$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/A7BDC50C7A4811EBA907BB5BC4F9AE02.roa File: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (raw, json) Hash identifier: 0RWvLgLQMfYKcMt6aIpCTG3MXhhitrR5pPiP2zQ4NcY= Subject key identifier: 00:78:49:0A:11:06:25:21:91:3A:FD:46:5D:82:C0:37:A7:F6:B4:3C Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0F72 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/A7BDC50C7A4811EBA907BB5BC4F9AE02.roa Signing time: Thu 06 Mar 2025 18:06:20 +0000 ROA not before: Thu 06 Mar 2025 18:06:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.133.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3954 (0xf72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690 Validity Not Before: Mar 6 18:06:20 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c9e41c-4b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:e9:f7:26:ad:79:b8:b1:16:ac:da:dd:5c: f6:d4:e0:ee:84:f1:07:c9:6a:6c:ea:ed:c4:d9:92: 33:1c:41:0c:d2:fd:22:0d:11:7f:4c:84:d6:8f:0e: 5e:53:ec:98:ae:16:5b:41:01:de:66:bb:dd:91:38: cf:94:7f:e5:59:2d:fc:b0:eb:34:4b:7c:da:c8:bd: 6c:80:25:30:7d:8f:80:27:79:1a:97:d2:2b:9d:ec: 0d:9c:81:bb:fa:a4:1a:98:93:a7:9d:11:1e:dd:b0: 2d:fb:36:e5:f3:de:97:82:a7:5e:39:bf:00:04:48: a8:e5:50:e5:7f:67:9a:91:72:0c:62:6c:07:a6:b4: 00:2c:b5:a3:d4:f6:c4:b2:59:ae:fa:1e:d7:9c:89: 5d:65:e0:bb:39:77:02:7e:96:43:3d:6d:74:08:93: e2:a0:89:e3:7f:d4:6b:8c:ad:27:2e:fd:58:19:30: 27:43:04:6f:ad:a2:5c:35:ba:76:14:6e:c9:fa:ce: 2b:26:1f:46:73:69:36:79:41:7a:96:21:a4:c2:79: 97:69:96:84:24:3b:a5:2a:9d:8b:46:0e:d7:2d:9f: 42:33:d1:3f:6f:d0:96:a8:07:9d:07:ce:9a:bd:ae: d9:44:73:25:0f:c6:82:a0:e8:86:77:2a:aa:7c:a0: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:78:49:0A:11:06:25:21:91:3A:FD:46:5D:82:C0:37:A7:F6:B4:3C X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/A7BDC50C7A4811EBA907BB5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.176.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:20:1d:82:0a:a2:1f:82:b3:93:f4:a2:18:f7:6c:af:79:22: 5a:0e:dd:bc:b6:a6:33:07:61:67:59:c7:92:64:fe:bf:82:2c: 7a:1a:fa:11:61:13:41:f5:27:f8:b0:36:7e:db:d1:b1:0e:c7: be:ee:3b:80:2c:bd:3f:d3:b3:84:c0:39:48:54:a8:4f:59:d6: b2:63:f8:32:44:36:50:0a:a5:40:5e:39:72:30:14:1a:28:d9: 17:19:a3:aa:f1:e6:01:47:49:0e:00:7e:d7:0c:60:99:31:88: b9:2a:21:19:c5:f0:2a:f9:e5:2a:b6:bc:c2:c1:ea:01:ff:69: 85:e3:2f:1a:a1:a4:b2:92:2e:f9:28:b0:76:27:98:77:5f:8f: a5:9b:cd:e7:a6:87:e6:f0:36:b4:e2:ae:0a:b7:b1:4f:8a:ad: b5:92:07:ea:2f:c6:c9:27:62:d1:38:56:61:7a:43:aa:ce:c1: 27:a7:8a:12:fd:96:18:62:a1:34:ae:fa:7d:f8:e2:00:cd:3d: f9:51:c4:21:b9:af:95:a8:0a:bc:a2:2e:a6:e8:e3:78:aa:b6: 79:ef:f3:8c:27:fa:e2:f4:fc:3c:05:55:d1:ef:2d:43:19:8f: be:ca:6e:02:65:4e:6e:a4:93:06:5a:a2:e6:62:b4:fb:07:4e: 42:5d:63:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjUwMzA2MTgwNjIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M5ZTQxYy00YjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuibp9yatebixFqza3Vz21ODuhPEHyWps6u3E2ZIzHEEM0v0iDRF/TITWjw5e U+yYrhZbQQHeZrvdkTjPlH/lWS38sOs0S3zayL1sgCUwfY+AJ3kal9IrnewNnIG7 +qQamJOnnREe3bAt+zbl896XgqdeOb8ABEio5VDlf2eakXIMYmwHprQALLWj1PbE slmu+h7XnIldZeC7OXcCfpZDPW10CJPioInjf9RrjK0nLv1YGTAnQwRvraJcNbp2 FG7J+s4rJh9Gc2k2eUF6liGkwnmXaZaEJDulKp2LRg7XLZ9CM9E/b9CWqAedB86a va7ZRHMlD8aCoOiGdyqqfKArZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAB4SQoR BiUhkTr9Rl2CwDen9rQ8MB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE2OTAvMTVCNDFCODg2M0YzMTFFOUEwODU0QzQ3QzRGOUFFMDIvQTdCREM1MEM3 QTQ4MTFFQkE5MDdCQjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhbAwDQYJKoZIhvcNAQELBQADggEBAE8gHYIKoh+Cs5P0 ohj3bK95IloO3by2pjMHYWdZx5Jk/r+CLHoa+hFhE0H1J/iwNn7b0bEOx77uO4As vT/Ts4TAOUhUqE9Z1rJj+DJENlAKpUBeOXIwFBoo2RcZo6rx5gFHSQ4AftcMYJkx iLkqIRnF8Cr55Sq2vMLB6gH/aYXjLxqhpLKSLvkosHYnmHdfj6Wbzeemh+bwNrTi rgq3sU+KrbWSB+ovxsknYtE4VmF6Q6rOwSenihL9lhhioTSu+n344gDNPflRxCG5 r5WoCryiLqbo43iqtnnv84wn+uL0/DwFVdHvLUMZj77KbgJlTm6kkwZaouZitPsH TkJdYyM= -----END CERTIFICATE-----Generated at Sat Apr 5 05:55:16 2025 by rpki-client