$ rpki-client -vvf rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/60DB1468F14111EFBAE4B56EC4F9AE02.roa File: 60DB1468F14111EFBAE4B56EC4F9AE02.roa (raw, json) Hash identifier: Ay+00/HQxdmLhwQx5Ze/XtFrqy8RlBXyrP5SS2vFl/8= Subject key identifier: 40:24:23:F9:7C:CF:78:A2:11:02:B6:3A:1A:BD:7F:1D:BC:55:05:FA Certificate issuer: /CN=A9168949/serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Certificate serial: FA Authority key identifier: 10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/60DB1468F14111EFBAE4B56EC4F9AE02.roa Signing time: Tue 13 May 2025 04:56:32 +0000 ROA not before: Tue 13 May 2025 04:56:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137444 IP address blocks: 203.20.108.0/24 maxlen: 24 2001:df3:9340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168949, serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Validity Not Before: May 13 04:56:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6822d0ff-855a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d4:fc:db:ea:81:23:ea:ee:42:2d:c1:42:93: 6c:1b:6e:4f:3e:d5:10:d0:41:33:44:1f:5f:81:3a: ac:03:60:ad:be:35:a6:31:28:87:b1:22:a1:d7:43: 54:1b:eb:eb:6d:55:5f:3c:23:c9:cd:0d:52:0a:ba: d6:ff:df:48:27:f4:3b:2e:d9:c2:bc:6f:e4:4c:7f: f0:e3:18:92:79:c4:86:a9:fb:d0:09:db:f0:d2:bf: fe:0f:a0:84:3a:09:4b:a4:57:98:ca:e6:95:59:f9: 6a:6e:cf:39:39:ba:7f:16:67:28:bf:97:5a:22:7e: 4e:7d:d6:15:21:b1:ea:80:bf:58:bf:e0:1b:56:db: 11:d8:bd:14:b9:d4:90:5b:52:f7:21:98:0c:48:bf: 76:cf:f6:a8:dd:7c:05:b5:29:90:50:7e:68:06:9f: c3:b7:7e:aa:c1:c4:a4:b0:84:88:c1:31:34:d4:3f: 78:04:dd:51:8c:0e:1e:6c:77:98:0b:8b:c6:91:4e: 8b:5c:ba:3b:f9:a6:d2:fa:08:f2:cc:89:a5:4c:55: 97:7a:23:c9:71:9c:04:40:68:45:54:62:00:12:cb: 31:fa:9d:76:e7:fd:d7:eb:95:f2:c6:ce:e5:89:79: f1:4d:e5:d4:23:fc:9c:7b:a0:b1:f8:5c:aa:a1:4d: c2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:24:23:F9:7C:CF:78:A2:11:02:B6:3A:1A:BD:7F:1D:BC:55:05:FA X509v3 Authority Key Identifier: keyid:10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/60DB1468F14111EFBAE4B56EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.108.0/24 IPv6: 2001:df3:9340::/48 Signature Algorithm: sha256WithRSAEncryption 72:72:40:19:d0:6e:fb:70:30:fb:3c:43:7e:8d:0d:b9:00:ca: 35:8b:82:dc:d8:5c:c2:b0:04:e6:b2:3b:47:84:de:53:52:53: e6:f3:f2:03:65:53:42:c7:91:01:1b:6a:ea:e8:98:b3:8a:44: b8:a6:96:d8:ed:18:b9:7c:17:6e:e1:9d:f2:d8:85:48:e6:a4: aa:e3:06:4c:c9:8c:d4:fa:87:62:b6:2b:11:55:c1:a4:11:a8: 2e:12:80:1c:5b:be:59:e7:04:8d:b8:32:93:48:3e:fc:69:27: 70:32:53:7a:b5:e3:e5:1d:95:93:51:af:2d:f2:7c:46:a9:57: ac:44:7e:9b:d2:40:42:e6:1f:e1:5d:f3:68:2e:0c:57:8b:0b: 5d:83:18:24:9d:e1:d1:b2:33:cb:fd:c2:2e:f9:61:3d:7f:cf: 47:40:ff:9f:d3:52:2b:da:c7:f7:ff:42:24:14:8d:3d:42:40: 14:63:01:c8:e4:9f:cd:ab:cd:8a:82:c9:1a:bf:c0:5f:15:cf: 06:07:27:44:91:7d:c4:79:5c:a3:c9:fd:0d:4d:cf:8f:2a:4e: 20:47:3e:31:4c:f4:b6:3e:21:f1:ed:f3:a6:c2:37:9f:09:29: 4b:7f:55:ec:d6:67:e0:33:0b:22:9e:01:06:42:32:85:bc:49: 63:81:46:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5NDkxMTAvBgNVBAUTKDEwRTA1MDJGM0QzODJFOEMxNTY2RUNDQzJBMTIxQjZD NDM5REU5NzcwHhcNMjUwNTEzMDQ1NjMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyZDBmZi04NTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9T82+qBI+ruQi3BQpNsG25PPtUQ0EEzRB9fgTqsA2CtvjWmMSiHsSKh10NU G+vrbVVfPCPJzQ1SCrrW/99IJ/Q7LtnCvG/kTH/w4xiSecSGqfvQCdvw0r/+D6CE OglLpFeYyuaVWflqbs85Obp/Fmcov5daIn5OfdYVIbHqgL9Yv+AbVtsR2L0UudSQ W1L3IZgMSL92z/ao3XwFtSmQUH5oBp/Dt36qwcSksISIwTE01D94BN1RjA4ebHeY C4vGkU6LXLo7+abS+gjyzImlTFWXeiPJcZwEQGhFVGIAEssx+p125/3X65Xyxs7l iXnxTeXUI/yce6Cx+FyqoU3CiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEAkI/l8 z3iiEQK2Ohq9fx28VQX6MB8GA1UdIwQYMBaAFBDgUC89OC6MFWbszCoSG2xDnel3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk0OS8zRjI0MkFDMkU0 RjMxMUVFOTkxMDE0MzhDNEY5QUUwMi9FT0JRTHowNExvd1ZadXpNS2hJYmJFT2Q2 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VPQlFMejA0TG93Vlp1ek1LaEliYkVPZDZYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5NDkvM0YyNDJBQzJFNEYzMTFFRTk5MTAxNDM4QzRGOUFFMDIvNjBEQjE0NjhG MTQxMTFFRkJBRTRCNTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLFGwwDwQCAAIwCQMHACABDfOTQDANBgkqhkiG9w0BAQsF AAOCAQEAcnJAGdBu+3Aw+zxDfo0NuQDKNYuC3NhcwrAE5rI7R4TeU1JT5vPyA2VT QseRARtq6uiYs4pEuKaW2O0YuXwXbuGd8tiFSOakquMGTMmM1PqHYrYrEVXBpBGo LhKAHFu+WecEjbgyk0g+/GkncDJTerXj5R2Vk1GvLfJ8RqlXrER+m9JAQuYf4V3z aC4MV4sLXYMYJJ3h0bIzy/3CLvlhPX/PR0D/n9NSK9rH9/9CJBSNPUJAFGMByOSf zavNioLJGr/AXxXPBgcnRJF9xHlco8n9DU3PjypOIEc+MUz0tj4h8e3zpsI3nwkp S39V7NZn4DMLIp4BBkIyhbxJY4FGMg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:47:42 2025 by rpki-client