$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DF7C0A6E69E511EE92E9E35AC4F9AE02.roa File: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (raw, json) Hash identifier: NbEb3oWP2ceJtb7zrqoj41m3/pXeHDptDVhijrcSdOE= Subject key identifier: A6:B4:17:70:82:F0:E1:EB:DE:56:06:17:07:AF:25:5F:EB:4A:07:A5 Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 0126 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DF7C0A6E69E511EE92E9E35AC4F9AE02.roa Signing time: Wed 09 Apr 2025 04:09:47 +0000 ROA not before: Wed 09 Apr 2025 04:09:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18013 IP address blocks: 103.149.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Apr 9 04:09:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5f30a-5f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a5:6f:93:ec:a8:b7:7a:b3:42:09:ba:f5:71: 63:fa:92:0b:e9:30:9b:07:4b:b8:24:cf:55:e3:dd: 0d:1d:fe:0b:c9:4a:54:45:5a:5c:64:36:98:eb:39: db:38:24:e3:64:2a:17:11:aa:61:72:5c:29:d0:dd: d8:67:b9:e5:e1:d4:02:f5:c4:39:6c:8c:08:93:5c: 23:46:8c:40:fd:aa:c7:ff:01:91:ae:3f:9a:9d:80: ff:8c:94:9f:b8:e4:5c:5a:20:4f:e4:f3:55:23:6e: f0:c5:b5:02:a2:5c:2f:96:a5:3c:4d:74:1b:a6:bd: 44:cb:55:a5:d2:cc:e4:35:4e:e2:a0:14:58:d1:a9: 2a:ba:35:7d:19:63:5e:75:5e:12:30:23:1f:a5:62: 45:6f:d9:ee:66:94:55:40:fa:62:2d:83:08:57:8d: 46:81:ac:64:ff:49:09:83:22:b1:98:6f:db:6d:f3: b9:d1:d5:bc:67:e8:ed:6b:ca:14:8c:fc:be:27:7f: d0:d9:08:7e:9a:7b:a9:5c:46:3d:24:0d:50:49:b3: d8:f5:a7:fb:69:61:1d:f6:7d:7a:3b:c5:59:71:22: 5e:c7:71:22:bd:5c:c5:41:d8:73:2d:25:38:19:75: cc:20:f6:57:cb:b7:9b:f9:ed:b8:66:9f:f6:71:a7: bc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B4:17:70:82:F0:E1:EB:DE:56:06:17:07:AF:25:5F:EB:4A:07:A5 X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/DF7C0A6E69E511EE92E9E35AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.200.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:2c:21:b4:37:67:83:10:ab:28:9a:6b:c3:5f:0c:5b:7b:d0: 52:75:ca:95:b1:d9:9d:96:a8:56:eb:5b:20:78:b5:40:2d:34: d5:c2:85:c2:dd:99:40:18:56:5e:ec:2a:2d:0b:e5:6b:1a:97: a8:b3:65:d0:3f:a5:7b:3e:66:dc:a6:8d:74:0f:e5:73:17:d0: 57:5b:6b:d7:07:29:69:18:a7:05:63:12:69:d3:6a:72:e7:08: ce:ec:39:e6:fb:25:49:d2:1b:ce:3d:7d:83:a8:c1:ea:7c:3e: 32:31:97:97:07:7f:10:63:fb:e1:82:b3:f1:a5:d5:34:f2:e6: bf:ed:a4:a3:aa:59:d6:37:ac:6e:e0:af:d6:7e:17:7b:7d:73: 4a:0c:e8:1a:d9:fb:88:13:a2:d6:4b:06:44:ac:6a:97:cd:91: 36:9f:19:14:93:98:bc:29:88:d8:65:a4:9c:91:ac:9b:c1:b2: 94:b4:61:13:95:a6:20:65:64:4e:33:38:e2:a7:e7:fe:75:e7: da:dc:b6:b2:bf:78:37:16:13:a3:e6:11:03:e1:db:84:9a:c5: a7:09:8f:b8:c2:71:68:02:3a:18:26:b5:b3:4e:5c:b5:ec:b9: 41:d4:f3:c2:8f:6f:8b:c0:93:a6:12:47:11:ea:7b:90:69:56: 70:ae:f8:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUwNDA5MDQwOTQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1ZjMwYS01ZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qVvk+yot3qzQgm69XFj+pIL6TCbB0u4JM9V490NHf4LyUpURVpcZDaY6znb OCTjZCoXEaphclwp0N3YZ7nl4dQC9cQ5bIwIk1wjRoxA/arH/wGRrj+anYD/jJSf uORcWiBP5PNVI27wxbUColwvlqU8TXQbpr1Ey1Wl0szkNU7ioBRY0akqujV9GWNe dV4SMCMfpWJFb9nuZpRVQPpiLYMIV41Ggaxk/0kJgyKxmG/bbfO50dW8Z+jta8oU jPy+J3/Q2Qh+mnupXEY9JA1QSbPY9af7aWEd9n16O8VZcSJex3EivVzFQdhzLSU4 GXXMIPZXy7eb+e24Zp/2cae8MwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKa0F3CC 8OHr3lYGFwevJV/rSgelMB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZDN0MvMkI1Q0FBRTg2OUU1MTFFRUJCNjY4MjQ2QzRGOUFFMDIvREY3QzBBNkU2 OUU1MTFFRTkyRTlFMzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlcgwDQYJKoZIhvcNAQELBQADggEBAFssIbQ3Z4MQqyia a8NfDFt70FJ1ypWx2Z2WqFbrWyB4tUAtNNXChcLdmUAYVl7sKi0L5Wsal6izZdA/ pXs+ZtymjXQP5XMX0Fdba9cHKWkYpwVjEmnTanLnCM7sOeb7JUnSG849fYOowep8 PjIxl5cHfxBj++GCs/Gl1TTy5r/tpKOqWdY3rG7gr9Z+F3t9c0oM6BrZ+4gTotZL BkSsapfNkTafGRSTmLwpiNhlpJyRrJvBspS0YROVpiBlZE4zOOKn5/5159rctrK/ eDcWE6PmEQPh24SaxacJj7jCcWgCOhgmtbNOXLXsuUHU88KPb4vAk6YSRxHqe5Bp VnCu+JA= -----END CERTIFICATE-----Generated at Sat Apr 26 07:40:06 2025 by rpki-client