$ rpki-client -vvf rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/1AC2369A010911ECB732340DC4F9AE02.roa File: 1AC2369A010911ECB732340DC4F9AE02.roa (raw, json) Hash identifier: FLJlO0/U5xnVZ/RuP3SLCUdb/l/zTCs0DDA6x0gKds8= Subject key identifier: F0:E4:62:12:7B:82:5F:E5:C5:57:1F:2D:17:52:6A:B9:17:F6:A8:AC Certificate issuer: /CN=A913806E/serialNumber=0989E191558BBCE46FAB7B53E4A735EEADA8D477 Certificate serial: 0776 Authority key identifier: 09:89:E1:91:55:8B:BC:E4:6F:AB:7B:53:E4:A7:35:EE:AD:A8:D4:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CYnhkVWLvORvq3tT5Kc17q2o1Hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/1AC2369A010911ECB732340DC4F9AE02.roa Signing time: Tue 04 Feb 2025 21:10:40 +0000 ROA not before: Tue 04 Feb 2025 21:10:40 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138552 IP address blocks: 103.132.192.0/22 maxlen: 24 2404:3dc0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/CYnhkVWLvORvq3tT5Kc17q2o1Hc.crl rsync://rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/CYnhkVWLvORvq3tT5Kc17q2o1Hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CYnhkVWLvORvq3tT5Kc17q2o1Hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913806E, serialNumber=0989E191558BBCE46FAB7B53E4A735EEADA8D477 Validity Not Before: Feb 4 21:10:40 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a28250-5989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a6:2e:84:97:2f:7e:35:fc:ad:72:74:d9:31: 93:ac:15:b5:57:7d:ea:3f:d9:ce:39:b6:7d:a2:8d: 30:cf:ac:4d:4f:a8:f7:2c:04:76:94:a7:a4:77:68: 89:15:e2:ad:9c:08:ab:fb:06:a4:c2:57:51:85:ec: e7:0d:8c:ec:de:9e:c6:fc:7c:3a:ae:18:7a:18:fa: d9:c6:f2:b2:33:80:49:25:49:8e:89:b6:62:8f:42: 6a:08:4c:aa:5b:48:07:ab:8f:de:2e:56:14:81:b9: 91:4e:f3:77:1e:a0:7c:78:dc:01:0b:3d:fc:df:41: 5d:31:e7:c2:32:2c:eb:e1:43:f3:f3:90:89:f6:b8: 90:f2:9a:94:cf:68:89:19:01:26:fb:34:f2:21:57: 56:91:07:f9:a8:f9:dd:9d:c1:53:0f:87:6b:ac:37: 80:90:5c:e3:33:6b:38:64:89:0b:41:78:43:a4:25: 78:c8:30:9b:cf:67:80:33:cc:9f:38:9f:60:3b:5f: 68:4d:64:40:98:c9:f1:e5:e2:60:96:d4:e9:b2:16: f7:13:85:88:d0:26:c1:a8:8d:fe:6a:23:98:27:89: bd:83:ac:9f:b9:a1:6c:97:c5:2e:2c:ee:84:c6:72: 61:e4:58:19:54:20:29:70:c0:a8:3d:0e:5b:59:04: b9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E4:62:12:7B:82:5F:E5:C5:57:1F:2D:17:52:6A:B9:17:F6:A8:AC X509v3 Authority Key Identifier: keyid:09:89:E1:91:55:8B:BC:E4:6F:AB:7B:53:E4:A7:35:EE:AD:A8:D4:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/CYnhkVWLvORvq3tT5Kc17q2o1Hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CYnhkVWLvORvq3tT5Kc17q2o1Hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913806E/9DBFAB38022F11EB9333183CC4F9AE02/1AC2369A010911ECB732340DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.192.0/22 IPv6: 2404:3dc0:1::/48 Signature Algorithm: sha256WithRSAEncryption 69:cb:66:5e:8a:4a:a1:46:33:d6:6b:5a:50:84:64:6a:1d:08: f4:b6:5b:01:ce:90:ac:e7:39:6a:f8:eb:5e:27:9b:0c:37:88: f0:28:f3:46:1b:19:78:06:19:a0:b4:6c:83:c6:b0:46:9d:05: f1:70:cf:a5:6d:09:53:02:78:be:5a:7d:53:3f:99:9e:a6:4b: 75:6a:05:af:b2:f0:64:2b:82:2c:7f:2d:3e:7b:6c:39:f0:6c: ef:ca:03:45:17:44:29:ad:c4:79:ca:9a:a5:2d:58:69:64:6e: ee:d0:bf:75:07:16:69:9a:ba:5c:73:6f:02:ea:f8:bc:86:ab: bb:31:6c:3b:09:89:f0:82:9e:b6:5e:b7:bf:92:f6:2d:aa:a2: 6b:5b:ec:4f:c4:66:44:ae:14:c3:2f:c6:05:12:fe:d8:30:9c: 6f:76:74:e1:24:66:e6:58:2e:c9:65:4a:88:b6:56:ec:46:c3: 86:77:6e:de:ec:79:c6:6a:31:b1:df:fd:cf:8c:80:dc:73:54: 81:a8:c5:5c:25:9a:99:d1:e4:24:dd:a1:c1:02:49:14:81:20: b3:21:86:37:91:28:a1:04:d5:77:e3:42:99:90:c6:e1:be:42: 12:00:71:b4:93:ea:02:b7:e0:a3:aa:55:52:d1:46:3b:88:e7: ec:90:5c:15 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwNkUxMTAvBgNVBAUTKDA5ODlFMTkxNTU4QkJDRTQ2RkFCN0I1M0U0QTczNUVF QURBOEQ0NzcwHhcNMjUwMjA0MjExMDQwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODI1MC01OTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKYuhJcvfjX8rXJ02TGTrBW1V33qP9nOObZ9oo0wz6xNT6j3LAR2lKekd2iJ FeKtnAir+wakwldRheznDYzs3p7G/Hw6rhh6GPrZxvKyM4BJJUmOibZij0JqCEyq W0gHq4/eLlYUgbmRTvN3HqB8eNwBCz3830FdMefCMizr4UPz85CJ9riQ8pqUz2iJ GQEm+zTyIVdWkQf5qPndncFTD4drrDeAkFzjM2s4ZIkLQXhDpCV4yDCbz2eAM8yf OJ9gO19oTWRAmMnx5eJgltTpshb3E4WI0CbBqI3+aiOYJ4m9g6yfuaFsl8UuLO6E xnJh5FgZVCApcMCoPQ5bWQS5JwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPDkYhJ7 gl/lxVcfLRdSarkX9qisMB8GA1UdIwQYMBaAFAmJ4ZFVi7zkb6t7U+SnNe6tqNR3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODA2RS85REJGQUIzODAy MkYxMUVCOTMzMzE4M0NDNEY5QUUwMi9DWW5oa1ZXTHZPUnZxM3RUNUtjMTdxMm8x SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NZbmhrVldMdk9SdnEzdFQ1S2MxN3EybzFIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgwNkUvOURCRkFCMzgwMjJGMTFFQjkzMzMxODNDQzRGOUFFMDIvMUFDMjM2OUEw MTA5MTFFQ0I3MzIzNDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnhMAwDwQCAAIwCQMHACQEPcAAATANBgkqhkiG9w0BAQsF AAOCAQEAactmXopKoUYz1mtaUIRkah0I9LZbAc6QrOc5avjrXiebDDeI8CjzRhsZ eAYZoLRsg8awRp0F8XDPpW0JUwJ4vlp9Uz+ZnqZLdWoFr7LwZCuCLH8tPntsOfBs 78oDRRdEKa3EecqapS1YaWRu7tC/dQcWaZq6XHNvAur4vIaruzFsOwmJ8IKetl63 v5L2Laqia1vsT8RmRK4Uwy/GBRL+2DCcb3Z04SRm5lguyWVKiLZW7EbDhndu3ux5 xmoxsd/9z4yA3HNUgajFXCWamdHkJN2hwQJJFIEgsyGGN5EooQTVd+NCmZDG4b5C EgBxtJPqArfgo6pVUtFGO4jn7JBcFQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:23 2025 by rpki-client