$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa File: A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa (raw, json) Hash identifier: kCn8heMGIxKWrZuLxIO2MV1Vvqqc0Tn18BGFaI+5NZA= Subject key identifier: 9C:53:A1:EA:D1:46:F2:55:3A:38:8A:99:44:E8:CF:A8:B5:97:BC:48 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 018C Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa Signing time: Tue 27 May 2025 04:31:28 +0000 ROA not before: Tue 27 May 2025 04:31:28 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 23854 IP address blocks: 103.212.67.0/24 maxlen: 24 119.15.64.0/24 maxlen: 24 119.15.66.0/24 maxlen: 24 119.15.68.0/23 maxlen: 24 119.15.70.0/23 maxlen: 24 203.3.70.0/24 maxlen: 24 203.5.59.0/24 maxlen: 24 203.8.95.0/24 maxlen: 24 203.26.51.0/24 maxlen: 24 203.26.177.0/24 maxlen: 24 203.26.213.0/24 maxlen: 24 203.27.199.0/24 maxlen: 24 203.31.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969, serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: May 27 04:31:28 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68354020-b011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d0:c6:9d:3b:1f:84:75:c6:d5:06:88:73:b5: c1:c7:35:fa:05:1a:70:3a:cb:95:ba:55:fe:fe:b1: eb:7c:14:cb:81:3c:68:c1:13:75:86:04:5a:38:b5: 3f:d6:67:44:16:f5:53:4c:6d:64:16:08:d5:c3:93: 1b:bf:e0:30:59:b5:73:1e:70:f5:ad:7e:d2:a8:62: 39:94:7f:9d:4f:51:3a:6e:10:d8:47:38:0b:9f:f4: ef:a9:bd:09:05:bf:f9:55:b0:a2:df:e4:00:77:64: 87:c1:90:87:ef:cf:d8:1c:c7:f5:e9:b2:5b:95:9d: 03:47:cc:1b:8d:03:a2:b7:71:64:25:52:40:69:eb: fe:43:ba:b8:9c:fa:04:3a:9b:c3:3e:43:21:e0:7c: 4d:7d:3f:9b:b3:92:d8:8b:86:69:e5:cc:19:2c:f4: dd:f2:66:ab:ad:fe:b7:bc:49:9d:51:33:1f:1d:6d: d5:25:b0:4a:53:4a:3a:2e:ce:0f:51:f2:5c:5b:e7: 3e:0b:c6:1b:a7:21:c5:dc:4e:4d:cc:2e:63:42:89: 10:bf:bd:b4:3e:36:81:cb:53:cd:61:7f:e9:8a:d6: 82:f3:cc:dd:2e:ac:42:88:ce:c8:98:5f:91:83:8e: 53:f8:7d:02:ec:c1:86:70:01:37:87:64:10:ac:8c: 61:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:53:A1:EA:D1:46:F2:55:3A:38:8A:99:44:E8:CF:A8:B5:97:BC:48 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/A5D7263C1ECB11EE8FEFEE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 119.15.64.0/24 119.15.66.0/24 119.15.68.0/22 203.3.70.0/24 203.5.59.0/24 203.8.95.0/24 203.26.51.0/24 203.26.177.0/24 203.26.213.0/24 203.27.199.0/24 203.31.75.0/24 Signature Algorithm: sha256WithRSAEncryption 01:a1:b8:17:bb:60:bf:75:fd:8a:00:47:4b:d4:00:a2:3a:b5: 71:8a:94:87:f9:8e:f2:ea:a2:d4:69:2f:de:f9:3e:49:e3:2b: e5:14:34:49:b0:6d:d8:48:0e:8f:2c:ef:7c:c5:f3:e8:ef:63: 92:51:7b:04:62:32:e5:c5:79:d8:35:72:91:51:ba:d8:3e:af: a5:f8:49:a0:8b:fe:fc:69:3d:ad:a2:50:19:ac:9b:ee:be:57: 94:59:ed:1e:39:f8:4b:3c:9c:1e:fc:fc:91:ed:47:55:d0:12: 24:03:a2:52:dc:81:98:2b:1d:82:44:09:21:6b:5d:ad:2c:31: 19:f4:74:fe:46:5b:78:4e:db:5a:cf:14:08:11:55:d0:41:c7: 02:a8:39:49:7f:ee:c2:5d:60:6a:2a:80:0c:f2:56:7c:bd:1b: 35:2b:71:92:9b:03:34:96:fd:62:4a:d9:97:b5:a7:48:4a:07: d2:61:69:8c:f8:58:5c:cf:37:9c:4c:9f:6f:d5:19:af:06:80: 72:c1:71:c5:0b:97:b5:97:d4:2b:b6:ff:0e:59:49:98:f0:9f: 58:aa:ad:a4:a9:2f:8a:34:e8:78:c3:c3:f3:b1:c9:b7:96:73: 11:40:a7:dd:3c:9f:1d:27:7e:88:3a:ff:59:3e:cd:13:dc:fc: 01:97:ea:5b -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjUwNTI3MDQzMTI4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NDAyMC1iMDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtDGnTsfhHXG1QaIc7XBxzX6BRpwOsuVulX+/rHrfBTLgTxowRN1hgRaOLU/ 1mdEFvVTTG1kFgjVw5Mbv+AwWbVzHnD1rX7SqGI5lH+dT1E6bhDYRzgLn/Tvqb0J Bb/5VbCi3+QAd2SHwZCH78/YHMf16bJblZ0DR8wbjQOit3FkJVJAaev+Q7q4nPoE OpvDPkMh4HxNfT+bs5LYi4Zp5cwZLPTd8marrf63vEmdUTMfHW3VJbBKU0o6Ls4P UfJcW+c+C8YbpyHF3E5NzC5jQokQv720PjaBy1PNYX/pitaC88zdLqxCiM7ImF+R g45T+H0C7MGGcAE3h2QQrIxhlQIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFJxToerR RvJVOjiKmUToz6i1l7xIMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvQTVENzI2M0Mx RUNCMTFFRThGRUZFRTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQME4EAgABMEgDBABn1EMDBAB3D0ADBAB3D0IDBAJ3D0QDBADLA0YDBADLBTsD BADLCF8DBADLGjMDBADLGrEDBADLGtUDBADLG8cDBADLH0swDQYJKoZIhvcNAQEL BQADggEBAAGhuBe7YL91/YoAR0vUAKI6tXGKlIf5jvLqotRpL975PknjK+UUNEmw bdhIDo8s73zF8+jvY5JRewRiMuXFedg1cpFRutg+r6X4SaCL/vxpPa2iUBmsm+6+ V5RZ7R45+Es8nB78/JHtR1XQEiQDolLcgZgrHYJECSFrXa0sMRn0dP5GW3hO21rP FAgRVdBBxwKoOUl/7sJdYGoqgAzyVny9GzUrcZKbAzSW/WJK2Ze1p0hKB9JhaYz4 WFzPN5xMn2/VGa8GgHLBccULl7WX1Cu2/w5ZSZjwn1iqraSpL4o06HjDw/OxybeW cxFAp908nx0nfog6/1k+zRPc/AGX6ls= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:16 2025 by rpki-client