8e:dc:37: 11:4a:64:1c:fb:8c:6e:20:19:a2:df:d1:13:e0:cd:3e:80:7e: 1e:9e:8c:76:b3:7f:bc:05:93:ff:c3:db:50:15:60:03:4c:77: e7:d5:6e:08:0d:92:1a:d9:41:24:71:07:08:24:6c:e6:fa:16: 8b:e5:60:cd:9c:de:16:15:8e:94:61:88:ee:a4:c0:27:7a:61: 4b:8a:a7:ab:43:97:22:03:d4:44:6b:05:44:f7:1f:d6:91:04: 77:67:3a:c4:42:2b:d6:22:1c:1e:a4:cb:be:51:32:4d:4c:8a: 54:47:a4:ef:d6:2e:67:e4:b8:35:68:f2:47:f0:c2:21:1b:f3: ab:e6:db:c0:9e:65:d4:e1:df:dc:cc:07:a0:c7:4c:38:16:50: 28:eb:43:ad:04:88:8d:34:35:b2:96:97:c7:ee:be:c6:72:cf: dc:42:51:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGQTUxMTAvBgNVBAUTKDhENUFGRjMyMTkwMTJBMUM5OUUyNzNDMkI3RTYzQTJE MEMzOTYyRTcwHhcNMjUwNDAyMTk1MDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTRmMy1jMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FrlcyNrZpcbZq5Zt5f19PC3jgX2INWY0LMiEv87XkRyaR8N20gcJ6F/APfe 7pvmSkh+JgSkO1C1PgByBG2l8IHpx6zwlATr0yIny7CwY0zKcTMQ2cac44zk3WjH S9xzPGG0OPF7ntqa3CKmCsYiZXsUi4xJu5O5Lw4SyJriyBq/V/llRke+to/W7nkL yBmO1pChHij35RIDVbE6wmratrp7m4ltUTQAA3jme6IVe9WV/1XO4wRQZOg8WyzH 254vhG76SwE5VmG+1TvIUoGpwWAGKBExkdfrEkGhdvCryLyM7Y4ZFn8ysIQINH4j f2uWOWkyWTRJIUelpDo7GvxWzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPjDfy5E fJQgaocRLDFf08C2myM4MB8GA1UdIwQYMBaAFI1a/zIZASocmeJzwrfmOi0MOWLn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZBNS9BQkQ0NzEwODU2 OTExMUVBQjVDNUM3MEZDNEY5QUUwMi9qVnJfTWhrQktoeVo0blBDdC1ZNkxRdzVZ dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWcl9NaGtCS2h5WjRuUEN0LVk2TFF3NVl1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJGQTUvQUJENDcxMDg1NjkxMTFFQUI1QzVDNzBGQzRGOUFFMDIvMEE5MTY5MDY4 Qjc4MTFFRkIwODIwRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnV9IwDQYJKoZIhvcNAQELBQADggEBAELdaK00uCmybKCd e9kAmVXROUvrAv6tQDVId9hOsaaTQZcURd4otL/a/rDW3aMP3Nl5bq155jyLrvrJ AJbTKFz6m6pcL/aMYL+UKzJf08O2EcKuM/i2A47cNxFKZBz7jG4gGaLf0RPgzT6A fh6ejHazf7wFk//D21AVYANMd+fVbggNkhrZQSRxBwgkbOb6FovlYM2c3hYVjpRh iO6kwCd6YUuKp6tDlyID1ERrBUT3H9aRBHdnOsRCK9YiHB6ky75RMk1MilRHpO/W LmfkuDVo8kfwwiEb86vm28CeZdTh39zMB6DHTDgWUCjrQ60EiI00NbKWl8fuvsZy z9xCUQ0= -----END CERTIFICATE-----Generated at Sat Apr 26 09:30:39 2025 by rpki-client