$ rpki-client -vvf rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa File: 995AA100551611E9BDD3CB66C4F9AE02.roa (raw, json) Hash identifier: zr2KST+9dU+4R4eCfdJtEMQwgJDZK72RViONMY6uNQ0= Subject key identifier: 4E:0D:81:68:F0:82:43:3B:2D:CE:64:C0:36:D8:F8:77:69:32:55:A9 Certificate issuer: /CN=A912190F/serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Certificate serial: 1020 Authority key identifier: 34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa Signing time: Wed 04 Jun 2025 10:38:56 +0000 ROA not before: Wed 04 Jun 2025 10:38:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138699 IP address blocks: 103.136.220.0/24 maxlen: 24 103.136.221.0/24 maxlen: 24 103.136.222.0/24 maxlen: 24 103.136.223.0/24 maxlen: 24 118.26.132.0/24 maxlen: 24 2404:9dc0:cd01::/48 maxlen: 48 2404:9dc0:cd02::/48 maxlen: 48 2404:9dc0:cd03::/48 maxlen: 48 2404:9dc0:cd04::/48 maxlen: 48 2404:9dc0:cd05::/48 maxlen: 48 2404:9dc0:cd06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4128 (0x1020) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912190F, serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Validity Not Before: Jun 4 10:38:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68402240-e090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c4:65:b9:a7:8f:aa:18:19:a9:08:95:72:c3: 60:82:db:2e:75:e8:32:a8:76:b3:5f:80:57:46:20: 5f:bf:ff:13:55:e0:9d:d5:fa:f9:b1:2d:e2:85:21: 7e:45:06:bf:04:44:15:a3:77:bc:84:68:8b:92:82: ff:d0:3b:99:85:65:88:c4:2e:86:e5:cc:b0:31:a0: af:06:ac:ad:8d:27:3e:b4:20:42:f2:f2:7f:35:af: 5a:87:4f:ee:fb:f4:24:1b:95:73:b0:44:14:2f:b6: 62:9b:58:a5:55:9d:ce:36:f2:ef:f3:d6:18:8a:74: 89:a2:24:62:6d:e4:58:71:22:79:07:98:f7:97:89: 92:1f:04:0c:64:d5:e8:33:7a:77:f3:9d:da:c4:2b: d2:2e:b7:3f:37:40:e3:54:ea:91:f1:81:2b:76:c1: 61:20:66:4b:f7:91:3c:e8:58:43:f8:ef:03:ba:e4: 9f:e1:90:b0:87:76:13:fb:e9:c2:3b:f3:04:29:3c: fb:2e:94:b2:5b:28:0a:40:cc:86:57:a3:d2:45:17: 4b:35:71:16:f8:1a:14:e0:5f:be:af:2e:ae:a2:a1: 18:ca:fd:ee:55:c3:23:56:4e:8b:2c:50:64:89:51: 2c:65:d1:d1:26:ca:b5:27:54:7f:71:fe:c8:82:f2: 85:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0D:81:68:F0:82:43:3B:2D:CE:64:C0:36:D8:F8:77:69:32:55:A9 X509v3 Authority Key Identifier: keyid:34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.220.0/22 118.26.132.0/24 IPv6: 2404:9dc0:cd01::-2404:9dc0:cd06:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0e:e9:4f:7f:45:4a:85:9e:ee:f5:94:a3:24:b5:4d:4b:91:64: 1f:92:59:a5:18:76:62:63:93:4e:8e:80:5f:31:15:0f:47:95: 11:0c:03:15:78:25:88:3c:58:74:e1:da:e4:f0:2a:57:32:b4: 66:64:a0:76:dc:a6:9a:d6:a2:88:ac:09:02:c6:3d:9e:11:d4: e8:6c:29:b8:1a:ee:df:4c:24:15:d7:30:2f:d8:e4:0d:50:58: 75:a4:e2:be:29:33:82:7a:c8:a5:ac:2f:19:3a:a2:8a:29:e8: 8d:80:59:9b:ff:3d:f2:d5:bd:11:95:76:59:6b:2b:1c:be:1e: e2:d3:07:2a:d4:8d:ef:d5:f4:29:2b:0a:8f:ed:1e:00:4c:fb: 70:07:da:55:63:51:75:2e:28:9f:b7:43:ec:06:bc:99:46:9f: 3d:d3:03:40:18:45:71:84:24:75:80:08:2e:e0:d1:9e:d7:d8: c9:60:ab:b8:cc:bc:36:f5:36:44:21:13:69:2a:d7:07:4c:2a: de:01:fa:c5:47:40:9c:66:f8:94:a4:26:ef:64:89:3c:64:d6: 9f:24:28:48:56:06:62:a1:80:69:51:a1:0f:97:16:f6:cb:be: 99:7d:2f:38:d6:a6:22:54:c4:9e:40:a4:74:2f:ec:29:26:59: 57:da:9a:90 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICECAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE5MEYxMTAvBgNVBAUTKDM0NEZCNDk5QTZBMzdEMjYzMjlBQjdENUZGNTI2MjUx MDk4RTVERjIwHhcNMjUwNjA0MTAzODU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwMjI0MC1lMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsRluaePqhgZqQiVcsNggtsudegyqHazX4BXRiBfv/8TVeCd1fr5sS3ihSF+ RQa/BEQVo3e8hGiLkoL/0DuZhWWIxC6G5cywMaCvBqytjSc+tCBC8vJ/Na9ah0/u +/QkG5VzsEQUL7Zim1ilVZ3ONvLv89YYinSJoiRibeRYcSJ5B5j3l4mSHwQMZNXo M3p3853axCvSLrc/N0DjVOqR8YErdsFhIGZL95E86FhD+O8DuuSf4ZCwh3YT++nC O/MEKTz7LpSyWygKQMyGV6PSRRdLNXEW+BoU4F++ry6uoqEYyv3uVcMjVk6LLFBk iVEsZdHRJsq1J1R/cf7IgvKFNwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFE4NgWjw gkM7Lc5kwDbY+HdpMlWpMB8GA1UdIwQYMBaAFDRPtJmmo30mMpq31f9SYlEJjl3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTkwRi82Q0MwRjlGNDQ3 QjExMUU5OUZDQ0EwNTlDNEY5QUUwMi9ORS0wbWFhamZTWXltcmZWXzFKaVVRbU9Y ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FLTBtYWFqZlNZeW1yZlZfMUppVVFtT1hmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE5MEYvNkNDMEY5RjQ0N0IxMTFFOTlGQ0NBMDU5QzRGOUFFMDIvOTk1QUExMDA1 NTE2MTFFOUJERDNDQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJniNwDBAB2GoQwGgQCAAIwFDASAwcAJASdwM0BAwcAJASd wM0GMA0GCSqGSIb3DQEBCwUAA4IBAQAO6U9/RUqFnu71lKMktU1LkWQfklmlGHZi Y5NOjoBfMRUPR5URDAMVeCWIPFh04drk8CpXMrRmZKB23Kaa1qKIrAkCxj2eEdTo bCm4Gu7fTCQV1zAv2OQNUFh1pOK+KTOCesilrC8ZOqKKKeiNgFmb/z3y1b0RlXZZ ayscvh7i0wcq1I3v1fQpKwqP7R4ATPtwB9pVY1F1Liift0PsBryZRp890wNAGEVx hCR1gAgu4NGe19jJYKu4zLw29TZEIRNpKtcHTCreAfrFR0CcZviUpCbvZIk8ZNaf JChIVgZioYBpUaEPlxb2y76ZfS841qYiVMSeQKR0L+wpJllX2pqQ -----END CERTIFICATE-----Generated at Thu Jul 3 08:59:01 2025 by rpki-client