$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B37FDF6172B11EFA5119809C4F9AE02.roa File: 9B37FDF6172B11EFA5119809C4F9AE02.roa (raw, json) Hash identifier: cE0oNqn7W0URlxX47uclj/QKPRxLy+lzBMxdQZ8NI38= Subject key identifier: F0:C9:07:83:9C:CA:CA:4D:43:20:FC:61:C7:C4:38:C2:52:1D:3C:16 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B97F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B37FDF6172B11EFA5119809C4F9AE02.roa Signing time: Thu 08 May 2025 16:28:40 +0000 ROA not before: Thu 08 May 2025 16:28:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152540 IP address blocks: 103.135.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 12:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47487 (0xb97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:28:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdbb8-41fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:14:fd:6f:59:e5:1c:54:2f:57:60:f0:f6:39: 4d:b7:39:cc:e5:52:57:68:8d:dc:27:34:a9:f0:59: 90:38:df:5b:d0:3c:22:dd:37:7b:ec:44:49:1e:f7: c2:eb:12:c8:cf:e9:e4:46:46:e7:64:d1:fd:ec:5e: 90:5a:44:96:d5:73:e6:68:ec:c1:61:e5:a8:d5:71: b0:c2:6a:37:67:e1:e7:bd:c9:c3:80:07:57:cd:f1: 46:bf:76:0d:39:53:44:e8:14:6f:c1:c9:b8:aa:73: 71:9a:8b:ce:f4:26:77:5c:2a:85:8d:fd:ee:5a:48: 30:06:fd:29:e9:4a:f3:14:21:45:57:5f:8e:85:43: 0d:6c:57:6f:c5:35:ad:8c:d4:05:66:d6:4b:25:82: 8a:06:aa:2a:18:38:ee:0a:58:5c:ac:91:93:10:59: f7:04:91:64:e2:b2:de:0e:da:8d:93:eb:de:8e:fe: e3:8b:98:70:2e:86:ce:43:2d:2b:cc:69:8e:cb:e1: 3e:bf:6d:e1:e7:38:8e:6c:82:5c:4c:3b:a1:dd:d3: 1a:a4:38:71:65:e9:f5:1c:3f:07:32:8f:dd:0b:9a: f4:47:1b:b7:10:0e:a6:fa:7c:b8:08:7f:b6:7a:60: 3f:d9:74:1f:cd:76:c7:76:a4:65:47:7e:06:5b:d5: d2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C9:07:83:9C:CA:CA:4D:43:20:FC:61:C7:C4:38:C2:52:1D:3C:16 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9B37FDF6172B11EFA5119809C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.64.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:d9:43:04:f6:53:71:1d:42:00:00:dc:5f:6b:b6:a6:10:74: fb:84:4b:00:62:10:12:d0:ef:9d:60:fb:07:f5:96:97:d9:43: fa:53:c4:e2:4d:6d:bf:23:68:74:c6:65:95:4d:62:50:eb:ca: 11:1e:4c:cb:24:bd:47:c7:b3:26:66:15:30:7b:67:a2:0d:28: 62:2d:c9:44:31:2d:d0:48:8e:cb:69:c1:0f:4c:23:63:29:cf: b2:80:c9:52:2d:9b:96:76:c7:90:3e:8e:9a:64:cc:bc:75:47: b2:3e:d7:12:1e:be:ff:f6:73:6e:59:15:82:53:4c:50:5f:5e: a8:26:eb:cb:ae:ee:d4:30:42:c8:38:20:fc:53:e2:af:f0:e1: e1:b2:90:1f:f3:9f:67:67:5f:fb:03:ec:9f:10:1e:a0:88:d3: 52:71:a3:47:e8:a8:6d:d4:2b:eb:f5:14:02:d1:bd:c1:ec:c5: 82:7a:d9:92:ad:14:93:f1:fa:d9:52:9e:32:28:0c:72:44:31: d7:e5:ba:f1:e9:60:36:cd:bc:72:93:77:f3:d6:82:18:cb:c1: 06:89:ec:08:5d:55:c7:c7:1a:f7:ab:fc:c8:97:a0:07:0b:9f: 3c:2d:d8:22:bf:eb:15:88:68:0d:f5:b3:7b:11:c5:fb:e8:09: 6c:cd:4f:ea -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALl/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjg0MFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiYjgtNDFmZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgU/W9Z5RxUL1dg8PY5Tbc5zOVSV2iN3Cc0qfBZkDjfW9A8It03e+xESR73 wusSyM/p5EZG52TR/exekFpEltVz5mjswWHlqNVxsMJqN2fh573Jw4AHV83xRr92 DTlTROgUb8HJuKpzcZqLzvQmd1wqhY397lpIMAb9KelK8xQhRVdfjoVDDWxXb8U1 rYzUBWbWSyWCigaqKhg47gpYXKyRkxBZ9wSRZOKy3g7ajZPr3o7+44uYcC6GzkMt K8xpjsvhPr9t4ec4jmyCXEw7od3TGqQ4cWXp9Rw/BzKP3Qua9EcbtxAOpvp8uAh/ tnpgP9l0H812x3akZUd+BlvV0kkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTwyQeD nMrKTUMg/GHHxDjCUh08FjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlCMzdGREY2 MTcyQjExRUZBNTExOTgwOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ4dAMA0GCSqGSIb3DQEBCwUAA4IBAQCc2UME9lNxHUIA ANxfa7amEHT7hEsAYhAS0O+dYPsH9ZaX2UP6U8TiTW2/I2h0xmWVTWJQ68oRHkzL JL1Hx7MmZhUwe2eiDShiLclEMS3QSI7LacEPTCNjKc+ygMlSLZuWdseQPo6aZMy8 dUeyPtcSHr7/9nNuWRWCU0xQX16oJuvLru7UMELIOCD8U+Kv8OHhspAf859nZ1/7 A+yfEB6giNNScaNH6Kht1Cvr9RQC0b3B7MWCetmSrRST8frZUp4yKAxyRDHX5brx 6WA2zbxyk3fz1oIYy8EGiewIXVXHxxr3q/zIl6AHC588Ldgiv+sViGgN9bN7EcX7 6AlszU/q -----END CERTIFICATE-----Generated at Fri Jun 6 07:09:18 2025 by rpki-client