$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/D9D943568FFC11ED9776CB38C4F9AE02.roa File: D9D943568FFC11ED9776CB38C4F9AE02.roa (raw, json) Hash identifier: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA= Subject key identifier: 54:19:3B:66:86:DF:33:FB:57:5C:03:22:05:4E:23:8D:7B:48:CA:A9 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 01AF Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/D9D943568FFC11ED9776CB38C4F9AE02.roa Signing time: Wed 23 Apr 2025 02:28:18 +0000 ROA not before: Wed 23 Apr 2025 02:28:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136174 IP address blocks: 103.184.0.0/24 maxlen: 24 103.184.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Apr 23 02:28:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68085042-ed51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:16:30:a7:9d:cb:f4:c5:d9:54:b5:e5:26:e8: a6:a1:68:3e:f2:d4:d0:8d:fc:b5:3d:27:86:12:a3: a0:ca:0e:71:5e:47:09:33:9b:0b:f3:6e:c2:82:2b: 96:c7:e7:04:e5:db:86:66:e2:05:65:2a:7d:b6:1c: 7e:96:62:56:62:9a:1c:bd:3a:91:08:48:1b:1f:74: bf:0e:5c:f5:91:01:d9:62:52:b4:e9:a5:30:58:ed: 12:44:07:43:ff:1a:11:57:e9:df:6f:c1:1e:22:a1: 24:43:1f:67:78:93:66:c3:7f:00:95:f3:37:ae:9c: f2:83:b8:ba:53:94:36:c8:f3:0d:7d:5b:78:4b:d0: e4:14:fc:01:9b:82:0a:f9:96:39:da:bf:a6:f4:ef: 29:0f:98:e0:91:e0:1d:fb:b8:f3:39:52:1c:bb:88: b4:bc:63:be:c2:62:bb:8d:4e:86:49:d6:0e:2e:f8: bd:a8:01:b0:3d:12:92:20:dd:20:47:8b:64:76:17: e3:1b:28:72:a0:3e:22:6e:f5:ba:ae:a4:54:c9:70: 75:a3:d5:7a:bc:5f:23:3c:70:8b:f7:f4:29:ed:04: a3:fc:c8:df:87:71:d5:f1:30:38:d8:14:17:7e:26: ca:89:c4:4d:d3:0a:63:1e:20:24:40:70:d5:d0:f9: 43:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:19:3B:66:86:DF:33:FB:57:5C:03:22:05:4E:23:8D:7B:48:CA:A9 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/D9D943568FFC11ED9776CB38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.0.0/23 Signature Algorithm: sha256WithRSAEncryption 99:a7:74:c8:73:8f:2b:03:93:7d:c5:07:99:43:98:b4:f8:b1: 3f:e6:d5:ec:e4:8d:88:f2:ef:35:0d:db:bc:29:3e:8e:b8:a8: 8a:b8:76:4d:eb:17:4e:11:5a:05:63:01:b3:79:39:00:a2:b5: bf:59:ce:98:03:c8:9a:22:ea:e7:51:5d:0e:0c:6b:8d:51:78: c8:79:a7:d1:a6:58:eb:c1:75:1a:c8:6c:8c:b2:8d:cd:df:9e: 32:68:4e:0e:47:46:e8:fe:4a:33:44:3f:33:73:b6:6a:a3:61: bf:d3:b6:35:53:ef:59:9c:da:0e:7e:9b:72:13:c7:fb:6d:2f: 46:71:db:49:83:8f:f2:ee:5a:2f:5e:16:61:2e:7c:1d:df:8d: c5:8e:e6:69:04:97:64:38:e7:ae:db:22:3c:d5:d2:a3:78:29: 92:77:8b:04:9d:36:e7:3a:d8:cb:8d:da:dd:26:1f:88:96:4e: 50:83:6f:11:82:4f:e0:94:6a:90:9c:dd:bd:e8:97:21:ab:05: 0b:28:5e:26:26:18:6b:11:21:79:bf:ac:39:27:6c:96:f1:cd: 64:90:c6:a2:4a:55:a6:6f:77:5b:b1:b9:6e:63:ca:c9:2d:22: 34:2a:4a:d9:22:91:72:0b:4b:7a:d3:c6:d9:a1:d9:2d:5c:db: 11:a6:b9:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUwNDIzMDIyODE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4NTA0Mi1lZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhYwp53L9MXZVLXlJuimoWg+8tTQjfy1PSeGEqOgyg5xXkcJM5sL827CgiuW x+cE5duGZuIFZSp9thx+lmJWYpocvTqRCEgbH3S/Dlz1kQHZYlK06aUwWO0SRAdD /xoRV+nfb8EeIqEkQx9neJNmw38AlfM3rpzyg7i6U5Q2yPMNfVt4S9DkFPwBm4IK +ZY52r+m9O8pD5jgkeAd+7jzOVIcu4i0vGO+wmK7jU6GSdYOLvi9qAGwPRKSIN0g R4tkdhfjGyhyoD4ibvW6rqRUyXB1o9V6vF8jPHCL9/Qp7QSj/Mjfh3HV8TA42BQX fibKicRN0wpjHiAkQHDV0PlD8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQZO2aG 3zP7V1wDIgVOI417SMqpMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhEMkQvQTA2ODJBMDQ4RkY5MTFFREFCRUMyNTM3QzRGOUFFMDIvRDlEOTQzNTY4 RkZDMTFFRDk3NzZDQjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuAAwDQYJKoZIhvcNAQELBQADggEBAJmndMhzjysDk33F B5lDmLT4sT/m1ezkjYjy7zUN27wpPo64qIq4dk3rF04RWgVjAbN5OQCitb9ZzpgD yJoi6udRXQ4Ma41ReMh5p9GmWOvBdRrIbIyyjc3fnjJoTg5HRuj+SjNEPzNztmqj Yb/TtjVT71mc2g5+m3ITx/ttL0Zx20mDj/LuWi9eFmEufB3fjcWO5mkEl2Q4567b IjzV0qN4KZJ3iwSdNuc62MuN2t0mH4iWTlCDbxGCT+CUapCc3b3olyGrBQsoXiYm GGsRIXm/rDknbJbxzWSQxqJKVaZvd1uxuW5jysktIjQqStkikXILS3rTxtmh2S1c 2xGmuQM= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:23 2025 by rpki-client