$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa File: 98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa (raw, json) Hash identifier: ttGdGPsU5z/fVvxdSI+hiSfmbJNjWbGxGefkXRpFRpI= Subject key identifier: 3F:92:94:66:DD:0D:5D:A2:D9:94:D4:61:A0:D6:AB:2C:57:A9:3A:45 Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Certificate serial: 01E1 Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa Signing time: Thu 08 May 2025 01:56:03 +0000 ROA not before: Thu 08 May 2025 01:56:03 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9299 IP address blocks: 103.71.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116DDB, serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Validity Not Before: May 8 01:56:03 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=681c0f33-89e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:30:e7:1a:f2:08:11:f1:18:40:02:32:ec:43: 04:e3:fb:41:9b:22:1b:34:a1:78:47:2b:49:5d:87: a0:6b:01:46:7d:76:cc:5a:f3:91:d9:8e:5d:56:4c: 97:cf:c2:ff:82:31:dc:1d:f9:bd:38:9a:46:95:a9: 15:f1:03:94:ef:c4:ff:c2:98:da:25:63:60:df:38: 6a:02:9e:59:a1:3c:1c:b0:bd:5c:ae:de:76:d5:85: c0:79:66:09:e5:6c:19:a9:ba:dd:b1:9e:d1:8a:8f: af:ab:f7:88:76:ae:ad:88:91:1b:57:c3:74:f6:46: 28:98:c5:c4:ee:ef:94:41:48:fc:46:e2:36:c8:11: 8a:eb:13:3a:14:b5:79:1b:09:18:7f:75:99:2e:b2: 52:1e:17:75:f1:d1:08:9f:64:bd:3d:e7:49:04:c3: 58:80:17:78:c3:19:68:e0:68:be:1b:8b:7e:a6:7c: f1:fc:3d:e5:07:2a:6b:49:e9:c6:57:f0:eb:94:e9: 3a:8f:2e:6f:94:c6:a9:f6:d9:c7:44:73:2b:1d:ae: 7f:40:ed:75:f1:df:a7:73:9f:93:eb:ad:a3:63:8f: 37:fa:71:ce:4c:7b:4b:6e:2c:9e:f5:ea:ff:45:13: b9:00:0e:90:8e:bd:3d:44:d2:30:b7:0d:c4:92:4f: 2e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:92:94:66:DD:0D:5D:A2:D9:94:D4:61:A0:D6:AB:2C:57:A9:3A:45 X509v3 Authority Key Identifier: keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.95.0/24 Signature Algorithm: sha256WithRSAEncryption 58:12:f8:73:29:0c:b0:ab:ab:73:13:41:4a:1a:fc:e7:06:d5: 06:b9:2b:eb:48:71:b6:a3:73:13:75:7d:cd:8e:fe:27:77:a2: 7f:07:1a:81:c7:70:34:c8:65:94:24:73:d1:0c:2b:d5:7e:1e: 73:80:ae:2c:d6:00:ef:fe:8b:0b:61:28:eb:de:d9:b2:d9:d8: 00:bd:76:b3:6d:26:35:fe:ce:ca:4e:ff:65:62:c4:60:bd:56: 6c:01:a8:d0:b2:67:c0:8e:1a:dc:39:e4:dd:c2:ae:10:4b:9a: 6c:02:2a:5c:0f:d7:b3:bf:75:c0:5e:f6:bc:37:09:05:39:85: 65:a6:0d:a6:9d:55:9c:75:8c:25:5c:00:34:3b:a5:07:70:c3: 26:f1:ec:ca:49:c0:15:53:01:10:b8:17:6d:e6:52:76:74:d6: 72:33:ad:72:0a:bf:eb:b3:ae:8d:89:8e:12:d3:fb:95:90:82: 5c:91:bc:a3:bd:57:01:12:f5:73:f8:14:d3:58:9a:ea:fc:02: 87:6a:93:2b:b4:f9:5d:a9:05:b8:8c:85:6e:e3:4a:25:be:3f: 31:f5:4b:a0:85:24:5a:f2:af:7a:76:68:7b:c6:93:2b:91:7f: 0e:c7:f4:df:66:d1:cf:0e:a5:32:c8:af:16:8a:ff:d0:5e:75: ab:03:f2:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZEREIxMTAvBgNVBAUTKDBDNzY5REE0NDk4MkY2MTY1MDM2Mjk0M0U2REZFRjk1 MUI5Nzc3RkEwHhcNMjUwNTA4MDE1NjAzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjMGYzMy04OWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+TDnGvIIEfEYQAIy7EME4/tBmyIbNKF4RytJXYegawFGfXbMWvOR2Y5dVkyX z8L/gjHcHfm9OJpGlakV8QOU78T/wpjaJWNg3zhqAp5ZoTwcsL1crt521YXAeWYJ 5WwZqbrdsZ7Rio+vq/eIdq6tiJEbV8N09kYomMXE7u+UQUj8RuI2yBGK6xM6FLV5 GwkYf3WZLrJSHhd18dEIn2S9PedJBMNYgBd4wxlo4Gi+G4t+pnzx/D3lByprSenG V/DrlOk6jy5vlMap9tnHRHMrHa5/QO118d+nc5+T662jY483+nHOTHtLbiye9er/ RRO5AA6Qjr09RNIwtw3Ekk8uzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+SlGbd DV2i2ZTUYaDWqyxXqTpFMB8GA1UdIwQYMBaAFAx2naRJgvYWUDYpQ+bf75Ubl3f6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkREQi9FMUNEQ0REMkJF MUIxMUVEQTYxQUNEODRDNEY5QUUwMi9ESGFkcEVtQzloWlFOaWxENXRfdmxSdVhk X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIYWRwRW1DOWhaUU5pbEQ1dF92bFJ1WGRfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZEREIvRTFDRENERDJCRTFCMTFFREE2MUFDRDg0QzRGOUFFMDIvOThBQkMxREMy QkFGMTFGMEI2REQ2MTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnR18wDQYJKoZIhvcNAQELBQADggEBAFgS+HMpDLCrq3MT QUoa/OcG1Qa5K+tIcbajcxN1fc2O/id3on8HGoHHcDTIZZQkc9EMK9V+HnOArizW AO/+iwthKOve2bLZ2AC9drNtJjX+zspO/2VixGC9VmwBqNCyZ8COGtw55N3CrhBL mmwCKlwP17O/dcBe9rw3CQU5hWWmDaadVZx1jCVcADQ7pQdwwybx7MpJwBVTARC4 F23mUnZ01nIzrXIKv+uzro2JjhLT+5WQglyRvKO9VwES9XP4FNNYmur8Aodqkyu0 +V2pBbiMhW7jSiW+PzH1S6CFJFryr3p2aHvGkyuRfw7H9N9m0c8OpTLIrxaK/9Be dasD8p4= -----END CERTIFICATE-----Generated at Sun May 11 15:13:51 2025 by rpki-client