$ rpki-client -vvf rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa File: 2D55C84C25CE11F0A36ACB18C4F9AE02.roa (raw, json) Hash identifier: Ha1RED7wj5vvuljsqQyxT/3es50bYuYX2UgeIHA9Bqg= Subject key identifier: 95:69:1F:E7:DD:8E:B8:BD:79:3A:8E:27:12:7B:A4:A4:7C:D6:9D:98 Certificate issuer: /CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Certificate serial: 013A Authority key identifier: 5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa Signing time: Wed 25 Jun 2025 04:14:24 +0000 ROA not before: Wed 25 Jun 2025 04:14:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138346 IP address blocks: 103.188.136.0/23 maxlen: 23 103.188.136.0/24 maxlen: 24 103.188.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122DC4, serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Validity Not Before: Jun 25 04:14:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685b77a0-e307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:dc:6a:6c:27:bb:66:2a:eb:c0:ac:19:e1: f5:1b:aa:82:34:9e:b1:7a:fb:0c:c2:7b:07:08:2d: cd:a5:d7:85:2e:e6:f9:c0:71:50:78:0c:0b:91:ec: fb:15:84:dd:d3:ff:31:c3:a7:e0:34:3e:55:4c:f5: 55:09:1e:32:6c:f6:64:b0:89:6b:2b:14:32:0b:ba: 30:ff:40:9b:40:f0:93:ea:77:7d:5b:5d:3d:9c:2e: 1f:dc:14:ff:ff:a8:12:24:2f:f3:0e:71:e7:69:ce: ef:2c:55:b2:72:bb:5b:2b:67:c6:b2:b4:b0:99:82: 5c:29:56:c9:88:bf:57:6d:0e:45:3a:c6:d1:6f:89: 47:e2:4a:3f:6c:93:e8:7b:e9:90:7a:d2:e8:af:22: bc:ad:9e:85:39:05:d0:66:d4:f3:d2:22:36:2f:c7: d5:a9:26:fa:1d:61:9b:d6:a2:e7:48:ed:18:66:53: e7:25:3a:c9:c9:4c:b5:a8:ae:5b:c6:d1:fc:94:b8: cc:fc:60:b0:8a:54:9e:dd:b5:55:fb:af:b9:31:74: 86:d2:3a:f2:0c:2a:77:79:3b:75:55:07:63:48:0d: f5:fb:26:5c:e9:08:cb:96:f0:24:e5:99:f2:34:7e: a9:75:66:66:e5:36:5b:2b:5c:74:d7:0a:c9:72:92: 0c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:69:1F:E7:DD:8E:B8:BD:79:3A:8E:27:12:7B:A4:A4:7C:D6:9D:98 X509v3 Authority Key Identifier: keyid:5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.136.0/23 Signature Algorithm: sha256WithRSAEncryption 22:be:97:2c:df:c2:f8:54:86:58:41:fc:a2:6b:88:63:a8:c8: d4:ce:39:73:0c:e3:c9:47:1e:a9:c0:81:4d:27:28:0f:9d:27: d2:7f:e1:49:e3:19:1f:ea:6f:6b:7c:1d:0e:96:f2:ea:f6:b9: 53:e1:ce:0b:1f:70:84:8b:37:c4:82:f8:74:dd:4d:d1:1c:da: 62:ac:db:99:c7:77:e9:70:47:07:ac:a4:d0:9c:78:28:ee:b0: fd:8d:3b:84:6c:b8:f2:b6:ea:12:e6:d1:7d:61:9a:10:e8:1d: 85:e5:1e:22:b4:41:a6:99:2b:3f:21:cc:92:63:3b:96:39:f0: 0b:31:0f:02:0b:92:5b:82:8b:25:35:00:7d:3d:ff:ed:e9:6f: 9b:25:35:2e:17:7c:28:46:d7:92:61:ee:06:a3:ec:96:c9:81: 8b:47:ba:3f:7b:41:a2:d2:a5:1e:94:c0:35:4b:53:dd:5a:0b: 12:19:7a:54:02:78:2a:31:dc:1a:cc:70:53:65:c2:03:3a:da: e0:fb:ee:d6:30:d9:36:6b:0e:26:4a:cb:2e:cc:b7:33:64:35: 60:c7:8d:15:d1:a5:1b:31:93:3e:f0:5a:cb:f5:cf:4f:45:52: 34:8a:bc:2d:46:37:43:4f:bd:7b:22:f2:e1:1f:18:07:fe:2d: 57:49:34:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEQzQxMTAvBgNVBAUTKDVCNDMwMEZFNDlBRUUwRTQxNUNDNjE5NzZDMDJCNUI5 QzAyMDRBQUQwHhcNMjUwNjI1MDQxNDI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNzdhMC1lMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7/camwnu2Yq68CsGeH1G6qCNJ6xevsMwnsHCC3NpdeFLub5wHFQeAwLkez7 FYTd0/8xw6fgND5VTPVVCR4ybPZksIlrKxQyC7ow/0CbQPCT6nd9W109nC4f3BT/ /6gSJC/zDnHnac7vLFWycrtbK2fGsrSwmYJcKVbJiL9XbQ5FOsbRb4lH4ko/bJPo e+mQetLoryK8rZ6FOQXQZtTz0iI2L8fVqSb6HWGb1qLnSO0YZlPnJTrJyUy1qK5b xtH8lLjM/GCwilSe3bVV+6+5MXSG0jryDCp3eTt1VQdjSA31+yZc6QjLlvAk5Zny NH6pdWZm5TZbK1x01wrJcpIMjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJVpH+fd jri9eTqOJxJ7pKR81p2YMB8GA1UdIwQYMBaAFFtDAP5JruDkFcxhl2wCtbnAIEqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkRDNC81QkVERDA1NEIz MTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9XME1BX2ttdTRPUVZ6R0dYYkFLMXVjQWdT cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cwTUFfa211NE9RVnpHR1hiQUsxdWNBZ1NxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJEQzQvNUJFREQwNTRCMzE2MTFFRUE4QkNDNjI0QzRGOUFFMDIvMkQ1NUM4NEMy NUNFMTFGMEEzNkFDQjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvIgwDQYJKoZIhvcNAQELBQADggEBACK+lyzfwvhUhlhB /KJriGOoyNTOOXMM48lHHqnAgU0nKA+dJ9J/4UnjGR/qb2t8HQ6W8ur2uVPhzgsf cISLN8SC+HTdTdEc2mKs25nHd+lwRwespNCceCjusP2NO4RsuPK26hLm0X1hmhDo HYXlHiK0QaaZKz8hzJJjO5Y58AsxDwILkluCiyU1AH09/+3pb5slNS4XfChG15Jh 7gaj7JbJgYtHuj97QaLSpR6UwDVLU91aCxIZelQCeCox3BrMcFNlwgM62uD77tYw 2TZrDiZKyy7MtzNkNWDHjRXRpRsxkz7wWsv1z09FUjSKvC1GN0NPvXsi8uEfGAf+ LVdJNFE= -----END CERTIFICATE-----Generated at Thu Jul 3 23:31:53 2025 by rpki-client