$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/202A9E5E8B7811EF9E21317AC4F9AE02.roa File: 202A9E5E8B7811EF9E21317AC4F9AE02.roa (raw, json) Hash identifier: 6eqU3D3nkl8TxNOcTzkOAZbDhLtOvIweFYcN2fOYDro= Subject key identifier: 3B:5D:E9:00:68:94:14:6A:8A:98:00:8C:EC:FF:65:D8:93:64:CD:7D Certificate issuer: /CN=A9132FA5/serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Certificate serial: 0AA3 Authority key identifier: 8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/202A9E5E8B7811EF9E21317AC4F9AE02.roa Signing time: Wed 02 Apr 2025 19:50:12 +0000 ROA not before: Wed 02 Apr 2025 19:50:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149515 IP address blocks: 103.87.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FA5, serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Validity Not Before: Apr 2 19:50:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed94f4-cd8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:38:86:67:75:84:b4:29:c2:ec:03:fe:f9: 1a:4d:6f:cc:5a:c3:be:8c:39:70:23:9e:c9:d3:a3: e7:83:f0:6c:05:3f:f8:fb:ff:6a:32:7f:25:85:ad: dc:64:01:62:53:06:83:41:e2:76:bf:05:d6:93:58: 83:e9:38:3c:66:65:b0:e1:2c:4e:7a:76:a4:23:70: e1:6d:5f:e9:bc:81:1a:28:99:5a:b2:d1:9f:f4:08: 9d:71:a0:b1:16:35:d8:2a:2b:c1:b7:87:5f:11:b2: 09:ea:72:13:35:2a:de:5f:25:05:e8:8e:30:a9:f6: d9:97:c4:fa:d9:df:7f:44:d2:f8:c9:15:26:f1:d1: e8:4b:cf:e4:8b:64:e2:54:1a:f3:7c:31:b2:ce:ea: cb:ad:4a:f5:aa:5b:9e:7b:51:45:45:c2:a0:3d:bd: 35:df:e4:83:11:54:d2:bd:8b:28:6d:00:49:93:22: f7:ea:6d:c8:4c:85:8b:33:3b:88:83:49:d6:3e:a8: 0a:29:db:6e:4b:fb:75:14:d6:4f:1e:2f:ff:20:6b: 1e:e1:c9:ff:ce:3f:98:de:b6:84:b1:4c:d7:91:6a: 1d:54:6f:ca:f4:69:38:b1:75:c9:4d:a5:da:04:ac: 6f:18:f7:a7:d0:d7:53:a8:e9:90:0f:03:75:15:63: 64:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5D:E9:00:68:94:14:6A:8A:98:00:8C:EC:FF:65:D8:93:64:CD:7D X509v3 Authority Key Identifier: keyid:8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/202A9E5E8B7811EF9E21317AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.210.0/23 Signature Algorithm: sha256WithRSAEncryption 31:e4:3e:a4:e0:1b:6e:52:2d:c7:8d:2a:39:db:01:b1:74:9d: de:6a:86:ab:df:4f:19:58:10:3c:a0:5c:24:ee:6c:1f:a1:46: 46:04:93:b4:7f:9c:5b:c9:aa:dc:69:33:1e:e8:6d:dd:83:b5: 22:47:bd:44:2d:77:37:08:29:44:67:7a:9d:a6:11:a9:5e:d4: 00:db:23:a1:fc:86:af:6b:5c:f6:10:58:1a:83:2c:33:e1:4a: ec:82:59:26:62:73:22:5d:4e:b4:54:d7:83:2d:77:c0:6e:8e: f2:0c:8c:27:32:99:07:77:45:b8:56:74:85:ba:2a:7c:31:a9: 54:3b:a8:e6:9c:d9:00:0c:65:25:8a:4e:d8:6b:76:9f:ec:12: d5:31:1d:15:de:cb:4f:8c:f4:03:60:bf:65:f5:d5:dd:ca:16: 98:75:60:a5:cd:35:ce:a5:ff:13:90:ca:bc:ba:1c:5d:54:bb: 0b:08:a0:6a:33:7d:c3:ee:0c:21:d8:f3:3d:d2:f7:a5:de:2e: 11:d0:3c:36:78:86:d6:11:a9:02:98:f7:b5:ab:ce:e4:d7:b2: e7:67:d5:f3:a7:5d:f6:c3:19:ff:98:e9:81:ad:4f:2d:d7:20: 19:ed:11:31:c6:cc:84:7c:28:18:cb:95:9b:f9:1d:21:61:b0: de:9f:0f:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGQTUxMTAvBgNVBAUTKDhENUFGRjMyMTkwMTJBMUM5OUUyNzNDMkI3RTYzQTJE MEMzOTYyRTcwHhcNMjUwNDAyMTk1MDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTRmNC1jZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY44hmd1hLQpwuwD/vkaTW/MWsO+jDlwI57J06Png/BsBT/4+/9qMn8lha3c ZAFiUwaDQeJ2vwXWk1iD6Tg8ZmWw4SxOenakI3DhbV/pvIEaKJlastGf9AidcaCx FjXYKivBt4dfEbIJ6nITNSreXyUF6I4wqfbZl8T62d9/RNL4yRUm8dHoS8/ki2Ti VBrzfDGyzurLrUr1qluee1FFRcKgPb013+SDEVTSvYsobQBJkyL36m3ITIWLMzuI g0nWPqgKKdtuS/t1FNZPHi//IGse4cn/zj+Y3raEsUzXkWodVG/K9Gk4sXXJTaXa BKxvGPen0NdTqOmQDwN1FWNkqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDtd6QBo lBRqipgAjOz/ZdiTZM19MB8GA1UdIwQYMBaAFI1a/zIZASocmeJzwrfmOi0MOWLn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZBNS9BQkQ0NzEwODU2 OTExMUVBQjVDNUM3MEZDNEY5QUUwMi9qVnJfTWhrQktoeVo0blBDdC1ZNkxRdzVZ dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWcl9NaGtCS2h5WjRuUEN0LVk2TFF3NVl1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJGQTUvQUJENDcxMDg1NjkxMTFFQUI1QzVDNzBGQzRGOUFFMDIvMjAyQTlFNUU4 Qjc4MTFFRjlFMjEzMTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnV9IwDQYJKoZIhvcNAQELBQADggEBADHkPqTgG25SLceN KjnbAbF0nd5qhqvfTxlYEDygXCTubB+hRkYEk7R/nFvJqtxpMx7obd2DtSJHvUQt dzcIKURnep2mEale1ADbI6H8hq9rXPYQWBqDLDPhSuyCWSZicyJdTrRU14Mtd8Bu jvIMjCcymQd3RbhWdIW6KnwxqVQ7qOac2QAMZSWKTthrdp/sEtUxHRXey0+M9ANg v2X11d3KFph1YKXNNc6l/xOQyry6HF1UuwsIoGozfcPuDCHY8z3S96XeLhHQPDZ4 htYRqQKY97WrzuTXsudn1fOnXfbDGf+Y6YGtTy3XIBntETHGzIR8KBjLlZv5HSFh sN6fD+8= -----END CERTIFICATE-----Generated at Sat Apr 26 08:34:38 2025 by rpki-client