$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/42A92B3C3BAC11F0882B5B62C4F9AE02.roa File: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (raw, json) Hash identifier: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U= Subject key identifier: 5D:0F:6F:A3:7F:2E:C6:2C:20:E5:27:05:5C:CF:AE:EE:C2:F3:50:ED Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 02 Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/42A92B3C3BAC11F0882B5B62C4F9AE02.roa Signing time: Wed 28 May 2025 10:12:29 +0000 ROA not before: Wed 28 May 2025 10:12:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149487 IP address blocks: 103.181.26.0/23 maxlen: 24 2400:57a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: May 28 10:12:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6836e18c-4a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:31:31:b9:59:76:dd:bf:67:5a:fa:a4:a5:46: 0c:13:22:a7:64:8a:88:0b:95:a4:81:e7:a0:c8:84: c5:db:a5:70:63:89:9f:ca:8d:0b:11:b7:b5:97:2a: 33:2b:b8:2b:fa:99:b0:49:44:df:bd:0e:31:ff:a8: 20:2f:e0:57:56:87:1d:de:4e:e0:71:72:76:92:e1: 33:0e:26:81:73:e5:15:ac:11:26:48:03:66:f3:44: 20:37:cf:cf:2c:df:9f:71:15:5d:91:52:c1:33:f5: 34:8a:43:e1:5f:49:e0:8d:5f:c5:79:e8:e2:dc:ba: aa:54:3d:52:94:50:f3:10:cc:aa:f6:7d:9a:63:a5: 3f:24:33:20:3b:ca:a7:6e:6f:5e:cd:8b:26:b8:d4: f2:93:fa:e2:6f:50:2c:b7:e9:2e:30:b6:f1:dc:59: d5:cb:dc:42:5d:dd:03:4c:6c:f3:12:de:72:d5:ba: f8:dd:be:bd:05:bc:7f:94:ad:3b:ee:5f:26:c3:6c: 3f:6f:3b:86:b4:d2:63:0f:9a:b8:d1:90:55:35:e7: 08:87:34:15:76:4e:50:fd:d3:45:62:b8:56:06:3b: f8:1b:b5:7d:76:63:1f:2e:91:2d:4d:16:b1:2e:a0: 1b:e2:3f:bb:41:b6:4d:d8:eb:54:34:68:75:c9:bf: 23:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0F:6F:A3:7F:2E:C6:2C:20:E5:27:05:5C:CF:AE:EE:C2:F3:50:ED X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/42A92B3C3BAC11F0882B5B62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.26.0/23 IPv6: 2400:57a0::/32 Signature Algorithm: sha256WithRSAEncryption 75:bb:82:e5:4d:e8:a3:9d:42:20:c5:aa:3f:53:8b:8e:63:0a: cf:fe:ec:cc:7b:8a:64:c0:7d:bf:0c:42:c1:a5:6c:8d:4f:87: dc:04:79:43:8b:d8:7c:94:30:07:95:78:8d:39:d6:6e:0e:5f: 37:88:1f:10:87:fc:13:ac:a5:25:af:51:2e:4a:c5:05:3e:6c: 0e:a4:ae:02:ad:4b:85:30:2c:35:eb:ae:b6:08:69:3a:f8:90: bb:3e:9a:77:ab:02:cc:ba:cf:ad:72:b1:d2:3c:fb:9a:34:08: 37:df:4c:1e:40:b8:03:54:77:23:75:87:ab:92:23:47:4b:a8: c0:97:bc:79:d4:7e:6b:1b:7a:dd:79:0f:ce:72:c6:7a:5e:0e: 14:7c:50:7c:6e:fe:2a:0e:5e:b4:9a:64:91:d7:19:6d:8a:c6: 81:10:e2:7d:5a:32:61:7f:be:bc:1a:3e:3d:07:92:93:3d:f4: d0:15:6f:e2:2c:e7:2c:fa:1a:c3:4b:d7:27:7c:87:17:8d:8f: 36:b1:22:08:46:1d:7c:73:66:b0:dc:3e:f2:06:81:64:f0:db: 2a:5f:85:e4:fb:6d:87:8f:58:55:6a:9d:99:e2:5b:65:dc:a4: 5c:73:6c:6c:d1:f3:d7:36:3c:e0:1a:68:11:75:e4:7e:c8:f6: 29:ba:ce:e6 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUE5RjExMC8GA1UEBRMoQ0ZCMDdBRTVERDAwQTkyNzE0REIzNUE3MjEwNDVEOUQy RUI4RTMxNzAeFw0yNTA1MjgxMDEyMjlaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZlMThjLTRhOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbMTG5WXbdv2da+qSlRgwTIqdkiogLlaSB56DIhMXbpXBjiZ/KjQsRt7WXKjMr uCv6mbBJRN+9DjH/qCAv4FdWhx3eTuBxcnaS4TMOJoFz5RWsESZIA2bzRCA3z88s 359xFV2RUsEz9TSKQ+FfSeCNX8V56OLcuqpUPVKUUPMQzKr2fZpjpT8kMyA7yqdu b17Niya41PKT+uJvUCy36S4wtvHcWdXL3EJd3QNMbPMS3nLVuvjdvr0FvH+UrTvu XybDbD9vO4a00mMPmrjRkFU15wiHNBV2TlD900ViuFYGO/gbtX12Yx8ukS1NFrEu oBviP7tBtk3Y61Q0aHXJvyNrAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUXQ9vo38u xiwg5ScFXM+u7sLzUO0wHwYDVR0jBBgwFoAUz7B65d0AqScU2zWnIQRdnS644xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QTlGLzgwNTZCQTU2OEE5 MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejdCNjVkMEFxU2NVMnpXbklRUmRuUzY0NHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUE5Ri84MDU2QkE1NjhBOTAxMUVDOEMxQjBEMjJDNEY5QUUwMi80MkE5MkIzQzNC QUMxMUYwODgyQjVCNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWe1GjANBAIAAjAHAwUAJABXoDANBgkqhkiG9w0BAQsFAAOC AQEAdbuC5U3oo51CIMWqP1OLjmMKz/7szHuKZMB9vwxCwaVsjU+H3AR5Q4vYfJQw B5V4jTnWbg5fN4gfEIf8E6ylJa9RLkrFBT5sDqSuAq1LhTAsNeuutghpOviQuz6a d6sCzLrPrXKx0jz7mjQIN99MHkC4A1R3I3WHq5IjR0uowJe8edR+axt63XkPznLG el4OFHxQfG7+Kg5etJpkkdcZbYrGgRDifVoyYX++vBo+PQeSkz300BVv4iznLPoa w0vXJ3yHF42PNrEiCEYdfHNmsNw+8gaBZPDbKl+F5Ptth49YVWqdmeJbZdykXHNs bNHz1zY84BpoEXXkfsj2KbrO5g== -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:26 2025 by rpki-client