$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/00BA1DE2BF7611EF909DC53AC4F9AE02.roa File: 00BA1DE2BF7611EF909DC53AC4F9AE02.roa (raw, json) Hash identifier: zChqyRzf4cH2GZi1CqmqRA1s7/+IYh/0c/G99c1homQ= Subject key identifier: 84:34:35:76:F4:F4:83:7D:7E:C0:D7:9D:C0:7E:E9:E8:63:6E:B0:02 Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 268D Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/00BA1DE2BF7611EF909DC53AC4F9AE02.roa Signing time: Thu 10 Apr 2025 15:52:56 +0000 ROA not before: Thu 10 Apr 2025 15:52:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139870 IP address blocks: 103.139.234.0/23 maxlen: 23 103.139.234.0/24 maxlen: 24 103.139.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9869 (0x268d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0, serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Apr 10 15:52:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f7e958-6e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:48:4b:25:54:aa:6b:10:75:ea:25:03:3a:e9: 50:71:76:2f:36:3e:8a:7d:37:98:40:ac:2d:96:79: b6:55:8e:09:b2:e3:0e:1b:f0:42:c3:5e:4a:84:69: de:e8:8d:42:48:8d:c7:a7:ec:eb:34:db:77:e6:05: df:57:6b:63:2b:ea:9e:c1:aa:71:94:aa:9c:2b:81: a5:3f:f6:10:0a:11:a8:c1:24:0f:42:b2:c1:fa:4e: 41:48:8a:cf:b6:50:03:61:cb:4d:0d:50:95:38:05: 5b:d7:a2:c5:bb:f4:f3:33:bd:b3:58:39:f1:91:60: 9d:a5:4e:6d:cf:eb:cc:3c:21:85:b4:96:52:98:17: a3:ba:fa:0f:d0:1d:48:1c:1a:10:b2:55:b4:ca:3f: 00:94:e9:00:cb:25:66:6e:94:3d:0c:7d:0d:28:d8: 7a:51:c8:6f:1b:79:b5:33:54:ea:c6:1f:b4:a5:9d: fb:0c:36:b7:25:ec:61:98:1d:c2:6a:e7:1e:e7:d6: 10:aa:1b:f9:21:01:06:9a:be:24:3d:e2:f6:cf:07: 24:b0:64:03:3e:45:45:f9:9f:b0:2e:9c:d6:0c:54: 52:29:e9:9f:78:cf:dc:4c:33:a5:5e:a9:59:30:a4: 64:28:d3:96:63:85:89:17:f8:5d:9c:d8:3b:40:18: 37:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:34:35:76:F4:F4:83:7D:7E:C0:D7:9D:C0:7E:E9:E8:63:6E:B0:02 X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/00BA1DE2BF7611EF909DC53AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.234.0/23 Signature Algorithm: sha256WithRSAEncryption 02:90:18:2c:44:f0:52:68:65:5d:a6:80:7c:25:0e:28:a4:39: 42:a3:02:c6:9f:54:06:5b:5a:7f:a4:27:98:22:42:7b:86:f4: 1e:23:da:af:a7:49:e8:fe:52:82:2b:ae:4e:1e:d2:b8:c9:5e: 15:38:c1:1b:ba:11:43:74:ef:58:76:d2:49:09:f6:3c:c3:ec: 6f:fc:9c:bf:e5:b1:3a:49:df:e4:50:39:85:05:3a:96:43:f6: db:23:81:21:47:04:0f:11:88:19:8a:93:14:fc:28:17:88:ec: 0a:67:fc:39:a4:29:07:c4:03:11:38:0e:1b:8e:69:02:07:e8: c3:35:61:bd:b1:75:30:41:f6:5c:d3:e3:33:69:96:20:32:f8: 4b:bf:04:5a:77:b0:5d:39:65:d1:52:54:0c:18:17:e0:0c:c9: 66:5b:67:b6:39:36:3d:37:a2:08:e5:73:f2:1a:e2:7f:f6:47: 7b:7e:93:4b:99:38:40:fc:57:78:59:7f:60:c1:b4:df:65:ab: b4:e3:8f:b9:16:48:18:bc:0e:1e:78:9f:ed:cf:ad:e4:a3:cc: 05:d8:3f:fb:b4:02:7a:b3:9b:f5:96:20:fd:21:ef:0a:b8:fc: 06:c6:eb:93:ed:e8:90:01:d5:ff:cb:a1:f3:a8:58:ad:b5:37: 7f:5b:b5:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjUwNDEwMTU1MjU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3ZTk1OC02ZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UhLJVSqaxB16iUDOulQcXYvNj6KfTeYQKwtlnm2VY4JsuMOG/BCw15KhGne 6I1CSI3Hp+zrNNt35gXfV2tjK+qewapxlKqcK4GlP/YQChGowSQPQrLB+k5BSIrP tlADYctNDVCVOAVb16LFu/TzM72zWDnxkWCdpU5tz+vMPCGFtJZSmBejuvoP0B1I HBoQslW0yj8AlOkAyyVmbpQ9DH0NKNh6UchvG3m1M1Tqxh+0pZ37DDa3JexhmB3C auce59YQqhv5IQEGmr4kPeL2zwcksGQDPkVF+Z+wLpzWDFRSKemfeM/cTDOlXqlZ MKRkKNOWY4WJF/hdnNg7QBg3BQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIQ0NXb0 9IN9fsDXncB+6ehjbrACMB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvMDBCQTFERTJC Rjc2MTFFRjkwOURDNTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni+owDQYJKoZIhvcNAQELBQADggEBAAKQGCxE8FJoZV2m gHwlDiikOUKjAsafVAZbWn+kJ5giQnuG9B4j2q+nSej+UoIrrk4e0rjJXhU4wRu6 EUN071h20kkJ9jzD7G/8nL/lsTpJ3+RQOYUFOpZD9tsjgSFHBA8RiBmKkxT8KBeI 7Apn/DmkKQfEAxE4DhuOaQIH6MM1Yb2xdTBB9lzT4zNpliAy+Eu/BFp3sF05ZdFS VAwYF+AMyWZbZ7Y5Nj03ogjlc/Ia4n/2R3t+k0uZOED8V3hZf2DBtN9lq7Tjj7kW SBi8Dh54n+3PreSjzAXYP/u0Anqzm/WWIP0h7wq4/AbG65Pt6JAB1f/LofOoWK21 N39bteU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:30:26 2025 by rpki-client