$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa File: B9CCF2D4BD2711EE9958E946C4F9AE02.roa (raw, json) Hash identifier: Tr1GoB0OJ0WV/koJHwH589Dyk++1e8UfDHIpzpMoMFU= Subject key identifier: 1C:3F:3A:B6:9D:6E:CA:B1:F5:4E:8D:66:11:3E:82:AA:FB:D8:63:DF Certificate issuer: /CN=A915D0AC/serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Certificate serial: 015D Authority key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa Signing time: Wed 09 Apr 2025 03:09:30 +0000 ROA not before: Wed 09 Apr 2025 03:09:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.130.0/24 maxlen: 24 203.4.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Validity Not Before: Apr 9 03:09:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5e4e9-6a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ee:50:da:a3:fe:49:82:19:6a:04:1f:e0:27: d9:1c:7d:c6:00:d6:89:aa:7f:dd:b2:de:1b:97:f4: 6b:4e:ca:7b:d4:49:7f:2a:97:c7:32:87:fc:14:5a: 40:b9:55:c8:5e:5f:b0:cf:b7:5b:08:50:69:27:0b: b6:9b:e5:e9:2d:08:21:37:ad:2c:b6:a6:5d:4e:fc: 74:8d:eb:6b:26:32:ed:6a:b7:45:d8:36:9b:a5:45: b2:21:6c:ca:80:44:5d:c1:c0:e5:07:15:ec:82:7b: 14:7f:f6:2d:c0:75:b6:bb:90:e5:86:e0:8e:49:44: 94:e4:64:a5:ee:58:c2:a8:56:dd:b2:a5:10:c9:4a: f9:32:c4:8c:fa:90:38:cb:07:ca:e2:a9:da:83:5f: d9:6c:5f:c1:48:24:68:8a:be:69:3c:ea:01:de:44: 3b:22:48:a4:54:e0:a0:2a:ed:aa:d7:19:f5:39:a4: 24:c5:48:ea:86:d9:6f:55:c8:7e:14:70:b3:12:8c: d1:f3:da:7f:06:65:74:30:5c:b8:3d:6c:8b:69:a3: 8c:49:84:62:cd:b3:ad:7d:07:d8:13:d0:ce:70:9a: b9:1c:4e:04:43:f0:20:c4:87:e1:b5:76:48:bc:ae: d2:7a:c6:ba:5b:27:d7:e4:78:1b:4f:f7:00:5f:f4: 8f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3F:3A:B6:9D:6E:CA:B1:F5:4E:8D:66:11:3E:82:AA:FB:D8:63:DF X509v3 Authority Key Identifier: keyid:F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.130.0/23 Signature Algorithm: sha256WithRSAEncryption d0:81:bd:c5:82:0b:b6:9d:73:b0:ac:22:49:dc:34:c7:33:0f: 52:5e:22:05:64:27:1a:05:e4:e9:a7:69:6f:63:45:e9:d7:13: 93:10:ca:eb:37:64:13:ce:35:53:53:a9:d2:b6:1b:7b:59:37: 64:20:30:93:c0:f1:a4:1f:fa:21:41:94:9f:df:5a:70:5b:d5: d8:e1:cb:b3:ee:05:ec:60:51:9a:4d:6e:f8:84:a8:3d:17:2b: f9:67:28:f1:28:d4:84:f1:7a:f4:79:eb:93:4e:4c:ae:c1:50: 98:ff:92:3b:75:42:70:97:42:e1:87:07:52:74:49:16:a5:b3: a0:81:4d:00:87:13:42:e7:2e:79:7e:85:01:fa:0b:b3:40:dc: 1c:56:61:a3:e5:4d:06:b0:ce:53:a3:3c:26:61:80:7d:d8:b2: 57:7f:29:3f:18:8a:52:19:44:ec:e3:8e:d2:48:b9:e6:3c:75: 15:83:13:10:d0:35:9f:8d:c5:e1:46:0c:f8:0e:1c:ec:23:17: de:ed:7b:66:4c:d5:ed:a2:ee:84:b2:cc:31:b7:9e:46:d0:ef: 9b:83:11:e0:a7:5b:71:20:3c:af:35:3e:84:9b:e8:1e:9f:2d: a9:cb:71:77:03:01:fe:27:e3:55:06:be:ee:21:f3:c8:27:72: 5f:55:53:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKEY3QUVENTg3NTExMkNDRkIyMDhFNzE4MjQ3QjFFNDlC QUFGRkI4NjUwHhcNMjUwNDA5MDMwOTMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1ZTRlOS02YTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+5Q2qP+SYIZagQf4CfZHH3GANaJqn/dst4bl/RrTsp71El/KpfHMof8FFpA uVXIXl+wz7dbCFBpJwu2m+XpLQghN60stqZdTvx0jetrJjLtardF2DabpUWyIWzK gERdwcDlBxXsgnsUf/YtwHW2u5DlhuCOSUSU5GSl7ljCqFbdsqUQyUr5MsSM+pA4 ywfK4qnag1/ZbF/BSCRoir5pPOoB3kQ7IkikVOCgKu2q1xn1OaQkxUjqhtlvVch+ FHCzEozR89p/BmV0MFy4PWyLaaOMSYRizbOtfQfYE9DOcJq5HE4EQ/AgxIfhtXZI vK7Sesa6WyfX5HgbT/cAX/SPZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBw/Orad bsqx9U6NZhE+gqr72GPfMB8GA1UdIwQYMBaAFPeu1YdREsz7II5xgkex5Juq/7hl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy9BMjlBQTJEODE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi85NjdWaDFFU3pQc2dqbkdDUjdIa202cl91 R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk2N1ZoMUVTelBzZ2puR0NSN0hrbTZyX3VHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvQTI5QUEyRDgxNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvQjlDQ0YyRDRC RDI3MTFFRTk5NThFOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLBIIwDQYJKoZIhvcNAQELBQADggEBANCBvcWCC7adc7Cs IkncNMczD1JeIgVkJxoF5OmnaW9jRenXE5MQyus3ZBPONVNTqdK2G3tZN2QgMJPA 8aQf+iFBlJ/fWnBb1djhy7PuBexgUZpNbviEqD0XK/lnKPEo1ITxevR565NOTK7B UJj/kjt1QnCXQuGHB1J0SRals6CBTQCHE0LnLnl+hQH6C7NA3BxWYaPlTQawzlOj PCZhgH3Ysld/KT8YilIZROzjjtJIueY8dRWDExDQNZ+NxeFGDPgOHOwjF97te2ZM 1e2i7oSyzDG3nkbQ75uDEeCnW3EgPK81PoSb6B6fLanLcXcDAf4n41UGvu4h88gn cl9VU00= -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:52 2025 by rpki-client