$ rpki-client -vvf rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa File: 15DF0B709C5211EFB58CEA09C4F9AE02.roa (raw, json) Hash identifier: +jnQtndd1JtQ2aj7KFJeKUFP4ZfCE+tFYtWPlvQZFIo= Subject key identifier: 74:32:C1:BF:38:C3:7C:98:F7:52:D6:63:6C:9A:F2:DB:2C:F3:40:19 Certificate issuer: /CN=A9139504/serialNumber=5B05825BFBA2B2A5541CF3F09D972113AECC8D75 Certificate serial: 6F Authority key identifier: 5B:05:82:5B:FB:A2:B2:A5:54:1C:F3:F0:9D:97:21:13:AE:CC:8D:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa Signing time: Sat 31 May 2025 06:58:46 +0000 ROA not before: Sat 31 May 2025 06:58:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132890 IP address blocks: 103.166.206.0/23 maxlen: 23 103.166.206.0/24 maxlen: 24 2407:5bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.crl rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139504, serialNumber=5B05825BFBA2B2A5541CF3F09D972113AECC8D75 Validity Not Before: May 31 06:58:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683aa8a6-bbfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b2:5b:b1:a8:be:6e:49:7d:64:e6:ad:e9:26: 18:5a:a5:82:a1:9c:de:3c:d1:81:a7:bf:61:9b:90: e3:a2:f9:7e:84:96:db:bd:4a:5b:c1:92:45:61:14: 5a:ae:d3:63:6e:40:79:6b:25:02:2e:b3:5b:26:21: 2a:53:45:4b:f8:86:a2:2d:35:c2:a9:3b:af:31:90: 0f:68:c5:ff:fa:2c:4c:50:03:e2:a7:c4:b3:cb:8c: dc:57:b3:b8:7a:9b:93:f9:dd:f1:17:69:6d:a7:2f: 07:3c:b5:85:37:25:a1:82:d1:5c:02:12:07:db:70: 81:3b:70:19:ed:47:9c:1b:8a:29:4e:0a:8c:31:51: 23:f5:4f:eb:b1:f9:5b:02:3a:00:d3:06:45:a9:93: 64:ba:6a:51:f6:00:57:cc:bd:e8:57:e2:99:82:7f: 1d:5b:c4:fb:86:93:94:34:55:75:5a:23:26:16:4f: 5a:f3:8f:30:01:e1:30:ab:d0:f9:ec:19:66:53:ca: 66:3d:a0:c1:13:b0:83:60:d1:39:40:05:c3:f0:40: e7:b3:d2:d5:c1:bd:1b:ab:0a:c0:4c:2c:04:cf:a5: d8:6c:05:a0:fb:14:7a:0b:29:ba:4c:1b:61:4a:a6: 8b:48:70:85:cb:65:7b:9f:fe:ed:26:5f:4d:d5:e3: 0e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:32:C1:BF:38:C3:7C:98:F7:52:D6:63:6C:9A:F2:DB:2C:F3:40:19 X509v3 Authority Key Identifier: keyid:5B:05:82:5B:FB:A2:B2:A5:54:1C:F3:F0:9D:97:21:13:AE:CC:8D:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.206.0/23 IPv6: 2407:5bc0::/32 Signature Algorithm: sha256WithRSAEncryption 13:7b:b1:ec:d5:3d:3d:84:21:17:2f:98:b5:c2:38:5f:95:76: df:6b:e9:16:0b:2b:7f:2f:c2:e6:25:26:5c:b2:eb:21:d7:f6: b2:d7:97:5e:75:5c:2c:22:d5:2a:6a:b9:d3:cb:a9:37:6d:29: 4d:23:25:b2:2f:75:d1:89:cc:c1:1f:8f:0d:c6:59:1c:ad:1f: 4e:89:89:2b:93:9f:bd:5f:38:84:88:25:71:90:36:e8:64:20: 2e:63:15:fb:5e:b8:72:b0:46:49:5e:73:91:56:28:2e:cb:39: 1d:17:19:fd:1b:65:c4:e9:ca:26:79:77:58:bb:9a:8d:a9:39: ea:cd:f7:c0:db:65:c1:0a:36:ee:06:b0:e2:84:d1:62:8f:dd: b3:0a:4a:a4:51:a6:4c:1a:f3:70:bc:98:22:1f:da:d5:34:e9: 77:6d:6c:58:e1:58:6b:b5:e0:8b:09:a0:af:f5:b8:9d:bf:3e: a1:50:02:64:77:af:1f:00:73:d0:8f:77:c7:6d:b2:ff:f8:c2: 06:d1:e6:3a:c5:f9:1f:b2:74:74:3c:65:b1:e1:5d:ef:c5:09: 76:06:4b:96:98:a6:c1:44:4a:64:99:b6:bd:65:cb:78:4e:58: 6b:86:c2:92:14:ec:e4:fb:af:83:18:5c:95:51:e1:9c:50:1a: b9:1e:43:81 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTUwNDExMC8GA1UEBRMoNUIwNTgyNUJGQkEyQjJBNTU0MUNGM0YwOUQ5NzIxMTNB RUNDOEQ3NTAeFw0yNTA1MzEwNjU4NDZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhOGE2LWJiZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbsluxqL5uSX1k5q3pJhhapYKhnN480YGnv2GbkOOi+X6Eltu9SlvBkkVhFFqu 02NuQHlrJQIus1smISpTRUv4hqItNcKpO68xkA9oxf/6LExQA+KnxLPLjNxXs7h6 m5P53fEXaW2nLwc8tYU3JaGC0VwCEgfbcIE7cBntR5wbiilOCowxUSP1T+ux+VsC OgDTBkWpk2S6alH2AFfMvehX4pmCfx1bxPuGk5Q0VXVaIyYWT1rzjzAB4TCr0Pns GWZTymY9oMETsINg0TlABcPwQOez0tXBvRurCsBMLATPpdhsBaD7FHoLKbpMG2FK potIcIXLZXuf/u0mX03V4w6dAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUdDLBvzjD fJj3UtZjbJry2yzzQBkwHwYDVR0jBBgwFoAUWwWCW/uisqVUHPPwnZchE67MjXUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NTA0LzYwNEQ5QkQ0OUM0 RjExRUZBOTgzNUI2QUM0RjlBRTAyL1d3V0NXX3Vpc3FWVUhQUHduWmNoRTY3TWpY VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3dXQ1dfdWlzcVZVSFBQd25aY2hFNjdNalhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTUwNC82MDREOUJENDlDNEYxMUVGQTk4MzVCNkFDNEY5QUUwMi8xNURGMEI3MDlD NTIxMUVGQjU4Q0VBMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWemzjANBAIAAjAHAwUAJAdbwDANBgkqhkiG9w0BAQsFAAOC AQEAE3ux7NU9PYQhFy+YtcI4X5V232vpFgsrfy/C5iUmXLLrIdf2steXXnVcLCLV Kmq508upN20pTSMlsi910YnMwR+PDcZZHK0fTomJK5OfvV84hIglcZA26GQgLmMV +164crBGSV5zkVYoLss5HRcZ/RtlxOnKJnl3WLuajak56s33wNtlwQo27gaw4oTR Yo/dswpKpFGmTBrzcLyYIh/a1TTpd21sWOFYa7Xgiwmgr/W4nb8+oVACZHevHwBz 0I93x22y//jCBtHmOsX5H7J0dDxlseFd78UJdgZLlpimwURKZJm2vWXLeE5Ya4bC khTs5PuvgxhclVHhnFAauR5DgQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:28 2025 by rpki-client