$ rpki-client -vvf rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa File: 8109A2E65EA111EA879CA66DC4F9AE02.roa (raw, json) Hash identifier: 0MEjUCGRzvjz5epLH1Yc0e31fL5fFdQ31GIxJUqAOEI= Subject key identifier: 71:56:6A:F5:32:E9:35:B5:27:D9:C1:72:91:9D:17:92:A3:05:9D:4F Certificate issuer: /CN=A914397B/serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Certificate serial: 0A5C Authority key identifier: B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa Signing time: Sun 30 Mar 2025 19:49:46 +0000 ROA not before: Sun 30 Mar 2025 19:49:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135124 IP address blocks: 103.135.172.0/22 maxlen: 22 103.135.172.0/23 maxlen: 23 103.135.172.0/24 maxlen: 24 103.135.173.0/24 maxlen: 24 103.135.174.0/23 maxlen: 23 103.135.174.0/24 maxlen: 24 103.135.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2652 (0xa5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914397B, serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Validity Not Before: Mar 30 19:49:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e9a059-fa9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:bb:56:72:ee:f1:5b:2c:37:68:2c:d6:c5: 89:1f:91:8b:ae:09:73:07:6d:a2:f9:04:6c:18:94: 94:f0:f3:11:1d:b1:1c:d3:e3:78:41:37:86:d5:f8: 04:96:b3:16:98:44:ca:5d:fa:f5:24:f4:b5:71:7f: d0:e8:01:d4:56:23:20:53:7a:a3:09:87:d6:79:c2: d8:05:17:6c:8b:63:c6:74:ed:cb:85:dc:7f:dc:06: cf:40:a4:26:9d:69:96:ec:f8:57:b4:aa:7b:78:88: 55:b8:e5:4a:32:0f:96:10:cf:5a:14:9a:38:93:68: 31:3a:37:6b:57:3d:16:27:7c:2f:6e:2e:cf:4b:17: a1:e5:85:f9:80:5d:51:eb:f8:02:55:1d:0e:47:36: 19:a3:92:e7:c1:1c:9c:95:0b:42:26:36:1b:59:32: f8:79:2e:fb:d2:90:55:80:71:fc:37:1d:e8:6b:48: 98:ab:43:c4:dc:5c:b4:51:4b:7d:c2:ca:f5:a0:3e: 6a:bb:03:43:6c:0a:40:ae:c3:81:30:31:95:19:04: 13:2b:91:eb:c8:34:1e:41:c8:69:80:b2:bd:7a:8c: 25:29:7a:82:c7:64:36:19:6d:ef:c7:e3:57:76:d6: 6f:e5:bc:93:fb:de:d0:c7:a9:a6:5f:4a:b2:c9:51: 16:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:56:6A:F5:32:E9:35:B5:27:D9:C1:72:91:9D:17:92:A3:05:9D:4F X509v3 Authority Key Identifier: keyid:B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.172.0/22 Signature Algorithm: sha256WithRSAEncryption 40:dd:8c:8f:db:f8:fd:16:89:b7:cd:58:4c:88:80:e5:90:59: ec:ee:11:4b:3f:6d:34:2a:3a:f0:f3:df:2e:fc:74:58:1f:cb: ae:a0:6a:bc:76:61:2b:40:14:79:63:47:9e:e0:83:1d:de:68: cb:b8:eb:30:63:f4:6d:4f:f6:33:9a:58:0a:d0:a9:1b:0d:6f: d5:2b:ed:b3:f2:b2:4f:9e:84:80:54:8a:7f:33:08:a0:ae:8a: 2f:08:42:7a:a5:7e:66:e8:ea:8e:78:f5:94:1d:68:76:83:ef: ab:2d:49:70:96:43:79:ac:84:6a:a3:83:85:f2:97:d4:95:06: 24:93:9e:ce:49:38:f0:84:f0:9e:30:cf:3a:c2:bb:7d:28:2b: fd:fe:06:91:e3:1c:aa:06:c0:4b:1b:e2:84:f1:27:82:69:76: de:37:24:6a:4e:18:1c:fb:b0:24:1e:62:a2:45:c0:9c:e0:ba: 5c:c7:8b:2a:67:f9:4a:1d:c4:f8:b7:47:d9:f2:d9:93:ea:87: 0a:78:93:30:93:d8:65:04:b0:23:9d:3c:27:a4:35:47:e0:94: 59:0a:bc:6f:79:d8:80:e6:7e:9b:37:39:e9:9a:33:51:45:f3: 37:5d:ad:8f:0d:02:08:bd:ca:13:9f:70:46:db:d7:29:e4:5e: 1b:91:b5:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICClwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM5N0IxMTAvBgNVBAUTKEIyQkE0RDI3NUE0OThGQjQ2NDZDN0JDMDZFMjYyM0Ux NkJFNzkwNTgwHhcNMjUwMzMwMTk0OTQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5YTA1OS1mYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqO+7VnLu8VssN2gs1sWJH5GLrglzB22i+QRsGJSU8PMRHbEc0+N4QTeG1fgE lrMWmETKXfr1JPS1cX/Q6AHUViMgU3qjCYfWecLYBRdsi2PGdO3Lhdx/3AbPQKQm nWmW7PhXtKp7eIhVuOVKMg+WEM9aFJo4k2gxOjdrVz0WJ3wvbi7PSxeh5YX5gF1R 6/gCVR0ORzYZo5LnwRyclQtCJjYbWTL4eS770pBVgHH8Nx3oa0iYq0PE3Fy0UUt9 wsr1oD5quwNDbApArsOBMDGVGQQTK5HryDQeQchpgLK9eowlKXqCx2Q2GW3vx+NX dtZv5byT+97Qx6mmX0qyyVEWXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHFWavUy 6TW1J9nBcpGdF5KjBZ1PMB8GA1UdIwQYMBaAFLK6TSdaSY+0ZGx7wG4mI+Fr55BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mzk3Qi8wRTA0MDFBMjVF QTAxMUVBOUEyNjQ2NkJDNEY5QUUwMi9zcnBOSjFwSmo3UmtiSHZBYmlZajRXdm5r RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NycE5KMXBKajdSa2JIdkFiaVlqNFd2bmtGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDM5N0IvMEUwNDAxQTI1RUEwMTFFQTlBMjY0NjZCQzRGOUFFMDIvODEwOUEyRTY1 RUExMTFFQTg3OUNBNjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnh6wwDQYJKoZIhvcNAQELBQADggEBAEDdjI/b+P0WibfN WEyIgOWQWezuEUs/bTQqOvDz3y78dFgfy66garx2YStAFHljR57ggx3eaMu46zBj 9G1P9jOaWArQqRsNb9Ur7bPysk+ehIBUin8zCKCuii8IQnqlfmbo6o549ZQdaHaD 76stSXCWQ3mshGqjg4Xyl9SVBiSTns5JOPCE8J4wzzrCu30oK/3+BpHjHKoGwEsb 4oTxJ4Jpdt43JGpOGBz7sCQeYqJFwJzgulzHiypn+UodxPi3R9ny2ZPqhwp4kzCT 2GUEsCOdPCekNUfglFkKvG952IDmfps3OemaM1FF8zddrY8NAgi9yhOfcEbb1ynk XhuRtWM= -----END CERTIFICATE-----Generated at Sat Apr 26 09:37:22 2025 by rpki-client