$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa File: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (raw, json) Hash identifier: xq1A/DwEya72JUauXcCDXoZyXlE8M2olRWGCrYUUkIw= Subject key identifier: EF:60:8B:0E:35:F1:E3:D4:A7:20:9C:55:F7:DE:56:AE:40:B5:8F:CC Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 2191 Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa Signing time: Wed 30 Apr 2025 16:24:00 +0000 ROA not before: Wed 30 Apr 2025 16:24:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.52.62.0/24 maxlen: 24 103.67.234.0/23 maxlen: 24 103.67.248.0/24 maxlen: 24 2405:df80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8593 (0x2191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Apr 30 16:24:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124ea0-d82e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:b5:8c:59:bc:2a:09:66:80:bb:67:3b:ab: 39:19:31:b8:44:a9:8a:86:8f:25:0c:1f:f8:0a:66: d8:ae:46:1e:b9:94:96:de:e6:70:56:40:28:0c:53: 09:ee:18:50:21:8e:ac:02:5e:ee:c3:b2:d6:2a:c4: 0c:2e:56:34:c4:04:c7:2c:14:28:16:2c:32:8f:71: e9:98:5c:6e:f6:f7:c1:9d:03:49:0d:c1:9e:45:d8: ea:f7:97:ac:18:ea:fe:62:da:a3:f8:60:4d:ae:af: 80:7c:6a:e6:86:fb:c4:95:d5:04:fe:85:e5:a7:82: 9d:0e:02:3c:62:84:d7:3f:d1:86:4c:e3:47:a6:47: a7:34:16:50:36:78:7c:de:37:e3:d3:7c:5c:76:69: dd:5e:cd:09:17:75:53:e9:7c:4e:81:8e:6f:09:86: 3b:b6:43:06:ed:63:61:7c:8d:a4:6c:a0:7e:f7:dd: 9d:cc:19:f7:66:f9:c8:4d:78:7c:8c:1c:23:cd:dd: 78:67:5f:4e:55:b7:d1:6d:8c:6a:5e:92:19:5f:00: 69:6c:93:15:0d:01:7a:f7:6e:b3:68:a5:47:b3:15: 64:1d:c7:75:18:64:f0:94:d7:17:b8:c2:8c:dc:e8: ff:5b:f4:05:0b:91:4e:59:3a:f9:38:be:9b:5d:e8: 4e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:60:8B:0E:35:F1:E3:D4:A7:20:9C:55:F7:DE:56:AE:40:B5:8F:CC X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.62.0/24 103.67.234.0/23 103.67.248.0/24 IPv6: 2405:df80::/32 Signature Algorithm: sha256WithRSAEncryption 22:9d:34:7f:9c:24:74:97:5e:f3:89:45:11:bf:33:60:44:13: b9:54:52:2a:b4:be:a9:7c:b4:a2:5f:61:1e:71:14:1b:29:1c: 62:04:a9:da:44:51:47:80:11:c2:d5:b7:7a:8e:c7:5e:f8:dd: 2e:10:cb:99:97:15:96:6b:67:28:63:f6:b6:17:35:1d:e4:b1: ab:0c:64:e5:34:06:e1:19:a0:74:d7:35:c5:4c:5e:d5:e7:b9: 61:04:29:0e:3c:77:88:0f:42:f5:5d:30:9c:35:a0:7a:18:2e: 27:e4:8b:6a:fe:f8:0a:90:07:43:43:6c:1c:d5:22:9b:37:58: c5:45:3d:a2:35:06:11:08:e2:e5:35:d5:42:c8:39:3e:fd:ef: 11:fe:a1:da:21:bd:b1:c8:ac:07:6c:ae:7d:9b:13:8b:e2:84: 81:0b:3f:42:f6:d9:79:b2:e2:cb:aa:54:17:de:be:e9:56:34: aa:51:df:c7:57:11:44:ba:1c:f5:0c:99:0d:8c:0c:39:d8:e1: a2:cd:b1:db:1b:44:a2:d4:0c:49:81:ae:24:21:bd:2f:99:ba: bf:fd:06:d2:02:bb:ea:6d:21:4d:13:8e:1d:3a:dc:8b:eb:40: ac:ca:b6:51:4f:fc:df:47:54:a4:d8:62:c1:08:bd:2e:b4:be: c4:a5:c0:4a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICIZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNDMwMTYyNDAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNGVhMC1kODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3+1jFm8KglmgLtnO6s5GTG4RKmKho8lDB/4CmbYrkYeuZSW3uZwVkAoDFMJ 7hhQIY6sAl7uw7LWKsQMLlY0xATHLBQoFiwyj3HpmFxu9vfBnQNJDcGeRdjq95es GOr+Ytqj+GBNrq+AfGrmhvvEldUE/oXlp4KdDgI8YoTXP9GGTONHpkenNBZQNnh8 3jfj03xcdmndXs0JF3VT6XxOgY5vCYY7tkMG7WNhfI2kbKB+992dzBn3ZvnITXh8 jBwjzd14Z19OVbfRbYxqXpIZXwBpbJMVDQF6926zaKVHsxVkHcd1GGTwlNcXuMKM 3Oj/W/QFC5FOWTr5OL6bXehOUwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFO9giw41 8ePUpyCcVffeVq5AtY/MMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVEOTMvNUMxMEE4MTBEQzVEMTFFNUIzMjU0NTJFQzRGOUFFMDIvNUQyRDI5QTI5 NjZEMTFFQTk2QzUwRTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnND4DBAFnQ+oDBABnQ/gwDQQCAAIwBwMFACQF34AwDQYJ KoZIhvcNAQELBQADggEBACKdNH+cJHSXXvOJRRG/M2BEE7lUUiq0vql8tKJfYR5x FBspHGIEqdpEUUeAEcLVt3qOx1743S4Qy5mXFZZrZyhj9rYXNR3ksasMZOU0BuEZ oHTXNcVMXtXnuWEEKQ48d4gPQvVdMJw1oHoYLifki2r++AqQB0NDbBzVIps3WMVF PaI1BhEI4uU11ULIOT797xH+odohvbHIrAdsrn2bE4vihIELP0L22Xmy4suqVBfe vulWNKpR38dXEUS6HPUMmQ2MDDnY4aLNsdsbRKLUDEmBriQhvS+Zur/9BtICu+pt IU0Tjh063IvrQKzKtlFP/N9HVKTYYsEIvS60vsSlwEo= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:26 2025 by rpki-client