$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa File: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (raw, json) Hash identifier: vkUKnag58zCpuCP8+f6HBj43+NKzxFLQMFl2RAEd1t8= Subject key identifier: 41:DD:9A:1F:FC:13:D4:26:11:F8:B9:D7:6A:A8:BA:3C:0C:5B:B8:44 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 0198 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa Signing time: Fri 25 Apr 2025 02:59:10 +0000 ROA not before: Fri 25 Apr 2025 02:59:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.13.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Apr 25 02:59:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680afa7e-eadc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:71:7c:b5:36:37:a7:78:f4:4c:dd:79:aa: 8b:7b:88:b9:f4:c9:f3:b5:c7:be:7c:e8:57:d0:6e: c3:bb:96:91:41:3c:6c:38:2a:68:87:50:67:5e:0c: 98:17:65:8d:e7:b2:a4:c6:da:61:5e:73:0f:7c:dd: 93:73:f3:4c:8b:14:52:25:75:bc:8f:bc:f6:1d:dc: 04:88:32:a2:25:23:d2:84:81:03:e7:47:2e:c3:21: 65:a8:89:35:c3:5a:73:8b:2e:82:a4:9a:f4:48:f8: a6:70:9d:1e:48:62:f4:d9:a2:f5:30:6a:1c:0a:28: f6:fd:8e:a1:1b:d3:9a:e4:10:0f:da:0a:4f:c7:21: fd:37:f1:b1:b0:1c:9e:cf:04:35:3d:28:e1:0c:ff: 08:ef:ce:86:b1:87:c3:72:f7:21:63:77:10:ce:36: cb:05:56:0e:c7:d8:9b:9f:9f:28:89:9c:bb:38:6e: 8a:20:1b:58:cb:e4:da:45:05:9d:c7:6e:b1:3a:fd: 7b:81:44:df:b8:05:ca:2b:52:6a:0c:24:a6:3c:c3: cc:31:3d:34:87:bd:1f:a8:1c:84:08:b2:03:e8:fa: a9:e5:bc:cb:26:55:68:35:73:79:d4:9a:db:ca:21: e9:ad:f5:4d:c3:e4:4e:2f:02:b7:6a:32:97:c6:27: 3f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DD:9A:1F:FC:13:D4:26:11:F8:B9:D7:6A:A8:BA:3C:0C:5B:B8:44 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.75.0/24 Signature Algorithm: sha256WithRSAEncryption ae:0c:b5:07:75:93:81:3b:63:90:24:6e:30:b2:0a:9e:17:11: c6:74:46:ec:2f:6a:bb:0e:81:03:87:b7:64:c6:2b:a0:49:09: 52:4e:2e:a8:23:13:75:97:bb:f8:e1:0a:e0:3a:e2:a2:23:4b: 08:95:5b:30:b2:70:7e:5d:04:08:d7:9b:a9:c3:1c:0d:5e:05: 82:fb:08:9a:b1:4f:bc:60:aa:78:fa:9b:57:a5:24:fd:04:86: 9b:72:2a:f6:fe:56:6d:b8:2a:51:06:65:92:7c:39:5d:98:56: 3c:e0:39:b3:b1:6c:54:90:3b:21:ac:d9:a5:37:ae:e5:1c:91: 63:54:8e:a3:ac:9b:ce:87:9e:37:d6:d5:8a:bd:ee:aa:5e:ba: bc:ba:3b:07:d7:86:1a:f1:dd:2a:63:d9:68:ab:43:04:f4:78: 95:1c:46:1d:74:cc:75:22:33:f6:9e:e9:98:2c:ed:84:48:60: 0e:d1:d7:da:1c:71:4e:bf:ad:81:09:0a:0a:ad:04:23:6b:b5: ac:0f:b0:65:97:5a:66:6e:13:fd:e0:65:67:00:87:c4:ea:cf: d3:1b:77:0b:27:5d:ec:59:76:7e:2b:0a:95:b2:23:2e:66:cd: 63:96:2f:6b:7b:07:31:5f:74:dc:06:c8:40:cc:0c:18:8a:e0: 78:df:fc:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjUwNDI1MDI1OTEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZmE3ZS1lYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswNxfLU2N6d49EzdeaqLe4i59Mnztce+fOhX0G7Du5aRQTxsOCpoh1BnXgyY F2WN57KkxtphXnMPfN2Tc/NMixRSJXW8j7z2HdwEiDKiJSPShIED50cuwyFlqIk1 w1pziy6CpJr0SPimcJ0eSGL02aL1MGocCij2/Y6hG9Oa5BAP2gpPxyH9N/GxsBye zwQ1PSjhDP8I786GsYfDcvchY3cQzjbLBVYOx9ibn58oiZy7OG6KIBtYy+TaRQWd x26xOv17gUTfuAXKK1JqDCSmPMPMMT00h70fqByECLID6Pqp5bzLJlVoNXN51Jrb yiHprfVNw+ROLwK3ajKXxic/7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHdmh/8 E9QmEfi512qoujwMW7hEMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZDNUUvM0VBNkEyNTBCOTcwMTFFRDg5MTg0NjdDQzRGOUFFMDIvOUJDRUVGRjRC QzY5MTFFRDlCMEZDNTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLDUswDQYJKoZIhvcNAQELBQADggEBAK4MtQd1k4E7Y5Ak bjCyCp4XEcZ0RuwvarsOgQOHt2TGK6BJCVJOLqgjE3WXu/jhCuA64qIjSwiVWzCy cH5dBAjXm6nDHA1eBYL7CJqxT7xgqnj6m1elJP0EhptyKvb+Vm24KlEGZZJ8OV2Y VjzgObOxbFSQOyGs2aU3ruUckWNUjqOsm86HnjfW1Yq97qpeury6OwfXhhrx3Spj 2WirQwT0eJUcRh10zHUiM/ae6Zgs7YRIYA7R19occU6/rYEJCgqtBCNrtawPsGWX WmZuE/3gZWcAh8Tqz9MbdwsnXexZdn4rCpWyIy5mzWOWL2t7BzFfdNwGyEDMDBiK 4Hjf/OM= -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:54 2025 by rpki-client