$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/04E8D402F01111ED9C345840C4F9AE02.roa File: 04E8D402F01111ED9C345840C4F9AE02.roa (raw, json) Hash identifier: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY= Subject key identifier: 65:6B:91:40:F4:A0:46:7A:D4:E2:80:36:49:DC:29:B3:45:A3:66:9B Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 0551 Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/04E8D402F01111ED9C345840C4F9AE02.roa Signing time: Tue 08 Apr 2025 23:34:08 +0000 ROA not before: Tue 08 Apr 2025 23:34:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 203120 IP address blocks: 103.210.244.0/23 maxlen: 23 103.210.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Apr 8 23:34:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5b270-15d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:68:ad:d6:51:aa:83:a1:1a:4d:f1:e8:ad: 35:a6:93:75:a9:8a:39:e1:4a:0e:0a:75:2b:b5:87: e3:d7:42:b5:ff:51:88:5b:dc:99:df:da:dd:9c:cb: 2a:77:4d:ef:12:40:cf:a5:16:64:3f:27:8c:b4:87: 54:70:03:72:05:59:76:e8:cf:5a:09:0e:4d:b7:00: 1b:94:91:60:70:37:c5:f3:ec:ed:83:38:97:95:83: 30:e1:c7:36:22:9f:c6:36:01:8d:95:c2:9c:fa:04: 6d:37:a0:f5:d4:17:38:71:01:34:d8:06:ef:a0:e4: 70:bd:29:3a:9c:0e:1f:9d:61:08:80:14:77:ea:c6: 94:53:96:86:5d:0d:d6:13:d7:6c:84:43:48:b1:b1: 68:9c:ab:1b:fe:45:cf:df:37:d9:44:df:d6:2d:47: 76:f4:76:a8:56:03:17:81:e6:91:ad:d6:27:21:e1: 0a:05:2b:1f:a5:85:e0:2d:71:c8:e1:d6:71:3f:12: a6:aa:7f:1f:ab:30:46:c0:11:07:6b:93:15:11:91: 8c:95:75:3f:a9:5c:33:11:04:eb:cb:e6:f3:7f:9a: 79:c8:f9:41:cf:0a:70:b1:33:b9:50:1b:48:26:6a: f1:ed:ec:36:4a:fb:c2:51:33:f7:cc:3e:64:1a:d2: 52:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6B:91:40:F4:A0:46:7A:D4:E2:80:36:49:DC:29:B3:45:A3:66:9B X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/04E8D402F01111ED9C345840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.244.0/22 Signature Algorithm: sha256WithRSAEncryption 86:1a:65:9d:b5:92:1b:d6:f6:13:26:dc:66:dd:18:f4:26:8d: c1:61:6f:35:e1:c0:e3:4d:28:d3:d9:2f:db:e4:a7:ba:62:74: 5c:88:3a:a6:36:e7:96:59:5e:e5:9a:72:b8:0a:7c:e4:9d:c9: 19:19:59:b5:db:fd:ab:b1:10:a4:62:1f:82:6f:30:42:79:20: b2:f9:f3:e3:4b:ee:d4:97:38:0c:fa:09:8d:5b:3c:31:a8:43: 8f:c0:6b:9c:7d:79:c0:6f:3f:47:b2:11:8b:c1:de:f9:99:a8: 88:81:04:c6:62:79:45:e2:2e:a2:55:bd:36:a2:14:e3:9a:03: 52:4b:4a:0c:43:44:19:e4:6e:d9:46:b3:97:cb:9b:89:10:72: 8c:b4:23:a7:32:3f:7a:46:64:f3:9f:69:b4:f6:cd:bb:3f:1e: e9:41:2d:67:ba:19:87:66:eb:80:cf:72:7e:6a:a1:6b:f5:24: b1:ac:bc:5e:51:78:d2:0f:5b:62:a0:6b:a3:20:e0:b6:d3:14: aa:98:51:fb:0a:cd:17:98:68:ee:ad:1a:3b:63:78:1d:27:f3: 41:82:90:3d:a6:78:61:fd:22:77:c8:09:a1:35:aa:5a:49:d4: 32:9d:12:46:27:25:e2:b6:f2:a7:da:be:1b:d1:ed:f4:aa:3e: 78:c5:c4:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUwNDA4MjMzNDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YjI3MC0xNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNNordZRqoOhGk3x6K01ppN1qYo54UoOCnUrtYfj10K1/1GIW9yZ39rdnMsq d03vEkDPpRZkPyeMtIdUcANyBVl26M9aCQ5NtwAblJFgcDfF8+ztgziXlYMw4cc2 Ip/GNgGNlcKc+gRtN6D11Bc4cQE02AbvoORwvSk6nA4fnWEIgBR36saUU5aGXQ3W E9dshENIsbFonKsb/kXP3zfZRN/WLUd29HaoVgMXgeaRrdYnIeEKBSsfpYXgLXHI 4dZxPxKmqn8fqzBGwBEHa5MVEZGMlXU/qVwzEQTry+bzf5p5yPlBzwpwsTO5UBtI Jmrx7ew2SvvCUTP3zD5kGtJSCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGVrkUD0 oEZ61OKANkncKbNFo2abMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDRTkvMEFCMUQzOTZGNTE1MTFFQjlFRkUwNzUwQzRGOUFFMDIvMDRFOEQ0MDJG MDExMTFFRDlDMzQ1ODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn0vQwDQYJKoZIhvcNAQELBQADggEBAIYaZZ21khvW9hMm 3GbdGPQmjcFhbzXhwONNKNPZL9vkp7pidFyIOqY255ZZXuWacrgKfOSdyRkZWbXb /auxEKRiH4JvMEJ5ILL58+NL7tSXOAz6CY1bPDGoQ4/Aa5x9ecBvP0eyEYvB3vmZ qIiBBMZieUXiLqJVvTaiFOOaA1JLSgxDRBnkbtlGs5fLm4kQcoy0I6cyP3pGZPOf abT2zbs/HulBLWe6GYdm64DPcn5qoWv1JLGsvF5ReNIPW2Kga6Mg4LbTFKqYUfsK zReYaO6tGjtjeB0n80GCkD2meGH9InfICaE1qlpJ1DKdEkYnJeK28qfavhvR7fSq PnjFxPE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:26 2025 by rpki-client