$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa File: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (raw, json) Hash identifier: VRIs5/TUKDaqF1hTLN0GORNvAVQA+OzzszxfTxaTTMc= Subject key identifier: 70:94:CF:AC:6A:7D:FA:83:DF:C1:45:C2:5A:88:05:6D:C1:9E:29:D0 Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 03 Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa Signing time: Thu 22 May 2025 04:27:11 +0000 ROA not before: Thu 22 May 2025 04:27:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141011 IP address blocks: 103.17.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: May 22 04:27:11 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=682ea79e-eb0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e9:41:42:86:82:97:7e:98:b8:e7:a5:1f:d6: 04:ca:bd:24:a1:17:a6:f5:62:52:7f:19:75:b7:32: 87:bd:76:dc:de:de:03:8b:a0:84:17:05:15:39:b5: 70:63:61:18:69:25:6d:44:d2:f9:00:fe:4a:e7:24: e3:49:87:10:f3:a1:9d:c0:a6:dc:d5:09:20:c8:67: 57:f3:b2:fd:3f:bd:29:83:54:c7:70:4c:ee:53:16: 21:9f:7e:e5:f9:3b:75:31:82:0c:f7:42:10:72:f8: 6b:e8:10:c6:d5:d0:51:bb:b9:ee:a2:99:97:8f:55: b0:b8:e7:5b:32:a6:5f:74:97:97:5f:f0:fb:ca:7c: 0c:8c:69:e2:64:e6:c0:71:88:5e:cb:af:a5:8a:01: 67:93:31:0b:7b:1e:6f:70:61:9f:62:75:15:cb:2b: 78:37:cf:3d:df:9d:86:2d:3e:68:0f:71:37:11:1e: b6:2c:02:27:79:6e:2f:b2:c5:b2:c2:8a:9a:e8:43: 70:c2:9d:f0:bf:2a:7d:17:48:a7:e6:46:c7:97:d8: 01:4f:45:ae:0d:b4:57:2a:fa:65:60:ec:aa:a1:92: 18:f1:da:90:af:e1:80:d2:b3:e2:20:61:82:77:0d: 5a:46:0d:5c:5a:ad:8e:24:32:c9:90:51:8b:2c:ea: 41:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:94:CF:AC:6A:7D:FA:83:DF:C1:45:C2:5A:88:05:6D:C1:9E:29:D0 X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.19.0/24 Signature Algorithm: sha256WithRSAEncryption b6:01:65:b6:08:a6:3c:45:51:a0:f3:6d:c4:c2:b6:1b:42:e9: 12:83:19:85:51:f6:5f:61:74:47:2a:e1:85:e3:d7:5d:5f:53: 93:3e:21:c2:2e:b5:c6:2e:13:88:01:4b:1a:41:ef:ae:e5:fc: 44:35:dc:56:d3:35:cb:40:98:ef:f6:0c:0c:2f:77:56:ba:f8: 91:52:a7:c7:1f:4f:ce:97:f4:12:99:5e:76:ec:9e:88:1f:8a: 10:b3:97:6f:6a:ba:9b:b4:4e:31:fb:bd:27:39:00:ea:03:44: e8:21:a5:62:6d:d1:ff:7a:88:4a:ef:96:82:5e:77:f3:31:2a: ee:6b:51:3b:9c:38:f1:44:68:48:2f:79:5b:0f:8a:7d:16:ac: 87:b6:a8:fc:f2:3e:87:f4:54:03:01:e0:87:5e:32:bf:b5:60: 5d:c4:b1:d9:a9:da:b0:1c:72:c3:87:f0:65:47:74:fe:71:90: f5:8f:a2:65:55:50:2c:3d:59:f5:23:60:2b:96:f9:7b:68:ee: ab:db:4b:36:46:28:83:6f:5c:13:be:37:fa:ef:07:8d:79:a9: b5:03:97:a9:c0:0b:b1:a3:ad:d2:c0:00:f5:8a:5c:e0:7f:91: c6:ca:0e:3e:86:1a:72:d5:65:12:5b:b7:25:0d:a2:79:16:5b: 25:5b:ab:06 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoQkY4ODYwQjJDMDM3N0JCNUVGRURCRTNBRDQwRjFDRjE4 OUYyQUNCMjAeFw0yNTA1MjIwNDI3MTFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmVhNzllLWViMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT6UFChoKXfpi456Uf1gTKvSShF6b1YlJ/GXW3Moe9dtze3gOLoIQXBRU5tXBj YRhpJW1E0vkA/krnJONJhxDzoZ3AptzVCSDIZ1fzsv0/vSmDVMdwTO5TFiGffuX5 O3Uxggz3QhBy+GvoEMbV0FG7ue6imZePVbC451sypl90l5df8PvKfAyMaeJk5sBx iF7Lr6WKAWeTMQt7Hm9wYZ9idRXLK3g3zz3fnYYtPmgPcTcRHrYsAid5bi+yxbLC iproQ3DCnfC/Kn0XSKfmRseX2AFPRa4NtFcq+mVg7Kqhkhjx2pCv4YDSs+IgYYJ3 DVpGDVxarY4kMsmQUYss6kFXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcJTPrGp9 +oPfwUXCWogFbcGeKdAwHwYDVR0jBBgwFoAUv4hgssA3e7Xv7b461A8c8YnyrLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0NFMDA0MjVBMzZC QzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjRoZ3NzQTNlN1h2N2I0NjFBOGM4WW55ckxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3NC9DRTAwNDI1QTM2QkMxMUYwODFENTVGMTdDNEY5QUUwMi8wNzRBN0ExNDM2 QzUxMUYwQTRFNUM1MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcREzANBgkqhkiG9w0BAQsFAAOCAQEAtgFltgimPEVRoPNt xMK2G0LpEoMZhVH2X2F0RyrhhePXXV9Tkz4hwi61xi4TiAFLGkHvruX8RDXcVtM1 y0CY7/YMDC93Vrr4kVKnxx9Pzpf0EpleduyeiB+KELOXb2q6m7ROMfu9JzkA6gNE 6CGlYm3R/3qISu+Wgl538zEq7mtRO5w48URoSC95Ww+KfRash7ao/PI+h/RUAwHg h14yv7VgXcSx2anasBxyw4fwZUd0/nGQ9Y+iZVVQLD1Z9SNgK5b5e2juq9tLNkYo g29cE743+u8HjXmptQOXqcALsaOt0sAA9Ypc4H+RxsoOPoYactVlElu3JQ2ieRZb JVurBg== -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:51 2025 by rpki-client