$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa File: E135D94C04A511EF84B5D783C4F9AE02.roa (raw, json) Hash identifier: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE= Subject key identifier: DD:D6:C8:8A:DF:71:85:D7:F0:F0:24:9E:46:2B:2F:15:7A:04:78:4F Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: C9 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa Signing time: Thu 01 May 2025 05:12:00 +0000 ROA not before: Thu 01 May 2025 05:12:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152709 IP address blocks: 103.39.120.0/23 maxlen: 23 103.39.120.0/24 maxlen: 24 103.39.121.0/24 maxlen: 24 2001:df3:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: May 1 05:12:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6813029f-e179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:bf:5e:df:85:73:09:af:a9:37:cd:6d:80: 83:da:00:73:c2:7c:ee:69:77:a3:43:f7:a5:72:a6: 34:4a:7a:7f:80:21:3e:7b:f3:84:64:94:16:6e:7e: 87:87:20:83:00:b1:c6:71:dc:19:a6:e7:a1:29:33: f2:15:f3:28:85:38:40:97:44:77:47:49:ef:b0:e0: 6d:23:94:1e:13:1e:70:76:b5:62:a6:f1:13:b7:98: 50:e2:3e:4f:31:31:3c:5d:a5:44:96:0e:ea:dc:a0: d1:c6:dd:ba:27:80:fb:ad:10:61:41:35:2f:08:bc: 3d:69:9d:2d:3f:f9:da:2c:fa:80:45:23:3d:45:4d: 8c:df:25:e7:be:30:1d:97:a4:2f:7f:03:b2:d1:06: d3:7b:16:05:cc:a2:3b:19:da:e9:3c:cf:93:59:4a: 02:8a:a4:09:f9:80:a6:ea:4c:16:7a:ed:3a:6d:9c: 44:83:00:47:a0:61:33:fd:7d:29:e2:76:34:83:92: 66:4c:6e:09:0a:e4:26:81:02:43:8a:b2:9d:10:1d: 96:4c:a0:33:61:f2:37:ee:e2:9c:f1:03:39:ed:25: 6d:e1:1f:cc:1f:f2:4a:85:dd:6c:53:66:c8:1e:03: 35:41:80:6a:13:9a:33:0a:7f:5d:6a:8b:de:26:3b: 08:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D6:C8:8A:DF:71:85:D7:F0:F0:24:9E:46:2B:2F:15:7A:04:78:4F X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.120.0/23 IPv6: 2001:df3:b740::/48 Signature Algorithm: sha256WithRSAEncryption 96:1b:67:3f:37:75:b9:c9:6c:6c:83:cc:84:71:57:cc:1b:d6: 52:2e:28:02:e5:31:98:01:22:15:13:8e:d5:93:69:7f:18:97: 2c:38:67:10:65:d3:a7:3f:23:b9:84:0d:c1:7f:a7:a6:fc:c9: 9b:04:cc:50:82:83:03:bb:1d:0d:47:4d:13:e0:33:f5:57:6c: 28:73:9e:e6:74:4a:4c:72:fc:a8:86:10:c5:48:7b:09:f9:73: bb:61:c8:0c:33:26:07:bd:81:fd:2f:2c:29:14:28:7b:16:ba: 7b:31:d7:f2:57:2b:77:b5:d3:52:a1:35:28:73:40:db:37:68: a9:22:9a:e5:98:04:e8:e2:a9:02:80:4a:8b:a5:9e:0e:50:34: d7:b0:4f:6d:a9:5b:49:e7:e6:8e:d9:a0:fc:5f:14:51:f5:d2: 1b:2c:2d:df:d1:b0:41:14:f3:a1:25:2e:68:e9:6b:28:2e:fc: df:38:c1:85:d5:8e:38:6b:b8:9c:3f:d3:c9:1b:fe:34:b0:f8: 1b:a5:46:79:cd:34:cb:29:99:f5:76:25:c6:ac:55:b4:29:d3: d9:a6:a3:98:a2:d1:0c:11:14:2f:89:d1:51:72:0b:b9:2f:76: 33:16:a7:e0:10:82:ee:1c:9d:54:7d:94:21:8f:4b:53:65:aa: 56:b2:71:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwNTAxMDUxMjAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEzMDI5Zi1lMTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+S/Xt+FcwmvqTfNbYCD2gBzwnzuaXejQ/elcqY0Snp/gCE+e/OEZJQWbn6H hyCDALHGcdwZpuehKTPyFfMohThAl0R3R0nvsOBtI5QeEx5wdrVipvETt5hQ4j5P MTE8XaVElg7q3KDRxt26J4D7rRBhQTUvCLw9aZ0tP/naLPqARSM9RU2M3yXnvjAd l6QvfwOy0QbTexYFzKI7GdrpPM+TWUoCiqQJ+YCm6kwWeu06bZxEgwBHoGEz/X0p 4nY0g5JmTG4JCuQmgQJDirKdEB2WTKAzYfI37uKc8QM57SVt4R/MH/JKhd1sU2bI HgM1QYBqE5ozCn9daoveJjsIKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN3WyIrf cYXX8PAknkYrLxV6BHhPMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NTYvQjE0NUQwMkUwMTdDMTFFRkI4NjQzMjVBQzRGOUFFMDIvRTEzNUQ5NEMw NEE1MTFFRjg0QjVENzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJ3gwDwQCAAIwCQMHACABDfO3QDANBgkqhkiG9w0BAQsF AAOCAQEAlhtnPzd1uclsbIPMhHFXzBvWUi4oAuUxmAEiFROO1ZNpfxiXLDhnEGXT pz8juYQNwX+npvzJmwTMUIKDA7sdDUdNE+Az9VdsKHOe5nRKTHL8qIYQxUh7Cflz u2HIDDMmB72B/S8sKRQoexa6ezHX8lcrd7XTUqE1KHNA2zdoqSKa5ZgE6OKpAoBK i6WeDlA017BPbalbSefmjtmg/F8UUfXSGywt39GwQRTzoSUuaOlrKC783zjBhdWO OGu4nD/TyRv+NLD4G6VGec00yymZ9XYlxqxVtCnT2aajmKLRDBEUL4nRUXILuS92 Mxan4BCC7hydVH2UIY9LU2WqVrJxvg== -----END CERTIFICATE-----Generated at Mon Jun 2 05:43:01 2025 by rpki-client