$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/01E652108F4F11EEA2E9CA7DC4F9AE02.roa File: 01E652108F4F11EEA2E9CA7DC4F9AE02.roa (raw, json) Hash identifier: bmGPH4RhQZKxlLUmaYqMU+RwVlTsBX8WAQ+VbAJVD+E= Subject key identifier: A6:5E:57:28:69:22:04:80:FF:26:BD:39:1A:DF:90:2C:66:34:00:CB Certificate issuer: /CN=A9140D20/serialNumber=EFCF131AD6480D1DD04F1D4476E3595452FF441C Certificate serial: 081F Authority key identifier: EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/01E652108F4F11EEA2E9CA7DC4F9AE02.roa Signing time: Mon 02 Jun 2025 21:08:36 +0000 ROA not before: Mon 02 Jun 2025 21:08:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137386 IP address blocks: 103.95.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.crl rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D20, serialNumber=EFCF131AD6480D1DD04F1D4476E3595452FF441C Validity Not Before: Jun 2 21:08:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e12d4-14f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:d8:23:d2:ab:b4:9d:2c:2a:ae:5f:1f:90:d8: d2:c5:34:c2:30:83:a6:43:34:9e:04:49:24:4f:fe: 0b:e6:99:bb:c1:08:ff:46:0c:57:4d:32:52:63:5f: 59:f3:8c:27:6a:e0:0f:56:c1:45:33:9b:32:fa:6d: d8:e6:e1:08:b3:36:f6:f9:cc:d7:6c:de:3b:dd:65: c0:ed:09:57:08:6d:1f:23:8d:99:76:62:b1:a1:e0: 79:7c:e6:48:af:46:e0:e9:ab:8f:52:81:c3:0c:a2: 02:ba:78:2c:73:7d:d6:6e:39:2b:03:71:fa:28:13: eb:2d:14:ff:1e:7f:b6:55:78:0f:12:5d:dc:37:ac: 9c:14:6e:c7:ff:f3:2c:34:bc:67:4d:e1:7d:a7:c4: 2e:14:84:dc:d3:d0:f3:94:48:72:e9:6b:d0:84:f1: bb:7f:b1:59:b4:b9:17:e7:ca:98:d4:57:77:a4:5b: e5:e3:20:6e:4f:9d:d0:fa:a5:cc:83:30:33:ec:39: 45:89:ce:b4:0d:36:72:7a:ba:e9:b6:39:2a:7f:96: 20:c3:35:99:54:90:e8:a7:b7:f0:aa:0c:21:11:24: 82:e2:19:15:04:d1:f2:2d:4e:5f:80:f1:04:c8:95: 66:cd:58:aa:ca:8e:dc:b5:e0:4c:38:86:35:4d:07: f7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:57:28:69:22:04:80:FF:26:BD:39:1A:DF:90:2C:66:34:00:CB X509v3 Authority Key Identifier: keyid:EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/01E652108F4F11EEA2E9CA7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.28.0/24 Signature Algorithm: sha256WithRSAEncryption 17:c8:3e:ed:5d:0a:43:8e:23:1e:27:c8:55:c4:50:30:b9:0b: 2e:cf:5a:9d:ec:74:e9:3e:7a:8e:a4:45:fd:3e:96:77:d8:ec: e4:21:dd:30:93:8c:a8:2e:c4:c6:e9:f4:c4:72:47:f8:92:f4: a9:93:7d:13:38:15:0c:e6:c3:1e:ef:6e:45:a4:fd:b7:2d:1a: e5:51:bb:9b:72:95:73:4b:48:be:d1:f0:cb:0e:55:f9:6c:40: 5b:f0:6a:a5:da:eb:18:7b:58:57:8e:5c:50:4c:a3:c5:01:6e: e7:f4:e4:7f:8f:01:31:6d:50:15:b8:d2:8c:6b:aa:41:26:8e: 82:d7:dd:16:a7:0d:0f:d7:e3:eb:d1:40:c6:38:fb:48:67:ac: 74:65:25:7b:73:c2:a1:ed:6d:30:c9:89:5f:3e:d2:4e:a2:7f: a7:da:02:9f:d1:83:d1:cf:f1:52:b0:ca:e6:9c:df:37:3c:97: 1b:63:0f:70:25:ba:89:29:9c:ab:8f:fd:4c:65:10:3e:c2:27: 8e:d2:6c:8f:40:f0:8d:ba:66:22:71:34:76:a8:f3:8c:fc:7e: 02:19:e6:fd:12:3d:26:32:63:fa:a8:8d:8a:26:c5:4d:d7:c2: 0c:50:6a:a8:72:2f:e2:66:f9:34:e8:bc:1a:a9:7d:95:92:42: 57:d3:d9:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBEMjAxMTAvBgNVBAUTKEVGQ0YxMzFBRDY0ODBEMUREMDRGMUQ0NDc2RTM1OTU0 NTJGRjQ0MUMwHhcNMjUwNjAyMjEwODM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTJkNC0xNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Ngj0qu0nSwqrl8fkNjSxTTCMIOmQzSeBEkkT/4L5pm7wQj/RgxXTTJSY19Z 84wnauAPVsFFM5sy+m3Y5uEIszb2+czXbN473WXA7QlXCG0fI42ZdmKxoeB5fOZI r0bg6auPUoHDDKICungsc33WbjkrA3H6KBPrLRT/Hn+2VXgPEl3cN6ycFG7H//Ms NLxnTeF9p8QuFITc09DzlEhy6WvQhPG7f7FZtLkX58qY1Fd3pFvl4yBuT53Q+qXM gzAz7DlFic60DTZyerrptjkqf5YgwzWZVJDop7fwqgwhESSC4hkVBNHyLU5fgPEE yJVmzViqyo7cteBMOIY1TQf31QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZeVyhp IgSA/ya9ORrfkCxmNADLMB8GA1UdIwQYMBaAFO/PExrWSA0d0E8dRHbjWVRS/0Qc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQyMC9EOTQzQTQ1QURC REExMUVBQTJDQzJCNDFDNEY5QUUwMi83ODhUR3RaSURSM1FUeDFFZHVOWlZGTF9S QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc4OFRHdFpJRFIzUVR4MUVkdU5aVkZMX1JCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBEMjAvRDk0M0E0NUFEQkRBMTFFQUEyQ0MyQjQxQzRGOUFFMDIvMDFFNjUyMTA4 RjRGMTFFRUEyRTlDQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnXxwwDQYJKoZIhvcNAQELBQADggEBABfIPu1dCkOOIx4n yFXEUDC5Cy7PWp3sdOk+eo6kRf0+lnfY7OQh3TCTjKguxMbp9MRyR/iS9KmTfRM4 FQzmwx7vbkWk/bctGuVRu5tylXNLSL7R8MsOVflsQFvwaqXa6xh7WFeOXFBMo8UB buf05H+PATFtUBW40oxrqkEmjoLX3RanDQ/X4+vRQMY4+0hnrHRlJXtzwqHtbTDJ iV8+0k6if6faAp/Rg9HP8VKwyuac3zc8lxtjD3AluokpnKuP/UxlED7CJ47SbI9A 8I26ZiJxNHao84z8fgIZ5v0SPSYyY/qojYomxU3XwgxQaqhyL+Jm+TTovBqpfZWS QlfT2TI= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:16 2025 by rpki-client