$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa File: 650CB2EE081C11EFA47C4687C4F9AE02.roa (raw, json) Hash identifier: PhSrarlCbMwPtvT6PCvMaDG4Ioq8bEIWBn8LLBxKEUI= Subject key identifier: 18:4B:76:47:F5:BE:41:A5:D1:E8:2D:63:8D:83:23:B5:65:B4:99:E5 Certificate issuer: /CN=A9122B0D/serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18 Certificate serial: 0186 Authority key identifier: 3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa Signing time: Wed 09 Apr 2025 03:08:55 +0000 ROA not before: Wed 09 Apr 2025 03:08:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151054 IP address blocks: 103.121.184.0/24 maxlen: 24 2001:df3:bf40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.crl rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B0D, serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18 Validity Not Before: Apr 9 03:08:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5e4c6-934c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fe:69:c6:de:a2:e8:de:92:78:13:dc:7c:58: 8f:db:4d:be:9d:da:4f:d5:43:b7:b6:89:7c:bc:1e: a4:f8:37:60:2c:62:24:29:4c:80:cd:a3:98:0b:05: 87:12:14:e5:f8:a9:02:f1:39:4b:af:1f:65:1b:f3: a3:1b:2c:80:7a:09:4e:84:38:e3:75:b9:fe:3f:98: 92:7c:0b:9e:99:8b:6d:24:37:3a:31:f6:97:2b:bb: de:7a:5c:ee:59:d2:8d:f9:db:66:76:a7:5f:36:5b: 88:cc:6d:98:a5:41:f2:d8:3a:a1:3d:8f:fc:14:d5: 17:bf:7c:1b:9d:b6:cd:e6:3a:85:24:62:88:91:4f: ea:e5:aa:39:a6:9c:bf:ea:66:48:6a:38:84:88:37: 6c:dd:ef:73:55:e1:a7:59:e9:c5:9e:a3:c1:e8:66: 93:6c:3c:49:a7:96:70:de:b3:5e:a2:93:60:35:5e: 24:f6:cd:8e:82:ed:05:84:e9:7b:f0:68:f1:3f:2e: a7:75:71:0f:3f:0e:49:de:37:f9:f0:94:ec:c4:7d: 36:18:e7:e9:ac:61:18:66:90:1c:73:b1:8b:29:57: c9:40:0c:09:72:74:a7:25:8f:22:7c:ff:d1:1c:d8: 14:07:2c:05:11:69:44:8f:bf:9b:31:6d:b1:c0:07: 50:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:76:47:F5:BE:41:A5:D1:E8:2D:63:8D:83:23:B5:65:B4:99:E5 X509v3 Authority Key Identifier: keyid:3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.184.0/24 IPv6: 2001:df3:bf40::/48 Signature Algorithm: sha256WithRSAEncryption 9c:ca:43:61:34:e9:e8:34:e3:a2:19:28:1e:98:88:a2:1c:3e: d6:26:b6:ff:5a:1a:2c:ab:02:27:4f:6d:38:8d:f1:52:3c:53: 12:1c:07:29:ed:c5:d0:3c:a6:af:b7:ba:d4:90:c8:f4:3b:91: b8:90:53:45:fa:8a:23:0e:c5:06:ec:de:b0:b8:df:5e:43:9f: 95:4d:e3:21:15:3b:ee:f7:85:f0:29:d3:f3:5c:a2:87:05:44: d0:67:fd:6a:c8:81:ba:a4:9a:22:92:4e:fd:0e:e7:d8:e3:cc: 93:e7:f4:71:06:74:a5:57:64:df:55:63:2a:23:8c:89:d9:0a: f4:a2:74:8a:3a:95:54:2d:b8:46:b6:68:c2:94:3c:38:23:e1: a1:fa:a7:f0:cd:d8:dc:78:60:81:11:2f:3c:e3:ab:05:2f:1c: 15:a5:7d:fe:49:92:a1:66:84:b4:a8:ff:67:a4:e7:84:64:d3: 94:44:ee:61:07:a4:7d:1d:e4:98:c2:8a:ac:1c:61:98:dd:6f: 21:99:b8:24:37:1a:ab:cb:fb:2c:a3:be:e2:cc:36:f7:37:ca: ac:f9:33:fe:58:41:5a:17:5d:d5:11:22:05:a5:ff:12:13:55: 3b:73:3d:c1:67:55:0e:f0:62:19:26:b8:39:48:1b:1e:98:22: c5:87:68:ac -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJCMEQxMTAvBgNVBAUTKDNFOTM1OERDRjJDNTNGNjYyMTA1MkIzQUE4NTI0NTRF MkZCMzFDMTgwHhcNMjUwNDA5MDMwODU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1ZTRjNi05MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmf5pxt6i6N6SeBPcfFiP202+ndpP1UO3tol8vB6k+DdgLGIkKUyAzaOYCwWH EhTl+KkC8TlLrx9lG/OjGyyAeglOhDjjdbn+P5iSfAuemYttJDc6MfaXK7veelzu WdKN+dtmdqdfNluIzG2YpUHy2DqhPY/8FNUXv3wbnbbN5jqFJGKIkU/q5ao5ppy/ 6mZIajiEiDds3e9zVeGnWenFnqPB6GaTbDxJp5Zw3rNeopNgNV4k9s2Ogu0FhOl7 8GjxPy6ndXEPPw5J3jf58JTsxH02GOfprGEYZpAcc7GLKVfJQAwJcnSnJY8ifP/R HNgUBywFEWlEj7+bMW2xwAdQ6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBhLdkf1 vkGl0egtY42DI7VltJnlMB8GA1UdIwQYMBaAFD6TWNzyxT9mIQUrOqhSRU4vsxwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkIwRC85MDlCNzlGMEU1 MkIxMUVEQjJFQjY1ODVDNEY5QUUwMi9QcE5ZM1BMRlAyWWhCU3M2cUZKRlRpLXpI QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BwTlkzUExGUDJZaEJTczZxRkpGVGktekhCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJCMEQvOTA5Qjc5RjBFNTJCMTFFREIyRUI2NTg1QzRGOUFFMDIvNjUwQ0IyRUUw ODFDMTFFRkE0N0M0Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnebgwDwQCAAIwCQMHACABDfO/QDANBgkqhkiG9w0BAQsF AAOCAQEAnMpDYTTp6DTjohkoHpiIohw+1ia2/1oaLKsCJ09tOI3xUjxTEhwHKe3F 0Dymr7e61JDI9DuRuJBTRfqKIw7FBuzesLjfXkOflU3jIRU77veF8CnT81yihwVE 0Gf9asiBuqSaIpJO/Q7n2OPMk+f0cQZ0pVdk31VjKiOMidkK9KJ0ijqVVC24RrZo wpQ8OCPhofqn8M3Y3HhggREvPOOrBS8cFaV9/kmSoWaEtKj/Z6TnhGTTlETuYQek fR3kmMKKrBxhmN1vIZm4JDcaq8v7LKO+4sw29zfKrPkz/lhBWhdd1REiBaX/EhNV O3M9wWdVDvBiGSa4OUgbHpgixYdorA== -----END CERTIFICATE-----Generated at Tue Apr 22 12:22:37 2025 by rpki-client