$ rpki-client -vvf rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa File: 394B48F6889811EC9D1DF920C4F9AE02.roa (raw, json) Hash identifier: l0TDwbIQKnn22v377SYBCTiXJEwlU244XaVGT+AApO8= Subject key identifier: DC:D2:68:DB:BD:22:2D:3E:A9:3D:E6:75:B9:11:48:08:34:26:45:37 Certificate issuer: /CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Certificate serial: 03CA Authority key identifier: 2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa Signing time: Sat 17 May 2025 00:56:40 +0000 ROA not before: Sat 17 May 2025 00:56:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132739 IP address blocks: 103.24.156.0/24 maxlen: 24 103.24.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187729, serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Validity Not Before: May 17 00:56:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827dec7-09e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c8:21:c3:57:d3:b4:7e:5d:15:c9:54:52:17: 8c:cc:c9:8d:9f:17:99:a3:05:7d:5b:f2:05:48:f9: 03:f7:9b:54:5f:f3:de:b1:07:97:42:91:38:6e:20: cd:1f:28:1d:10:e6:f3:29:ec:9d:a3:e2:1b:dc:fa: 61:80:3d:72:33:1f:43:80:48:98:b4:62:2d:c1:07: 76:66:d8:cb:d6:a8:c5:f1:85:15:96:d4:45:90:df: 98:b1:24:6d:f0:f4:c2:6a:74:5a:56:a6:a9:f8:9d: 5a:b7:c3:96:52:54:58:df:83:e2:54:0f:da:5c:af: 95:e9:ea:62:5a:86:4a:1e:8b:35:36:31:9d:07:15: d4:43:40:80:89:68:71:a9:e8:a7:c2:f8:99:43:c0: 9c:5d:7a:92:20:d9:0d:41:e3:e0:35:95:81:5c:75: 44:e4:37:16:58:41:cb:27:c9:f6:47:4d:39:60:da: ef:90:bf:49:49:3f:3f:c4:4b:51:15:4c:9d:01:e5: fc:df:3c:df:65:70:fa:7d:56:0e:c8:3d:d9:a2:2b: c6:49:80:4d:48:b0:e3:fc:f6:94:82:eb:1a:86:ed: dd:06:45:96:78:0d:36:99:9f:0a:ea:f4:ca:ba:c9: 8f:38:0b:57:c4:9c:25:5f:53:89:a0:a2:79:bc:f2: 08:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D2:68:DB:BD:22:2D:3E:A9:3D:E6:75:B9:11:48:08:34:26:45:37 X509v3 Authority Key Identifier: keyid:2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.156.0/23 Signature Algorithm: sha256WithRSAEncryption b5:c1:d9:cf:96:ee:9c:5b:3b:01:c5:14:72:07:64:17:5a:7d: 7f:e6:77:e6:b2:c7:70:0a:b9:18:65:92:6a:11:c6:96:33:27: c6:f7:d2:2e:3e:60:82:84:fa:71:78:74:92:eb:27:8f:7d:a1: 22:47:20:91:5a:2f:89:6d:32:bd:83:93:86:df:de:56:cf:0c: 8a:8a:31:f4:28:e3:f1:c4:25:45:a9:0b:95:7c:86:8b:e1:d1: 2e:33:f8:14:7a:bb:2d:d9:eb:a6:54:5b:e1:1f:31:63:6b:4c: 0b:a2:cb:1a:ea:ea:ba:16:fa:5e:b8:60:e1:31:f3:07:d9:4c: 8a:fc:7d:38:84:b7:cf:35:5c:66:33:aa:c1:84:6a:19:41:da: 82:4b:21:b4:e5:d3:2f:92:7c:f9:da:8c:ee:e8:cd:e2:b2:b8: 74:32:eb:fe:81:6f:e7:9b:6a:48:d4:0e:d3:30:aa:3d:52:7a: f9:10:3f:81:f1:97:b3:72:ca:45:06:f7:f7:19:30:f9:62:6d: 11:d4:cc:2c:cf:f8:60:fc:24:fd:57:4a:8c:45:d5:fb:91:7b: 40:21:88:1b:b7:40:6b:c7:7d:c0:14:7b:0e:bc:fe:fd:bf:d8: cb:f6:fa:b9:e9:b8:50:b1:8d:d1:fd:89:3b:73:db:af:51:b1: 02:50:e4:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MjkxMTAvBgNVBAUTKDJCNDQwQzdDNDU5MDAzMDU1MTU3NjI3REU3MjE0RTlD QUMxMjhCNEMwHhcNMjUwNTE3MDA1NjQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZGVjNy0wOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Mghw1fTtH5dFclUUheMzMmNnxeZowV9W/IFSPkD95tUX/PesQeXQpE4biDN HygdEObzKeydo+Ib3PphgD1yMx9DgEiYtGItwQd2ZtjL1qjF8YUVltRFkN+YsSRt 8PTCanRaVqap+J1at8OWUlRY34PiVA/aXK+V6epiWoZKHos1NjGdBxXUQ0CAiWhx qeinwviZQ8CcXXqSINkNQePgNZWBXHVE5DcWWEHLJ8n2R005YNrvkL9JST8/xEtR FUydAeX83zzfZXD6fVYOyD3ZoivGSYBNSLDj/PaUgusahu3dBkWWeA02mZ8K6vTK usmPOAtXxJwlX1OJoKJ5vPIIxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNzSaNu9 Ii0+qT3mdbkRSAg0JkU3MB8GA1UdIwQYMBaAFCtEDHxFkAMFUVdifechTpysEotM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcyOS8xMzEyRjkwODg4 OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3VlJWMko5NXlGT25Ld1Np MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0swUU1mRVdRQXdWUlYySjk1eUZPbkt3U2kwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc3MjkvMTMxMkY5MDg4ODk0MTFFQ0IyMEI4MzcyQzRGOUFFMDIvMzk0QjQ4RjY4 ODk4MTFFQzlEMURGOTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGJwwDQYJKoZIhvcNAQELBQADggEBALXB2c+W7pxbOwHF FHIHZBdafX/md+ayx3AKuRhlkmoRxpYzJ8b30i4+YIKE+nF4dJLrJ499oSJHIJFa L4ltMr2Dk4bf3lbPDIqKMfQo4/HEJUWpC5V8hovh0S4z+BR6uy3Z66ZUW+EfMWNr TAuiyxrq6roW+l64YOEx8wfZTIr8fTiEt881XGYzqsGEahlB2oJLIbTl0y+SfPna jO7ozeKyuHQy6/6Bb+ebakjUDtMwqj1SevkQP4Hxl7NyykUG9/cZMPlibRHUzCzP +GD8JP1XSoxF1fuRe0AhiBu3QGvHfcAUew68/v2/2Mv2+rnpuFCxjdH9iTtz269R sQJQ5Mc= -----END CERTIFICATE-----Generated at Mon Jun 2 06:53:00 2025 by rpki-client