$ rpki-client -vvf rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa File: 4D36C07677C311EF84D38A3BC4F9AE02.roa (raw, json) Hash identifier: JXSolNPYFIreOexnYnb4A7e51oAbg28HPMtSTeakZI4= Subject key identifier: EE:85:0B:3E:23:FE:F2:4E:35:5F:6C:57:02:B2:60:EE:38:C2:EA:FB Certificate issuer: /CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Certificate serial: 85 Authority key identifier: FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa Signing time: Sat 31 May 2025 06:57:57 +0000 ROA not before: Sat 31 May 2025 06:57:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132530 IP address blocks: 103.24.192.0/24 maxlen: 24 103.24.193.0/24 maxlen: 24 2001:df3:b2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191769, serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Validity Not Before: May 31 06:57:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683aa875-f2c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5f:d6:b1:c2:06:c4:be:31:76:69:ce:8e:d5: 7d:e8:8b:00:82:e9:c8:3a:c9:2b:97:e9:09:93:70: 14:e0:df:30:b3:63:4b:be:9f:56:2d:f6:b0:d3:f7: 45:43:b9:d1:95:aa:86:6b:52:ce:d1:02:70:aa:82: 16:ee:28:5c:0f:5e:d0:26:3f:23:7a:49:19:5b:9c: 63:f2:cd:a6:12:04:07:1e:68:c9:48:ff:40:ef:03: 7b:c8:c0:a9:48:e9:97:08:36:4e:b8:75:82:e8:74: 4a:08:e6:30:e4:30:86:9d:d2:b1:b8:01:ca:8d:13: 73:5d:8e:40:da:8b:27:e7:c9:d0:02:0c:0c:1e:9a: 08:bb:b4:22:86:49:23:ac:6e:67:be:cf:3a:28:dc: 53:13:e0:97:81:2d:74:75:fc:a1:c6:f4:65:03:49: 95:81:49:7c:09:cf:2f:8f:ed:e0:30:36:b8:9a:3b: 87:13:89:2e:b0:a9:61:6a:36:c6:e9:2c:57:9a:dd: 3e:b1:3a:fd:61:25:30:a0:e7:8d:e7:f8:88:bb:93: d4:c7:40:f0:6e:ba:97:b9:0f:f7:cb:fe:e9:20:c5: f1:97:d4:fd:85:aa:b9:3f:de:2a:63:ce:8f:13:0f: 78:9a:c5:b2:47:db:7a:54:20:b8:d8:7c:44:a7:12: 17:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:85:0B:3E:23:FE:F2:4E:35:5F:6C:57:02:B2:60:EE:38:C2:EA:FB X509v3 Authority Key Identifier: keyid:FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.192.0/23 IPv6: 2001:df3:b2c0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:7e:17:38:e9:80:15:64:c3:65:b3:52:fc:c7:85:93:4b:3a: e0:ed:7a:23:32:8e:f5:6b:1e:26:2d:bd:9c:92:31:e4:5a:58: e5:51:94:b2:bd:24:f3:3e:96:5a:e8:fa:73:4e:d5:85:8b:31: 5b:ed:e9:b9:38:bf:f1:58:6b:2c:1d:9b:8f:e5:00:2a:d3:87: 66:3a:80:77:2e:e4:b0:e8:55:ca:98:d5:11:f7:d1:4e:80:37: 31:31:30:e6:76:35:d0:91:0a:2f:84:5f:26:1f:b1:ac:00:59: ef:24:a6:63:5d:85:35:66:14:80:29:90:b2:4f:80:de:b6:6e: 7a:90:2e:78:0c:2f:fc:fc:2a:75:8f:5d:c9:f0:64:c3:01:41: f2:22:95:ab:6e:1d:3a:13:8d:02:e1:84:fe:46:af:4d:93:e2: 75:29:6b:9b:b0:55:5f:67:b1:0b:4a:5f:6f:3b:d0:60:1f:98: f5:29:77:83:d5:31:60:2d:2b:7b:da:60:c7:95:4e:f2:c1:17: 66:7b:d7:c6:21:aa:61:79:f4:13:4c:ac:64:7f:b1:29:00:e4: 47:e5:ab:88:b9:f5:25:a7:2d:30:f9:60:a9:9e:a0:66:a2:4b: 58:98:88:27:d1:0f:93:9c:c0:a8:b6:77:6f:72:fb:5a:6d:a3: 93:8d:ac:b5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE3NjkxMTAvBgNVBAUTKEZGOTIzNDdGNUQ1NDY4ODExRkQyNTNBNDhCRkM2OUZF NTcwQUE0NTAwHhcNMjUwNTMxMDY1NzU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhYTg3NS1mMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5l/WscIGxL4xdmnOjtV96IsAgunIOskrl+kJk3AU4N8ws2NLvp9WLfaw0/dF Q7nRlaqGa1LO0QJwqoIW7ihcD17QJj8jekkZW5xj8s2mEgQHHmjJSP9A7wN7yMCp SOmXCDZOuHWC6HRKCOYw5DCGndKxuAHKjRNzXY5A2osn58nQAgwMHpoIu7Qihkkj rG5nvs86KNxTE+CXgS10dfyhxvRlA0mVgUl8Cc8vj+3gMDa4mjuHE4kusKlhajbG 6SxXmt0+sTr9YSUwoOeN5/iIu5PUx0DwbrqXuQ/3y/7pIMXxl9T9haq5P94qY86P Ew94msWyR9t6VCC42HxEpxIX/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO6FCz4j /vJONV9sVwKyYO44wur7MB8GA1UdIwQYMBaAFP+SNH9dVGiBH9JTpIv8af5XCqRQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTc2OS9EMjZERERCMDc3 QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi9fNUkwZjExVWFJRWYwbE9raV94cF9sY0tw RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL181STBmMTFVYUlFZjBsT2tpX3hwX2xjS3BGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE3NjkvRDI2REREQjA3N0JFMTFFRjlGMkE0NTQ3QzRGOUFFMDIvNEQzNkMwNzY3 N0MzMTFFRjg0RDM4QTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGMAwDwQCAAIwCQMHACABDfOywDANBgkqhkiG9w0BAQsF AAOCAQEAXn4XOOmAFWTDZbNS/MeFk0s64O16IzKO9WseJi29nJIx5FpY5VGUsr0k 8z6WWuj6c07VhYsxW+3puTi/8VhrLB2bj+UAKtOHZjqAdy7ksOhVypjVEffRToA3 MTEw5nY10JEKL4RfJh+xrABZ7ySmY12FNWYUgCmQsk+A3rZuepAueAwv/PwqdY9d yfBkwwFB8iKVq24dOhONAuGE/kavTZPidSlrm7BVX2exC0pfbzvQYB+Y9Sl3g9Ux YC0re9pgx5VO8sEXZnvXxiGqYXn0E0ysZH+xKQDkR+WriLn1JactMPlgqZ6gZqJL WJiIJ9EPk5zAqLZ3b3L7Wm2jk42stQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:28 2025 by rpki-client