$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa File: 42CFB44C141411F0BAD16274C4F9AE02.roa (raw, json) Hash identifier: SIbGv61TK6nlTBlpPzTxiHyFUxN8Qwjf/RzPAJKF8+o= Subject key identifier: 82:D9:26:68:ED:87:82:9F:71:50:A1:BA:1A:23:EE:67:36:E4:A9:BD Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: 2F Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa Signing time: Thu 03 Jul 2025 08:14:32 +0000 ROA not before: Thu 03 Jul 2025 08:14:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133326 IP address blocks: 103.93.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Jul 3 08:14:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68663be7-89f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2f:dc:78:38:43:ab:49:da:c9:a6:5f:63:c8: 7a:fc:d9:45:47:76:44:ea:e3:fa:70:7c:c6:5d:e9: 9a:cb:52:3b:79:b5:49:ec:29:c9:f5:fe:ea:ee:72: 3f:43:8b:2a:b7:02:ed:2e:50:bd:28:a9:12:58:2e: ac:c6:33:df:85:53:92:09:f3:9c:c1:26:09:f9:0b: 1e:5c:91:f9:85:9c:51:86:40:4e:6b:17:7c:1e:15: 75:4b:0c:97:68:5f:4b:0d:3c:4c:4a:31:66:1b:08: cc:bb:58:c9:2f:18:d7:f9:4d:ca:d6:41:3f:20:3d: e1:3f:d4:d8:7a:ae:83:02:87:6b:99:e8:94:9e:00: d2:dd:8e:51:1e:76:48:ee:1a:d3:db:ba:ad:75:d5: 34:9c:9b:27:73:fa:a7:9a:18:f3:be:c5:1d:c6:d1: 50:0e:16:20:18:14:14:76:cf:24:37:3c:ee:28:5d: 76:99:76:99:e3:c1:f6:6a:42:fb:78:fc:02:23:a7: 3b:57:a0:4a:0e:c7:c1:03:44:8d:fb:85:5a:a4:e0: a9:44:3d:45:57:3d:e5:36:72:a2:64:06:00:7e:b6: d1:83:e3:1b:65:dd:c2:95:f2:6b:ad:09:79:7b:63: af:99:7b:83:c5:dc:37:29:60:4d:f8:7a:57:87:ee: 86:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D9:26:68:ED:87:82:9F:71:50:A1:BA:1A:23:EE:67:36:E4:A9:BD X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/42CFB44C141411F0BAD16274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.139.0/24 Signature Algorithm: sha256WithRSAEncryption 37:97:15:dd:ca:a5:3e:23:ff:06:93:38:78:6e:d0:14:bf:3d: 17:6b:ce:52:be:79:10:bf:92:fc:e6:52:5c:64:b3:3d:03:03: 48:20:4c:20:46:69:83:1e:05:07:6e:12:06:9a:d7:a7:21:c7: dd:57:5a:5d:51:83:66:96:2b:8e:1a:bd:28:a9:dc:83:a1:21: a1:58:3d:01:ec:0d:79:4d:fb:75:3d:4b:e3:18:21:86:34:30: 60:70:09:22:7a:ba:9e:a4:c0:82:48:c9:f2:49:ef:e8:16:b0: a2:ec:07:58:4f:37:4e:eb:b9:97:8f:ce:a4:d5:67:0d:04:f4: 2d:64:c0:7d:aa:2a:e0:ec:79:82:06:fb:61:01:fc:ce:c5:8b: 35:29:b6:78:42:30:b1:29:c9:e4:aa:39:13:a1:0a:2e:56:de: ce:80:e0:cc:92:39:52:c0:ac:06:32:89:6f:d8:ec:9b:2d:8a: 5a:04:e3:cc:38:87:4a:61:79:3b:a0:de:6e:5a:a8:20:37:4d: 74:3e:71:ef:56:20:6f:e8:1a:bb:03:54:ee:d4:a6:04:2c:e3: eb:bb:e4:f6:9d:87:fb:e5:cb:e0:54:e8:b7:f8:0a:d7:c8:95: fb:17:96:58:a8:e2:ca:3f:3d:6e:62:b2:9b:8c:2d:a0:7c:5b: a9:8c:ef:ec -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MEYyMTExMC8GA1UEBRMoNzBEMjYwMUNCMEQwRkE0RjlDNUYwRTAyODZEOEI2QUZE OTIzNUEwNjAeFw0yNTA3MDMwODE0MzJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjYzYmU3LTg5ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvL9x4OEOrSdrJpl9jyHr82UVHdkTq4/pwfMZd6ZrLUjt5tUnsKcn1/urucj9D iyq3Au0uUL0oqRJYLqzGM9+FU5IJ85zBJgn5Cx5ckfmFnFGGQE5rF3weFXVLDJdo X0sNPExKMWYbCMy7WMkvGNf5TcrWQT8gPeE/1Nh6roMCh2uZ6JSeANLdjlEedkju GtPbuq111TScmydz+qeaGPO+xR3G0VAOFiAYFBR2zyQ3PO4oXXaZdpnjwfZqQvt4 /AIjpztXoEoOx8EDRI37hVqk4KlEPUVXPeU2cqJkBgB+ttGD4xtl3cKV8mutCXl7 Y6+Ze4PF3DcpYE34eleH7obVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgtkmaO2H gp9xUKG6GiPuZzbkqb0wHwYDVR0jBBgwFoAUcNJgHLDQ+k+cXw4Chti2r9kjWgYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwRjIxLzg1MTdGQjA4MTQx MzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWstY1h3NENodGkycjlraldn WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY05KZ0hMRFEtay1jWHc0Q2h0aTJyOWtqV2dZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEYyMS84NTE3RkIwODE0MTMxMUYwOEYxQTFENzNDNEY5QUUwMi80MkNGQjQ0QzE0 MTQxMUYwQkFEMTYyNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGddizANBgkqhkiG9w0BAQsFAAOCAQEAN5cV3cqlPiP/BpM4 eG7QFL89F2vOUr55EL+S/OZSXGSzPQMDSCBMIEZpgx4FB24SBprXpyHH3VdaXVGD ZpYrjhq9KKncg6EhoVg9AewNeU37dT1L4xghhjQwYHAJInq6nqTAgkjJ8knv6Baw ouwHWE83Tuu5l4/OpNVnDQT0LWTAfaoq4Ox5ggb7YQH8zsWLNSm2eEIwsSnJ5Ko5 E6EKLlbezoDgzJI5UsCsBjKJb9jsmy2KWgTjzDiHSmF5O6DeblqoIDdNdD5x71Yg b+gauwNU7tSmBCzj67vk9p2H++XL4FTot/gK18iV+xeWWKjiyj89bmKym4wtoHxb qYzv7A== -----END CERTIFICATE-----Generated at Thu Jul 3 18:45:19 2025 by rpki-client