$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/0FC30B10264211EEB9FAAA43C4F9AE02.roa File: 0FC30B10264211EEB9FAAA43C4F9AE02.roa (raw, json) Hash identifier: x/lWlD9SNRm3Ra3Juz0ScqnsIpd3eUHkeQs8wFQ7pns= Subject key identifier: 0F:7C:DB:11:95:CB:42:A2:DF:E6:1A:43:45:A7:4B:DE:91:AD:6B:B1 Certificate issuer: /CN=A9199CE9/serialNumber=D50EE693CB4844DD2E76034BECBD36A881C37897 Certificate serial: 1065 Authority key identifier: D5:0E:E6:93:CB:48:44:DD:2E:76:03:4B:EC:BD:36:A8:81:C3:78:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/0FC30B10264211EEB9FAAA43C4F9AE02.roa Signing time: Mon 10 Mar 2025 17:37:11 +0000 ROA not before: Mon 10 Mar 2025 17:37:11 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138701 IP address blocks: 103.134.60.0/22 maxlen: 22 103.134.60.0/24 maxlen: 24 103.134.61.0/24 maxlen: 24 103.134.62.0/24 maxlen: 24 103.134.63.0/24 maxlen: 24 2404:5ec0::/32 maxlen: 32 2404:5ec0::/33 maxlen: 33 2404:5ec0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.crl rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4197 (0x1065) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CE9 Validity Not Before: Mar 10 17:37:11 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cf2347-ea3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:15:85:c3:19:31:5c:5e:48:ff:a5:d0:9f: b2:b6:86:7d:b3:d1:27:5f:98:62:4d:90:2c:b3:a6: f1:ff:a8:d2:28:97:29:35:27:4c:07:2a:56:70:16: 20:d0:5d:1b:49:57:7e:32:6e:a5:e9:f8:19:68:33: 7e:79:83:e6:32:23:45:00:10:66:a8:73:87:a3:8b: 91:9a:ab:09:12:04:1c:6c:a1:3d:fb:ef:23:5c:ad: a6:c6:db:59:63:13:8b:90:e9:db:b3:05:15:1b:4b: d2:1b:99:d4:10:17:b1:45:59:60:79:5e:6e:03:e3: a7:24:59:00:dd:4b:fe:9a:ec:55:10:f0:cb:91:a8: cb:c2:62:d8:80:fc:0e:04:a3:b1:7d:4c:bc:e9:83: 4e:8c:17:ea:c8:8a:ec:0c:a6:f5:82:fd:1d:f7:21: 61:40:37:0a:0e:94:c9:18:8d:60:43:40:7e:46:d8: 89:21:bb:9d:cb:10:7a:83:b0:bd:21:86:51:84:a4: a2:08:2e:7e:87:5b:ce:b9:d8:92:c1:09:c4:bc:8f: 1f:b9:22:a8:8e:f5:50:a6:79:ce:fd:63:ee:8b:0d: 0f:17:23:af:3d:cc:87:7c:8a:ce:d7:f9:58:40:d6: 91:d9:b2:7d:15:f9:7e:c9:ca:72:28:26:27:5a:c7: c3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7C:DB:11:95:CB:42:A2:DF:E6:1A:43:45:A7:4B:DE:91:AD:6B:B1 X509v3 Authority Key Identifier: keyid:D5:0E:E6:93:CB:48:44:DD:2E:76:03:4B:EC:BD:36:A8:81:C3:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/0FC30B10264211EEB9FAAA43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.60.0/22 IPv6: 2404:5ec0::/32 Signature Algorithm: sha256WithRSAEncryption c1:20:7e:ae:a9:a4:ff:9b:36:48:fe:08:6d:59:7b:1f:ad:35: 69:d5:b7:07:4c:11:90:44:2d:6f:b4:ca:fd:2b:37:98:38:16: a2:97:27:98:51:5a:b6:a4:41:3f:cb:4d:87:4e:6a:84:41:ec: 6d:f4:b9:a5:c3:63:4c:60:e4:ed:01:4e:25:bd:fb:35:af:49: 0b:bc:88:e6:e4:19:7d:39:5f:84:44:e2:df:a3:67:6f:ee:4f: 36:fa:c7:5c:ea:f8:30:65:f6:fe:d3:b8:21:4b:96:87:26:4f: 46:58:c1:9b:cb:86:2c:da:8d:7a:c5:d5:3f:3e:1a:07:f6:93: 99:dd:11:15:a3:ad:9f:05:23:f8:97:c6:30:b8:95:1f:d5:2e: 3b:d4:1b:03:99:2c:d5:8d:55:89:e9:82:c1:b2:c4:4d:72:5e: 6b:83:72:bb:c4:87:cc:78:11:3c:dd:85:af:d8:eb:08:4b:13: 42:0d:0d:6b:25:b5:a7:a6:3c:0a:14:ef:3a:61:c6:89:d9:05: 6d:33:f5:ab:67:c5:be:81:6a:b3:4d:ea:2e:8e:54:20:34:a4: 60:31:5e:2f:e8:f9:f9:be:b3:69:86:b6:7a:c3:12:33:10:9d: 3c:65:0d:19:82:26:82:8e:4d:e9:6e:f6:af:b1:d3:20:e6:fc: 2b:b4:ee:80 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlDRTkxMTAvBgNVBAUTKEQ1MEVFNjkzQ0I0ODQ0REQyRTc2MDM0QkVDQkQzNkE4 ODFDMzc4OTcwHhcNMjUwMzEwMTczNzExWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmMjM0Ny1lYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyUVhcMZMVxeSP+l0J+ytoZ9s9EnX5hiTZAss6bx/6jSKJcpNSdMBypWcBYg 0F0bSVd+Mm6l6fgZaDN+eYPmMiNFABBmqHOHo4uRmqsJEgQcbKE9++8jXK2mxttZ YxOLkOnbswUVG0vSG5nUEBexRVlgeV5uA+OnJFkA3Uv+muxVEPDLkajLwmLYgPwO BKOxfUy86YNOjBfqyIrsDKb1gv0d9yFhQDcKDpTJGI1gQ0B+RtiJIbudyxB6g7C9 IYZRhKSiCC5+h1vOudiSwQnEvI8fuSKojvVQpnnO/WPuiw0PFyOvPcyHfIrO1/lY QNaR2bJ9Ffl+ycpyKCYnWsfD9QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFA982xGV y0Ki3+YaQ0WnS96RrWuxMB8GA1UdIwQYMBaAFNUO5pPLSETdLnYDS+y9NqiBw3iX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUNFOS82Q0JCODRGNDMx RjExMUU5OEE3QjkzMTdDNEY5QUUwMi8xUTdtazh0SVJOMHVkZ05MN0wwMnFJSERl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRN21rOHRJUk4wdWRnTkw3TDAycUlIRGVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlDRTkvNkNCQjg0RjQzMUYxMTFFOThBN0I5MzE3QzRGOUFFMDIvMEZDMzBCMTAy NjQyMTFFRUI5RkFBQTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhjwwDQQCAAIwBwMFACQEXsAwDQYJKoZIhvcNAQELBQAD ggEBAMEgfq6ppP+bNkj+CG1Zex+tNWnVtwdMEZBELW+0yv0rN5g4FqKXJ5hRWrak QT/LTYdOaoRB7G30uaXDY0xg5O0BTiW9+zWvSQu8iObkGX05X4RE4t+jZ2/uTzb6 x1zq+DBl9v7TuCFLlocmT0ZYwZvLhizajXrF1T8+Ggf2k5ndERWjrZ8FI/iXxjC4 lR/VLjvUGwOZLNWNVYnpgsGyxE1yXmuDcrvEh8x4ETzdha/Y6whLE0INDWsltaem PAoU7zphxonZBW0z9atnxb6BarNN6i6OVCA0pGAxXi/o+fm+s2mGtnrDEjMQnTxl DRmCJoKOTelu9q+x0yDm/Cu07oA= -----END CERTIFICATE-----Generated at Sat Apr 5 21:50:55 2025 by rpki-client