$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/A9E3A5041C3411EFBF05095BC4F9AE02.roa File: A9E3A5041C3411EFBF05095BC4F9AE02.roa (raw, json) Hash identifier: J01BFnUaU0xtnZuM7Va9qQmT/vUQNXlVHCchEwi5LNc= Subject key identifier: 17:92:1D:CC:CF:74:7D:D2:24:1D:23:A1:D6:2E:83:E0:99:30:30:98 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 0243 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/A9E3A5041C3411EFBF05095BC4F9AE02.roa Signing time: Mon 02 Jun 2025 22:58:37 +0000 ROA not before: Mon 02 Jun 2025 22:58:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150180 IP address blocks: 103.209.92.0/23 maxlen: 24 2001:df1:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 01:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Jun 2 22:58:37 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=683e2c9d-0814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a2:ec:50:5c:1f:cc:94:5c:e9:fb:bc:48:c7: fa:e5:4c:45:9a:57:ca:dd:74:de:4c:68:f9:00:ed: d9:89:83:46:2d:ae:78:65:87:db:8b:68:2d:55:4e: de:07:1c:07:44:ac:fa:0f:4b:b9:41:51:b3:de:a5: a0:2e:78:18:57:a6:42:89:24:ac:04:a9:f0:e1:40: 4e:1d:d8:e0:86:92:6a:b8:bc:7c:90:2d:28:6e:13: 95:52:d6:2b:a1:c5:fe:98:98:89:71:69:51:91:b7: a1:c6:fc:70:81:64:5c:59:30:5d:ce:fc:3d:d7:c4: 86:50:b1:b7:ce:1b:02:e9:6d:f7:ec:73:2b:4b:f1: 7c:cb:fe:93:ac:8d:17:83:d5:c3:dd:2e:89:df:cd: 4e:37:da:79:6a:76:89:fa:50:dc:17:87:a1:5d:90: 72:98:38:6f:b6:fd:9f:09:d0:40:1e:64:b9:c8:85: 4d:6c:d3:fc:d3:21:77:11:8f:e3:50:00:64:46:18: 9f:db:99:d1:74:cf:d9:f1:ed:5b:4a:a1:65:2d:2a: 9a:31:32:d0:90:1c:fc:0d:3a:b6:e2:a4:b6:7e:09: 40:0a:b7:45:a7:5a:1b:65:e9:bf:2b:83:d1:07:16: fe:2d:00:4b:19:0a:44:83:39:73:0e:17:3d:66:33: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:92:1D:CC:CF:74:7D:D2:24:1D:23:A1:D6:2E:83:E0:99:30:30:98 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/A9E3A5041C3411EFBF05095BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.92.0/23 IPv6: 2001:df1:3140::/48 Signature Algorithm: sha256WithRSAEncryption 7a:dd:29:99:ad:7c:de:21:3b:8f:92:1c:33:9a:a8:a0:34:c4: 45:f4:23:72:1c:69:68:08:af:1b:a8:d5:e6:5a:84:89:db:fb: 13:45:ee:12:a9:8f:27:16:be:0e:fa:89:0d:48:89:f0:66:29: b7:79:f4:a4:be:a5:fa:e3:34:05:c4:4d:66:34:c8:fc:fb:82: 1b:34:d1:2b:4b:41:07:4f:a2:ba:24:ba:0a:cb:7b:c9:b8:88: ed:5b:9f:67:d6:b7:68:89:62:6c:6f:06:99:bc:e2:82:a3:6a: 0e:4d:b5:c8:c9:13:00:cc:e9:d9:f2:fc:99:41:ae:93:2b:79: 91:e3:6f:e7:c3:6e:41:89:f5:26:66:28:1d:c5:ed:dc:03:0f: f9:ec:50:ad:df:3f:10:2a:af:72:6e:6c:c8:f6:dd:e3:5d:a1: 9d:7f:5f:f7:64:9d:2e:d5:b5:47:ed:6b:b7:ca:45:87:c1:16: 65:fc:e4:f8:70:44:7f:2f:89:17:c2:c2:3b:1f:d4:c7:8b:89: ad:94:ca:01:3e:7e:5e:80:77:5c:29:17:45:66:f0:ea:a4:e7: 13:a3:ef:33:5c:32:09:c0:69:17:a1:25:c5:2f:16:be:95:25: 00:5e:ea:5d:8e:20:cc:68:c5:41:f7:53:09:af:3e:6b:da:6d: a5:b4:6c:bc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwNjAyMjI1ODM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMmM5ZC0wODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKLsUFwfzJRc6fu8SMf65UxFmlfK3XTeTGj5AO3ZiYNGLa54ZYfbi2gtVU7e BxwHRKz6D0u5QVGz3qWgLngYV6ZCiSSsBKnw4UBOHdjghpJquLx8kC0obhOVUtYr ocX+mJiJcWlRkbehxvxwgWRcWTBdzvw918SGULG3zhsC6W337HMrS/F8y/6TrI0X g9XD3S6J381ON9p5anaJ+lDcF4ehXZBymDhvtv2fCdBAHmS5yIVNbNP80yF3EY/j UABkRhif25nRdM/Z8e1bSqFlLSqaMTLQkBz8DTq24qS2fglACrdFp1obZem/K4PR Bxb+LQBLGQpEgzlzDhc9ZjOFMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBeSHczP dH3SJB0jodYug+CZMDCYMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZEN0QvQTMzOTYzMEUyNzUwMTFFRDkxNDdCMjczQzRGOUFFMDIvQTlFM0E1MDQx QzM0MTFFRkJGMDUwOTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn0VwwDwQCAAIwCQMHACABDfExQDANBgkqhkiG9w0BAQsF AAOCAQEAet0pma183iE7j5IcM5qooDTERfQjchxpaAivG6jV5lqEidv7E0XuEqmP Jxa+DvqJDUiJ8GYpt3n0pL6l+uM0BcRNZjTI/PuCGzTRK0tBB0+iuiS6Cst7ybiI 7VufZ9a3aIlibG8GmbzigqNqDk21yMkTAMzp2fL8mUGukyt5keNv58NuQYn1JmYo HcXt3AMP+exQrd8/ECqvcm5syPbd412hnX9f92SdLtW1R+1rt8pFh8EWZfzk+HBE fy+JF8LCOx/Ux4uJrZTKAT5+XoB3XCkXRWbw6qTnE6PvM1wyCcBpF6ElxS8WvpUl AF7qXY4gzGjFQfdTCa8+a9ptpbRsvA== -----END CERTIFICATE-----Generated at Sat Jun 21 16:20:41 2025 by rpki-client