$ rpki-client -vvf rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/4A6E97AC311E11EE85C30E3BC4F9AE02.roa File: 4A6E97AC311E11EE85C30E3BC4F9AE02.roa (raw, json) Hash identifier: qONN8LKBOCS/G8QK//DwNmNBl/nUXzBz7NrGBoGYHlQ= Subject key identifier: EA:E3:1E:B9:32:F1:E5:E9:A2:12:98:16:1F:54:4C:67:4E:75:C4:62 Certificate issuer: /CN=A9194004/serialNumber=7F7D8565BB04183C3AF1CCD223E9C4611F150806 Certificate serial: 014A Authority key identifier: 7F:7D:85:65:BB:04:18:3C:3A:F1:CC:D2:23:E9:C4:61:1F:15:08:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f32FZbsEGDw68czSI-nEYR8VCAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/4A6E97AC311E11EE85C30E3BC4F9AE02.roa Signing time: Tue 29 Apr 2025 04:40:26 +0000 ROA not before: Tue 29 Apr 2025 04:40:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4826 IP address blocks: 103.88.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/f32FZbsEGDw68czSI-nEYR8VCAY.crl rsync://rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/f32FZbsEGDw68czSI-nEYR8VCAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f32FZbsEGDw68czSI-nEYR8VCAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194004, serialNumber=7F7D8565BB04183C3AF1CCD223E9C4611F150806 Validity Not Before: Apr 29 04:40:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6810583a-8fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:33:85:46:15:dc:92:8c:6a:5f:26:8e:7c:3a: f3:1b:bd:70:40:9b:fb:81:b0:54:1e:3a:94:2a:72: 9f:40:2e:64:13:94:e7:92:af:06:83:99:8f:08:35: e8:bf:4c:1a:43:b5:56:27:a3:20:1d:2b:1a:02:f1: 57:b2:f6:6a:66:b2:46:eb:aa:ca:a5:0c:7f:e1:55: d8:8a:39:87:3e:d9:7a:85:da:98:80:c0:85:93:89: 45:4c:b3:3f:e1:2b:1d:a9:10:9e:05:a1:94:ed:5b: 3e:e3:34:6c:39:28:71:74:0e:22:5d:b8:41:6a:31: 2d:7c:84:f3:6b:d9:32:23:4c:af:c0:64:0f:d5:7c: 27:05:1e:47:99:20:09:6b:b3:dd:32:34:58:6a:5b: 28:28:0c:6b:f1:7e:3d:4c:23:80:2f:b4:82:52:9c: cb:48:fe:fb:ef:15:ac:a3:2b:69:29:d4:67:bd:dd: 4c:f8:d3:27:a2:b7:2b:f0:bf:60:9b:be:24:1c:25: 04:d4:7b:9f:14:10:6d:b8:c3:55:c2:50:20:48:40: b5:03:45:27:2a:f9:73:22:d1:d7:66:7f:4e:30:e3: fd:25:7b:52:07:67:f3:da:e1:b6:08:e3:5c:c6:e1: bb:e0:96:04:98:79:1f:14:b8:94:35:77:1c:b4:8c: 1d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E3:1E:B9:32:F1:E5:E9:A2:12:98:16:1F:54:4C:67:4E:75:C4:62 X509v3 Authority Key Identifier: keyid:7F:7D:85:65:BB:04:18:3C:3A:F1:CC:D2:23:E9:C4:61:1F:15:08:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/f32FZbsEGDw68czSI-nEYR8VCAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f32FZbsEGDw68czSI-nEYR8VCAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194004/049546CE302C11EEBA3EA013C4F9AE02/4A6E97AC311E11EE85C30E3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.154.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:19:f9:bd:87:36:2d:48:48:b9:aa:a8:e0:22:50:e1:7a:2d: a6:50:4b:67:34:a9:0a:b2:0a:be:0d:47:50:de:64:95:ae:99: d8:53:c9:76:eb:04:a1:6f:6e:52:f6:ba:7c:ac:30:05:8e:73: 2d:67:9a:88:58:bc:a3:c9:d0:80:ec:84:98:26:9a:0f:12:ea: ca:fa:c4:77:6e:cd:14:71:12:bc:1a:4b:70:fe:93:93:d2:2a: 87:49:62:8a:c8:f6:8b:72:94:7c:54:c9:68:ea:37:f9:e5:4d: 46:82:67:3d:44:9e:5c:df:d6:1c:4c:42:31:c2:70:bf:ef:c3: e0:62:d1:c7:42:a5:99:83:07:69:e5:5f:e4:b9:b7:7c:97:93: 62:90:7a:bd:25:6b:d3:8b:2a:0c:58:ab:f5:8c:b2:2c:fa:c2: ad:b4:8d:17:7f:2a:4b:3e:91:34:44:f3:63:a3:80:3a:1e:02: 61:c1:33:dd:59:c9:77:f7:c5:b3:a0:46:31:bf:f2:a6:c1:6d: e8:09:43:2d:2d:b1:35:04:8a:5b:7b:d1:82:68:11:ec:b0:d0: 57:19:49:f3:11:da:53:5e:1d:b3:41:7d:c0:cf:ad:b2:8c:49: 4c:43:4a:83:65:ee:a1:a0:e9:84:13:13:3e:38:64:05:62:a0: 73:31:20:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwMDQxMTAvBgNVBAUTKDdGN0Q4NTY1QkIwNDE4M0MzQUYxQ0NEMjIzRTlDNDYx MUYxNTA4MDYwHhcNMjUwNDI5MDQ0MDI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNTgzYS04ZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jOFRhXckoxqXyaOfDrzG71wQJv7gbBUHjqUKnKfQC5kE5Tnkq8Gg5mPCDXo v0waQ7VWJ6MgHSsaAvFXsvZqZrJG66rKpQx/4VXYijmHPtl6hdqYgMCFk4lFTLM/ 4SsdqRCeBaGU7Vs+4zRsOShxdA4iXbhBajEtfITza9kyI0yvwGQP1XwnBR5HmSAJ a7PdMjRYalsoKAxr8X49TCOAL7SCUpzLSP777xWsoytpKdRnvd1M+NMnorcr8L9g m74kHCUE1HufFBBtuMNVwlAgSEC1A0UnKvlzItHXZn9OMOP9JXtSB2fz2uG2CONc xuG74JYEmHkfFLiUNXcctIwdhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOrjHrky 8eXpohKYFh9UTGdOdcRiMB8GA1UdIwQYMBaAFH99hWW7BBg8OvHM0iPpxGEfFQgG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDAwNC8wNDk1NDZDRTMw MkMxMUVFQkEzRUEwMTNDNEY5QUUwMi9mMzJGWmJzRUdEdzY4Y3pTSS1uRVlSOFZD QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMkZaYnNFR0R3NjhjelNJLW5FWVI4VkNBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQwMDQvMDQ5NTQ2Q0UzMDJDMTFFRUJBM0VBMDEzQzRGOUFFMDIvNEE2RTk3QUMz MTFFMTFFRTg1QzMwRTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWJowDQYJKoZIhvcNAQELBQADggEBAAsZ+b2HNi1ISLmq qOAiUOF6LaZQS2c0qQqyCr4NR1DeZJWumdhTyXbrBKFvblL2unysMAWOcy1nmohY vKPJ0IDshJgmmg8S6sr6xHduzRRxErwaS3D+k5PSKodJYorI9otylHxUyWjqN/nl TUaCZz1Enlzf1hxMQjHCcL/vw+Bi0cdCpZmDB2nlX+S5t3yXk2KQer0la9OLKgxY q/WMsiz6wq20jRd/Kks+kTRE82OjgDoeAmHBM91ZyXf3xbOgRjG/8qbBbegJQy0t sTUEilt70YJoEeyw0FcZSfMR2lNeHbNBfcDPrbKMSUxDSoNl7qGg6YQTEz44ZAVi oHMxIKc= -----END CERTIFICATE-----Generated at Mon Jun 2 05:33:06 2025 by rpki-client