$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa File: 949A543291B011EDA9CB747CC4F9AE02.roa (raw, json) Hash identifier: IXWkWs++k8QNiBEV5gRLUUd6hmjdG0gw9M6G9nB2OC4= Subject key identifier: FB:84:0E:1C:2F:8E:50:03:80:53:37:2A:E0:C4:9A:66:BD:E4:DE:54 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: 019D Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa Signing time: Tue 04 Mar 2025 09:12:43 +0000 ROA not before: Tue 04 Mar 2025 09:12:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150423 IP address blocks: 103.38.250.0/23 maxlen: 24 2001:df1:88c0::/48 maxlen: 48 2401:f2e0::/40 maxlen: 40 2401:f2e0:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36, serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Mar 4 09:12:43 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67c6c40b-2d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ea:c8:a8:e7:81:43:74:68:8e:fd:c1:e4:eb: ab:d3:e0:69:1b:e9:14:0e:9e:e7:6f:d5:43:cf:e6: a9:e0:5d:c5:dd:25:66:63:00:e4:d9:95:04:8c:c9: d3:3f:ff:4b:57:41:a3:f6:ab:65:24:3a:a6:4f:61: 19:98:54:dc:b1:ee:3a:37:f0:ee:fb:83:36:cc:e3: 86:5a:a7:ef:08:84:dc:0d:60:91:81:a4:19:4d:56: 80:54:f8:3e:48:72:47:5f:0f:ac:5f:fb:3e:2f:ca: 4f:dd:11:4b:20:ef:db:5c:2b:69:2a:9e:c8:90:f5: 3c:9f:33:1f:d4:ed:c6:ab:5a:4f:6c:5d:fd:2d:ed: 9d:26:99:e6:a7:de:a7:ee:24:aa:48:2c:51:2f:be: a5:5f:01:8f:e8:65:87:69:b9:97:93:41:3b:60:ec: 99:0d:fd:03:28:91:26:e2:d0:79:3a:e1:8d:da:19: 93:f2:4b:83:34:22:b7:2d:e7:cd:34:23:56:a7:4f: 1e:da:3b:fe:87:2a:f7:0b:9a:f3:47:77:fb:03:12: 5c:6c:17:98:89:61:41:91:de:eb:e0:44:e3:a3:cb: c8:94:c4:b8:3c:7b:40:2e:be:90:a3:5a:5e:8f:a8: b6:97:86:65:8d:74:c0:e8:dd:ff:53:9c:fd:78:13: 14:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:84:0E:1C:2F:8E:50:03:80:53:37:2A:E0:C4:9A:66:BD:E4:DE:54 X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/949A543291B011EDA9CB747CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.250.0/23 IPv6: 2001:df1:88c0::/48 2401:f2e0::/39 Signature Algorithm: sha256WithRSAEncryption 1e:84:c1:ce:ae:30:dd:3b:ef:15:56:c1:9c:c0:14:27:75:d7: f4:bc:3c:d7:c1:60:af:7f:9f:4f:b9:fb:ee:22:ce:3b:20:59: 9d:d1:0e:12:1e:00:65:5e:8e:67:88:fa:f9:fc:fa:45:52:25: b5:cb:29:6a:da:5d:f9:de:85:31:1a:fd:9a:22:c5:06:1f:e9: 31:88:c4:cd:7b:73:a0:2e:72:8a:51:cd:11:68:af:7b:0e:10: 06:17:59:b8:13:3a:c8:26:b2:d0:79:38:14:f8:44:fa:3e:00: cd:ec:12:ad:d5:90:2e:fe:28:a3:0d:c2:58:c4:e8:29:2b:4a: 92:ab:57:6d:5a:f8:c0:d7:da:e8:62:71:3a:80:be:06:c9:41: cc:6b:51:73:38:b2:79:fa:3a:95:06:a6:a0:45:e0:8c:bb:14: 11:e8:c1:0e:8c:7f:d2:76:55:fa:8d:33:82:0f:1f:67:12:0e: 7a:9a:6a:e0:57:8a:d3:26:32:03:8d:a0:dc:58:09:5d:e1:7a: c2:b2:2f:81:9f:0e:74:a0:ce:38:36:41:9b:db:b6:42:29:21: 55:c6:43:d0:f4:8e:b8:b4:a2:f2:a8:20:6d:36:5e:20:3e:c2: 62:3b:78:22:04:9a:fd:85:6d:7b:69:2c:80:15:17:8a:a7:e7: 52:10:1f:cd -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjUwMzA0MDkxMjQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M2YzQwYi0yZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+rIqOeBQ3Rojv3B5Our0+BpG+kUDp7nb9VDz+ap4F3F3SVmYwDk2ZUEjMnT P/9LV0Gj9qtlJDqmT2EZmFTcse46N/Du+4M2zOOGWqfvCITcDWCRgaQZTVaAVPg+ SHJHXw+sX/s+L8pP3RFLIO/bXCtpKp7IkPU8nzMf1O3Gq1pPbF39Le2dJpnmp96n 7iSqSCxRL76lXwGP6GWHabmXk0E7YOyZDf0DKJEm4tB5OuGN2hmT8kuDNCK3LefN NCNWp08e2jv+hyr3C5rzR3f7AxJcbBeYiWFBkd7r4ETjo8vIlMS4PHtALr6Qo1pe j6i2l4ZljXTA6N3/U5z9eBMUiQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFPuEDhwv jlADgFM3KuDEmma95N5UMB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFEMzYvRkMxM0EzRTQ5MUFBMTFFRDgwQzE3QTVFQzRGOUFFMDIvOTQ5QTU0MzI5 MUIwMTFFREE5Q0I3NDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBAFnJvowFwQCAAIwEQMHACABDfGIwAMGASQB8uAAMA0GCSqG SIb3DQEBCwUAA4IBAQAehMHOrjDdO+8VVsGcwBQnddf0vDzXwWCvf59PufvuIs47 IFmd0Q4SHgBlXo5niPr5/PpFUiW1yylq2l353oUxGv2aIsUGH+kxiMTNe3OgLnKK Uc0RaK97DhAGF1m4EzrIJrLQeTgU+ET6PgDN7BKt1ZAu/iijDcJYxOgpK0qSq1dt WvjA19roYnE6gL4GyUHMa1FzOLJ5+jqVBqagReCMuxQR6MEOjH/SdlX6jTOCDx9n Eg56mmrgV4rTJjIDjaDcWAld4XrCsi+Bnw50oM44NkGb27ZCKSFVxkPQ9I64tKLy qCBtNl4gPsJiO3giBJr9hW17aSyAFReKp+dSEB/N -----END CERTIFICATE-----Generated at Tue Apr 22 19:14:17 2025 by rpki-client