$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa File: 038C732E874611EB83B41D39C4F9AE02.roa (raw, json) Hash identifier: xDFL83BDJofXsoqgs4IapCDppXS9oRsh4Talz2QouY4= Subject key identifier: F9:17:8F:5F:1C:41:C5:5F:7E:A2:00:C0:62:5A:73:25:05:23:27:B9 Certificate issuer: /CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Certificate serial: 0728 Authority key identifier: 42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa Signing time: Thu 10 Apr 2025 22:02:56 +0000 ROA not before: Thu 10 Apr 2025 22:02:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135351 IP address blocks: 103.214.208.0/22 maxlen: 24 144.48.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B73, serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Validity Not Before: Apr 10 22:02:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=67f84010-9a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ee:8f:08:7b:3e:47:71:d8:28:8c:63:5d:68: 24:29:55:e3:b1:74:25:ff:2d:e8:9b:32:71:ed:db: 20:6d:74:7d:a7:a0:2e:05:eb:e6:05:1d:c0:30:b2: 47:96:30:0b:98:19:7b:8e:91:fd:28:8d:bd:68:a0: be:b3:4f:64:a5:71:44:c5:d8:c0:51:23:c9:70:a1: ce:46:05:71:1c:90:95:80:3b:ab:c4:9d:5a:da:02: c7:14:c3:66:ad:d1:60:61:e0:e1:86:90:ad:fb:fb: 97:66:fb:12:18:69:4c:c0:78:b0:4a:06:cf:c3:ca: 51:06:55:a0:c2:58:c9:31:1b:8e:14:f4:db:11:c8: f0:a4:55:3a:e8:c0:80:7b:ef:49:37:c7:f3:35:64: fd:09:80:0f:96:b9:bf:50:80:f8:6a:ac:2f:77:7c: c6:2f:2e:04:b1:72:04:8f:d0:9c:5f:af:21:cf:f0: 9e:ed:f5:97:25:26:97:2a:5d:ee:34:72:66:dc:38: 0d:9f:bf:f2:8d:14:21:24:5d:f2:de:a9:79:81:65: f7:96:c1:31:96:ee:d5:29:19:44:7a:8c:16:94:47: e6:a6:d7:22:dc:a9:7b:c6:9a:35:8c:65:f4:a3:74: f7:c8:b2:31:3e:ca:18:7b:cd:94:3e:d1:6d:23:d5: 0a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:8F:5F:1C:41:C5:5F:7E:A2:00:C0:62:5A:73:25:05:23:27:B9 X509v3 Authority Key Identifier: keyid:42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.208.0/22 144.48.152.0/22 Signature Algorithm: sha256WithRSAEncryption 82:94:3b:42:31:4b:3b:ea:31:f6:49:fe:e4:33:bc:9a:25:85: 5c:d7:df:bc:8c:96:46:e7:c7:3e:9e:70:3d:da:c5:fa:71:11: 6f:62:54:e6:bc:1d:91:d8:ba:70:ac:07:b6:25:7d:03:58:91: ba:85:36:ed:3c:03:2d:e6:c5:b2:10:45:55:4b:81:98:ac:7d: 8a:2b:24:d6:2d:61:0d:4a:ac:b8:2f:ca:25:df:9c:cc:72:36: 71:e3:b9:73:6f:94:56:f5:22:ba:4c:b0:9d:95:4e:26:40:4b: b5:24:85:48:22:eb:65:0f:fe:aa:c6:03:75:17:16:3a:95:2c: 1e:ec:23:e0:70:22:04:7c:38:45:22:1e:d2:0c:a4:1d:cc:1b: 36:20:b7:99:a9:5f:10:24:88:7d:2e:78:7d:23:ff:1c:6f:67: 01:9b:b5:71:f2:58:59:13:df:9a:65:ca:68:c3:a9:b5:04:aa: 51:bd:c8:d2:0c:f9:e0:7b:c3:f2:66:c9:52:59:4f:14:db:b4: a0:72:a0:d5:c6:e7:f6:75:db:32:f3:64:2c:97:d1:ef:74:09: 61:0e:cb:b8:c3:4e:11:4f:a4:6a:a8:11:c8:ef:5a:bb:a7:cc: e5:e1:eb:36:a7:72:7c:55:b5:88:a4:c9:da:27:2b:53:94:c5: 79:c1:0b:5a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCNzMxMTAvBgNVBAUTKDQyQ0I0Q0YwMjFGNkYzRkMwQzgxQzRGREYxQzk3RDc0 MjEwMDMxN0IwHhcNMjUwNDEwMjIwMjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4NDAxMC05YTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze6PCHs+R3HYKIxjXWgkKVXjsXQl/y3omzJx7dsgbXR9p6AuBevmBR3AMLJH ljALmBl7jpH9KI29aKC+s09kpXFExdjAUSPJcKHORgVxHJCVgDurxJ1a2gLHFMNm rdFgYeDhhpCt+/uXZvsSGGlMwHiwSgbPw8pRBlWgwljJMRuOFPTbEcjwpFU66MCA e+9JN8fzNWT9CYAPlrm/UID4aqwvd3zGLy4EsXIEj9CcX68hz/Ce7fWXJSaXKl3u NHJm3DgNn7/yjRQhJF3y3ql5gWX3lsExlu7VKRlEeowWlEfmptci3Kl7xpo1jGX0 o3T3yLIxPsoYe82UPtFtI9UK/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPkXj18c QcVffqIAwGJacyUFIye5MB8GA1UdIwQYMBaAFELLTPAh9vP8DIHE/fHJfXQhADF7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0I3My9CQTYzNTk4MjJG RTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhfd01nY1Q5OGNsOWRDRUFN WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzdE04Q0gyOF93TWdjVDk4Y2w5ZENFQU1Ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCNzMvQkE2MzU5ODIyRkU0MTFFQjhEQjQxQjI1QzRGOUFFMDIvMDM4QzczMkU4 NzQ2MTFFQjgzQjQxRDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1tADBAKQMJgwDQYJKoZIhvcNAQELBQADggEBAIKUO0Ix SzvqMfZJ/uQzvJolhVzX37yMlkbnxz6ecD3axfpxEW9iVOa8HZHYunCsB7YlfQNY kbqFNu08Ay3mxbIQRVVLgZisfYorJNYtYQ1KrLgvyiXfnMxyNnHjuXNvlFb1IrpM sJ2VTiZAS7UkhUgi62UP/qrGA3UXFjqVLB7sI+BwIgR8OEUiHtIMpB3MGzYgt5mp XxAkiH0ueH0j/xxvZwGbtXHyWFkT35plymjDqbUEqlG9yNIM+eB7w/JmyVJZTxTb tKByoNXG5/Z12zLzZCyX0e90CWEOy7jDThFPpGqoEcjvWrunzOXh6zancnxVtYik ydonK1OUxXnBC1o= -----END CERTIFICATE-----Generated at Tue May 13 17:44:51 2025 by rpki-client