$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa File: 9FA735ECEAF811ED9E2D1958C4F9AE02.roa (raw, json) Hash identifier: HFVHQ+wL1mQEZ01i4CvLThp7tarfU14b1p5XC7Hrt/Y= Subject key identifier: BA:62:72:D1:DF:B5:89:B9:30:1A:C6:C6:23:29:A3:67:A9:62:C5:1C Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 151E Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:15:20 +0000 ROA not before: Thu 24 Apr 2025 17:15:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140867 IP address blocks: 103.100.141.0/24 maxlen: 24 103.100.142.0/23 maxlen: 24 103.113.45.0/24 maxlen: 24 103.113.46.0/23 maxlen: 24 2402:b740:8000::/33 maxlen: 33 2402:b740:8001::/48 maxlen: 48 2402:b740:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5406 (0x151e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42, serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Apr 24 17:15:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a71a8-a205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5c:b8:4a:e3:3e:ff:b4:c2:9e:20:fa:57:ef: d1:74:86:9d:1c:87:a4:3d:f2:5d:b2:af:0a:a3:99: b2:57:61:24:c5:ac:40:f4:3d:6c:3e:72:2c:0f:da: 71:b0:ff:1e:7e:bd:1c:b2:92:31:2b:7a:e7:03:c3: 44:99:0f:6a:4f:fd:8a:7f:82:ab:3d:64:24:f9:68: b3:da:82:c3:e7:6f:03:5d:db:80:90:28:40:32:bb: be:32:93:31:89:63:b5:7c:18:58:93:15:62:f7:08: 68:9d:12:86:60:75:b1:75:51:ce:b0:f7:2b:cb:28: 75:1d:b7:71:2b:6b:09:8d:24:75:ba:1c:17:cf:ea: 74:86:76:ea:8a:01:97:00:8f:ed:09:31:a0:da:cd: 1e:33:f7:88:0d:0d:8b:3c:70:44:22:55:3c:c4:20: 72:f5:b5:98:6a:9c:c4:43:ee:d2:59:84:e5:44:bd: 03:93:a9:80:3a:2e:19:35:e2:30:b1:9a:c2:ee:aa: 6d:e6:ce:94:c8:d7:ad:90:a4:ea:67:92:ee:10:07: b6:54:80:4a:9e:67:cc:ba:fb:78:84:60:64:dc:e6: 07:3c:7c:46:04:6e:9c:16:c0:f8:ab:77:22:62:24: 84:9a:0e:ce:71:11:b2:b9:f9:2a:f5:a1:72:02:65: 8d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:62:72:D1:DF:B5:89:B9:30:1A:C6:C6:23:29:A3:67:A9:62:C5:1C X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.141.0-103.100.143.255 103.113.45.0-103.113.47.255 IPv6: 2402:b740:8000::/33 Signature Algorithm: sha256WithRSAEncryption 07:3d:68:8b:f7:0f:20:92:73:99:03:c6:63:e2:6a:7f:82:e8: 51:50:1a:e7:fc:c2:d2:34:00:60:c1:14:c6:71:0a:7a:bd:7a: 44:f0:93:03:ef:3e:cb:c9:dc:67:70:76:7d:cb:2b:5e:24:e8: d0:cf:92:53:99:45:1d:33:12:30:36:8b:b1:88:64:0f:98:93: 18:7d:9a:e0:62:db:74:ea:7d:19:7c:bf:b5:59:92:07:a0:95: f4:57:e2:1b:6a:25:73:61:38:df:af:fd:53:ce:2c:8c:32:11: 4b:18:eb:13:ad:56:e2:a1:ef:62:dc:6e:98:c1:e3:dc:b3:da: 46:61:29:61:a3:1b:01:bd:61:ff:2c:d9:90:17:1d:29:26:8b: 6c:13:f5:25:97:85:91:bc:55:a0:7c:ba:40:92:4d:6b:88:cf: 47:56:6e:52:54:3f:33:22:60:68:b7:46:f3:ed:04:a3:93:dd: 84:e8:ab:51:68:bc:b7:64:11:ca:c0:ba:7d:5f:e9:5b:58:e3: 04:ba:3f:b1:e9:f0:67:d4:01:30:a0:ef:f0:64:aa:9d:9b:5d: d9:9d:ac:e3:ec:81:08:49:eb:31:3c:c2:e4:8c:02:01:60:91: a2:fd:a6:09:14:ac:a0:66:fa:bd:d7:c7:3f:60:da:b8:6e:35: 21:9c:c1:49 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICFR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjUwNDI0MTcxNTIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzFhOC1hMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFy4SuM+/7TCniD6V+/RdIadHIekPfJdsq8Ko5myV2EkxaxA9D1sPnIsD9px sP8efr0cspIxK3rnA8NEmQ9qT/2Kf4KrPWQk+Wiz2oLD528DXduAkChAMru+MpMx iWO1fBhYkxVi9whonRKGYHWxdVHOsPcryyh1HbdxK2sJjSR1uhwXz+p0hnbqigGX AI/tCTGg2s0eM/eIDQ2LPHBEIlU8xCBy9bWYapzEQ+7SWYTlRL0Dk6mAOi4ZNeIw sZrC7qpt5s6UyNetkKTqZ5LuEAe2VIBKnmfMuvt4hGBk3OYHPHxGBG6cFsD4q3ci YiSEmg7OcRGyufkq9aFyAmWNBQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFLpictHf tYm5MBrGxiMpo2epYsUcMB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvOUZBNzM1RUNF QUY4MTFFRDlFMkQxOTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MCIEAgABMBwwDAMEAGdkjQMEBGdkgDAMAwQAZ3EtAwQEZ3EgMA4EAgACMAgD BgckArdAgDANBgkqhkiG9w0BAQsFAAOCAQEABz1oi/cPIJJzmQPGY+Jqf4LoUVAa 5/zC0jQAYMEUxnEKer16RPCTA+8+y8ncZ3B2fcsrXiTo0M+SU5lFHTMSMDaLsYhk D5iTGH2a4GLbdOp9GXy/tVmSB6CV9FfiG2olc2E436/9U84sjDIRSxjrE61W4qHv YtxumMHj3LPaRmEpYaMbAb1h/yzZkBcdKSaLbBP1JZeFkbxVoHy6QJJNa4jPR1Zu UlQ/MyJgaLdG8+0Eo5PdhOirUWi8t2QRysC6fV/pW1jjBLo/senwZ9QBMKDv8GSq nZtd2Z2s4+yBCEnrMTzC5IwCAWCRov2mCRSsoGb6vdfHP2DauG41IZzBSQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:02 2025 by rpki-client