$ rpki-client -vvf rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa File: 70BB6C14064A11EDA0A92068C4F9AE02.roa (raw, json) Hash identifier: JT4dplBUu4v9YQvNGUvDei5LqVZTJF+BU50zqJrOD2A= Subject key identifier: FC:1D:4B:41:8A:9E:7E:65:C2:85:00:28:BC:0D:F9:98:88:A8:D6:DB Certificate issuer: /CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Certificate serial: 0285 Authority key identifier: 70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa Signing time: Wed 07 May 2025 01:39:05 +0000 ROA not before: Wed 07 May 2025 01:39:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38209 IP address blocks: 103.88.155.0/24 maxlen: 24 103.88.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125AE9, serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Validity Not Before: May 7 01:39:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab9b9-924b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:49:ac:be:37:6d:0c:e4:f9:a0:7c:84:f9:4c: 9f:67:ab:df:96:95:79:ae:d6:48:8f:1d:9c:bb:35: 55:9e:dc:18:8c:7c:5e:3c:8f:40:f4:e1:4d:21:eb: 50:02:84:71:a3:16:14:59:69:77:cb:5a:af:27:3d: 57:d2:80:61:b3:cb:c3:c5:5f:30:74:75:0f:d1:3b: 3b:ef:b7:05:0e:31:1d:9d:45:1f:89:ae:aa:8a:e6: c1:b5:27:31:5f:d0:c4:ca:61:30:dd:1c:6e:cd:ae: 73:fd:f8:10:c2:12:07:f5:b6:bb:09:c0:19:88:3f: ab:ae:a8:86:a6:ea:af:bb:b9:f1:d3:33:54:2f:4c: d9:f5:fe:19:5a:6d:4a:a1:5f:26:cc:b7:ee:3c:ea: f0:ca:e1:46:62:00:e0:eb:16:9e:9e:56:ad:44:2f: e9:6e:13:f6:c1:1e:ec:e7:a9:4a:9a:2e:24:43:e5: 86:5f:0a:04:c6:8a:eb:f1:dc:f3:9f:13:54:6d:5f: d4:b8:3d:45:49:e5:fc:d6:ee:a7:f6:f7:a7:0d:71: 2a:15:8b:b9:90:0a:34:56:3b:88:53:0d:14:01:bc: ef:15:51:82:79:e2:72:4b:b9:d6:44:cd:c8:9e:74: 32:96:04:c2:62:ca:a9:c3:cf:45:2f:f7:70:2e:67: 4f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1D:4B:41:8A:9E:7E:65:C2:85:00:28:BC:0D:F9:98:88:A8:D6:DB X509v3 Authority Key Identifier: keyid:70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.155.0/24 103.88.162.0/24 Signature Algorithm: sha256WithRSAEncryption 81:b1:3c:40:e4:70:0b:f0:72:fe:3c:52:86:3b:15:d2:da:17: e8:09:52:e8:32:45:32:11:21:5c:78:2f:72:ef:34:d0:d0:89: be:bd:cf:64:b0:68:44:14:27:9c:e2:35:ef:e3:a1:d4:2d:5f: a3:cc:5a:be:fa:3f:f6:e6:b6:bc:66:e4:34:17:06:da:ec:06: 8c:eb:96:d2:0f:9f:db:4a:a9:96:38:03:04:ea:c8:10:29:f6: 56:bd:2b:2e:53:28:e6:2b:1c:93:2f:14:c9:23:16:b6:32:26: 33:14:2b:a3:d3:61:69:03:4c:23:0c:b0:6e:20:cc:ae:ce:6d: 7d:bf:6d:2c:a1:e0:23:ce:23:3e:2e:ff:87:3d:47:b1:90:09: 90:90:b8:4b:02:26:75:14:d9:b6:1b:f7:19:3f:bf:b3:3d:97: c6:58:4e:38:9f:ab:f9:fc:1a:7e:3a:09:7b:15:70:eb:bf:7b: a2:77:cd:14:b5:3b:59:39:2e:77:c5:68:1c:03:08:30:1e:de: 26:94:d0:d7:7f:31:ee:86:59:c0:aa:59:6b:2c:5b:7b:b8:b6: e6:ea:e4:d8:98:76:a6:27:02:8f:5a:b4:7c:34:e6:c0:aa:f9: 02:3d:d3:6e:05:99:dd:4b:1b:f8:37:23:61:0b:a0:54:24:d8: a7:85:40:1c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBRTkxMTAvBgNVBAUTKDcwNjVBOEJFMzQxNjM4NURCRDAzMjI0MDRFNEY2MzRD NkVGRTVEODIwHhcNMjUwNTA3MDEzOTA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjliOS05MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUmsvjdtDOT5oHyE+UyfZ6vflpV5rtZIjx2cuzVVntwYjHxePI9A9OFNIetQ AoRxoxYUWWl3y1qvJz1X0oBhs8vDxV8wdHUP0Ts777cFDjEdnUUfia6qiubBtScx X9DEymEw3Rxuza5z/fgQwhIH9ba7CcAZiD+rrqiGpuqvu7nx0zNUL0zZ9f4ZWm1K oV8mzLfuPOrwyuFGYgDg6xaenlatRC/pbhP2wR7s56lKmi4kQ+WGXwoExorr8dzz nxNUbV/UuD1FSeX81u6n9venDXEqFYu5kAo0VjuIUw0UAbzvFVGCeeJyS7nWRM3I nnQylgTCYsqpw89FL/dwLmdPmQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPwdS0GK nn5lwoUAKLwN+ZiIqNbbMB8GA1UdIwQYMBaAFHBlqL40FjhdvQMiQE5PY0xu/l2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUFFOS9GRkVCN0Y5QTA2 NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09GMjlBeUpBVGs5alRHNy1Y WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NHV292alFXT0YyOUF5SkFUazlqVEc3LVhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVBRTkvRkZFQjdGOUEwNjQ2MTFFRDlDQjczMTYzQzRGOUFFMDIvNzBCQjZDMTQw NjRBMTFFREEwQTkyMDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnWJsDBABnWKIwDQYJKoZIhvcNAQELBQADggEBAIGxPEDk cAvwcv48UoY7FdLaF+gJUugyRTIRIVx4L3LvNNDQib69z2SwaEQUJ5ziNe/jodQt X6PMWr76P/bmtrxm5DQXBtrsBozrltIPn9tKqZY4AwTqyBAp9la9Ky5TKOYrHJMv FMkjFrYyJjMUK6PTYWkDTCMMsG4gzK7ObX2/bSyh4CPOIz4u/4c9R7GQCZCQuEsC JnUU2bYb9xk/v7M9l8ZYTjifq/n8Gn46CXsVcOu/e6J3zRS1O1k5LnfFaBwDCDAe 3iaU0Nd/Me6GWcCqWWssW3u4tubq5NiYdqYnAo9atHw05sCq+QI9024Fmd1LG/g3 I2ELoFQk2KeFQBw= -----END CERTIFICATE-----Generated at Thu May 15 00:33:34 2025 by rpki-client