$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa File: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (raw, json) Hash identifier: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4= Subject key identifier: 80:7C:C1:F3:B6:35:31:AE:5E:45:3B:C9:04:29:B1:56:42:B7:DD:86 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 0635 Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa Signing time: Wed 02 Apr 2025 22:54:18 +0000 ROA not before: Wed 02 Apr 2025 22:54:18 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138689 IP address blocks: 103.136.164.0/22 maxlen: 22 103.136.164.0/24 maxlen: 24 103.136.165.0/24 maxlen: 24 103.136.166.0/24 maxlen: 24 103.136.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 22:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803 Validity Not Before: Apr 2 22:54:18 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edc019-7d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:39:0f:ae:cd:c2:00:4c:5c:16:37:2a:aa:5b: 55:2c:42:01:21:a9:99:03:b8:f3:94:44:90:99:e5: e5:9d:83:d4:ee:ba:94:9d:8f:78:34:a4:ad:14:ab: cd:10:43:ab:0a:f1:e5:a6:db:89:6c:65:ad:d6:40: bd:b9:bc:27:19:83:cc:0a:84:b5:60:17:7c:da:e1: bb:61:c5:8f:1a:e2:82:2e:81:4e:68:5e:00:08:84: b4:9e:2d:b6:6a:58:2d:63:f6:e2:a3:80:87:5d:b8: 39:88:f6:bf:c3:12:fc:78:ac:3b:51:27:f5:3a:78: 1e:46:48:27:5b:ed:95:1e:ed:27:a6:a9:71:15:3e: 67:c3:58:64:56:db:8f:b6:62:62:7d:9b:eb:c3:44: 3f:0c:95:d0:ad:4e:72:2a:e0:80:e6:0d:09:dd:45: 82:a7:00:ce:0b:7f:51:74:62:51:fc:ce:c0:e9:d8: 5f:1f:ba:da:09:3a:69:82:79:c6:90:e9:1a:3e:74: 2f:8f:b9:ec:06:47:0e:81:fe:34:84:b8:45:69:b1: 91:02:03:a7:fd:17:76:cb:0e:be:ea:18:2b:a5:a1: ff:5e:76:f2:91:69:cc:bc:b1:f5:76:6f:d1:84:0d: 11:58:09:b9:17:6e:a8:ea:5c:ff:5a:8b:68:1f:d4: 23:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7C:C1:F3:B6:35:31:AE:5E:45:3B:C9:04:29:B1:56:42:B7:DD:86 X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.164.0/22 Signature Algorithm: sha256WithRSAEncryption 71:47:25:3e:49:0c:d8:e0:f0:2b:53:7a:2c:ac:6d:12:b5:8b: 19:4a:66:c9:45:6c:33:80:26:b9:49:f3:35:7f:b1:9f:f3:57: 43:00:90:42:1c:97:5d:2c:6f:ed:0a:a4:2d:4c:7b:ac:02:a8: 32:b7:e1:73:c3:a5:95:a3:19:cb:a3:18:d1:95:d0:b5:b6:6e: b5:8d:a8:7e:1a:94:df:14:85:f9:fc:a5:b3:e1:e9:a4:e5:3d: 81:45:0e:07:4b:44:5a:ee:80:ce:b6:92:db:1a:d6:fc:88:88: a0:37:5b:7e:5e:19:64:2c:36:6b:d5:20:61:ef:a0:87:f4:a3: a1:97:c6:5e:75:e4:c2:ee:67:fe:37:c7:6f:93:0b:b0:9d:00: 03:2b:6e:7b:2a:2e:ba:be:27:2f:52:09:e0:f2:c2:ce:03:a4: 2a:a1:79:d1:dd:25:9f:04:a8:fe:9c:aa:f5:7e:e9:e4:e7:f4: a1:cd:f3:6f:ee:88:49:21:88:b1:0b:f0:a6:9b:96:c4:3b:3b: 04:c7:7d:2a:32:fd:72:0c:34:40:7e:d3:77:40:9b:66:d0:76: 03:12:14:e9:14:a0:c4:f3:4e:7e:0c:cb:cb:e2:d8:37:03:69: 83:bf:75:ff:48:4b:5a:d3:66:55:4e:76:13:5d:88:e3:21:7a: bc:21:5d:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjUwNDAyMjI1NDE4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzAxOS03ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDkPrs3CAExcFjcqqltVLEIBIamZA7jzlESQmeXlnYPU7rqUnY94NKStFKvN EEOrCvHlptuJbGWt1kC9ubwnGYPMCoS1YBd82uG7YcWPGuKCLoFOaF4ACIS0ni22 algtY/bio4CHXbg5iPa/wxL8eKw7USf1OngeRkgnW+2VHu0npqlxFT5nw1hkVtuP tmJifZvrw0Q/DJXQrU5yKuCA5g0J3UWCpwDOC39RdGJR/M7A6dhfH7raCTppgnnG kOkaPnQvj7nsBkcOgf40hLhFabGRAgOn/Rd2yw6+6hgrpaH/XnbykWnMvLH1dm/R hA0RWAm5F26o6lz/WotoH9Qj2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIB8wfO2 NTGuXkU7yQQpsVZCt92GMB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ4MDMvOTc3RDczNjA4QzcwMTFFQkFFQTExMzQxQzRGOUFFMDIvNjJDQ0ZGMzA4 QzcyMTFFQjk4QTZERDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniKQwDQYJKoZIhvcNAQELBQADggEBAHFHJT5JDNjg8CtT eiysbRK1ixlKZslFbDOAJrlJ8zV/sZ/zV0MAkEIcl10sb+0KpC1Me6wCqDK34XPD pZWjGcujGNGV0LW2brWNqH4alN8Uhfn8pbPh6aTlPYFFDgdLRFrugM62ktsa1vyI iKA3W35eGWQsNmvVIGHvoIf0o6GXxl515MLuZ/43x2+TC7CdAAMrbnsqLrq+Jy9S CeDyws4DpCqhedHdJZ8EqP6cqvV+6eTn9KHN82/uiEkhiLEL8KablsQ7OwTHfSoy /XIMNEB+03dAm2bQdgMSFOkUoMTzTn4My8vi2DcDaYO/df9IS1rTZlVOdhNdiOMh erwhXds= -----END CERTIFICATE-----Generated at Mon Apr 7 17:32:22 2025 by rpki-client