$ rpki-client -vvf rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa File: 995AA100551611E9BDD3CB66C4F9AE02.roa (raw, json) Hash identifier: OFPIMpQg51qSJdzRG2hnBGn1IXeWBpS0NU5Xq+7iYjk= Subject key identifier: D4:FC:02:89:88:08:E2:98:EA:FC:57:A7:D2:AC:A4:80:F9:32:F9:B4 Certificate issuer: /CN=A912190F/serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Certificate serial: 0FFC Authority key identifier: 34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa Signing time: Wed 26 Mar 2025 17:26:56 +0000 ROA not before: Wed 26 Mar 2025 17:26:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138699 IP address blocks: 103.136.220.0/24 maxlen: 24 103.136.221.0/24 maxlen: 24 103.136.222.0/24 maxlen: 24 103.136.223.0/24 maxlen: 24 118.26.132.0/24 maxlen: 24 2404:9dc0:cd01::/48 maxlen: 48 2404:9dc0:cd02::/48 maxlen: 48 2404:9dc0:cd03::/48 maxlen: 48 2404:9dc0:cd04::/48 maxlen: 48 2404:9dc0:cd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4092 (0xffc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912190F Validity Not Before: Mar 26 17:26:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e438e0-0630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9c:e7:66:59:59:1e:d9:13:b4:ab:ed:5d:ba: f8:e1:10:95:dd:4b:f9:6e:28:78:54:c8:e5:3e:8e: 73:28:46:fc:b7:42:84:81:1f:4f:17:e1:3f:e0:fd: d5:bc:07:48:f1:e7:02:a7:33:52:61:80:ad:e3:19: 0e:05:e8:51:df:01:b1:8d:28:c6:25:c4:40:df:6f: 79:85:00:de:34:d6:3b:4b:9d:cf:ae:46:17:57:0d: cc:5c:bc:ec:4f:d0:68:d6:0b:d6:d8:42:7a:36:15: fd:df:d7:62:38:80:88:7d:63:8d:7b:44:20:47:e8: 3f:95:f8:c2:37:d2:8f:0c:80:bd:19:9f:80:95:1e: 3f:fd:dd:e8:96:d3:01:86:ac:f2:b0:ba:db:02:4a: 96:17:b6:2c:36:ac:da:4a:ca:f6:b3:cc:ce:1b:e9: fe:d9:0e:27:d7:f4:dd:ae:2a:f2:69:29:2d:65:f5: 8e:bf:08:0a:1a:e2:33:2f:40:e3:fd:dc:92:01:10: 45:9c:f6:c6:32:4e:3a:89:98:89:ad:a7:7f:dd:a0: b2:1d:7a:c9:3b:cb:20:49:e6:07:12:1f:59:07:34: b9:c6:1b:0a:82:e9:f4:ad:d8:3c:82:38:2b:15:f1: be:a9:77:17:03:04:e0:fb:21:fe:ac:12:a0:3a:61: 6c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FC:02:89:88:08:E2:98:EA:FC:57:A7:D2:AC:A4:80:F9:32:F9:B4 X509v3 Authority Key Identifier: keyid:34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.220.0/22 118.26.132.0/24 IPv6: 2404:9dc0:cd01::-2404:9dc0:cd05:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 69:1a:15:c0:eb:ca:a0:c2:34:a1:3f:10:b8:cf:0e:ab:e7:5d: 42:3a:63:f8:97:5e:55:fa:9b:b1:c1:a1:b6:c7:bd:2a:11:65: 62:59:6e:8a:6d:be:ee:e5:81:02:33:14:16:88:28:74:f0:aa: 11:13:6c:51:14:73:be:fe:c2:be:63:0f:71:0e:8a:a7:c0:b7: 0b:48:52:6d:70:8a:62:d9:b2:bf:be:f9:cf:28:26:5b:3b:8e: 67:39:f1:ab:60:8a:bb:05:3a:7b:bb:d0:00:00:9d:83:54:dd: 6f:b9:a3:13:6f:5c:2d:35:9f:75:e4:87:20:76:45:8e:b2:c9: 93:82:8b:2f:77:fc:fe:0a:07:55:35:2b:5f:ca:de:7c:1e:1c: aa:2d:c2:4c:bf:89:8a:5c:c9:32:54:32:b4:d9:36:60:b7:38: 96:5f:61:66:69:3f:75:9a:8d:f0:ea:9a:f9:c2:8e:f6:1e:a0: a8:9b:3b:83:c1:09:c2:bb:93:2a:56:70:59:06:ac:ff:b5:6c: 76:26:80:b8:40:3c:52:fa:c0:b6:54:de:98:2a:37:af:17:83: 3d:e4:4d:df:44:82:9e:67:5d:fa:bd:29:b2:90:1d:2d:b8:73: 36:55:07:ab:51:52:5a:a7:2b:0a:d0:d3:1c:06:8c:e6:8d:27: 95:08:bc:3e -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICD/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE5MEYxMTAvBgNVBAUTKDM0NEZCNDk5QTZBMzdEMjYzMjlBQjdENUZGNTI2MjUx MDk4RTVERjIwHhcNMjUwMzI2MTcyNjU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0MzhlMC0wNjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopznZllZHtkTtKvtXbr44RCV3Uv5bih4VMjlPo5zKEb8t0KEgR9PF+E/4P3V vAdI8ecCpzNSYYCt4xkOBehR3wGxjSjGJcRA3295hQDeNNY7S53PrkYXVw3MXLzs T9Bo1gvW2EJ6NhX939diOICIfWONe0QgR+g/lfjCN9KPDIC9GZ+AlR4//d3oltMB hqzysLrbAkqWF7YsNqzaSsr2s8zOG+n+2Q4n1/TdriryaSktZfWOvwgKGuIzL0Dj /dySARBFnPbGMk46iZiJrad/3aCyHXrJO8sgSeYHEh9ZBzS5xhsKgun0rdg8gjgr FfG+qXcXAwTg+yH+rBKgOmFsVwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFNT8AomI COKY6vxXp9KspID5Mvm0MB8GA1UdIwQYMBaAFDRPtJmmo30mMpq31f9SYlEJjl3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTkwRi82Q0MwRjlGNDQ3 QjExMUU5OUZDQ0EwNTlDNEY5QUUwMi9ORS0wbWFhamZTWXltcmZWXzFKaVVRbU9Y ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FLTBtYWFqZlNZeW1yZlZfMUppVVFtT1hmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE5MEYvNkNDMEY5RjQ0N0IxMTFFOTlGQ0NBMDU5QzRGOUFFMDIvOTk1QUExMDA1 NTE2MTFFOUJERDNDQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJniNwDBAB2GoQwGgQCAAIwFDASAwcAJASdwM0BAwcBJASd wM0EMA0GCSqGSIb3DQEBCwUAA4IBAQBpGhXA68qgwjShPxC4zw6r511COmP4l15V +puxwaG2x70qEWViWW6Kbb7u5YECMxQWiCh08KoRE2xRFHO+/sK+Yw9xDoqnwLcL SFJtcIpi2bK/vvnPKCZbO45nOfGrYIq7BTp7u9AAAJ2DVN1vuaMTb1wtNZ915Icg dkWOssmTgosvd/z+CgdVNStfyt58HhyqLcJMv4mKXMkyVDK02TZgtziWX2FmaT91 mo3w6pr5wo72HqComzuDwQnCu5MqVnBZBqz/tWx2JoC4QDxS+sC2VN6YKjevF4M9 5E3fRIKeZ136vSmykB0tuHM2VQerUVJapysK0NMcBozmjSeVCLw+ -----END CERTIFICATE-----Generated at Sun Apr 6 15:27:35 2025 by rpki-client