$ rpki-client -vvf rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa File: 334C06CE012C11EBA97D451DC4F9AE02.roa (raw, json) Hash identifier: fNf/ad4MOpxM+qQpjwnDMRjuPl2J4ah+c1qoJ8E3Dn8= Subject key identifier: A0:CD:C9:D9:04:C4:4D:17:F2:E2:A1:E2:A7:A4:3F:CD:6E:A0:4D:4C Certificate issuer: /CN=A9155374/serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Certificate serial: 07AF Authority key identifier: 9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa Signing time: Wed 14 May 2025 21:48:44 +0000 ROA not before: Wed 14 May 2025 21:48:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138973 IP address blocks: 103.137.245.0/24 maxlen: 24 103.157.98.0/24 maxlen: 24 2001:df0:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1967 (0x7af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155374, serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Validity Not Before: May 14 21:48:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68250fbb-1d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:71:e4:e0:3b:4c:b4:7b:0e:74:c8:5b:99:56: 71:af:d5:72:39:c1:12:0b:1d:6d:0b:53:cd:f9:c8: b4:7a:c3:ab:37:9a:0d:34:3b:29:e9:bc:fe:5c:1c: 8d:af:1f:22:29:7c:60:67:e5:46:6b:c8:bc:44:2b: bb:d2:d6:00:9b:5b:88:c9:44:7a:38:e3:b2:1d:6a: ea:d0:d5:95:85:37:96:0a:8f:32:00:47:db:46:cc: 48:02:a0:fc:0f:7f:36:d9:e3:b3:c7:bc:d9:d7:d2: d2:2a:a0:b7:49:06:a4:f5:b2:fc:b2:d0:e1:f7:b7: 02:44:db:2a:65:53:06:aa:b3:2d:0c:e6:02:64:fd: 8e:2e:d5:d4:5a:ae:fe:a3:7c:a1:ba:85:4a:7d:95: bf:d8:b8:e3:1f:f7:60:bb:06:01:c4:a1:bd:7b:87: 25:79:e2:d7:1a:bb:40:7b:4f:fc:41:06:83:fd:eb: e8:22:66:37:4e:ea:8d:d1:3b:f1:ae:41:d3:f9:13: 87:06:07:60:40:16:3f:08:b9:a1:82:9c:0c:65:77: 1e:69:78:2a:0e:96:62:5d:50:dd:8a:7f:19:e6:e7: 7d:7a:b5:b2:24:bb:81:f5:3c:b4:50:9d:94:61:bc: e1:fc:60:6c:78:3c:d9:31:3c:e0:3d:d1:74:1a:2e: 78:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CD:C9:D9:04:C4:4D:17:F2:E2:A1:E2:A7:A4:3F:CD:6E:A0:4D:4C X509v3 Authority Key Identifier: keyid:9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.245.0/24 103.157.98.0/24 IPv6: 2001:df0:2780::/48 Signature Algorithm: sha256WithRSAEncryption 18:57:3f:d4:41:6c:0e:72:b0:09:a0:e9:a0:49:1d:9b:fe:51: cf:ca:35:37:e0:ad:e8:e1:59:08:64:a7:9c:66:1a:05:9e:ab: 8f:9f:d8:a1:f4:4e:4e:fc:aa:5b:8c:33:b4:aa:3e:64:0c:a8: 36:9b:7b:91:c4:85:85:ab:09:b4:29:6d:db:3e:d4:39:2d:db: ff:15:03:23:4d:3e:8e:04:ed:b3:dd:4b:c9:02:9c:8d:ba:dd: 9b:66:c8:15:5d:7f:51:9a:4e:83:ec:91:99:13:74:14:34:70: a5:32:36:24:61:13:12:bb:ec:1a:e5:3e:7a:99:e7:e9:bd:b0: a9:26:4e:73:3d:a4:32:ba:1b:14:a3:a4:c9:98:5d:71:df:46: 38:a8:6c:fe:00:06:dc:9d:80:97:41:e5:e7:dd:3a:d1:73:e0: ec:e2:24:a8:43:14:57:8b:f7:aa:a5:b7:c6:bd:3b:16:9a:30: 3c:44:86:cb:6c:ef:39:30:6e:63:6f:61:f7:23:bf:a9:b1:17: c2:dc:17:71:34:cc:87:e9:23:8a:c1:7e:ca:64:88:e6:1f:d0: e3:1d:18:fc:13:58:40:78:5f:36:43:2d:ca:c9:d7:2e:83:f1: 3b:5a:f4:b7:c6:72:a6:71:cd:fb:5e:73:53:71:9e:3b:fd:38: a7:d4:82:08 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUzNzQxMTAvBgNVBAUTKDlCRjU3NERGNUU3Rjk5QkQ0MzZCQUE1MDUyRjhDQThD RkIzMUEyQjkwHhcNMjUwNTE0MjE0ODQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MGZiYi0xZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HHk4DtMtHsOdMhbmVZxr9VyOcESCx1tC1PN+ci0esOrN5oNNDsp6bz+XByN rx8iKXxgZ+VGa8i8RCu70tYAm1uIyUR6OOOyHWrq0NWVhTeWCo8yAEfbRsxIAqD8 D3822eOzx7zZ19LSKqC3SQak9bL8stDh97cCRNsqZVMGqrMtDOYCZP2OLtXUWq7+ o3yhuoVKfZW/2LjjH/dguwYBxKG9e4cleeLXGrtAe0/8QQaD/evoImY3TuqN0Tvx rkHT+ROHBgdgQBY/CLmhgpwMZXceaXgqDpZiXVDdin8Z5ud9erWyJLuB9Ty0UJ2U Ybzh/GBseDzZMTzgPdF0Gi54WwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKDNydkE xE0X8uKh4qekP81uoE1MMB8GA1UdIwQYMBaAFJv1dN9ef5m9Q2uqUFL4yoz7MaK5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTM3NC8zMzZFNThFQzAx MkIxMUVCQjZDODlFMUNDNEY5QUUwMi9tX1YwMzE1X21iMURhNnBRVXZqS2pQc3hv cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fVjAzMTVfbWIxRGE2cFFVdmpLalBzeG9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUzNzQvMzM2RTU4RUMwMTJCMTFFQkI2Qzg5RTFDQzRGOUFFMDIvMzM0QzA2Q0Uw MTJDMTFFQkE5N0Q0NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnifUDBABnnWIwDwQCAAIwCQMHACABDfAngDANBgkqhkiG 9w0BAQsFAAOCAQEAGFc/1EFsDnKwCaDpoEkdm/5Rz8o1N+Ct6OFZCGSnnGYaBZ6r j5/YofROTvyqW4wztKo+ZAyoNpt7kcSFhasJtClt2z7UOS3b/xUDI00+jgTts91L yQKcjbrdm2bIFV1/UZpOg+yRmRN0FDRwpTI2JGETErvsGuU+epnn6b2wqSZOcz2k MrobFKOkyZhdcd9GOKhs/gAG3J2Al0Hl59060XPg7OIkqEMUV4v3qqW3xr07Fpow PESGy2zvOTBuY29h9yO/qbEXwtwXcTTMh+kjisF+ymSI5h/Q4x0Y/BNYQHhfNkMt ysnXLoPxO1r0t8ZypnHN+15zU3GeO/04p9SCCA== -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:38 2025 by rpki-client