$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa File: 89EA369C2A7411F09A757F45C4F9AE02.roa (raw, json) Hash identifier: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA= Subject key identifier: C9:62:29:C4:E3:A8:47:A2:06:0E:2B:2E:00:9A:2D:53:64:35:83:A5 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C27 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa Signing time: Tue 06 May 2025 12:20:47 +0000 ROA not before: Tue 06 May 2025 12:20:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 58715 IP address blocks: 103.126.20.0/22 maxlen: 23 103.126.21.0/24 maxlen: 24 103.126.22.0/24 maxlen: 24 103.126.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 18:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: May 6 12:20:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6819fe9e-feb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4a:62:27:dc:6f:60:3a:57:2e:d3:7e:be:8d: 95:82:e3:4e:07:27:3f:0f:fa:b9:0e:ca:e2:2a:af: 9a:97:cb:b0:07:f0:a7:84:67:c6:52:f8:e9:be:23: f6:e9:cc:6c:db:6a:74:5d:ee:7e:0f:39:29:e2:65: 81:99:89:76:4a:cd:bd:0c:04:5b:0f:d7:00:50:2d: 6d:97:90:6b:94:8c:a1:f9:dc:50:90:52:e8:5d:f9: 60:66:36:c3:38:55:0a:09:7c:c6:48:df:70:69:6a: 0a:75:6f:93:a3:74:74:7f:f6:43:e4:8c:84:9a:f7: 94:59:d8:3d:80:07:93:91:ad:27:9b:04:1a:cc:b7: 98:d8:78:08:49:b2:c4:95:a1:7d:6a:e0:33:e1:40: 76:5d:0d:0c:97:69:f1:2e:60:72:43:0b:72:5b:df: c6:b9:e7:50:ee:58:89:56:14:de:5d:00:95:8b:29: 1a:a7:42:48:d9:c6:8e:29:a4:9f:8d:19:44:62:60: 44:b7:f9:c2:d9:4d:07:c8:fb:e4:7f:c9:36:62:5f: e4:4e:a0:03:c5:a7:6d:d0:a3:71:dd:3c:ba:79:dc: 09:60:a9:5c:cb:e7:c9:ed:74:5d:56:55:fd:20:53: bb:a3:f8:e7:dc:e1:c7:b2:a2:9a:75:fe:fd:4e:c0: d5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:62:29:C4:E3:A8:47:A2:06:0E:2B:2E:00:9A:2D:53:64:35:83:A5 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.20.0/22 Signature Algorithm: sha256WithRSAEncryption 98:dc:c0:81:09:0b:68:11:c9:a5:8c:72:3a:ee:7f:26:ba:73: aa:93:4b:9e:58:64:bc:27:0e:3f:95:29:a1:6b:42:cd:39:52: 8a:6a:fa:e2:e9:db:1b:12:b4:17:cd:99:f7:d7:6f:1b:11:e6: 5c:a5:b1:76:e2:5b:01:f9:bd:ea:09:42:60:aa:24:9e:de:2b: ff:5c:2a:ad:72:bc:70:e6:ad:f9:d9:21:96:28:27:cb:d6:39: e7:5a:44:bf:f1:98:f6:e8:a2:5d:ee:8d:c7:21:de:e1:d2:52: 40:12:b9:b9:f7:94:04:f2:28:5c:d0:36:32:f8:c0:55:0b:81: 3b:43:36:99:ce:ee:69:ba:28:f1:a5:78:75:e7:6a:31:d5:ea: 65:c4:94:bc:0d:f5:ad:5b:df:6f:5e:4f:71:3e:ec:cc:ca:49: 05:09:54:ca:eb:5a:03:3c:db:e9:bb:2f:0b:b7:6d:9b:c1:ac: a7:e3:e6:c7:23:70:78:08:e7:d6:d4:86:e7:af:bf:8e:7b:57: 5e:6c:8a:67:67:d3:e6:4f:ae:c5:43:0a:92:2c:6b:73:77:4a: 39:d0:31:03:4d:f3:9a:16:4d:c8:98:bc:2c:05:08:a1:07:95: 2f:c6:57:a8:1e:61:bb:b9:8a:38:01:a4:f0:cd:18:aa:40:c0: 11:1e:53:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwNTA2MTIyMDQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5ZmU5ZS1mZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkpiJ9xvYDpXLtN+vo2VguNOByc/D/q5DsriKq+al8uwB/CnhGfGUvjpviP2 6cxs22p0Xe5+Dzkp4mWBmYl2Ss29DARbD9cAUC1tl5BrlIyh+dxQkFLoXflgZjbD OFUKCXzGSN9waWoKdW+To3R0f/ZD5IyEmveUWdg9gAeTka0nmwQazLeY2HgISbLE laF9auAz4UB2XQ0Ml2nxLmByQwtyW9/GuedQ7liJVhTeXQCViykap0JI2caOKaSf jRlEYmBEt/nC2U0HyPvkf8k2Yl/kTqADxadt0KNx3Ty6edwJYKlcy+fJ7XRdVlX9 IFO7o/jn3OHHsqKadf79TsDVNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMliKcTj qEeiBg4rLgCaLVNkNYOlMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCRjMvMUJDNkVCMjAxMUU3MTFFQUI5MDNBQTc5QzRGOUFFMDIvODlFQTM2OUMy QTc0MTFGMDlBNzU3RjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfhQwDQYJKoZIhvcNAQELBQADggEBAJjcwIEJC2gRyaWM cjrufya6c6qTS55YZLwnDj+VKaFrQs05Uopq+uLp2xsStBfNmffXbxsR5lylsXbi WwH5veoJQmCqJJ7eK/9cKq1yvHDmrfnZIZYoJ8vWOedaRL/xmPbool3ujcch3uHS UkASubn3lATyKFzQNjL4wFULgTtDNpnO7mm6KPGleHXnajHV6mXElLwN9a1b329e T3E+7MzKSQUJVMrrWgM82+m7Lwu3bZvBrKfj5scjcHgI59bUhuevv457V15simdn 0+ZPrsVDCpIsa3N3SjnQMQNN85oWTciYvCwFCKEHlS/GV6geYbu5ijgBpPDNGKpA wBEeU+E= -----END CERTIFICATE-----Generated at Thu Jun 5 19:20:30 2025 by rpki-client