$ rpki-client -vvf rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/EE23EF6E857B11ECA3F32D50C4F9AE02.roa File: EE23EF6E857B11ECA3F32D50C4F9AE02.roa (raw, json) Hash identifier: 2pNsdUTXJ21ZMGMJibEjsxpDH0Z9Fw35noblZo6xKpE= Subject key identifier: 11:B6:D3:A6:23:24:85:C6:A8:EC:C7:D1:33:F1:1E:7A:F7:D4:65:97 Certificate issuer: /CN=A9146F33/serialNumber=A5737AD97136DB53C21B6F3B1D4D771DCD57313A Certificate serial: 03E2 Authority key identifier: A5:73:7A:D9:71:36:DB:53:C2:1B:6F:3B:1D:4D:77:1D:CD:57:31:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXN62XE221PCG287HU13Hc1XMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/EE23EF6E857B11ECA3F32D50C4F9AE02.roa Signing time: Mon 02 Jun 2025 12:36:18 +0000 ROA not before: Mon 02 Jun 2025 12:36:18 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134802 IP address blocks: 103.13.184.0/23 maxlen: 23 103.13.184.0/24 maxlen: 24 103.13.185.0/24 maxlen: 24 203.17.12.0/24 maxlen: 24 2406:2dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/pXN62XE221PCG287HU13Hc1XMTo.crl rsync://rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/pXN62XE221PCG287HU13Hc1XMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXN62XE221PCG287HU13Hc1XMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146F33, serialNumber=A5737AD97136DB53C21B6F3B1D4D771DCD57313A Validity Not Before: Jun 2 12:36:18 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=683d9ac2-710e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:26:f5:3f:a8:4a:b8:31:a9:85:d5:ff:5b: 76:7b:a8:c3:ae:04:a7:d9:ef:cf:eb:9d:39:aa:c4: 59:0d:aa:b1:8e:37:8d:e2:f0:d3:ca:af:38:bb:d9: 9e:b1:70:f0:7f:b9:28:81:6e:1e:f0:14:29:ae:cc: de:18:73:6d:42:28:d5:93:fc:67:bc:66:63:40:47: 97:3f:f9:52:bc:9c:3f:3f:f1:6f:0c:30:f7:7a:ab: 06:9d:6d:10:9d:45:8d:9f:a1:26:36:c1:4f:47:c0: 79:74:96:93:ea:1b:94:70:de:6d:d2:ce:e5:c8:0e: 0f:0d:91:a4:2a:de:63:59:53:dc:3a:00:ff:6e:6d: 91:52:05:51:d9:c0:60:33:cf:1f:f3:4f:67:7d:44: a8:9f:6c:9d:b2:c3:50:bf:71:9e:11:11:94:c9:13: af:28:e2:c5:c2:a9:5b:a6:67:ab:9a:37:d3:e8:0a: 59:44:62:14:3a:74:59:c2:66:84:99:d9:92:40:51: d3:64:7d:b1:6a:86:d3:63:22:b9:e6:46:36:4a:56: 09:8d:3c:74:f4:4c:6a:c0:9e:23:d4:90:4f:99:8d: c8:bc:a6:7b:13:1b:b1:f8:f0:c4:54:5c:ac:f9:91: 04:c0:16:35:f9:b3:4d:1b:eb:b8:65:8c:83:bf:11: 1c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B6:D3:A6:23:24:85:C6:A8:EC:C7:D1:33:F1:1E:7A:F7:D4:65:97 X509v3 Authority Key Identifier: keyid:A5:73:7A:D9:71:36:DB:53:C2:1B:6F:3B:1D:4D:77:1D:CD:57:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/pXN62XE221PCG287HU13Hc1XMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXN62XE221PCG287HU13Hc1XMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146F33/B165BB8A851111ECB9D3357CC4F9AE02/EE23EF6E857B11ECA3F32D50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.184.0/23 203.17.12.0/24 IPv6: 2406:2dc0::/32 Signature Algorithm: sha256WithRSAEncryption 95:77:20:2d:e9:aa:0b:23:03:ba:c6:31:08:57:0a:8c:2f:b3: cc:50:53:90:99:64:d7:ff:5c:c1:3b:20:57:bf:5c:af:d5:31: bc:c6:9a:86:8b:3f:41:04:1f:d4:db:10:59:a8:e2:e1:92:86: da:cb:c2:5e:82:6f:bb:43:4a:71:99:d0:1a:4d:24:5a:9d:b4: 50:62:a3:9d:c0:f4:f7:6f:98:25:9d:0c:bd:d0:c8:66:f3:3e: 46:9d:a9:06:db:26:b7:a6:18:8c:d7:4b:15:a5:db:65:0d:b0: 08:99:16:63:42:ff:c5:3f:20:42:4c:05:64:0c:2f:5b:0a:48: 34:ac:a2:21:8a:9c:a9:0a:bf:21:ff:1e:77:53:de:36:94:5e: d4:05:61:d2:55:04:90:48:cc:a4:e0:af:c6:11:30:36:21:42: ef:21:eb:27:25:3a:ca:9e:e0:c0:df:1c:41:a1:7a:ce:39:e0: 3c:39:99:49:65:9e:d1:ff:6d:ec:a3:ed:2f:69:7c:f9:eb:aa: ea:e5:f3:7c:87:08:69:2b:19:43:b9:9f:5e:b5:4b:58:cc:ff: 4d:17:2c:ea:61:71:15:60:e0:d8:9d:b2:21:ec:e4:b7:6e:90: 4c:3d:6b:f5:23:f2:ab:bc:1b:ff:d1:c9:48:a4:cc:d6:45:79: af:84:33:67 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZGMzMxMTAvBgNVBAUTKEE1NzM3QUQ5NzEzNkRCNTNDMjFCNkYzQjFENEQ3NzFE Q0Q1NzMxM0EwHhcNMjUwNjAyMTIzNjE4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkOWFjMi03MTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7Am9T+oSrgxqYXV/1t2e6jDrgSn2e/P6505qsRZDaqxjjeN4vDTyq84u9me sXDwf7kogW4e8BQprszeGHNtQijVk/xnvGZjQEeXP/lSvJw/P/FvDDD3eqsGnW0Q nUWNn6EmNsFPR8B5dJaT6huUcN5t0s7lyA4PDZGkKt5jWVPcOgD/bm2RUgVR2cBg M88f809nfUSon2ydssNQv3GeERGUyROvKOLFwqlbpmermjfT6ApZRGIUOnRZwmaE mdmSQFHTZH2xaobTYyK55kY2SlYJjTx09ExqwJ4j1JBPmY3IvKZ7Exux+PDEVFys +ZEEwBY1+bNNG+u4ZYyDvxEcLQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBG206Yj JIXGqOzH0TPxHnr31GWXMB8GA1UdIwQYMBaAFKVzetlxNttTwhtvOx1Ndx3NVzE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkYzMy9CMTY1QkI4QTg1 MTExMUVDQjlEMzM1N0NDNEY5QUUwMi9wWE42MlhFMjIxUENHMjg3SFUxM0hjMVhN VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYTjYyWEUyMjFQQ0cyODdIVTEzSGMxWE1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZGMzMvQjE2NUJCOEE4NTExMTFFQ0I5RDMzNTdDQzRGOUFFMDIvRUUyM0VGNkU4 NTdCMTFFQ0EzRjMyRDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnDbgDBADLEQwwDQQCAAIwBwMFACQGLcAwDQYJKoZIhvcN AQELBQADggEBAJV3IC3pqgsjA7rGMQhXCowvs8xQU5CZZNf/XME7IFe/XK/VMbzG moaLP0EEH9TbEFmo4uGShtrLwl6Cb7tDSnGZ0BpNJFqdtFBio53A9PdvmCWdDL3Q yGbzPkadqQbbJremGIzXSxWl22UNsAiZFmNC/8U/IEJMBWQML1sKSDSsoiGKnKkK vyH/HndT3jaUXtQFYdJVBJBIzKTgr8YRMDYhQu8h6yclOsqe4MDfHEGhes454Dw5 mUllntH/beyj7S9pfPnrqurl83yHCGkrGUO5n161S1jM/00XLOphcRVg4NidsiHs 5LdukEw9a/Uj8qu8G//RyUikzNZFea+EM2c= -----END CERTIFICATE-----Generated at Thu Jun 19 18:59:44 2025 by rpki-client