$ rpki-client -vvf rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa File: 9EF724BE2A4911EE81BCF50FC4F9AE02.roa (raw, json) Hash identifier: p1hx0JAvoUZNCyNLxkGOZobDFPFcvMCBUo+ATzPH1eI= Subject key identifier: F3:A1:92:88:99:A6:0A:EC:68:9D:9A:16:14:C7:EA:51:11:0E:3F:75 Certificate issuer: /CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Certificate serial: 019A Authority key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa Signing time: Tue 03 Jun 2025 04:01:35 +0000 ROA not before: Tue 03 Jun 2025 04:01:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 7720 IP address blocks: 103.213.4.0/23 maxlen: 24 2401:5a0:1000::/44 maxlen: 48 2401:5a0:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911710E, serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Validity Not Before: Jun 3 04:01:35 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e739f-ec7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2e:65:21:3f:0c:f1:63:8b:d2:00:1c:d8:f6: 3f:a9:33:56:74:66:cd:df:45:13:38:4a:b1:e0:e6: cd:33:f1:68:09:2c:1c:86:14:d4:09:bb:c6:09:9d: 5b:03:a6:1a:7a:b4:dd:b6:54:90:f9:c6:98:6f:2e: f3:c2:45:c0:da:25:72:f0:3d:bf:e8:35:a6:18:0a: 67:99:17:51:5d:1b:e7:a3:28:af:97:02:09:58:f8: fd:e8:62:9e:27:99:ee:15:2f:67:a7:9b:c2:20:f9: a6:a7:8e:c9:c9:26:29:74:67:83:a8:6c:b3:a7:d0: e6:7e:73:1f:5b:47:26:d1:09:14:6e:9e:9e:1a:71: 69:52:fd:ac:01:61:67:eb:c5:69:b1:a6:d5:69:f5: a8:0c:76:b8:85:42:00:da:c6:84:12:0c:76:9c:b7: f2:ec:9d:5a:4b:07:dd:26:75:a8:af:fb:c4:fb:ff: af:e8:90:44:29:0c:6b:de:7f:8b:a4:6c:1b:81:5f: c6:1c:5e:4a:f4:0e:e2:78:76:2d:f6:6e:62:13:ba: fa:73:35:dd:55:03:b9:2b:aa:8f:de:78:a4:a9:77: 3e:fc:a9:de:30:a6:9d:07:0e:8a:e3:94:70:88:7c: 18:ab:85:5a:be:fb:c1:8f:bc:1c:eb:e2:12:4e:eb: 9b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A1:92:88:99:A6:0A:EC:68:9D:9A:16:14:C7:EA:51:11:0E:3F:75 X509v3 Authority Key Identifier: keyid:CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.4.0/23 IPv6: 2401:5a0:1000::-2401:5a0:1010:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption d2:da:2c:ae:14:62:0e:e5:a0:99:bf:50:62:b7:a3:80:bc:4d: b4:b5:11:78:d5:70:d2:d2:dc:83:f7:4a:3c:42:89:4e:24:91: 8a:a9:4b:03:ca:38:6f:2c:b8:aa:18:7b:b0:a3:21:a4:ff:c6: 8e:24:f5:0a:3f:5f:30:74:25:ec:d1:32:80:fb:fd:6b:73:b8: 93:d3:02:61:38:c4:32:8d:33:b5:09:29:c9:bb:16:f5:37:f5: c5:1f:d3:d4:07:05:74:98:05:61:55:27:bd:fd:2d:8d:85:85: 80:d5:74:70:4c:4f:82:10:e7:98:c9:99:9f:9c:04:e5:dd:fe: 62:7e:73:48:29:b6:2a:96:be:6b:c9:c8:79:14:3d:0b:47:86: cd:cb:43:5b:d0:15:b5:e2:2f:a3:ea:92:97:a2:7a:1d:93:bb: 68:09:8d:68:c4:38:d0:81:d5:06:49:2d:c8:d8:cd:e8:18:8b: 55:65:07:2b:cf:18:97:86:e3:1d:c5:b6:29:4a:11:b6:6e:ef: 89:5b:56:9d:18:0e:28:72:9d:09:f4:b5:4a:4b:02:b5:46:62: ad:ce:2f:ef:ee:7b:61:38:7e:3a:23:29:00:c7:02:85:18:a2: a0:95:fa:1a:93:e3:e8:46:e5:a3:69:1c:c8:be:4d:ff:b5:37: b0:77:81:9d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcxMEUxMTAvBgNVBAUTKENEMTg0MUI2QzVCRUY3QzQ3ODJFNjdGNjYzRjNDMTk3 NDYxOTkzODMwHhcNMjUwNjAzMDQwMTM1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNzM5Zi1lYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4S5lIT8M8WOL0gAc2PY/qTNWdGbN30UTOEqx4ObNM/FoCSwchhTUCbvGCZ1b A6YaerTdtlSQ+caYby7zwkXA2iVy8D2/6DWmGApnmRdRXRvnoyivlwIJWPj96GKe J5nuFS9np5vCIPmmp47JySYpdGeDqGyzp9DmfnMfW0cm0QkUbp6eGnFpUv2sAWFn 68VpsabVafWoDHa4hUIA2saEEgx2nLfy7J1aSwfdJnWor/vE+/+v6JBEKQxr3n+L pGwbgV/GHF5K9A7ieHYt9m5iE7r6czXdVQO5K6qP3nikqXc+/KneMKadBw6K45Rw iHwYq4VavvvBj7wc6+ISTuub5wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFPOhkoiZ pgrsaJ2aFhTH6lERDj91MB8GA1UdIwQYMBaAFM0YQbbFvvfEeC5n9mPzwZdGGZOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzEwRS9DOTNFMTc4QTAx QjUxMUVFODlGNkVCNzhDNEY5QUUwMi96UmhCdHNXLTk4UjRMbWYyWV9QQmwwWVpr NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pSaEJ0c1ctOThSNExtZjJZX1BCbDBZWms0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcxMEUvQzkzRTE3OEEwMUI1MTFFRTg5RjZFQjc4QzRGOUFFMDIvOUVGNzI0QkUy QTQ5MTFFRTgxQkNGNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMAwEAgABMAYDBAFn1QQwGQQCAAIwEzARAwYEJAEFoBADBwAkAQWgEBAwDQYJ KoZIhvcNAQELBQADggEBANLaLK4UYg7loJm/UGK3o4C8TbS1EXjVcNLS3IP3SjxC iU4kkYqpSwPKOG8suKoYe7CjIaT/xo4k9Qo/XzB0JezRMoD7/WtzuJPTAmE4xDKN M7UJKcm7FvU39cUf09QHBXSYBWFVJ739LY2FhYDVdHBMT4IQ55jJmZ+cBOXd/mJ+ c0gptiqWvmvJyHkUPQtHhs3LQ1vQFbXiL6Pqkpeieh2Tu2gJjWjEONCB1QZJLcjY zegYi1VlByvPGJeG4x3FtilKEbZu74lbVp0YDihynQn0tUpLArVGYq3OL+/ue2E4 fjojKQDHAoUYoqCV+hqT4+hG5aNpHMi+Tf+1N7B3gZ0= -----END CERTIFICATE-----Generated at Wed Jun 4 00:05:45 2025 by rpki-client