$ rpki-client -vvf rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa File: 2D55C84C25CE11F0A36ACB18C4F9AE02.roa (raw, json) Hash identifier: 5Uer3p+UX/po6o30wmY0vuoN+A26JLu6gVA8EPsZ9Lc= Subject key identifier: 36:1D:76:F8:77:17:25:A2:33:56:BD:AE:E1:51:66:02:4F:77:CD:D3 Certificate issuer: /CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Certificate serial: 0119 Authority key identifier: 5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa Signing time: Thu 01 May 2025 09:43:08 +0000 ROA not before: Thu 01 May 2025 09:43:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138346 IP address blocks: 103.188.136.0/23 maxlen: 23 103.188.136.0/24 maxlen: 24 103.188.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122DC4, serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Validity Not Before: May 1 09:43:08 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6813422b-8686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:73:cd:c9:b6:42:5b:6f:bc:0b:3e:6c:c0: 04:ff:af:c7:6f:ac:8b:19:68:53:92:86:74:dc:17: e7:90:57:85:a6:4f:1e:23:49:a4:45:ba:89:e2:05: 97:a7:89:8e:0f:d6:b8:f9:9e:13:a8:01:6d:7b:a5: c2:a2:5a:92:49:e9:a4:41:00:fe:7a:5e:18:5a:8f: 60:82:17:8e:ce:26:d3:99:c3:1c:de:c9:e3:b9:f4: ac:cf:e6:8d:d2:8f:d5:e8:d0:19:f2:27:e4:89:8a: fc:94:f6:b4:62:ee:43:26:49:88:7f:c8:60:2c:4c: b8:54:dd:65:6c:b0:d5:ea:d0:f1:b1:9b:a8:98:19: 4d:c2:78:24:3f:af:96:63:e1:53:59:fc:9c:2b:8d: 2c:b5:42:75:2f:15:e3:af:73:c2:94:ef:fb:2d:b8: 73:c8:14:d9:a0:0e:59:3d:3b:2c:15:94:88:e3:76: ba:d9:de:6a:82:3d:fc:4a:0e:5d:f1:c2:71:f6:7a: 31:6a:f0:32:59:97:e6:b4:b3:e2:27:7c:26:10:70: f2:9c:7a:09:3d:36:c1:79:15:e4:3b:ea:9a:df:9f: 97:66:3f:76:6d:f2:46:17:13:a8:eb:73:19:ed:d1: 75:06:00:7f:58:f1:cd:d0:0d:c8:56:46:d1:60:aa: 22:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1D:76:F8:77:17:25:A2:33:56:BD:AE:E1:51:66:02:4F:77:CD:D3 X509v3 Authority Key Identifier: keyid:5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.136.0/23 Signature Algorithm: sha256WithRSAEncryption 88:5f:bc:84:81:75:63:e7:5f:42:71:ef:a3:c2:b4:63:8b:18: 7c:a4:9e:46:b3:1d:96:3a:51:c4:30:0e:6b:bd:c9:68:cf:82: d5:c9:98:a9:af:51:43:56:17:51:ec:94:0e:4c:5c:33:c3:f2: 63:1b:da:cd:b9:a0:65:34:bf:a5:d1:cb:ec:42:a5:f9:79:53: bb:98:18:a0:f2:fb:e7:12:c5:ef:a6:5e:d3:54:c2:34:ca:9f: eb:15:b5:59:9c:af:55:a0:fc:98:45:b6:80:08:34:91:23:07: 5c:10:18:e8:7c:f7:0d:b4:8b:d6:c6:e2:88:04:aa:6a:48:c4: a0:cf:6e:9b:5c:50:99:35:42:31:c1:97:6d:bf:a0:0e:95:82: b9:d6:29:c9:02:4b:20:82:51:e9:3e:e9:82:66:d5:7a:b7:48: 5f:ac:3a:93:a2:2d:01:da:a4:11:03:a1:3a:47:ec:bb:a5:0e: 67:89:31:11:77:98:f1:76:0f:65:db:0e:0e:0a:9b:6d:6e:11: 26:df:5a:a9:cc:28:cd:c0:5a:d3:d6:5e:84:bd:71:2d:1e:da: 0c:54:47:ef:20:5b:89:82:40:dc:f3:04:7d:18:53:58:2a:e6: 2b:1b:a1:33:3f:8e:4f:0b:f1:b0:7e:b3:e4:e0:16:9d:90:f1: 64:88:8e:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEQzQxMTAvBgNVBAUTKDVCNDMwMEZFNDlBRUUwRTQxNUNDNjE5NzZDMDJCNUI5 QzAyMDRBQUQwHhcNMjUwNTAxMDk0MzA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEzNDIyYi04Njg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxURzzcm2QltvvAs+bMAE/6/Hb6yLGWhTkoZ03BfnkFeFpk8eI0mkRbqJ4gWX p4mOD9a4+Z4TqAFte6XColqSSemkQQD+el4YWo9ggheOzibTmcMc3snjufSsz+aN 0o/V6NAZ8ifkiYr8lPa0Yu5DJkmIf8hgLEy4VN1lbLDV6tDxsZuomBlNwngkP6+W Y+FTWfycK40stUJ1LxXjr3PClO/7LbhzyBTZoA5ZPTssFZSI43a62d5qgj38Sg5d 8cJx9noxavAyWZfmtLPiJ3wmEHDynHoJPTbBeRXkO+qa35+XZj92bfJGFxOo63MZ 7dF1BgB/WPHN0A3IVkbRYKoiiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDYddvh3 FyWiM1a9ruFRZgJPd83TMB8GA1UdIwQYMBaAFFtDAP5JruDkFcxhl2wCtbnAIEqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkRDNC81QkVERDA1NEIz MTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9XME1BX2ttdTRPUVZ6R0dYYkFLMXVjQWdT cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cwTUFfa211NE9RVnpHR1hiQUsxdWNBZ1NxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJEQzQvNUJFREQwNTRCMzE2MTFFRUE4QkNDNjI0QzRGOUFFMDIvMkQ1NUM4NEMy NUNFMTFGMEEzNkFDQjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvIgwDQYJKoZIhvcNAQELBQADggEBAIhfvISBdWPnX0Jx 76PCtGOLGHyknkazHZY6UcQwDmu9yWjPgtXJmKmvUUNWF1HslA5MXDPD8mMb2s25 oGU0v6XRy+xCpfl5U7uYGKDy++cSxe+mXtNUwjTKn+sVtVmcr1Wg/JhFtoAINJEj B1wQGOh89w20i9bG4ogEqmpIxKDPbptcUJk1QjHBl22/oA6VgrnWKckCSyCCUek+ 6YJm1Xq3SF+sOpOiLQHapBEDoTpH7LulDmeJMRF3mPF2D2XbDg4Km21uESbfWqnM KM3AWtPWXoS9cS0e2gxUR+8gW4mCQNzzBH0YU1gq5isboTM/jk8L8bB+s+TgFp2Q 8WSIjoY= -----END CERTIFICATE-----Generated at Tue May 13 19:51:20 2025 by rpki-client