$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa File: 430342A4C02B11EA85244830C4F9AE02.roa (raw, json) Hash identifier: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU= Subject key identifier: 17:EC:A4:D4:5B:0D:3C:BE:33:2C:3D:82:62:A8:89:BD:5E:F8:3D:33 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0C6E Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa Signing time: Wed 12 Feb 2025 19:27:01 +0000 ROA not before: Wed 12 Feb 2025 19:27:01 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 13444 IP address blocks: 103.133.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 18:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 12 19:27:01 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acf604-29a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:52:76:59:93:39:46:d6:14:87:ac:bd:ae:ff: 14:b7:ef:ed:18:5f:09:1f:6f:90:2e:a5:89:1a:89: 0a:26:58:76:a2:83:d0:17:3d:e3:b9:90:25:a7:2c: e2:c4:84:a0:f0:b7:6e:48:33:4a:68:2e:f7:50:23: e9:c5:90:52:cf:7d:31:90:d7:fe:96:67:36:1f:61: 35:db:f3:7e:c2:c3:65:fb:dc:19:8a:d9:89:f5:38: e2:d8:eb:33:3d:b9:ee:0b:52:d9:96:a6:6e:aa:f9: 13:e1:0d:59:51:2b:68:10:fd:f7:aa:21:d6:6f:fc: 8b:cf:02:06:8d:bf:61:08:a3:a4:f1:6b:09:d5:17: 78:e9:9a:56:ec:50:b1:3e:6d:25:5c:29:d9:dc:a2: 42:de:3e:68:1b:0a:93:dc:b5:e2:25:c3:ee:fa:1f: a8:de:f5:8b:95:33:a9:35:47:54:60:89:e1:66:97: 69:9b:49:79:9c:5a:1f:3a:90:4a:75:cb:3c:aa:32: ed:eb:ba:07:d4:27:66:06:77:e0:55:d7:1e:ee:51: 1b:ae:bb:55:92:b4:52:c6:2c:e4:5f:00:15:e6:0b: 2b:37:ca:62:47:7d:02:58:93:8f:9f:14:6c:82:b7: bd:12:4c:d2:1c:32:2f:c2:b6:08:85:c9:e4:73:fd: 62:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EC:A4:D4:5B:0D:3C:BE:33:2C:3D:82:62:A8:89:BD:5E:F8:3D:33 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.93.0/24 Signature Algorithm: sha256WithRSAEncryption 39:cd:d9:0a:16:e2:0a:60:03:ec:de:5a:bd:bf:cd:d4:a1:69: a0:2d:b5:0e:11:d5:d2:af:df:82:df:42:f1:5c:37:2e:41:cd: 5b:1e:7d:ef:20:a8:97:a7:39:bc:e3:59:3f:ee:dc:c2:76:8b: 75:29:11:3c:04:81:eb:63:50:04:9e:1d:32:8e:9d:3c:91:bd: 56:89:89:58:56:00:dc:de:e8:24:2e:25:07:4b:d4:3b:35:2d: eb:59:a3:cc:73:d3:30:b2:1f:9b:24:6e:09:ac:94:eb:eb:e9: e1:4c:01:4b:4a:ba:5b:a2:59:31:9c:cb:35:38:1a:32:22:f7: 1c:fe:ce:1a:94:57:c8:e5:e2:87:f4:f3:1a:9d:7f:55:1f:fe: a4:92:84:cb:ef:21:ab:ff:e4:2f:cd:e1:23:08:33:4a:a6:1e: 27:8e:c3:9d:48:ce:24:b9:9d:be:f0:b0:b0:f7:a5:70:b2:09: 57:9f:9f:f3:4c:40:66:7d:74:7c:71:03:67:06:96:0b:94:77: 73:60:29:37:09:b6:17:70:0e:09:c4:62:61:2b:0c:db:c0:f9: fd:26:cc:c4:9d:86:96:09:3e:ce:e3:15:73:ad:5d:45:cd:c5: f6:e7:ad:84:cf:14:f2:8d:66:e9:3b:c4:13:6c:37:03:37:4e: af:9f:1b:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwMjEyMTkyNzAxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZjYwNC0yOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FJ2WZM5RtYUh6y9rv8Ut+/tGF8JH2+QLqWJGokKJlh2ooPQFz3juZAlpyzi xISg8LduSDNKaC73UCPpxZBSz30xkNf+lmc2H2E12/N+wsNl+9wZitmJ9Tji2Osz PbnuC1LZlqZuqvkT4Q1ZUStoEP33qiHWb/yLzwIGjb9hCKOk8WsJ1Rd46ZpW7FCx Pm0lXCnZ3KJC3j5oGwqT3LXiJcPu+h+o3vWLlTOpNUdUYInhZpdpm0l5nFofOpBK dcs8qjLt67oH1CdmBnfgVdce7lEbrrtVkrRSxizkXwAV5gsrN8piR30CWJOPnxRs gre9EkzSHDIvwrYIhcnkc/1iAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBfspNRb DTy+Myw9gmKoib1e+D0zMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvNDMwMzQyQTRD MDJCMTFFQTg1MjQ0ODMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhV0wDQYJKoZIhvcNAQELBQADggEBADnN2QoW4gpgA+ze Wr2/zdShaaAttQ4R1dKv34LfQvFcNy5BzVsefe8gqJenObzjWT/u3MJ2i3UpETwE getjUASeHTKOnTyRvVaJiVhWANze6CQuJQdL1Ds1LetZo8xz0zCyH5skbgmslOvr 6eFMAUtKuluiWTGcyzU4GjIi9xz+zhqUV8jl4of08xqdf1Uf/qSShMvvIav/5C/N 4SMIM0qmHieOw51IziS5nb7wsLD3pXCyCVefn/NMQGZ9dHxxA2cGlguUd3NgKTcJ thdwDgnEYmErDNvA+f0mzMSdhpYJPs7jFXOtXUXNxfbnrYTPFPKNZuk7xBNsNwM3 Tq+fG+0= -----END CERTIFICATE-----Generated at Sun Oct 26 07:18:45 2025 by rpki-client