$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa File: C22B92AA081011EDBC3C4374C4F9AE02.roa (raw, json) Hash identifier: OxkEmLMGkxV9qU2vxCISEVaV7VxznjkiRbOpszB8G5c= Subject key identifier: C6:40:55:B2:D3:B9:1A:8A:08:4A:72:AA:AE:2C:0E:10:17:26:B3:83 Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Certificate serial: 0CFF Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa Signing time: Sun 16 Mar 2025 18:08:25 +0000 ROA not before: Sun 16 Mar 2025 18:08:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.109.92.0/24 maxlen: 24 103.109.93.0/24 maxlen: 24 103.109.95.0/24 maxlen: 24 103.214.200.0/24 maxlen: 24 103.214.201.0/24 maxlen: 24 103.214.202.0/24 maxlen: 24 103.214.203.0/24 maxlen: 24 144.48.150.0/24 maxlen: 24 144.48.151.0/24 maxlen: 24 2001:df4:3100::/48 maxlen: 48 2404:4c0:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3327 (0xcff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F6D Validity Not Before: Mar 16 18:08:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d71398-abb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:41:84:c2:80:47:ef:ca:1d:5b:96:7e:d8:5f: 3c:2c:b6:f7:1d:5c:9b:5d:ca:90:88:16:67:61:3a: 68:b3:16:2e:45:87:f6:2d:c3:84:9c:ba:ff:46:34: c3:e7:48:eb:52:67:86:4f:90:2b:cf:09:57:69:f8: c1:41:6a:10:87:c5:73:06:c4:f1:b6:1f:3f:0b:ed: 74:f4:d7:49:a2:15:bf:8a:9b:ad:02:83:04:40:11: 89:fe:83:77:fb:f0:b9:75:73:37:0f:c9:b4:70:34: 86:c0:1b:6e:9c:a2:b4:19:d4:5e:59:6b:13:10:cd: c9:99:44:73:7d:cb:8a:8d:09:86:b3:58:36:ba:5c: 4b:91:ea:8d:67:13:4d:c7:9c:b7:3e:d1:30:49:56: 8e:7b:84:9e:9a:34:36:dd:10:ab:20:4b:10:f7:a8: 49:31:da:e6:16:fb:e5:82:01:3d:da:1c:67:09:ec: 1a:ac:44:1f:ad:d6:84:3e:10:14:6e:8d:0b:ce:75: 0e:3a:af:71:8c:91:1c:25:6e:ac:3b:ba:1c:02:f9: d3:55:2a:ba:95:15:70:19:ff:c8:9f:b6:fb:e6:6e: 71:8f:72:47:90:ff:fa:be:9d:af:3c:3b:b4:05:8c: ab:0b:5d:b4:25:44:3d:f6:ef:08:e2:07:62:12:8b: 58:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:40:55:B2:D3:B9:1A:8A:08:4A:72:AA:AE:2C:0E:10:17:26:B3:83 X509v3 Authority Key Identifier: keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.92.0/23 103.109.95.0/24 103.214.200.0/22 144.48.150.0/23 IPv6: 2001:df4:3100::/48 2404:4c0:10a::/48 Signature Algorithm: sha256WithRSAEncryption 2b:35:a7:7a:49:6b:84:7a:6c:d5:0e:5e:d8:d3:53:9c:a7:d4: 3b:c3:d9:45:f1:27:bb:4b:8f:e5:9a:d8:da:9c:c1:d2:48:11: 96:5e:a0:1d:8b:0a:c7:ba:bd:75:80:de:b5:97:39:fe:71:03: 42:f1:9c:47:7c:87:13:3b:d2:b7:aa:2b:c4:16:d1:45:0f:35: c7:98:de:60:45:56:f9:c7:2d:30:4e:7a:4c:64:3c:26:c7:05: fc:fc:92:7f:9f:e2:bb:1b:0b:e4:50:56:1b:45:c1:ca:da:e9: 2c:a3:d3:39:3c:72:30:83:92:3e:ca:c0:45:b2:28:e9:6c:d7: 50:4b:29:81:ec:fc:a2:c7:c6:83:68:86:39:23:e3:22:af:17: dc:91:08:e9:c3:70:67:eb:1a:68:84:33:74:cf:13:6a:67:2e: 2b:78:c8:26:43:e9:39:d9:fa:b0:a8:9a:f4:88:4d:72:65:28: ea:6a:6f:b6:84:be:23:0a:26:8f:31:5a:54:9b:b6:83:b7:11: da:89:15:dc:9d:75:8b:f7:45:59:ad:a8:05:ad:c3:f0:3c:d4: 9a:7d:7c:0b:6c:57:25:e2:5a:b9:5a:dc:84:1f:2b:a1:93:44: 1e:fb:f3:a3:b6:a5:3e:5c:b0:44:36:47:6f:65:e4:2b:a5:d1: 5e:ca:a6:fe -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICDP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNkQxMTAvBgNVBAUTKEZEMDZCMTUwODU1N0Y2NUY2OENDQkEzQzIwM0VDQUFE MDc1REQxOUIwHhcNMjUwMzE2MTgwODI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3MTM5OC1hYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50GEwoBH78odW5Z+2F88LLb3HVybXcqQiBZnYTposxYuRYf2LcOEnLr/RjTD 50jrUmeGT5ArzwlXafjBQWoQh8VzBsTxth8/C+109NdJohW/iputAoMEQBGJ/oN3 +/C5dXM3D8m0cDSGwBtunKK0GdReWWsTEM3JmURzfcuKjQmGs1g2ulxLkeqNZxNN x5y3PtEwSVaOe4SemjQ23RCrIEsQ96hJMdrmFvvlggE92hxnCewarEQfrdaEPhAU bo0LznUOOq9xjJEcJW6sO7ocAvnTVSq6lRVwGf/In7b75m5xj3JHkP/6vp2vPDu0 BYyrC120JUQ99u8I4gdiEotY9wIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFMZAVbLT uRqKCEpyqq4sDhAXJrODMB8GA1UdIwQYMBaAFP0GsVCFV/ZfaMy6PCA+yq0HXdGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY2RC85QTVCMUE5RUY2 NkExMUU5QkY1MDY5N0FDNEY5QUUwMi9fUWF4VUlWWDlsOW96TG84SUQ3S3JRZGQw WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19RYXhVSVZYOWw5b3pMbzhJRDdLclFkZDBacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNkQvOUE1QjFBOUVGNjZBMTFFOUJGNTA2OTdBQzRGOUFFMDIvQzIyQjkyQUEw ODEwMTFFREJDM0M0Mzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBAFnbVwDBABnbV8DBAJn1sgDBAGQMJYwGAQCAAIwEgMHACAB DfQxAAMHACQEBMABCjANBgkqhkiG9w0BAQsFAAOCAQEAKzWneklrhHps1Q5e2NNT nKfUO8PZRfEnu0uP5ZrY2pzB0kgRll6gHYsKx7q9dYDetZc5/nEDQvGcR3yHEzvS t6orxBbRRQ81x5jeYEVW+cctME56TGQ8JscF/PySf5/iuxsL5FBWG0XBytrpLKPT OTxyMIOSPsrARbIo6WzXUEspgez8osfGg2iGOSPjIq8X3JEI6cNwZ+saaIQzdM8T amcuK3jIJkPpOdn6sKia9IhNcmUo6mpvtoS+IwomjzFaVJu2g7cR2okV3J11i/dF Wa2oBa3D8DzUmn18C2xXJeJauVrchB8roZNEHvvzo7alPlywRDZHb2XkK6XRXsqm /g== -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:27 2025 by rpki-client