$ rpki-client -vvf rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/D043FFB2EEEA11EF8476F316C4F9AE02.roa File: D043FFB2EEEA11EF8476F316C4F9AE02.roa (raw, json) Hash identifier: 2LmuP3C8i2g82+GxEzyhXfhPVuIYh5+gy6RWprCcpgs= Subject key identifier: 53:36:3F:1F:19:27:9D:2A:96:BD:0E:6F:37:40:C5:C9:DF:B4:82:D8 Certificate issuer: /CN=A9187E80/serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Certificate serial: 0612 Authority key identifier: 7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/D043FFB2EEEA11EF8476F316C4F9AE02.roa Signing time: Wed 02 Apr 2025 22:54:57 +0000 ROA not before: Wed 02 Apr 2025 22:54:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 32135 IP address blocks: 103.136.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1554 (0x612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187E80, serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Validity Not Before: Apr 2 22:54:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edc040-5749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:d6:23:78:e0:f8:a2:2f:8c:b9:65:8f:28: 07:f2:9d:25:3e:24:18:1f:0d:96:f8:3d:7c:18:11: dc:4b:a2:8e:c1:fd:d7:2c:16:8f:8c:5c:39:cc:d4: b7:3d:7d:3d:e6:98:3f:64:aa:ef:a6:99:b4:80:db: 20:cc:d8:1b:6d:f7:78:7a:ff:bf:1a:f6:b8:55:ba: ef:40:ba:5c:51:c4:08:72:f8:61:dd:12:39:77:d3: 2e:7e:e5:44:6a:b4:4e:c9:b0:2d:ad:47:f0:f6:7c: 23:20:9c:69:e1:19:82:01:0e:80:39:dd:c5:2e:49: 62:79:6d:b2:43:36:da:e0:c3:33:90:d3:30:0b:83: 1d:0e:4f:d1:e0:82:e5:10:8e:b2:fc:5b:84:d4:55: 84:13:4d:af:15:a0:93:eb:b4:96:2e:8f:ad:14:14: df:22:71:9a:dd:2c:f3:3d:ee:0f:f8:bb:2c:91:c2: d2:ba:b2:39:24:63:2f:13:9c:4f:f7:df:1d:ca:f6: fb:fb:43:fd:af:8d:88:bb:7e:1e:c6:e5:58:47:bb: 26:4f:f2:4f:36:34:b1:2b:e8:9a:4e:39:e5:0f:3e: 6d:4b:9c:c9:08:3e:c7:a0:95:5b:64:57:e5:1a:5e: 48:eb:b2:2f:3c:ea:9e:ea:de:0f:02:50:46:81:c5: aa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:36:3F:1F:19:27:9D:2A:96:BD:0E:6F:37:40:C5:C9:DF:B4:82:D8 X509v3 Authority Key Identifier: keyid:7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/D043FFB2EEEA11EF8476F316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.124.0/22 Signature Algorithm: sha256WithRSAEncryption 83:15:4b:e1:0c:89:51:60:c5:e6:ed:ea:5d:27:55:c2:27:54: 05:8f:04:14:5e:32:69:48:96:31:f7:cd:88:51:46:73:38:16: 1e:99:6c:a8:d4:46:ed:9e:79:7e:31:b5:cf:ae:d4:7c:f8:00: 4e:2b:8d:79:ee:76:d2:bb:0f:2d:7e:15:31:6d:86:dc:17:f1: 6d:95:74:d1:fa:39:a1:b8:0b:2b:ee:44:bf:49:c0:a0:12:16: 8e:8a:60:4d:3f:50:dc:02:2e:2c:9c:6c:5c:e2:31:b6:19:c6: 21:2e:c7:08:e1:46:04:5c:7e:8d:40:9c:3f:d0:a7:7f:49:2d: 38:07:c0:23:09:9c:90:56:5b:74:3e:07:86:3e:eb:04:54:93: b6:68:7e:c6:34:3b:12:85:e7:99:d5:17:d2:40:65:75:a4:de: d2:6b:41:e4:23:97:e1:1d:c4:b7:f9:56:31:71:5b:1c:4e:6c: 9f:73:45:a7:1f:9c:86:6d:8d:c0:3b:c6:22:7d:92:d1:f4:a6: 7d:9f:c2:b9:45:81:7d:46:c5:b5:16:5d:0d:25:9d:76:0b:17: 79:a5:be:27:d2:7b:60:be:63:3a:cc:b4:0d:ff:d3:0b:42:00: d8:8e:af:2c:8d:28:67:ff:84:2b:b4:e4:c4:de:d5:20:af:28: 37:77:93:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdFODAxMTAvBgNVBAUTKDdDQjBFNTgyNTEwMUM2NjU0NDNGMkNGQUIxOUU4NEQx QTc3OTc1OTcwHhcNMjUwNDAyMjI1NDU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzA0MC01NzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VnWI3jg+KIvjLlljygH8p0lPiQYHw2W+D18GBHcS6KOwf3XLBaPjFw5zNS3 PX095pg/ZKrvppm0gNsgzNgbbfd4ev+/Gva4VbrvQLpcUcQIcvhh3RI5d9MufuVE arROybAtrUfw9nwjIJxp4RmCAQ6AOd3FLklieW2yQzba4MMzkNMwC4MdDk/R4ILl EI6y/FuE1FWEE02vFaCT67SWLo+tFBTfInGa3SzzPe4P+LsskcLSurI5JGMvE5xP 998dyvb7+0P9r42Iu34exuVYR7smT/JPNjSxK+iaTjnlDz5tS5zJCD7HoJVbZFfl Gl5I67IvPOqe6t4PAlBGgcWqewIDAQABo4IClTCCApEwHQYDVR0OBBYEFFM2Px8Z J50qlr0ObzdAxcnftILYMB8GA1UdIwQYMBaAFHyw5YJRAcZlRD8s+rGehNGneXWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0U4MC9EMjc4Q0E2NDlF NzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnhtVkVQeXo2c1o2RTBhZDVk WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZMRGxnbEVCeG1WRVB5ejZzWjZFMGFkNWRaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdFODAvRDI3OENBNjQ5RTc3MTFFQjhDMjVEQjZDQzRGOUFFMDIvRDA0M0ZGQjJF RUVBMTFFRjg0NzZGMzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniHwwDQYJKoZIhvcNAQELBQADggEBAIMVS+EMiVFgxebt 6l0nVcInVAWPBBReMmlIljH3zYhRRnM4Fh6ZbKjURu2eeX4xtc+u1Hz4AE4rjXnu dtK7Dy1+FTFthtwX8W2VdNH6OaG4CyvuRL9JwKASFo6KYE0/UNwCLiycbFziMbYZ xiEuxwjhRgRcfo1AnD/Qp39JLTgHwCMJnJBWW3Q+B4Y+6wRUk7ZofsY0OxKF55nV F9JAZXWk3tJrQeQjl+EdxLf5VjFxWxxObJ9zRacfnIZtjcA7xiJ9ktH0pn2fwrlF gX1GxbUWXQ0lnXYLF3mlvifSe2C+YzrMtA3/0wtCANiOryyNKGf/hCu05MTe1SCv KDd3k58= -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:54 2025 by rpki-client