$ rpki-client -vvf rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/E00620C0267C11EE803B2155C4F9AE02.roa File: E00620C0267C11EE803B2155C4F9AE02.roa (raw, json) Hash identifier: 5Gk4b25F0uq7efelkFmxT/VKGia42LkwXqnCVKORjVY= Subject key identifier: 82:84:22:5E:9A:65:C0:2E:57:A5:43:DF:F4:65:69:09:AE:B1:2E:AF Certificate issuer: /CN=A9156CFE/serialNumber=03C7FFEE0CAF4925849E286EC0EFBB0C8B2A8E4F Certificate serial: 09A2 Authority key identifier: 03:C7:FF:EE:0C:AF:49:25:84:9E:28:6E:C0:EF:BB:0C:8B:2A:8E:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/E00620C0267C11EE803B2155C4F9AE02.roa Signing time: Sun 16 Mar 2025 20:10:26 +0000 ROA not before: Sun 16 Mar 2025 20:10:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141342 IP address blocks: 103.82.120.0/24 maxlen: 24 103.82.121.0/24 maxlen: 24 103.82.122.0/24 maxlen: 24 103.82.123.0/24 maxlen: 24 202.59.12.0/24 maxlen: 24 202.59.13.0/24 maxlen: 24 202.59.14.0/24 maxlen: 24 202.59.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.crl rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156CFE, serialNumber=03C7FFEE0CAF4925849E286EC0EFBB0C8B2A8E4F Validity Not Before: Mar 16 20:10:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67d73031-ba6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cf:74:73:58:2a:10:8f:37:10:af:73:31:6e: 79:b5:e7:76:c5:2e:6a:52:45:6e:0a:ad:e1:97:89: 82:4b:a5:95:c1:71:53:ff:8c:7d:62:d0:48:9a:9e: 6b:68:e7:63:3c:08:5f:8f:7c:ba:35:ba:92:f2:f3: 09:3a:1b:c5:6a:88:53:57:3b:3a:10:e5:8d:9b:dd: 77:af:44:62:8d:3c:03:25:cc:69:ce:7c:ed:d4:f1: 94:99:8b:c0:b0:89:5f:76:7a:fb:d6:d3:80:f4:e3: 29:71:48:5e:a7:51:68:c7:b2:33:8a:f3:2d:7b:eb: 4f:cd:1e:c0:69:03:8a:84:f5:3b:27:c7:df:59:8c: 23:21:74:ef:bd:c0:4d:7f:e5:dc:75:6a:f1:ff:4c: 97:67:f2:37:29:31:c4:d3:d4:c4:c4:69:e5:bf:79: 72:9f:a2:ec:1e:8d:22:e8:4c:70:b0:a4:71:ab:ea: 0e:96:57:9a:e7:f5:32:45:1b:59:a9:40:b5:ba:e7: 5c:86:cc:79:45:a2:19:2e:3c:a0:12:da:8c:22:65: 1b:c3:92:41:4f:79:14:15:67:0c:2d:28:f6:2e:4e: 61:91:8f:8f:51:0e:20:94:b5:93:6b:ba:0d:f5:d9: d9:4a:d4:49:fc:d7:10:d7:d9:6b:c2:7a:33:49:f0: e4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:84:22:5E:9A:65:C0:2E:57:A5:43:DF:F4:65:69:09:AE:B1:2E:AF X509v3 Authority Key Identifier: keyid:03:C7:FF:EE:0C:AF:49:25:84:9E:28:6E:C0:EF:BB:0C:8B:2A:8E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/E00620C0267C11EE803B2155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.120.0/22 202.59.12.0/22 Signature Algorithm: sha256WithRSAEncryption af:05:a6:ad:4d:b9:77:14:74:a1:af:38:96:e2:07:70:00:f1: 51:e4:18:20:94:83:06:fa:10:40:53:c5:18:09:56:91:1a:23: af:83:e6:9c:a3:0c:6a:a8:7e:8c:cc:47:b2:e6:bc:26:89:91: 72:6b:91:c0:a1:b1:e3:f4:46:fc:61:9c:ac:54:2c:64:d3:bb: 44:f0:1f:8d:5f:81:78:5c:c7:b8:0e:d5:ac:44:f1:a5:56:b8: e0:3d:5a:0c:05:d8:2b:e3:4a:94:31:e9:e5:c3:bf:78:6d:51: 1a:d8:e1:56:8b:d2:19:8c:86:f6:33:5e:d1:f7:e2:f1:8c:b3: 87:56:a0:46:e2:ea:b9:51:59:15:19:57:bf:3e:b2:86:d4:76: 0c:8c:c6:31:06:ff:1e:bd:bc:63:03:a5:79:8b:20:15:ac:ef: 48:45:82:08:ab:da:ca:02:1f:14:a7:2c:98:51:a3:e5:8b:69: 59:a6:ee:bb:fe:04:0b:2d:6c:a2:c5:0f:7d:71:22:ee:45:d5: d2:06:b4:75:2d:67:82:57:ae:d5:39:66:84:98:5f:0a:65:01: 69:a2:b8:3c:f8:6f:05:a7:61:de:6a:84:a9:d0:d6:7e:c7:93: 96:61:1c:e9:04:6d:cd:39:1b:1f:4b:ec:1f:3d:d2:20:53:f4: 63:10:ff:9a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZDRkUxMTAvBgNVBAUTKDAzQzdGRkVFMENBRjQ5MjU4NDlFMjg2RUMwRUZCQjBD OEIyQThFNEYwHhcNMjUwMzE2MjAxMDI2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3MzAzMS1iYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6M90c1gqEI83EK9zMW55ted2xS5qUkVuCq3hl4mCS6WVwXFT/4x9YtBImp5r aOdjPAhfj3y6NbqS8vMJOhvFaohTVzs6EOWNm913r0RijTwDJcxpznzt1PGUmYvA sIlfdnr71tOA9OMpcUhep1Fox7IzivMte+tPzR7AaQOKhPU7J8ffWYwjIXTvvcBN f+XcdWrx/0yXZ/I3KTHE09TExGnlv3lyn6LsHo0i6ExwsKRxq+oOllea5/UyRRtZ qUC1uudchsx5RaIZLjygEtqMImUbw5JBT3kUFWcMLSj2Lk5hkY+PUQ4glLWTa7oN 9dnZStRJ/NcQ19lrwnozSfDkhwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIKEIl6a ZcAuV6VD3/RlaQmusS6vMB8GA1UdIwQYMBaAFAPH/+4Mr0klhJ4obsDvuwyLKo5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkNGRS9CMzkwMzE3MDhB QjIxMUVBQjAyMjE5M0NDNEY5QUUwMi9BOGZfN2d5dlNTV0VuaWh1d08tN0RJc3Fq azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E4Zl83Z3l2U1NXRW5paHV3Ty03RElzcWprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTZDRkUvQjM5MDMxNzA4QUIyMTFFQUIwMjIxOTNDQzRGOUFFMDIvRTAwNjIwQzAy NjdDMTFFRTgwM0IyMTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUngDBALKOwwwDQYJKoZIhvcNAQELBQADggEBAK8Fpq1N uXcUdKGvOJbiB3AA8VHkGCCUgwb6EEBTxRgJVpEaI6+D5pyjDGqofozMR7LmvCaJ kXJrkcChseP0RvxhnKxULGTTu0TwH41fgXhcx7gO1axE8aVWuOA9WgwF2CvjSpQx 6eXDv3htURrY4VaL0hmMhvYzXtH34vGMs4dWoEbi6rlRWRUZV78+sobUdgyMxjEG /x69vGMDpXmLIBWs70hFggir2soCHxSnLJhRo+WLaVmm7rv+BAstbKLFD31xIu5F 1dIGtHUtZ4JXrtU5ZoSYXwplAWmiuDz4bwWnYd5qhKnQ1n7Hk5ZhHOkEbc05Gx9L 7B890iBT9GMQ/5o= -----END CERTIFICATE-----Generated at Sat Apr 26 17:52:00 2025 by rpki-client