$ rpki-client -vvf rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/9591475A4F6011EFAF26AF63C4F9AE02.roa File: 9591475A4F6011EFAF26AF63C4F9AE02.roa (raw, json) Hash identifier: d4nANGkii06xzWV6dpPGz0VvWqxPgVRXdrnJY6WmtmY= Subject key identifier: 41:E6:B8:B4:85:6E:7A:D4:D3:1C:F7:07:2E:CF:A5:14:CE:B9:AA:76 Certificate issuer: /CN=A9184569/serialNumber=BC30B8A4BDD1CE28F7B2F999342F51CE1FDB86E6 Certificate serial: 0C4C Authority key identifier: BC:30:B8:A4:BD:D1:CE:28:F7:B2:F9:99:34:2F:51:CE:1F:DB:86:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDC4pL3Rzij3svmZNC9Rzh_bhuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/9591475A4F6011EFAF26AF63C4F9AE02.roa Signing time: Sun 04 May 2025 18:28:34 +0000 ROA not before: Sun 04 May 2025 18:28:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138614 IP address blocks: 103.134.168.0/24 maxlen: 24 103.134.169.0/24 maxlen: 24 103.134.170.0/24 maxlen: 24 103.134.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/vDC4pL3Rzij3svmZNC9Rzh_bhuY.crl rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/vDC4pL3Rzij3svmZNC9Rzh_bhuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDC4pL3Rzij3svmZNC9Rzh_bhuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184569, serialNumber=BC30B8A4BDD1CE28F7B2F999342F51CE1FDB86E6 Validity Not Before: May 4 18:28:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6817b1d2-77cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:57:34:ee:74:57:f0:58:37:de:b6:4f:bf:a2: 12:39:1a:25:69:12:99:96:9d:c5:af:a1:0d:e0:e8: 5e:f2:d2:03:a3:3e:c4:69:b3:be:9a:46:06:b0:51: cc:56:fb:b2:bd:a7:3f:4b:ec:7f:b1:fb:b4:39:54: 38:6d:30:8c:2f:f7:b1:ff:6a:c4:5a:5d:bc:4c:14: 77:39:ec:20:e6:f6:43:d8:ab:6b:e0:5d:14:6a:f3: b3:89:90:7a:99:4a:c0:7d:f2:1b:94:5f:96:3e:f2: 59:cf:ff:5c:45:eb:ec:91:07:81:c5:0d:79:ad:ab: 4d:87:3f:8e:c8:e2:9b:5a:76:46:b5:9e:12:0c:0d: 6e:d7:27:75:18:89:39:0e:ea:cd:51:7f:39:a3:60: 6e:fd:00:7b:fb:23:d9:6a:21:65:df:b3:53:eb:64: 32:19:61:c3:e9:d9:84:16:65:20:3f:90:95:41:f1: 29:b3:f6:ad:ae:6b:55:4a:eb:28:f5:17:ab:c2:ce: c9:8f:0d:cd:99:e0:df:f9:02:12:c2:88:ee:c2:2f: 55:cc:d5:6d:76:10:2c:3d:c1:45:d1:a2:f3:29:b2: ff:d6:d1:1d:86:c4:eb:21:1a:de:b0:57:db:b9:42: 8d:f9:48:2f:09:8e:0f:1d:dd:30:e9:9b:de:45:df: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E6:B8:B4:85:6E:7A:D4:D3:1C:F7:07:2E:CF:A5:14:CE:B9:AA:76 X509v3 Authority Key Identifier: keyid:BC:30:B8:A4:BD:D1:CE:28:F7:B2:F9:99:34:2F:51:CE:1F:DB:86:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/vDC4pL3Rzij3svmZNC9Rzh_bhuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDC4pL3Rzij3svmZNC9Rzh_bhuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/9591475A4F6011EFAF26AF63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.168.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:f7:29:33:48:42:91:f4:8f:26:93:3e:bc:c8:67:47:ce:b3: 6b:19:d6:21:4a:4b:78:f4:ef:6e:12:3c:b8:ef:39:d6:44:f0: 88:8f:32:63:b4:de:10:d3:9f:83:eb:56:c9:01:9b:4c:22:a8: 37:af:43:d1:9c:2d:32:05:a8:87:33:13:ea:10:1b:09:87:72: 31:aa:20:1a:4f:8b:42:a1:c4:74:25:d5:a6:6f:4d:6f:18:4f: d8:78:c5:ea:98:4b:75:8c:32:c2:27:6c:79:3e:9d:ae:12:ad: 61:c9:3a:3b:21:36:8a:27:7d:dc:7f:d6:fc:0d:98:e6:53:25: b8:cd:fc:c2:29:9d:4f:ba:fe:23:22:26:bf:43:f1:f6:c7:eb: 77:15:7e:fc:64:4e:28:30:59:18:ac:8e:f7:52:04:82:68:0e: eb:06:e0:4d:a2:01:43:93:a2:ff:94:44:e0:e4:da:a7:74:57: ac:3d:0b:ad:82:5d:54:d0:2e:0e:66:b8:67:2a:4d:79:af:d7: fe:38:e3:2f:6a:69:72:62:f4:45:2f:f7:76:49:1f:3c:99:3b: f5:27:bb:2a:33:b3:4e:4a:27:4c:2c:d0:97:87:f6:e9:09:91: 56:55:92:c9:96:d1:88:13:96:8f:35:95:27:fb:2a:da:57:e6: d9:12:f3:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ1NjkxMTAvBgNVBAUTKEJDMzBCOEE0QkREMUNFMjhGN0IyRjk5OTM0MkY1MUNF MUZEQjg2RTYwHhcNMjUwNTA0MTgyODM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3YjFkMi03N2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFc07nRX8Fg33rZPv6ISORolaRKZlp3Fr6EN4Ohe8tIDoz7EabO+mkYGsFHM Vvuyvac/S+x/sfu0OVQ4bTCML/ex/2rEWl28TBR3Oewg5vZD2Ktr4F0UavOziZB6 mUrAffIblF+WPvJZz/9cRevskQeBxQ15ratNhz+OyOKbWnZGtZ4SDA1u1yd1GIk5 DurNUX85o2Bu/QB7+yPZaiFl37NT62QyGWHD6dmEFmUgP5CVQfEps/atrmtVSuso 9Rerws7Jjw3NmeDf+QISwojuwi9VzNVtdhAsPcFF0aLzKbL/1tEdhsTrIRresFfb uUKN+UgvCY4PHd0w6ZveRd877wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHmuLSF bnrU0xz3By7PpRTOuap2MB8GA1UdIwQYMBaAFLwwuKS90c4o97L5mTQvUc4f24bm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDU2OS9GRTg5OUQ1RTA4 NjQxMUVBQjdENEVDODJDNEY5QUUwMi92REM0cEwzUnppajNzdm1aTkM5UnpoX2Jo dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZEQzRwTDNSemlqM3N2bVpOQzlSemhfYmh1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ1NjkvRkU4OTlENUUwODY0MTFFQUI3RDRFQzgyQzRGOUFFMDIvOTU5MTQ3NUE0 RjYwMTFFRkFGMjZBRjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhqgwDQYJKoZIhvcNAQELBQADggEBAI/3KTNIQpH0jyaT PrzIZ0fOs2sZ1iFKS3j0724SPLjvOdZE8IiPMmO03hDTn4PrVskBm0wiqDevQ9Gc LTIFqIczE+oQGwmHcjGqIBpPi0KhxHQl1aZvTW8YT9h4xeqYS3WMMsInbHk+na4S rWHJOjshNoonfdx/1vwNmOZTJbjN/MIpnU+6/iMiJr9D8fbH63cVfvxkTigwWRis jvdSBIJoDusG4E2iAUOTov+URODk2qd0V6w9C62CXVTQLg5muGcqTXmv1/444y9q aXJi9EUv93ZJHzyZO/Unuyozs05KJ0ws0JeH9ukJkVZVksmW0YgTlo81lSf7KtpX 5tkS84Y= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:24 2025 by rpki-client