$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/52138B923FCA11E9AB28853CC4F9AE02.roa File: 52138B923FCA11E9AB28853CC4F9AE02.roa (raw, json) Hash identifier: F7eiYk5VKF5lCSCN/hKOx3267YakxI+D95C5/M/ItF4= Subject key identifier: 9F:48:9A:D9:25:38:A0:0B:59:33:19:53:2E:CE:8C:9C:36:E7:AA:5D Certificate issuer: /CN=A9193D85/serialNumber=BB07ED464B280D57FA771841F77F52EA7D507927 Certificate serial: 1028 Authority key identifier: BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/52138B923FCA11E9AB28853CC4F9AE02.roa Signing time: Thu 06 Mar 2025 17:35:51 +0000 ROA not before: Thu 06 Mar 2025 17:35:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 44812 IP address blocks: 103.136.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.crl rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4136 (0x1028) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D85 Validity Not Before: Mar 6 17:35:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c9dcf7-8ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:72:67:1d:76:82:90:5e:a3:f7:37:62:d9:f3: 77:b0:b9:92:d2:fc:cb:49:47:b7:91:46:7b:da:ee: 23:75:74:ce:93:ad:58:a3:06:05:de:f1:f6:a3:1c: bb:56:a4:6a:42:c5:af:6e:b3:8e:6d:d9:37:d8:bd: b3:ff:85:3a:7e:a7:c7:54:9d:ee:bd:3a:46:33:ac: 6c:2b:9c:ca:92:90:db:c6:31:71:81:6e:a5:15:6f: ac:f1:2f:3e:ba:fd:12:7a:aa:43:a2:3c:18:66:de: c8:98:5a:8e:ca:f3:2c:0a:19:6b:9a:5d:26:74:ca: fc:69:c7:4d:56:ec:0c:df:c0:0c:02:e7:10:19:3a: 5a:c0:38:d3:e3:5c:ec:e8:ad:80:20:17:61:70:dd: 65:ab:3f:a2:cd:7c:4e:4f:42:27:d8:66:da:39:31: d4:9b:04:6d:9e:2e:6d:53:b7:85:26:75:ce:7a:8e: c6:61:72:28:53:b4:8e:5b:b0:93:93:ff:d6:47:c3: fb:5f:ef:3e:17:ae:b4:6c:01:b8:87:d0:10:2c:b7: 71:24:52:9b:81:01:8d:a6:52:8b:b6:b4:0d:5b:ee: 59:47:94:1a:8b:f6:cf:ac:a7:55:34:a2:84:a6:88: e3:a1:b7:49:5b:81:85:7b:cb:ff:fa:3e:0e:01:f4: d7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:48:9A:D9:25:38:A0:0B:59:33:19:53:2E:CE:8C:9C:36:E7:AA:5D X509v3 Authority Key Identifier: keyid:BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/52138B923FCA11E9AB28853CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.43.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:2c:8d:11:67:99:40:86:60:09:cb:7d:55:c9:5b:7e:dc:9b: f0:69:5a:99:7d:22:38:f9:8d:ea:86:37:58:ef:a4:2d:ea:c7: e9:48:75:c7:ad:70:84:8d:12:af:0b:72:bc:6d:15:10:da:8c: 18:ce:0d:c1:da:75:12:61:5b:d8:5b:f1:70:ea:8b:46:98:c6: d8:f8:b7:8a:db:b2:db:4a:72:ba:58:05:db:f0:b3:4e:70:2a: 4a:87:83:bf:8c:e2:82:38:f4:dc:bc:88:0e:13:2d:9d:1c:7d: 4c:8a:4a:bc:cc:fa:93:82:eb:0a:de:46:37:11:d3:be:31:a5: d3:23:51:80:6c:cf:65:57:29:1f:7d:6f:49:b5:a6:f0:d1:a2: ab:55:a8:8f:37:14:ce:4e:76:a1:f2:0e:0e:bf:d9:20:50:af: c4:8c:0a:c8:4a:b3:cf:6e:80:8a:e3:7c:48:a1:c4:dd:db:bb: fe:2a:99:b5:eb:90:4e:1e:26:55:e2:35:9c:a6:de:88:f5:07: 11:af:d7:eb:c5:89:e8:f0:62:0f:04:a0:95:17:7d:ab:bd:da: 71:9e:6c:ac:a8:6e:1d:5a:04:b3:2e:e9:99:f2:f2:44:d3:78: ba:86:2a:08:f6:34:9d:18:02:8c:de:b0:1e:56:6c:75:9c:92: 95:33:b1:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODUxMTAvBgNVBAUTKEJCMDdFRDQ2NEIyODBENTdGQTc3MTg0MUY3N0Y1MkVB N0Q1MDc5MjcwHhcNMjUwMzA2MTczNTUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M5ZGNmNy04ZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHJnHXaCkF6j9zdi2fN3sLmS0vzLSUe3kUZ72u4jdXTOk61YowYF3vH2oxy7 VqRqQsWvbrOObdk32L2z/4U6fqfHVJ3uvTpGM6xsK5zKkpDbxjFxgW6lFW+s8S8+ uv0SeqpDojwYZt7ImFqOyvMsChlrml0mdMr8acdNVuwM38AMAucQGTpawDjT41zs 6K2AIBdhcN1lqz+izXxOT0In2GbaOTHUmwRtni5tU7eFJnXOeo7GYXIoU7SOW7CT k//WR8P7X+8+F660bAG4h9AQLLdxJFKbgQGNplKLtrQNW+5ZR5Qai/bPrKdVNKKE pojjobdJW4GFe8v/+j4OAfTXgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ9Imtkl OKALWTMZUy7OjJw256pdMB8GA1UdIwQYMBaAFLsH7UZLKA1X+ncYQfd/Uup9UHkn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4NS85MTUzMjUyMDNG QzkxMUU5OTc5QkI4M0JDNEY5QUUwMi91d2Z0Umtzb0RWZjZkeGhCOTM5UzZuMVFl U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3ZnRSa3NvRFZmNmR4aEI5MzlTNm4xUWVTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNEODUvOTE1MzI1MjAzRkM5MTFFOTk3OUJCODNCQzRGOUFFMDIvNTIxMzhCOTIz RkNBMTFFOUFCMjg4NTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniCswDQYJKoZIhvcNAQELBQADggEBAGwsjRFnmUCGYAnL fVXJW37cm/BpWpl9Ijj5jeqGN1jvpC3qx+lIdcetcISNEq8LcrxtFRDajBjODcHa dRJhW9hb8XDqi0aYxtj4t4rbsttKcrpYBdvws05wKkqHg7+M4oI49Ny8iA4TLZ0c fUyKSrzM+pOC6wreRjcR074xpdMjUYBsz2VXKR99b0m1pvDRoqtVqI83FM5OdqHy Dg6/2SBQr8SMCshKs89ugIrjfEihxN3bu/4qmbXrkE4eJlXiNZym3oj1BxGv1+vF iejwYg8EoJUXfau92nGebKyobh1aBLMu6Zny8kTTeLqGKgj2NJ0YAozesB5WbHWc kpUzsVE= -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:19 2025 by rpki-client