$ rpki-client -vvf rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/9E54710E16D511F09EF28A4EC4F9AE02.roa File: 9E54710E16D511F09EF28A4EC4F9AE02.roa (raw, json) Hash identifier: 3XDa5Qvq48RtoRjAw8eS6iGbVpjU9ftFentU+xzbXfk= Subject key identifier: F4:D3:EC:AA:27:61:3F:67:36:AE:83:F0:FD:C4:2D:CA:72:13:3B:C1 Certificate issuer: /CN=A919F9A8/serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B Certificate serial: E4 Authority key identifier: 87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/9E54710E16D511F09EF28A4EC4F9AE02.roa Signing time: Fri 11 Apr 2025 13:05:19 +0000 ROA not before: Fri 11 Apr 2025 13:05:19 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 48266 IP address blocks: 103.190.232.0/24 maxlen: 24 2400:9320::/48 maxlen: 48 2400:9320:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 16:56:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F9A8, serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B Validity Not Before: Apr 11 13:05:19 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67f9138f-1dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0e:ca:fc:e7:34:02:57:9a:e9:61:c2:98:40: 82:b1:fb:c9:96:a1:fc:37:8b:c9:b1:f5:98:73:8d: 0c:7b:76:eb:14:41:98:ed:17:a6:08:7b:c6:d0:4c: ff:a2:64:8d:21:5f:15:ab:85:a7:1b:96:42:dc:f8: 64:5d:ba:f8:70:0f:6f:49:f3:fe:65:ef:dd:31:bb: 08:5c:4d:de:00:a6:a8:6a:14:f4:58:2c:7e:fb:c4: a6:de:dd:bd:c4:92:d7:0a:91:ec:5e:56:b9:0f:19: 3c:82:ce:17:26:d9:4f:f1:8a:d3:d6:d6:22:b3:7b: ad:d5:60:f0:4e:63:22:3e:bc:ec:04:ff:49:0e:9b: 36:f5:b2:06:27:90:29:ea:71:aa:49:0f:40:b1:c8: 86:4a:27:f7:db:07:c3:4f:79:99:1c:99:ea:ee:2e: fc:3e:5c:eb:8f:cb:74:4f:57:e3:e6:34:96:d3:81: 48:6b:83:b4:47:56:7f:ec:f8:4c:f0:14:53:99:7a: 14:b6:28:ab:0f:ae:41:c0:a2:6d:c4:99:1d:fa:76: 33:3a:17:8e:78:c2:66:c1:69:ed:35:7d:7f:95:a7: c3:3e:42:8d:97:de:79:68:95:76:62:49:c2:5a:76: 5b:49:b7:a0:44:c4:63:05:75:f6:9e:c8:f6:be:2d: 88:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D3:EC:AA:27:61:3F:67:36:AE:83:F0:FD:C4:2D:CA:72:13:3B:C1 X509v3 Authority Key Identifier: keyid:87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/9E54710E16D511F09EF28A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.232.0/24 IPv6: 2400:9320::/48 2400:9320:2::/48 Signature Algorithm: sha256WithRSAEncryption 6f:6e:49:06:be:ab:b6:23:fc:67:f8:b0:c8:62:5d:03:f9:22: 20:a1:79:57:fa:8b:2d:76:d2:d8:6c:44:41:63:1e:fe:c7:2d: 29:18:35:80:49:d6:10:e7:1c:b0:92:4e:c5:d8:93:77:d5:8f: 75:23:49:16:b3:8f:39:10:f4:f5:14:b0:4b:8f:03:08:55:45: cb:6a:58:36:c9:98:6e:60:05:7e:46:37:70:30:81:ee:6a:c4: a0:fd:1f:30:40:ba:90:05:23:50:d0:60:a2:ae:2e:19:f2:bc: 8e:25:97:de:a7:fa:92:5b:2b:89:38:17:3a:b0:9e:1d:83:15: fc:5a:6a:85:a5:65:b4:50:b5:24:3e:7f:c6:d5:d8:c4:a4:17: 84:af:b4:ea:f8:f7:16:9c:3a:fb:d0:69:fc:95:f3:5c:ee:d5: d9:58:58:f6:ab:1d:e8:81:8a:aa:f8:47:3b:bc:1a:d8:f9:1b: ea:69:a8:02:9b:8f:df:7b:82:1d:4b:9e:de:3b:0f:8b:89:b6: 36:6f:a6:af:90:86:b0:31:50:a1:9e:82:41:d9:ca:75:86:15: 7c:79:9f:d4:1a:2a:ea:a8:5b:26:84:e1:69:a1:93:e5:37:3c: 32:97:38:ea:4d:32:d0:82:3a:be:f9:5f:04:ed:91:a9:82:39: 8c:d2:eb:a0 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY5QTgxMTAvBgNVBAUTKDg3QjYyQzM0RThEQzVENDAyMzhDMEY2QkRFOTExNTZF NUQwNkE0NEIwHhcNMjUwNDExMTMwNTE5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y5MTM4Zi0xZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ7K/Oc0Alea6WHCmECCsfvJlqH8N4vJsfWYc40Me3brFEGY7RemCHvG0Ez/ omSNIV8Vq4WnG5ZC3PhkXbr4cA9vSfP+Ze/dMbsIXE3eAKaoahT0WCx++8Sm3t29 xJLXCpHsXla5Dxk8gs4XJtlP8YrT1tYis3ut1WDwTmMiPrzsBP9JDps29bIGJ5Ap 6nGqSQ9AsciGSif32wfDT3mZHJnq7i78Plzrj8t0T1fj5jSW04FIa4O0R1Z/7PhM 8BRTmXoUtiirD65BwKJtxJkd+nYzOheOeMJmwWntNX1/lafDPkKNl955aJV2YknC WnZbSbegRMRjBXX2nsj2vi2IIwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFPTT7Kon YT9nNq6D8P3ELcpyEzvBMB8GA1UdIwQYMBaAFIe2LDTo3F1AI4wPa96RFW5dBqRL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjlBOC9COTIzMDZGRUVC NkExMUVFOUMwM0I3MTFDNEY5QUUwMi9oN1lzTk9qY1hVQWpqQTlyM3BFVmJsMEdw RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WXNOT2pjWFVBampBOXIzcEVWYmwwR3BFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY5QTgvQjkyMzA2RkVFQjZBMTFFRTlDMDNCNzExQzRGOUFFMDIvOUU1NDcxMEUx NkQ1MTFGMDlFRjI4QTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBABnvugwGAQCAAIwEgMHACQAkyAAAAMHACQAkyAAAjANBgkq hkiG9w0BAQsFAAOCAQEAb25JBr6rtiP8Z/iwyGJdA/kiIKF5V/qLLXbS2GxEQWMe /sctKRg1gEnWEOccsJJOxdiTd9WPdSNJFrOPORD09RSwS48DCFVFy2pYNsmYbmAF fkY3cDCB7mrEoP0fMEC6kAUjUNBgoq4uGfK8jiWX3qf6klsriTgXOrCeHYMV/Fpq haVltFC1JD5/xtXYxKQXhK+06vj3Fpw6+9Bp/JXzXO7V2VhY9qsd6IGKqvhHO7wa 2Pkb6mmoApuP33uCHUue3jsPi4m2Nm+mr5CGsDFQoZ6CQdnKdYYVfHmf1Boq6qhb JoThaaGT5Tc8Mpc46k0y0II6vvlfBO2RqYI5jNLroA== -----END CERTIFICATE-----Generated at Sat Apr 12 18:54:16 2025 by rpki-client