$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa File: E614FEEED6AF11EEAB03B528C4F9AE02.roa (raw, json) Hash identifier: G17ALsZLxeT9rUtyM+i2zf7iC28VSeb9B4i0ScAYOoo= Subject key identifier: A9:1A:0C:30:E8:69:10:76:A1:8F:30:6E:CC:E0:DD:2C:EA:C4:A5:95 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: D2 Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa Signing time: Sat 05 Apr 2025 05:10:52 +0000 ROA not before: Sat 05 Apr 2025 05:10:52 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132174 IP address blocks: 103.109.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93, serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: Apr 5 05:10:52 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f0bb5c-e9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2f:9c:9d:3e:75:ba:5e:c2:88:74:a4:da:ad: 23:b0:3e:90:b9:14:e7:1e:cc:a4:12:f7:d8:bf:d6: cc:16:0d:23:b6:46:77:6a:35:51:12:48:f2:6f:74: 79:f3:33:d9:ab:0a:d8:4c:d5:b9:cf:c1:d4:5f:96: 24:c1:0d:d9:76:0f:f3:06:2f:4e:30:bf:79:e5:d2: e6:95:da:9d:df:c2:65:e2:2e:07:eb:5c:28:89:29: 0b:f8:aa:01:3f:3e:cf:c8:45:8b:35:67:28:55:9b: 30:43:53:6e:ea:77:49:41:5d:12:eb:9c:b3:54:dc: 53:b6:c1:0a:91:a1:c4:58:f9:9e:46:25:34:dd:0b: 56:de:ce:33:3f:e7:67:8c:96:85:42:fc:7c:ce:75: 3d:5d:1e:52:7e:41:1b:00:37:bf:56:d1:b2:0e:48: 9d:b5:ee:27:e0:f8:ca:8d:fe:72:82:9c:75:f9:b1: 2d:3e:2d:4b:68:32:95:88:77:cd:14:a5:e3:ff:d6: a1:4d:12:07:14:65:c6:c4:94:c1:27:59:5c:0f:bd: 34:a3:28:b4:ab:e3:9b:82:bc:bd:02:27:e3:d9:85: cb:96:ac:df:75:ba:8f:78:fa:a1:26:f9:08:ef:26: 5b:02:d6:bb:5e:d2:6c:25:2a:29:b6:9b:96:40:8f: 32:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:1A:0C:30:E8:69:10:76:A1:8F:30:6E:CC:E0:DD:2C:EA:C4:A5:95 X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.122.0/24 Signature Algorithm: sha256WithRSAEncryption cd:f7:d6:98:fd:bf:f8:37:1b:3b:ef:70:08:7b:ab:31:18:bf: 75:af:f0:7a:2d:6d:34:64:e1:5c:94:f4:4f:a2:31:68:46:76: 79:ba:12:55:43:11:1d:16:6e:7f:e4:88:29:cc:14:c6:2c:0a: 78:5b:72:ed:75:44:cf:1c:55:bc:14:0b:f6:d6:df:13:0a:0b: f4:9e:29:8c:f7:ed:f5:a9:be:cd:99:69:a8:2d:1a:6b:d6:b1: d6:5f:3d:7a:48:49:0e:c3:92:f0:6e:4f:6e:19:e9:7c:3c:34: 43:cf:00:23:80:3f:3a:5d:28:93:89:2c:27:10:f3:9d:61:e4: bd:d5:fb:b1:c9:0f:6b:b0:0d:b6:e0:2d:d2:6b:cc:bc:2e:ca: f1:c3:2c:49:66:f2:91:48:de:e6:cf:39:6e:ce:78:28:20:28: 5e:34:ec:d0:7f:32:6f:66:fe:b0:16:ec:97:4d:06:3f:2a:fd: b1:d3:92:bc:f3:58:a9:bc:13:af:6c:41:b9:ad:91:44:f2:d4: 85:bd:03:eb:ea:8d:11:6b:b0:91:4a:29:17:da:a6:eb:ba:2b: d2:d5:dd:a5:a4:02:19:dc:6a:48:08:74:c1:e6:48:b0:c9:64: f0:b6:6a:f1:54:3e:86:16:06:64:1e:c2:f6:8d:fb:b7:aa:45: f4:04:6c:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlEOTMxMTAvBgNVBAUTKDhDQzUzQTk5Mjk3RjFDQzBBMEJGQkRFQkYyNEUxMzJC MEQ4NDFDNzYwHhcNMjUwNDA1MDUxMDUyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwYmI1Yy1lOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqi+cnT51ul7CiHSk2q0jsD6QuRTnHsykEvfYv9bMFg0jtkZ3ajVREkjyb3R5 8zPZqwrYTNW5z8HUX5YkwQ3Zdg/zBi9OML955dLmldqd38Jl4i4H61woiSkL+KoB Pz7PyEWLNWcoVZswQ1Nu6ndJQV0S65yzVNxTtsEKkaHEWPmeRiU03QtW3s4zP+dn jJaFQvx8znU9XR5SfkEbADe/VtGyDkidte4n4PjKjf5ygpx1+bEtPi1LaDKViHfN FKXj/9ahTRIHFGXGxJTBJ1lcD700oyi0q+Obgry9Aifj2YXLlqzfdbqPePqhJvkI 7yZbAta7XtJsJSoptpuWQI8yqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKkaDDDo aRB2oY8wbszg3SzqxKWVMB8GA1UdIwQYMBaAFIzFOpkpfxzAoL+96/JOEysNhBx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUQ5My9DQ0JBQUFEQUQ2 QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hNQ2d2NzNyOGs0VEt3MkVI SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzlEOTMvQ0NCQUFBREFENkE5MTFFRUFDRDMxNjY4QzRGOUFFMDIvRTYxNEZFRUVE NkFGMTFFRUFCMDNCNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbXowDQYJKoZIhvcNAQELBQADggEBAM331pj9v/g3Gzvv cAh7qzEYv3Wv8HotbTRk4VyU9E+iMWhGdnm6ElVDER0Wbn/kiCnMFMYsCnhbcu11 RM8cVbwUC/bW3xMKC/SeKYz37fWpvs2ZaagtGmvWsdZfPXpISQ7DkvBuT24Z6Xw8 NEPPACOAPzpdKJOJLCcQ851h5L3V+7HJD2uwDbbgLdJrzLwuyvHDLElm8pFI3ubP OW7OeCggKF407NB/Mm9m/rAW7JdNBj8q/bHTkrzzWKm8E69sQbmtkUTy1IW9A+vq jRFrsJFKKRfapuu6K9LV3aWkAhncakgIdMHmSLDJZPC2avFUPoYWBmQewvaN+7eq RfQEbB8= -----END CERTIFICATE-----Generated at Sat Apr 26 17:50:42 2025 by rpki-client