$ rpki-client -vvf rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/A0C8CD303D0111EFA1017A43C4F9AE02.roa File: A0C8CD303D0111EFA1017A43C4F9AE02.roa (raw, json) Hash identifier: l3AfbEPnH9MQnB8FkBhw58WDjjjux6rk9kPJrYOiY6g= Subject key identifier: 8E:DA:FE:53:7C:D2:76:4D:D5:71:45:DB:AA:DF:D9:9E:D4:D9:E5:C9 Certificate issuer: /CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Certificate serial: 02AE Authority key identifier: 2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/A0C8CD303D0111EFA1017A43C4F9AE02.roa Signing time: Mon 21 Apr 2025 01:26:57 +0000 ROA not before: Mon 21 Apr 2025 01:26:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141883 IP address blocks: 103.40.8.0/22 maxlen: 22 103.40.10.0/23 maxlen: 23 103.180.160.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172999, serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Validity Not Before: Apr 21 01:26:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68059ee1-4d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:bd:57:93:bb:d7:0a:83:d0:7d:89:68:6e:36: 06:61:40:50:49:35:3a:66:8a:d6:41:54:80:99:8d: 70:18:99:b9:54:37:c1:1d:89:80:a5:51:47:66:80: da:c8:39:30:c5:f8:b7:9f:12:92:1e:2c:15:f9:73: 82:f7:ff:6e:6f:e7:69:b7:b6:29:a3:a1:43:c8:58: a5:5c:09:02:a9:f3:ec:08:5d:15:70:a9:5c:a2:56: 75:19:ab:3d:73:5f:64:0f:9d:b1:f4:46:a2:51:8b: 00:f5:76:77:dd:39:d1:af:68:d3:09:5c:78:5a:b2: 75:78:a7:8b:44:99:7a:5a:5a:33:5e:ae:c6:c2:dd: 7e:37:1f:7f:2b:34:ed:f9:22:b9:ff:16:a3:5a:f9: d7:cf:e5:91:df:4c:03:1e:bb:80:f4:9f:52:82:68: c2:e4:d2:0d:4c:e0:81:e2:63:94:5f:86:e2:a1:52: 18:60:90:9d:db:89:1b:f4:76:db:aa:6f:7c:63:2b: a5:a2:0a:27:2c:3c:45:93:a1:fb:32:a8:93:5f:36: 94:9f:b6:b7:a6:64:a1:3d:37:cf:1c:a8:a4:85:22: 81:b1:27:08:fd:aa:b4:75:c7:5e:8a:21:6f:e4:b2: f4:ad:41:a7:10:16:d8:2a:21:ea:fb:a8:18:27:fb: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DA:FE:53:7C:D2:76:4D:D5:71:45:DB:AA:DF:D9:9E:D4:D9:E5:C9 X509v3 Authority Key Identifier: keyid:2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/A0C8CD303D0111EFA1017A43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.8.0/22 103.180.160.0/23 Signature Algorithm: sha256WithRSAEncryption 26:3e:76:0b:15:b1:e8:e3:ea:26:f1:7c:07:90:74:cb:2f:63: 99:e9:de:58:6f:6d:a1:ed:b3:88:a0:0c:89:26:89:45:b2:95: 26:f6:d1:64:5e:74:06:37:64:9c:43:3f:34:d3:bf:8b:5c:fa: a1:64:0a:d1:50:3f:2d:85:4b:c1:69:c0:fe:23:d6:a9:ee:2a: 33:29:a2:fc:be:4c:ef:ca:83:ee:91:f4:40:b5:26:79:f2:ff: b3:7b:c8:81:86:8f:17:e5:cd:81:c9:c5:3a:0f:d7:ec:32:2d: ee:3f:90:53:2a:85:2b:3d:a2:dd:59:03:0b:af:ac:ab:62:42: ec:71:7d:01:e1:c8:7d:12:6a:50:bf:8c:de:14:e6:58:b7:1b: cc:6e:0a:05:fb:74:a6:f5:ba:c9:4b:9e:ba:6d:d5:e7:a6:05: 1c:9d:07:00:68:cb:85:b0:84:c0:05:55:fb:9f:a2:05:5b:e7: 87:74:f6:af:79:fd:33:ab:bf:af:27:41:23:42:e9:f6:9a:ad: 9f:c9:27:5f:d3:ed:97:5c:3a:2e:d4:31:2b:4a:5a:dd:77:e2: 93:45:5f:32:ba:cd:0d:a3:0f:0b:7a:ec:d1:ac:91:8b:16:20: f8:df:3e:79:39:0b:f9:bd:51:04:f8:ee:71:79:6c:77:50:19: 41:00:dd:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5OTkxMTAvBgNVBAUTKDJGNTMzRUEwRTQwODE5REY1NjNFM0Y3RkUzRkU4NzQy OEQ1MkEwRDUwHhcNMjUwNDIxMDEyNjU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1OWVlMS00ZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm71Xk7vXCoPQfYlobjYGYUBQSTU6ZorWQVSAmY1wGJm5VDfBHYmApVFHZoDa yDkwxfi3nxKSHiwV+XOC9/9ub+dpt7Ypo6FDyFilXAkCqfPsCF0VcKlcolZ1Gas9 c19kD52x9EaiUYsA9XZ33TnRr2jTCVx4WrJ1eKeLRJl6WlozXq7Gwt1+Nx9/KzTt +SK5/xajWvnXz+WR30wDHruA9J9SgmjC5NINTOCB4mOUX4bioVIYYJCd24kb9Hbb qm98YyulogonLDxFk6H7MqiTXzaUn7a3pmShPTfPHKikhSKBsScI/aq0dcdeiiFv 5LL0rUGnEBbYKiHq+6gYJ/skUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI7a/lN8 0nZN1XFF26rf2Z7U2eXJMB8GA1UdIwQYMBaAFC9TPqDkCBnfVj4/f+P+h0KNUqDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk5OS9CMUMxQjBEQTAz MUUxMUVEOTZFMjU2MjBDNEY5QUUwMi9MMU0tb09RSUdkOVdQajlfNF82SFFvMVNv TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxTS1vT1FJR2Q5V1BqOV80XzZIUW8xU29OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5OTkvQjFDMUIwREEwMzFFMTFFRDk2RTI1NjIwQzRGOUFFMDIvQTBDOENEMzAz RDAxMTFFRkExMDE3QTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnKAgDBAFntKAwDQYJKoZIhvcNAQELBQADggEBACY+dgsV sejj6ibxfAeQdMsvY5np3lhvbaHts4igDIkmiUWylSb20WRedAY3ZJxDPzTTv4tc +qFkCtFQPy2FS8FpwP4j1qnuKjMpovy+TO/Kg+6R9EC1Jnny/7N7yIGGjxflzYHJ xToP1+wyLe4/kFMqhSs9ot1ZAwuvrKtiQuxxfQHhyH0SalC/jN4U5li3G8xuCgX7 dKb1uslLnrpt1eemBRydBwBoy4WwhMAFVfufogVb54d09q95/TOrv68nQSNC6faa rZ/JJ1/T7ZdcOi7UMStKWt134pNFXzK6zQ2jDwt67NGskYsWIPjfPnk5C/m9UQT4 7nF5bHdQGUEA3WQ= -----END CERTIFICATE-----Generated at Sat Apr 26 09:31:22 2025 by rpki-client