$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/4A41D220EF2D11EF8502717CC4F9AE02.roa File: 4A41D220EF2D11EF8502717CC4F9AE02.roa (raw, json) Hash identifier: wQnqiQ3ZPf4j+bASNC2ws3c5gDu1V0TUMzmVDEwlfrY= Subject key identifier: 71:D6:00:2E:69:14:6E:8B:60:04:80:CC:49:14:CF:E3:CD:12:C9:2F Certificate issuer: /CN=A9135F86/serialNumber=67412F0C730D9F45467A526C3825EC38FE700B63 Certificate serial: 0A Authority key identifier: 67:41:2F:0C:73:0D:9F:45:46:7A:52:6C:38:25:EC:38:FE:70:0B:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0EvDHMNn0VGelJsOCXsOP5wC2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/4A41D220EF2D11EF8502717CC4F9AE02.roa Signing time: Sat 01 Mar 2025 10:39:54 +0000 ROA not before: Sat 01 Mar 2025 10:39:54 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58530 IP address blocks: 103.225.156.0/24 maxlen: 24 103.225.157.0/24 maxlen: 24 103.225.158.0/24 maxlen: 24 103.225.159.0/24 maxlen: 24 103.247.248.0/24 maxlen: 24 103.247.249.0/24 maxlen: 24 103.247.250.0/24 maxlen: 24 103.247.251.0/24 maxlen: 24 103.254.140.0/24 maxlen: 24 103.254.141.0/24 maxlen: 24 103.254.142.0/24 maxlen: 24 103.254.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/Z0EvDHMNn0VGelJsOCXsOP5wC2M.crl rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/Z0EvDHMNn0VGelJsOCXsOP5wC2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0EvDHMNn0VGelJsOCXsOP5wC2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 07:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F86, serialNumber=67412F0C730D9F45467A526C3825EC38FE700B63 Validity Not Before: Mar 1 10:39:54 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2e3fa-5442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b8:5e:db:49:ed:e5:4d:b6:07:5d:26:66:f2: ac:67:d8:91:0b:65:3f:d3:73:b1:d5:f4:a1:ea:c2: 76:44:3e:42:60:2d:e1:79:bd:01:1b:10:46:1d:f0: 4d:ea:b9:3b:3a:17:03:bd:e5:13:ca:71:d3:9d:87: d0:ec:1e:dd:5b:55:54:55:ac:ff:7e:e8:b4:c3:5d: 60:17:53:3b:da:e1:ec:91:d7:28:65:3e:3d:1f:46: db:56:cc:7b:01:ad:69:e5:42:db:f9:73:36:2e:f9: 6a:45:66:d0:7c:29:64:e6:41:d9:3b:13:9d:af:c2: ad:0c:84:1f:04:f2:98:37:ee:c2:a7:3e:b1:78:89: f8:c1:a7:45:b2:fd:d2:85:b2:43:2a:ba:d2:b4:3b: 13:e3:f3:e6:f5:43:4b:d5:10:a2:3a:59:8b:98:ba: f2:4e:d6:85:e3:27:22:5c:d7:2f:db:b4:61:78:93: d0:24:b6:6f:32:a4:9d:c2:f8:59:67:eb:9a:84:cd: 95:af:e1:e5:85:6b:d3:4a:ba:b5:db:74:c3:b3:84: cf:ed:f5:d9:5d:97:96:6f:c0:75:cd:a3:e3:45:d0: d8:1d:f8:5a:89:ea:a9:1f:03:96:a1:a1:eb:a4:f6: 63:c6:dd:80:0e:14:dc:05:ac:cd:4f:b8:3a:02:20: 09:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D6:00:2E:69:14:6E:8B:60:04:80:CC:49:14:CF:E3:CD:12:C9:2F X509v3 Authority Key Identifier: keyid:67:41:2F:0C:73:0D:9F:45:46:7A:52:6C:38:25:EC:38:FE:70:0B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/Z0EvDHMNn0VGelJsOCXsOP5wC2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0EvDHMNn0VGelJsOCXsOP5wC2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/4A41D220EF2D11EF8502717CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.156.0/22 103.247.248.0/22 103.254.140.0/22 Signature Algorithm: sha256WithRSAEncryption 65:fc:d3:1e:17:aa:67:73:79:99:10:fa:a8:54:20:57:3a:e6: ca:d8:1b:6c:17:90:85:9d:30:32:68:e1:5b:ae:ed:71:ce:ea: e0:d4:a9:e6:b7:3b:cf:6b:bd:23:a9:e8:2b:2c:b8:7a:51:49: 19:36:e1:48:d0:6b:99:3e:94:7b:3a:58:6f:1a:ea:8a:12:c2: fb:ff:ef:8e:35:67:6e:10:cf:72:a7:1f:5b:f3:f3:0a:77:fa: 44:5a:a3:ac:02:14:ba:ae:9b:fa:1c:21:25:6f:a6:4a:b9:71: 39:3e:30:b1:6f:8b:93:68:d8:48:3c:b2:3f:51:ee:23:2c:f2: 27:24:46:bb:bd:4b:dc:75:2f:18:78:1f:20:a9:d7:c8:33:22: 10:d3:2a:f5:f6:3b:4a:29:f5:ad:0c:97:18:29:00:f6:e5:53: b1:24:99:fa:7d:e6:d2:d7:48:71:87:ff:3c:5e:46:4b:94:ee: 71:f1:99:39:ec:ec:1b:ef:0a:0e:5f:fe:6b:0d:5a:8a:f7:db: 05:1f:a2:cc:34:6c:a9:25:2c:33:d4:22:96:d4:77:29:b6:18: 5c:de:d5:a6:26:b5:a4:7d:20:ae:41:2a:cd:7c:64:34:74:bc: 5f:45:e9:6f:ef:fd:65:00:7c:19:07:7e:2c:ae:18:26:fd:3f: ce:4c:cb:b8 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUY4NjExMC8GA1UEBRMoNjc0MTJGMEM3MzBEOUY0NTQ2N0E1MjZDMzgyNUVDMzhG RTcwMEI2MzAeFw0yNTAzMDExMDM5NTRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzJlM2ZhLTU0NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfuF7bSe3lTbYHXSZm8qxn2JELZT/Tc7HV9KHqwnZEPkJgLeF5vQEbEEYd8E3q uTs6FwO95RPKcdOdh9DsHt1bVVRVrP9+6LTDXWAXUzva4eyR1yhlPj0fRttWzHsB rWnlQtv5czYu+WpFZtB8KWTmQdk7E52vwq0MhB8E8pg37sKnPrF4ifjBp0Wy/dKF skMqutK0OxPj8+b1Q0vVEKI6WYuYuvJO1oXjJyJc1y/btGF4k9Aktm8ypJ3C+Fln 65qEzZWv4eWFa9NKurXbdMOzhM/t9dldl5ZvwHXNo+NF0Ngd+FqJ6qkfA5ahoeuk 9mPG3YAOFNwFrM1PuDoCIAlNAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUcdYALmkU botgBIDMSRTP480SyS8wHwYDVR0jBBgwFoAUZ0EvDHMNn0VGelJsOCXsOP5wC2Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1Rjg2Lzg4RUQ1Qzg0RUYy QzExRUY5QzNGM0M3QkM0RjlBRTAyL1owRXZESE1ObjBWR2VsSnNPQ1hzT1A1d0My TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjBFdkRITU5uMFZHZWxKc09DWHNPUDV3QzJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUY4Ni84OEVENUM4NEVGMkMxMUVGOUMzRjNDN0JDNEY5QUUwMi80QTQxRDIyMEVG MkQxMUVGODUwMjcxN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmfhnAMEAmf3+AMEAmf+jDANBgkqhkiG9w0BAQsFAAOCAQEA ZfzTHheqZ3N5mRD6qFQgVzrmytgbbBeQhZ0wMmjhW67tcc7q4NSp5rc7z2u9I6no Kyy4elFJGTbhSNBrmT6UezpYbxrqihLC+//vjjVnbhDPcqcfW/PzCnf6RFqjrAIU uq6b+hwhJW+mSrlxOT4wsW+Lk2jYSDyyP1HuIyzyJyRGu71L3HUvGHgfIKnXyDMi ENMq9fY7Sin1rQyXGCkA9uVTsSSZ+n3m0tdIcYf/PF5GS5TucfGZOezsG+8KDl/+ aw1aivfbBR+izDRsqSUsM9QiltR3KbYYXN7Vpia1pH0grkEqzXxkNHS8X0Xpb+/9 ZQB8GQd+LK4YJv0/zkzLuA== -----END CERTIFICATE-----Generated at Sun Apr 13 02:16:53 2025 by rpki-client