$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa File: 7B3737EE546E11EAAA4CF919C4F9AE02.roa (raw, json) Hash identifier: XMZdqD9gB3JqFRbYSCLRYPYkSAmXVoSI5VBqXbHS+f0= Subject key identifier: 8F:E2:31:AF:99:5E:AF:D8:B2:7D:24:CE:30:06:76:3C:6F:2F:86:35 Certificate issuer: /CN=A9142127/serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Certificate serial: 0AD0 Authority key identifier: 41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa Signing time: Tue 27 May 2025 04:28:21 +0000 ROA not before: Tue 27 May 2025 04:28:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 59.153.20.0/22 maxlen: 24 103.47.3.0/24 maxlen: 24 103.65.244.0/22 maxlen: 24 103.95.60.0/22 maxlen: 24 103.130.76.0/22 maxlen: 24 103.148.132.0/23 maxlen: 24 103.250.198.0/24 maxlen: 24 123.253.176.0/22 maxlen: 24 202.27.113.0/24 maxlen: 24 202.36.150.0/23 maxlen: 24 202.36.152.0/23 maxlen: 24 202.49.20.0/22 maxlen: 24 202.49.24.0/21 maxlen: 24 202.134.32.0/20 maxlen: 24 2406:2b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=415027D8C9298E97DA05C0C43DCD8BAF52174175 Validity Not Before: May 27 04:28:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68353f65-708f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:71:ee:68:ed:fa:22:ca:8a:70:c6:d6:42: dc:4b:ef:62:8f:b0:f2:de:a4:e6:e4:ee:73:14:1d: c3:a2:21:b0:24:e6:7e:da:2b:96:b3:91:92:72:c1: 1a:5f:39:b6:23:94:ab:34:38:bb:85:ed:e0:7c:32: 7b:b7:93:79:b7:3a:d0:53:4b:ed:67:c5:00:f8:91: 1a:4c:c9:9f:92:35:49:2e:4d:00:10:9f:d6:76:ac: 5d:8e:7b:fb:44:53:a8:73:93:c6:9d:94:01:6b:80: 3d:04:de:79:ab:ed:e7:f5:fa:7e:0c:11:a0:e7:6b: a4:1e:7f:4e:41:d8:ed:16:40:80:f6:4d:fd:72:5f: 9f:bc:80:d8:be:9f:b7:73:d4:34:88:10:67:72:75: db:96:2c:cc:72:34:56:b6:0e:14:0a:ae:14:4a:41: 21:2e:09:63:4a:b9:b7:42:eb:87:ec:37:12:f3:ee: 95:8f:c0:bc:66:13:95:2d:72:31:f2:f9:e3:a2:eb: a5:a2:bf:76:01:8e:1a:d1:61:2f:94:a4:09:be:bc: 5b:e1:eb:03:5f:12:c2:d2:3c:90:83:44:1c:19:e3: 29:9c:90:a8:b4:20:3a:3d:47:bc:62:ef:3e:06:f4: 60:0c:40:27:c5:48:20:91:8e:4b:52:30:f4:ca:49: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E2:31:AF:99:5E:AF:D8:B2:7D:24:CE:30:06:76:3C:6F:2F:86:35 X509v3 Authority Key Identifier: keyid:41:50:27:D8:C9:29:8E:97:DA:05:C0:C4:3D:CD:8B:AF:52:17:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVAn2MkpjpfaBcDEPc2Lr1IXQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/20F4443A546D11EABDD3C117C4F9AE02/7B3737EE546E11EAAA4CF919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.20.0/22 103.47.3.0/24 103.65.244.0/22 103.95.60.0/22 103.130.76.0/22 103.148.132.0/23 103.250.198.0/24 123.253.176.0/22 202.27.113.0/24 202.36.150.0-202.36.153.255 202.49.20.0-202.49.31.255 202.134.32.0/20 IPv6: 2406:2b00::/32 Signature Algorithm: sha256WithRSAEncryption 02:57:9c:b0:de:ae:72:5a:4d:a8:93:f6:f5:0f:eb:39:68:61: 2e:76:f3:35:9b:dc:41:c7:b2:63:09:70:38:2b:0c:04:97:78: e4:54:d1:1f:7f:2b:07:c8:57:4b:4f:ed:65:b4:9a:d6:9b:3d: 60:61:84:d1:a6:3c:0e:cf:a1:85:12:cd:62:bc:28:00:f9:f1: 7b:94:69:b4:55:37:1b:a9:ba:dc:f4:16:2a:70:21:af:4d:c5: 88:78:80:06:54:01:2c:eb:82:37:01:b3:70:26:d5:b1:0c:7e: 1e:6a:18:3b:df:84:c1:c7:c1:95:57:7d:23:ea:62:85:b6:3a: 8c:f8:f6:47:06:ff:a5:f3:bc:60:42:79:47:5b:7b:e9:63:4e: 42:39:f4:57:c8:90:c4:6b:05:37:34:55:1b:7c:29:4c:87:b6: f3:07:40:e9:7c:c2:69:05:1f:de:66:e3:4e:23:9a:c2:30:b5: e4:c4:92:36:1a:47:0b:a2:30:0b:03:b3:79:a6:be:18:0a:67: b4:43:1c:cb:7b:3d:2c:11:d2:c8:0a:24:50:44:f0:13:ad:08: c8:6d:65:45:63:93:ac:c1:ab:d8:98:61:3d:98:92:37:dc:5a: a2:81:42:93:3b:77:82:3b:83:2d:47:fc:11:06:1d:6f:2d:c9: 7d:41:31:be -----BEGIN CERTIFICATE----- MIIF0zCCBLugAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKDQxNTAyN0Q4QzkyOThFOTdEQTA1QzBDNDNEQ0Q4QkFG NTIxNzQxNzUwHhcNMjUwNTI3MDQyODIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1M2Y2NS03MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAni1x7mjt+iLKinDG1kLcS+9ij7Dy3qTm5O5zFB3DoiGwJOZ+2iuWs5GScsEa Xzm2I5SrNDi7he3gfDJ7t5N5tzrQU0vtZ8UA+JEaTMmfkjVJLk0AEJ/Wdqxdjnv7 RFOoc5PGnZQBa4A9BN55q+3n9fp+DBGg52ukHn9OQdjtFkCA9k39cl+fvIDYvp+3 c9Q0iBBncnXblizMcjRWtg4UCq4USkEhLgljSrm3QuuH7DcS8+6Vj8C8ZhOVLXIx 8vnjouulor92AY4a0WEvlKQJvrxb4esDXxLC0jyQg0QcGeMpnJCotCA6PUe8Yu8+ BvRgDEAnxUggkY5LUjD0ykn3IQIDAQABo4IC9zCCAvMwHQYDVR0OBBYEFI/iMa+Z Xq/Ysn0kzjAGdjxvL4Y1MB8GA1UdIwQYMBaAFEFQJ9jJKY6X2gXAxD3Ni69SF0F1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8yMEY0NDQzQTU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi9RVkFuMk1rcGpwZmFCY0RFUGMyTHIxSVhR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWQW4yTWtwanBmYUJjREVQYzJMcjFJWFFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMjBGNDQ0M0E1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvN0IzNzM3RUU1 NDZFMTFFQUFBNENGOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYAGCCsGAQUFBwEHAQH/ BHEwbzBeBAIAATBYAwQCO5kUAwQAZy8DAwQCZ0H0AwQCZ188AwQCZ4JMAwQBZ5SE AwQAZ/rGAwQCe/2wAwQAyhtxMAwDBAHKJJYDBAHKJJgwDAMEAsoxFAMEBcoxAAME BMqGIDANBAIAAjAHAwUAJAYrADANBgkqhkiG9w0BAQsFAAOCAQEAAlecsN6uclpN qJP29Q/rOWhhLnbzNZvcQceyYwlwOCsMBJd45FTRH38rB8hXS0/tZbSa1ps9YGGE 0aY8Ds+hhRLNYrwoAPnxe5RptFU3G6m63PQWKnAhr03FiHiABlQBLOuCNwGzcCbV sQx+HmoYO9+EwcfBlVd9I+pihbY6jPj2Rwb/pfO8YEJ5R1t76WNOQjn0V8iQxGsF NzRVG3wpTIe28wdA6XzCaQUf3mbjTiOawjC15MSSNhpHC6IwCwOzeaa+GApntEMc y3s9LBHSyAokUETwE60IyG1lRWOTrMGr2JhhPZiSN9xaooFCkzt3gjuDLUf8EQYd by3JfUExvg== -----END CERTIFICATE-----Generated at Mon Jun 2 05:57:59 2025 by rpki-client