$ rpki-client -vvf rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa File: 766689D21EB111F0ADA9B872C4F9AE02.roa (raw, json) Hash identifier: 1r1l1TJ1qfFcG8oEPPW1qj1RQ2N7y4+YJM8U5x3SnQ8= Subject key identifier: 23:90:32:B2:A8:F9:EB:90:C3:2C:16:F4:66:62:6A:37:C6:B7:88:F1 Certificate issuer: /CN=A9119F89/serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Certificate serial: 068B Authority key identifier: 55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa Signing time: Tue 06 May 2025 22:33:32 +0000 ROA not before: Tue 06 May 2025 22:33:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 51847 IP address blocks: 103.24.207.0/24 maxlen: 24 103.100.158.0/24 maxlen: 24 103.137.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119F89, serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Validity Not Before: May 6 22:33:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681a8e3b-90fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:f5:98:03:c9:df:9b:e1:c3:0c:2f:ef:5c: 89:15:27:b9:a5:d6:ba:2a:6b:63:4e:0e:8e:5a:ea: b4:2e:2d:36:38:82:dd:bb:d3:d6:17:c8:6b:95:2b: 1f:65:4e:bf:5f:62:b5:97:3a:0a:54:ea:57:dc:30: f2:e9:6f:07:a7:64:dd:4c:f6:f2:c9:76:a4:06:29: 22:60:65:bf:1e:64:5f:9f:90:24:79:cc:c5:d2:ab: 2a:f0:65:c6:dd:f3:95:aa:26:8c:12:e6:96:e9:d5: 20:4a:3e:12:ed:53:5c:28:e8:74:10:48:40:00:2f: b0:4a:1b:60:6a:75:40:c3:c1:ac:72:28:9b:e5:48: 14:d2:19:53:69:35:07:fa:ee:60:fe:b7:64:74:64: 91:e6:ba:f6:6a:7e:71:84:3d:6d:b0:de:2a:1f:f7: 7a:78:0d:36:c5:a3:e0:ec:76:26:72:19:d5:82:f2: 93:00:49:d9:e9:4b:2d:07:bb:73:8f:96:59:cc:46: 6c:7a:5d:c1:b4:ef:d3:ca:83:e9:6c:34:56:2f:50: 7f:a6:32:47:97:d7:78:c1:81:49:1f:02:d0:ef:1e: e9:7a:90:a8:f9:6b:ab:81:c7:07:e3:78:f1:f5:a9: 15:c5:18:f2:39:54:8e:cd:7d:99:67:81:f2:8a:62: 1d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:90:32:B2:A8:F9:EB:90:C3:2C:16:F4:66:62:6A:37:C6:B7:88:F1 X509v3 Authority Key Identifier: keyid:55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/766689D21EB111F0ADA9B872C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.207.0/24 103.100.158.0/24 103.137.215.0/24 Signature Algorithm: sha256WithRSAEncryption 06:2e:cc:2e:bb:40:a1:8d:64:3a:e9:20:25:5e:ec:f8:af:f9: 74:88:8f:44:74:55:9c:a9:8c:e6:5f:e3:03:2b:b9:a3:12:da: 3b:73:af:50:8d:0d:fd:e1:8f:86:88:76:fa:c2:80:5b:18:48: 18:ae:c1:99:10:f9:88:0f:48:bc:a5:35:e9:64:a2:d2:97:ed: d4:c1:47:44:f6:97:38:37:f6:43:a4:11:5f:ee:9e:9d:c4:59: 6c:3b:a5:82:83:26:90:67:26:f3:1f:1b:0a:1b:2d:68:d7:31: 20:17:e0:ce:51:87:d8:e2:e0:37:00:83:db:a1:ee:d0:32:17: 0f:0b:f3:64:25:db:69:ba:27:dc:83:8a:cc:86:7f:3b:82:42: 21:98:e7:9a:86:ef:51:f4:ce:b5:0f:c0:31:18:13:6f:bb:7b: 0d:3e:d7:6f:36:58:f3:2c:c9:46:36:66:8f:90:f5:a0:cd:24: 36:53:ff:b0:bc:2c:21:a2:6a:2d:c6:c0:2c:41:b8:5e:ae:ac: 16:68:7a:4d:3d:be:de:2b:f6:5c:bc:6d:51:f9:78:e0:d1:ba: 03:51:a0:4e:ef:5e:1a:87:3b:80:56:8c:2c:1d:02:91:be:a5: db:72:33:56:b1:2c:3f:38:48:4e:a3:b8:d3:d6:5b:7d:a7:80: 13:60:26:3b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlGODkxMTAvBgNVBAUTKDU1MDg4QTMxNUJDQjUwOThCRUVGNjY1QUE5Q0JERkQz MkEyMDU4MjAwHhcNMjUwNTA2MjIzMzMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOGUzYi05MGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyj1mAPJ35vhwwwv71yJFSe5pda6KmtjTg6OWuq0Li02OILdu9PWF8hrlSsf ZU6/X2K1lzoKVOpX3DDy6W8Hp2TdTPbyyXakBikiYGW/HmRfn5AkeczF0qsq8GXG 3fOVqiaMEuaW6dUgSj4S7VNcKOh0EEhAAC+wShtganVAw8Gsciib5UgU0hlTaTUH +u5g/rdkdGSR5rr2an5xhD1tsN4qH/d6eA02xaPg7HYmchnVgvKTAEnZ6UstB7tz j5ZZzEZsel3BtO/TyoPpbDRWL1B/pjJHl9d4wYFJHwLQ7x7pepCo+WurgccH43jx 9akVxRjyOVSOzX2ZZ4HyimIdLwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCOQMrKo +euQwywW9GZiajfGt4jxMB8GA1UdIwQYMBaAFFUIijFby1CYvu9mWqnL39MqIFgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUY4OS9EMzVBQTVBQTdC RTExMUVCOEZGNUY3NTJDNEY5QUUwMi9WUWlLTVZ2TFVKaS03MlphcWN2ZjB5b2dX Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZRaUtNVnZMVUppLTcyWmFxY3ZmMHlvZ1dDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlGODkvRDM1QUE1QUE3QkUxMTFFQjhGRjVGNzUyQzRGOUFFMDIvNzY2Njg5RDIx RUIxMTFGMEFEQTlCODcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnGM8DBABnZJ4DBABnidcwDQYJKoZIhvcNAQELBQADggEB AAYuzC67QKGNZDrpICVe7Piv+XSIj0R0VZypjOZf4wMruaMS2jtzr1CNDf3hj4aI dvrCgFsYSBiuwZkQ+YgPSLylNelkotKX7dTBR0T2lzg39kOkEV/unp3EWWw7pYKD JpBnJvMfGwobLWjXMSAX4M5Rh9ji4DcAg9uh7tAyFw8L82Ql22m6J9yDisyGfzuC QiGY55qG71H0zrUPwDEYE2+7ew0+1282WPMsyUY2Zo+Q9aDNJDZT/7C8LCGiai3G wCxBuF6urBZoek09vt4r9ly8bVH5eODRugNRoE7vXhqHO4BWjCwdApG+pdtyM1ax LD84SE6juNPWW32ngBNgJjs= -----END CERTIFICATE-----Generated at Mon May 12 06:59:24 2025 by rpki-client