$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa File: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (raw, json) Hash identifier: EHUc5Goa9nVY7SlTfmeqrv5ucf88hUBAHLp60F7iD50= Subject key identifier: 6F:A7:57:15:0C:2C:15:F2:3E:32:70:A6:96:49:1E:46:D5:D5:98:55 Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 053D Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa Signing time: Mon 02 Jun 2025 23:51:30 +0000 ROA not before: Mon 02 Jun 2025 23:51:30 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139219 IP address blocks: 103.139.176.0/23 maxlen: 23 103.139.176.0/24 maxlen: 24 103.139.177.0/24 maxlen: 24 2400:1460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 23:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Jun 2 23:51:30 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e3902-4287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:ec:a3:71:0a:da:92:f6:fd:f1:46:3a:21: 9e:65:05:59:69:e4:8f:c2:fd:38:8b:22:8d:3f:dd: c6:c0:41:36:02:ea:37:b2:73:a1:42:f7:3d:ce:67: 13:b3:bd:09:a0:f0:74:6e:ce:81:76:46:eb:d7:38: 37:67:49:d7:54:96:67:f7:4d:f1:cf:c7:e4:70:d3: d8:a2:ab:4d:10:76:d6:e1:8e:45:c6:0f:69:93:a6: 99:50:74:61:75:0a:43:23:18:ab:7b:74:bf:5c:ed: cd:5f:26:13:32:9f:70:2f:e1:aa:d6:b3:98:a3:73: 03:12:20:cc:2b:d1:10:41:51:5e:ca:52:0e:7d:12: ed:a5:80:f9:d1:74:c8:65:1e:c0:bd:06:02:21:1e: cf:9e:bc:9b:6d:50:bc:bc:41:82:d2:91:be:36:f6: 80:94:84:52:8f:02:b8:c7:a8:65:76:2b:b2:eb:cf: 02:c3:1a:f9:5c:3e:38:51:ab:2a:f3:cd:9c:b3:c9: ca:d7:02:8c:33:e9:b5:39:bb:2c:07:31:ba:df:e0: 4d:eb:22:b6:ba:bb:75:20:a1:01:66:ef:73:77:68: 72:1b:9d:b6:02:2b:ae:c4:16:27:26:73:b5:2b:a6: a7:ee:e0:e9:5c:a9:aa:ac:51:3a:a8:89:45:12:c0: 7d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A7:57:15:0C:2C:15:F2:3E:32:70:A6:96:49:1E:46:D5:D5:98:55 X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.176.0/23 IPv6: 2400:1460::/32 Signature Algorithm: sha256WithRSAEncryption 0b:8f:f7:58:4e:d9:ea:c8:2f:ad:b5:5c:73:5a:65:10:21:5d: 49:2a:c6:4c:11:bb:ca:d8:af:70:f4:8f:39:77:6e:cd:6e:27: 1a:19:e7:c4:80:48:8e:c5:02:be:cf:77:80:3d:44:a4:b4:df: 18:c3:19:41:2b:53:5e:9d:23:64:0e:cc:98:cd:79:b5:bc:16: 58:a2:df:ff:1e:95:e4:05:31:03:0a:b6:dd:c8:ef:4e:68:b1: ca:8b:1e:58:fe:c4:87:5b:5e:ea:63:70:5f:89:e2:7c:2f:2a: 14:71:63:e1:5e:7c:62:2c:13:00:e8:40:37:49:82:22:b5:a8: 25:8c:07:db:21:1a:82:6c:c8:43:2a:9f:2f:1b:71:f3:e6:1f: c6:85:36:9f:59:ef:ef:71:15:c2:bd:98:66:d0:d6:86:ce:71: c6:9f:5b:d6:4e:61:09:a9:f6:05:e4:95:7b:48:d5:3c:5b:9e: df:9f:c8:4f:c2:9e:45:8c:32:bb:f9:41:18:89:92:0d:90:55: 1d:cf:9c:b9:d4:5c:20:96:99:11:99:b0:fe:39:6f:d9:03:f9: da:2d:98:f9:3c:6c:4e:c8:62:5e:57:b6:ed:0b:ef:af:4f:36: 79:38:b9:d2:36:c9:b9:d3:0d:18:e2:76:92:de:41:c5:46:0f: 81:b1:1a:ae -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUwNjAyMjM1MTMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMzkwMi00Mjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27vso3EK2pL2/fFGOiGeZQVZaeSPwv04iyKNP93GwEE2Auo3snOhQvc9zmcT s70JoPB0bs6Bdkbr1zg3Z0nXVJZn903xz8fkcNPYoqtNEHbW4Y5Fxg9pk6aZUHRh dQpDIxire3S/XO3NXyYTMp9wL+Gq1rOYo3MDEiDMK9EQQVFeylIOfRLtpYD50XTI ZR7AvQYCIR7PnrybbVC8vEGC0pG+NvaAlIRSjwK4x6hldiuy688Cwxr5XD44Uasq 882cs8nK1wKMM+m1ObssBzG63+BN6yK2urt1IKEBZu9zd2hyG522AiuuxBYnJnO1 K6an7uDpXKmqrFE6qIlFEsB9OwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG+nVxUM LBXyPjJwppZJHkbV1ZhVMB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFNDgvNTBFRkQ4NzZGOUQ0MTFFQjk3OTQ4MzExQzRGOUFFMDIvRDVGRkNCOTZG OUQ2MTFFQjhBOUZDRTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFni7AwDQQCAAIwBwMFACQAFGAwDQYJKoZIhvcNAQELBQAD ggEBAAuP91hO2erIL621XHNaZRAhXUkqxkwRu8rYr3D0jzl3bs1uJxoZ58SASI7F Ar7Pd4A9RKS03xjDGUErU16dI2QOzJjNebW8Flii3/8eleQFMQMKtt3I705oscqL Hlj+xIdbXupjcF+J4nwvKhRxY+FefGIsEwDoQDdJgiK1qCWMB9shGoJsyEMqny8b cfPmH8aFNp9Z7+9xFcK9mGbQ1obOccafW9ZOYQmp9gXklXtI1Txbnt+fyE/CnkWM Mrv5QRiJkg2QVR3PnLnUXCCWmRGZsP45b9kD+dotmPk8bE7IYl5Xtu0L769PNnk4 udI2ybnTDRjidpLeQcVGD4GxGq4= -----END CERTIFICATE-----Generated at Sat Jun 21 05:36:26 2025 by rpki-client