$ rpki-client -vvf rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa File: 38F5C602B18711EC9F9FA058C4F9AE02.roa (raw, json) Hash identifier: 864v72yIGP6+fcV9ihOEtR0vSNI9KCZAgVkE2lkVzYA= Subject key identifier: 7B:55:04:17:CC:46:F8:65:5A:54:B2:9E:E4:9C:D6:E5:3B:26:D5:6A Certificate issuer: /CN=A9182FBC/serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC Certificate serial: 11B3 Authority key identifier: 98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa Signing time: Mon 26 May 2025 17:48:18 +0000 ROA not before: Mon 26 May 2025 17:48:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135023 IP address blocks: 103.206.32.0/22 maxlen: 23 103.206.32.0/24 maxlen: 24 103.206.33.0/24 maxlen: 24 103.206.35.0/24 maxlen: 24 182.161.56.0/22 maxlen: 24 2402:9740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.crl rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4531 (0x11b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182FBC, serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC Validity Not Before: May 26 17:48:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6834a961-0df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:d8:f1:d4:44:ab:7f:ce:98:27:e8:cc:e6: 36:a6:4e:59:e9:08:33:ff:1b:9c:3f:33:30:1b:11: aa:92:fb:f1:5d:cb:89:90:f0:92:09:5a:3d:ad:b5: be:b4:34:c1:d7:df:d2:64:8a:b7:e1:74:b8:98:9f: d5:c1:c4:2f:b7:a5:86:bb:11:af:2c:6b:9c:2a:61: 75:a5:b5:be:ce:a7:8a:66:b5:16:31:55:8a:5f:b5: b2:14:70:c5:73:06:28:e3:37:2b:13:f3:34:a6:58: 0b:a6:da:ae:d5:b2:fb:d8:60:db:bd:d0:ce:39:89: 8d:4f:15:58:7d:93:3f:74:b0:1b:e0:a6:8c:d9:63: 8a:73:ac:22:fa:75:5e:54:ba:b7:6e:c7:8e:f2:b2: 77:41:06:ef:5a:57:5d:95:d6:2f:cf:09:6c:08:8c: 81:72:59:2c:f1:94:a2:88:f6:f4:8e:27:1d:ac:5c: 82:8f:e3:a5:e5:35:b9:b2:e8:ec:97:f6:80:06:a3: 3c:7a:ab:32:8b:1e:f9:c9:36:82:fd:48:93:26:58: 4e:21:0e:bf:0b:81:1b:e8:b8:bd:d7:fb:b1:77:d7: 1e:97:52:ce:5a:75:87:ee:49:a0:98:4d:0e:f4:eb: ec:b2:90:48:93:e4:0c:33:9d:a9:cd:02:f2:06:7c: d6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:55:04:17:CC:46:F8:65:5A:54:B2:9E:E4:9C:D6:E5:3B:26:D5:6A X509v3 Authority Key Identifier: keyid:98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.32.0/22 182.161.56.0/22 IPv6: 2402:9740::/32 Signature Algorithm: sha256WithRSAEncryption 53:26:d3:ae:5e:63:14:33:b3:66:46:d5:49:15:2b:19:be:42: 70:08:c5:0f:ea:21:c5:e5:ac:0f:45:63:8f:75:56:65:0f:27: aa:bb:19:1b:11:fd:57:ba:87:46:bf:cb:15:14:46:ad:5f:d0: 4f:b9:cb:1b:92:e4:26:30:40:b5:88:3a:55:3c:ac:4d:49:96: 42:32:1e:86:53:28:72:18:c9:9d:77:69:39:71:de:db:88:d6: 8e:55:b4:c0:50:95:ea:c5:0b:0b:0e:08:26:09:54:98:85:94: 62:f0:5c:c5:d5:8a:3b:a2:55:b4:35:8e:99:24:bc:95:1f:ce: 00:d7:10:23:5e:a9:89:7d:c7:8b:8f:17:d0:cc:98:27:ba:85: 28:0f:81:ab:2a:29:b4:0c:98:6c:8e:e8:56:9b:f8:75:4a:13: 93:6d:6f:55:2b:ff:d2:e9:ca:7f:61:64:55:80:c8:c4:e7:28: 1c:69:12:cf:94:cb:3d:e9:d7:50:d4:44:3a:f4:b8:af:c8:92: a9:08:1a:b8:f6:aa:20:61:a3:f4:90:b7:00:bc:74:43:23:28: 12:ee:2f:c1:e6:0c:64:76:3d:86:82:8e:df:4e:61:d6:81:af: 95:4d:25:f3:be:03:06:08:9c:fb:f9:91:0b:d0:a8:aa:7a:26: 8a:ae:d0:13 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGQkMxMTAvBgNVBAUTKDk4QjIzQ0JBQjE4NERBQjFBRDAwRDEwMDBCODIwQzlC MjFBNDMzRUMwHhcNMjUwNTI2MTc0ODE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YTk2MS0wZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpfY8dREq3/OmCfozOY2pk5Z6Qgz/xucPzMwGxGqkvvxXcuJkPCSCVo9rbW+ tDTB19/SZIq34XS4mJ/VwcQvt6WGuxGvLGucKmF1pbW+zqeKZrUWMVWKX7WyFHDF cwYo4zcrE/M0plgLptqu1bL72GDbvdDOOYmNTxVYfZM/dLAb4KaM2WOKc6wi+nVe VLq3bseO8rJ3QQbvWlddldYvzwlsCIyBclks8ZSiiPb0jicdrFyCj+Ol5TW5sujs l/aABqM8eqsyix75yTaC/UiTJlhOIQ6/C4Eb6Li91/uxd9cel1LOWnWH7kmgmE0O 9OvsspBIk+QMM52pzQLyBnzWPQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHtVBBfM RvhlWlSynuSc1uU7JtVqMB8GA1UdIwQYMBaAFJiyPLqxhNqxrQDRAAuCDJshpDPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkZCQy9BMzM1QjI1OEZD RTQxMUU4OTBGQzFFMzdDNEY5QUUwMi9tTEk4dXJHRTJyR3RBTkVBQzRJTW15R2tN LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21MSTh1ckdFMnJHdEFORUFDNElNbXlHa00tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODJGQkMvQTMzNUIyNThGQ0U0MTFFODkwRkMxRTM3QzRGOUFFMDIvMzhGNUM2MDJC MTg3MTFFQzlGOUZBMDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnziADBAK2oTgwDQQCAAIwBwMFACQCl0AwDQYJKoZIhvcN AQELBQADggEBAFMm065eYxQzs2ZG1UkVKxm+QnAIxQ/qIcXlrA9FY491VmUPJ6q7 GRsR/Ve6h0a/yxUURq1f0E+5yxuS5CYwQLWIOlU8rE1JlkIyHoZTKHIYyZ13aTlx 3tuI1o5VtMBQlerFCwsOCCYJVJiFlGLwXMXVijuiVbQ1jpkkvJUfzgDXECNeqYl9 x4uPF9DMmCe6hSgPgasqKbQMmGyO6Fab+HVKE5Ntb1Ur/9Lpyn9hZFWAyMTnKBxp Es+Uyz3p11DURDr0uK/IkqkIGrj2qiBho/SQtwC8dEMjKBLuL8HmDGR2PYaCjt9O YdaBr5VNJfO+AwYInPv5kQvQqKp6Joqu0BM= -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:30 2025 by rpki-client