$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa File: AD8187A41FF511ED8DD6D661C4F9AE02.roa (raw, json) Hash identifier: hlAH68hEjJH34E2Ep5RK/KWypzVM/kESjdq2XtDtpa0= Subject key identifier: 76:F8:77:1E:0E:58:0F:16:FA:52:8E:58:A6:42:C4:11:DF:33:AB:DE Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Certificate serial: 2303 Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa Signing time: Sat 02 Nov 2024 15:53:15 +0000 ROA not before: Sat 02 Nov 2024 15:53:15 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 24016 IP address blocks: 103.197.164.0/22 maxlen: 24 115.84.128.0/19 maxlen: 24 202.21.176.0/20 maxlen: 24 220.158.220.0/22 maxlen: 24 2401:8300::/32 maxlen: 40 2401:8300:f000::/48 maxlen: 48 2401:8300:f001::/48 maxlen: 48 2401:8300:f002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8963 (0x2303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194D56, serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Validity Not Before: Nov 2 15:53:15 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67264aeb-8013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3f:74:28:40:f7:4d:d8:a0:2f:dd:bf:0a:0c: 08:a4:dd:98:9f:13:8f:27:6f:f0:71:74:0a:b1:15: b6:83:72:88:5b:db:76:78:54:89:11:8a:67:38:cf: ed:c8:94:b3:ca:ca:5d:c9:57:b9:52:ef:36:73:bd: 20:1a:c0:8f:b0:21:3a:b0:65:78:6e:12:de:fc:fb: 9d:bf:0f:53:8a:c8:d9:1f:3c:e8:4e:e2:c1:92:f7: 00:27:84:b6:34:94:8c:79:44:6f:67:b4:30:cd:92: b3:ac:a4:98:c9:9e:4a:a5:c5:11:55:bd:5c:c8:f6: 3a:87:18:4e:07:78:e8:de:7c:50:81:51:57:5d:93: 4e:74:82:cc:d8:11:4a:80:08:8a:58:64:39:6c:5b: 36:5c:83:cf:85:0c:67:3f:2a:97:c6:a1:a1:bc:7d: 08:32:4e:f9:c8:73:35:ca:cc:20:d1:15:32:ac:65: 28:6f:37:06:1b:4a:88:76:84:1a:83:a6:a4:d0:b2: c7:88:89:22:5f:34:5e:ea:b4:12:1c:df:ed:1a:d1: ae:7b:b2:59:90:ab:2d:a6:d7:ad:e5:b8:f4:86:49: bc:0b:cb:4f:79:ce:90:aa:c9:b1:6b:87:99:69:48: 41:94:d9:58:7e:99:f9:89:e8:69:ac:b6:6a:25:c2: 84:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F8:77:1E:0E:58:0F:16:FA:52:8E:58:A6:42:C4:11:DF:33:AB:DE X509v3 Authority Key Identifier: keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.164.0/22 115.84.128.0/19 202.21.176.0/20 220.158.220.0/22 IPv6: 2401:8300::/32 Signature Algorithm: sha256WithRSAEncryption a1:11:47:89:f5:ee:c1:f0:00:ae:cd:7a:bc:c9:a0:9c:de:82: 53:a3:57:aa:9f:27:00:6d:74:6f:bd:06:08:4d:57:6a:21:e1: bd:49:be:52:d1:bb:c0:1f:25:f1:44:82:c1:62:e9:8e:fe:7b: 60:36:e8:c4:56:39:2f:7e:ce:35:e6:99:e0:82:98:3d:cd:cc: f2:e5:7f:50:fd:20:df:2e:50:ee:e3:5d:28:4d:35:28:04:9a: 6e:b4:d5:45:0b:96:55:27:22:cb:06:bc:1f:51:bb:a7:5d:55: b0:d3:48:68:be:f0:7a:0d:5e:a5:19:79:8b:21:fa:66:5d:f9: c4:9f:e3:8d:37:db:ca:c9:76:84:1f:38:c5:a1:33:8c:fd:bf: 77:45:de:85:44:16:e5:a7:4b:a6:c5:a0:91:72:03:35:c4:e3: d8:75:98:df:08:34:06:94:f4:e7:84:f6:ac:16:5b:cb:54:00: 82:9f:9f:3a:a0:2f:08:a9:97:d0:33:cf:d6:ec:2e:99:a7:a0: f7:6f:1b:d7:a7:a9:1e:86:ca:f3:70:fc:ee:67:23:c3:3b:03: 4f:e4:33:73:b3:68:27:ee:12:e7:e9:16:07:2d:31:bb:c5:f8: 90:11:15:9e:4a:aa:c6:d9:42:a3:c2:d7:7f:57:a8:2a:0f:bf: 63:f8:c4:56 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICIwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRENTYxMTAvBgNVBAUTKDdDNUI3NDE0RTNDQzgwNDA1OUJDQTg2Q0M1MTYzQTA3 NDNFNDFDODUwHhcNMjQxMTAyMTU1MzE1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NGFlYi04MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3T90KED3TdigL92/CgwIpN2YnxOPJ2/wcXQKsRW2g3KIW9t2eFSJEYpnOM/t yJSzyspdyVe5Uu82c70gGsCPsCE6sGV4bhLe/Pudvw9TisjZHzzoTuLBkvcAJ4S2 NJSMeURvZ7QwzZKzrKSYyZ5KpcURVb1cyPY6hxhOB3jo3nxQgVFXXZNOdILM2BFK gAiKWGQ5bFs2XIPPhQxnPyqXxqGhvH0IMk75yHM1yswg0RUyrGUobzcGG0qIdoQa g6ak0LLHiIkiXzRe6rQSHN/tGtGue7JZkKstptet5bj0hkm8C8tPec6Qqsmxa4eZ aUhBlNlYfpn5iehprLZqJcKE2QIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHb4dx4O WA8W+lKOWKZCxBHfM6veMB8GA1UdIwQYMBaAFHxbdBTjzIBAWbyobMUWOgdD5ByF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEQ1Ni9FNUQ0MDdGRTg2 QjMxMUU1OThGMzdGMUFDNEY5QUUwMi9mRnQwRk9QTWdFQlp2S2hzeFJZNkIwUGtI SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGdDBGT1BNZ0VCWnZLaHN4Ulk2QjBQa0hJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRENTYvRTVENDA3RkU4NkIzMTFFNTk4RjM3RjFBQzRGOUFFMDIvQUQ4MTg3QTQx RkY1MTFFRDhERDZENjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnxaQDBAVzVIADBATKFbADBALcntwwDQQCAAIwBwMFACQB gwAwDQYJKoZIhvcNAQELBQADggEBAKERR4n17sHwAK7NerzJoJzeglOjV6qfJwBt dG+9BghNV2oh4b1JvlLRu8AfJfFEgsFi6Y7+e2A26MRWOS9+zjXmmeCCmD3NzPLl f1D9IN8uUO7jXShNNSgEmm601UULllUnIssGvB9Ru6ddVbDTSGi+8HoNXqUZeYsh +mZd+cSf440328rJdoQfOMWhM4z9v3dF3oVEFuWnS6bFoJFyAzXE49h1mN8INAaU 9OeE9qwWW8tUAIKfnzqgLwipl9Azz9bsLpmnoPdvG9enqR6GyvNw/O5nI8M7A0/k M3OzaCfuEufpFgctMbvF+JARFZ5KqsbZQqPC139XqCoPv2P4xFY= -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:57 2025 by rpki-client