$ rpki-client -vvf rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/9B39DA4A17B611F0949B3513C4F9AE02.roa File: 9B39DA4A17B611F0949B3513C4F9AE02.roa (raw, json) Hash identifier: JIzx72Iu5kXzy1zuPq6JcTLGHOjrjN0dOL1PQPVedEI= Subject key identifier: 6C:E2:F2:C8:4F:5A:2B:DA:E2:32:F4:21:4A:2D:4B:D5:95:A7:C4:01 Certificate issuer: /CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Certificate serial: 0393 Authority key identifier: 73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/9B39DA4A17B611F0949B3513C4F9AE02.roa Signing time: Wed 07 May 2025 01:07:31 +0000 ROA not before: Wed 07 May 2025 01:07:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 210110 IP address blocks: 103.91.219.0/24 maxlen: 24 103.95.207.0/24 maxlen: 24 103.101.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127FC2, serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Validity Not Before: May 7 01:07:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ab252-72d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:aa:af:e3:96:8a:be:07:60:20:05:28:de:45: 39:ab:03:ab:48:d2:d4:5e:56:a8:15:c1:03:f3:10: 6f:46:54:ec:0b:ef:8e:34:30:24:ee:c5:cd:bf:8f: c0:4f:ef:2b:39:28:c6:db:c0:29:95:45:2e:06:0e: ab:5b:ef:67:da:44:1b:dc:60:13:d7:31:9a:1e:73: d0:96:cb:44:53:c8:73:ca:34:9d:d3:22:1b:dd:a4: 4e:ed:25:e0:cc:39:de:42:6a:e6:d3:26:d8:86:13: 4f:71:9e:c2:3b:28:e2:b4:0a:f0:9c:86:c1:6b:e3: 2b:25:16:a5:91:ad:55:1a:96:4d:d1:a5:4a:b8:8c: 3d:41:cf:e2:f5:73:07:42:f4:b7:38:91:d0:07:a1: 39:0c:74:e9:39:a7:76:62:3a:db:e7:2b:0e:61:f1: da:86:31:97:02:97:21:20:9e:1f:ee:61:a8:46:40: 8a:6b:13:8f:81:99:92:d7:c4:a4:37:8d:59:a1:a8: 11:cc:16:3c:72:40:8c:ab:0d:de:72:c2:65:78:04: b1:22:ea:f6:56:91:98:a2:82:02:6d:e0:b1:7b:e3: 52:5e:98:78:ad:24:5f:4c:03:37:68:dc:0c:ca:2e: 8f:1f:18:27:f3:e4:9e:87:2a:94:b9:e6:bf:e2:4c: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E2:F2:C8:4F:5A:2B:DA:E2:32:F4:21:4A:2D:4B:D5:95:A7:C4:01 X509v3 Authority Key Identifier: keyid:73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/9B39DA4A17B611F0949B3513C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.219.0/24 103.95.207.0/24 103.101.153.0/24 Signature Algorithm: sha256WithRSAEncryption 53:56:58:88:11:86:71:fa:40:6f:f3:a8:69:39:65:f9:a7:d2: d9:6d:ec:01:3c:b8:ed:a0:68:ee:08:75:fa:7a:c1:4b:a4:ba: a6:52:c8:11:49:a5:34:5e:d5:12:79:31:37:d4:91:19:dc:6f: ec:09:d2:4f:5d:74:2c:ff:c2:e0:0c:5e:31:ed:03:63:4a:e6: 98:72:08:43:f1:f8:2d:9f:f3:2f:c7:2c:5c:d4:d5:b8:11:a5: 6d:78:9f:ab:07:67:31:b7:97:26:1e:69:43:4a:da:19:13:59: bc:25:3d:f8:a1:00:f8:a6:38:8d:5a:be:42:da:32:86:4b:d5: a6:04:23:5d:a6:26:ff:50:00:f0:5c:1c:6a:35:c0:1e:cf:05: 0b:2e:8b:8b:02:11:32:08:c7:10:3f:1c:69:6d:28:db:16:9e: 2b:65:30:31:5e:f6:94:7a:4f:c9:82:4d:aa:0b:c3:29:63:52: d8:d1:83:c0:2e:8a:d4:45:68:48:4b:b1:a9:71:37:c7:c0:8d: 8d:e4:6a:67:5e:b4:e2:27:f0:4f:57:84:e9:7b:45:e4:5a:f0: 97:8c:d0:20:1e:27:bb:92:b5:47:1e:3c:1f:18:5e:45:ab:36: a4:27:70:9f:d3:0c:72:04:b8:2d:c1:4b:4c:39:88:ea:97:7a: 7f:c4:84:83 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdGQzIxMTAvBgNVBAUTKDczQkEyMUJFMzZERERGRDU4NjkwMTE2RDZFRUM3QkRD N0VGRUZCMjgwHhcNMjUwNTA3MDEwNzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjI1Mi03MmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6qv45aKvgdgIAUo3kU5qwOrSNLUXlaoFcED8xBvRlTsC++ONDAk7sXNv4/A T+8rOSjG28AplUUuBg6rW+9n2kQb3GAT1zGaHnPQlstEU8hzyjSd0yIb3aRO7SXg zDneQmrm0ybYhhNPcZ7COyjitArwnIbBa+MrJRalka1VGpZN0aVKuIw9Qc/i9XMH QvS3OJHQB6E5DHTpOad2Yjrb5ysOYfHahjGXApchIJ4f7mGoRkCKaxOPgZmS18Sk N41ZoagRzBY8ckCMqw3ecsJleASxIur2VpGYooICbeCxe+NSXph4rSRfTAM3aNwM yi6PHxgn8+SehyqUuea/4kzOIQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGzi8shP Wiva4jL0IUotS9WVp8QBMB8GA1UdIwQYMBaAFHO6Ib423d/VhpARbW7se9x+/vso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0ZDMi81RTMwQkY3MEJC QTYxMUVDQkFGNDMxNTZDNEY5QUUwMi9jN29odmpiZDM5V0drQkZ0YnV4NzNINy0t eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3b2h2amJkMzlXR2tCRnRidXg3M0g3LS15Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdGQzIvNUUzMEJGNzBCQkE2MTFFQ0JBRjQzMTU2QzRGOUFFMDIvOUIzOURBNEEx N0I2MTFGMDk0OUIzNTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnW9sDBABnX88DBABnZZkwDQYJKoZIhvcNAQELBQADggEB AFNWWIgRhnH6QG/zqGk5Zfmn0tlt7AE8uO2gaO4Idfp6wUukuqZSyBFJpTRe1RJ5 MTfUkRncb+wJ0k9ddCz/wuAMXjHtA2NK5phyCEPx+C2f8y/HLFzU1bgRpW14n6sH ZzG3lyYeaUNK2hkTWbwlPfihAPimOI1avkLaMoZL1aYEI12mJv9QAPBcHGo1wB7P BQsui4sCETIIxxA/HGltKNsWnitlMDFe9pR6T8mCTaoLwyljUtjRg8AuitRFaEhL salxN8fAjY3kamdetOIn8E9XhOl7ReRa8JeM0CAeJ7uStUcePB8YXkWrNqQncJ/T DHIEuC3BS0w5iOqXen/EhIM= -----END CERTIFICATE-----Generated at Sun May 11 02:04:20 2025 by rpki-client