$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/B38547B48C1811ED95522F3EC4F9AE02.roa File: B38547B48C1811ED95522F3EC4F9AE02.roa (raw, json) Hash identifier: wSjpeH4wi579ImWNOEWEbvFQXzrSCXT7+49/306hMSE= Subject key identifier: 05:65:BA:87:4D:02:51:20:25:DB:2F:83:43:07:AA:4F:F3:67:CB:54 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1036 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/B38547B48C1811ED95522F3EC4F9AE02.roa Signing time: Fri 06 Jun 2025 18:20:47 +0000 ROA not before: Fri 06 Jun 2025 18:20:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24511 IP address blocks: 103.138.130.0/23 maxlen: 24 2405:e40::/32 maxlen: 32 2405:e40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4150 (0x1036) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Jun 6 18:20:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843317e-b69a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1c:33:93:c4:31:09:eb:c1:16:db:41:53:6b: f9:16:01:3c:56:5e:85:6e:a8:22:9e:34:66:ef:5f: af:e4:19:a9:d3:3d:bd:04:6c:6e:f3:60:c8:3e:9a: 6c:db:05:29:e2:6d:86:53:49:8e:70:58:e1:a3:cf: 46:8c:cb:b5:e1:fc:24:26:9e:36:72:f4:1d:dd:61: a4:e6:a4:b1:9a:db:1e:7c:50:55:e9:11:8f:a3:8e: 58:80:d9:23:a2:09:f3:f1:bb:84:e6:39:2a:7a:31: f1:27:45:5e:c2:9c:0e:f7:38:89:ca:76:dc:11:ec: 3c:b8:d5:68:f5:1c:f5:3b:86:e1:51:b6:29:a8:0a: 7a:40:43:af:cc:1d:ee:6e:cb:1f:44:6d:54:53:10: 5c:2c:3b:e8:e7:6c:72:70:a4:7f:b9:ca:37:c3:e9: 17:09:a1:b7:f0:3f:57:d8:e1:f0:2f:d3:1b:04:79: 06:76:54:18:9f:8d:bb:67:5e:93:c1:64:f5:9c:0c: 68:61:e6:0e:cd:24:94:1c:42:cc:ab:5c:9e:12:cb: 34:d2:85:40:72:12:fd:c0:ab:67:dc:71:42:29:b9: ae:61:c3:90:de:09:05:c4:f4:74:55:62:90:e8:8b: 23:7b:d1:48:00:2c:38:19:8a:a3:f1:3c:44:bc:23: cb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:65:BA:87:4D:02:51:20:25:DB:2F:83:43:07:AA:4F:F3:67:CB:54 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/B38547B48C1811ED95522F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.130.0/23 IPv6: 2405:e40::/32 Signature Algorithm: sha256WithRSAEncryption 97:f0:5b:2c:02:93:66:28:26:74:38:1d:7e:7d:23:bf:c9:40: 46:57:cd:86:e8:25:b2:e8:ab:63:58:9c:87:60:ee:64:bf:9d: 4b:b9:4c:3e:fa:a7:1f:9b:a8:f2:3d:11:6f:82:44:e2:07:58: 26:3f:d1:6d:dc:0a:a0:63:73:15:2e:7e:3a:4f:a8:82:61:51: f6:d8:69:5c:bc:9f:95:e7:ff:42:f0:8e:48:ed:5e:e6:d0:17: a9:5c:ea:42:89:c4:00:93:15:b4:bf:c0:ab:cc:8d:63:2b:6b: d7:17:79:de:f2:09:48:fa:53:b8:36:4d:5f:e7:d5:a4:74:fb: 4c:76:bc:5f:ac:1f:b9:0e:bc:d2:c9:df:90:9d:70:53:ea:cd: 36:03:36:b9:2e:97:5d:a7:1e:2d:3b:39:b2:8a:91:c4:22:ba: a1:cd:02:b9:09:ec:97:86:8c:bf:2c:f1:8d:32:b6:96:2a:fc: b8:29:9c:be:76:a5:4c:60:82:4c:b3:67:ae:5c:07:e2:5c:5e: e1:17:ad:94:78:97:08:d0:e4:a2:23:ee:7d:c0:4c:ac:4d:a6: 99:25:89:ae:6d:72:e1:ee:79:a2:e4:f6:f8:63:a2:a0:5b:c3: b3:89:7a:33:a6:22:9d:9d:a8:84:db:9d:a6:5a:b0:a9:fb:1f: b2:f6:7a:30 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNjA2MTgyMDQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMzE3ZS1iNjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Rwzk8QxCevBFttBU2v5FgE8Vl6FbqginjRm71+v5Bmp0z29BGxu82DIPpps 2wUp4m2GU0mOcFjho89GjMu14fwkJp42cvQd3WGk5qSxmtsefFBV6RGPo45YgNkj ognz8buE5jkqejHxJ0VewpwO9ziJynbcEew8uNVo9Rz1O4bhUbYpqAp6QEOvzB3u bssfRG1UUxBcLDvo52xycKR/uco3w+kXCaG38D9X2OHwL9MbBHkGdlQYn427Z16T wWT1nAxoYeYOzSSUHELMq1yeEss00oVAchL9wKtn3HFCKbmuYcOQ3gkFxPR0VWKQ 6Isje9FIACw4GYqj8TxEvCPLOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAVluodN AlEgJdsvg0MHqk/zZ8tUMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGNEIvNTc3MkFBMzA1NEU0MTFFOTg1MzZGNjU5QzRGOUFFMDIvQjM4NTQ3QjQ4 QzE4MTFFRDk1NTIyRjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnioIwDQQCAAIwBwMFACQFDkAwDQYJKoZIhvcNAQELBQAD ggEBAJfwWywCk2YoJnQ4HX59I7/JQEZXzYboJbLoq2NYnIdg7mS/nUu5TD76px+b qPI9EW+CROIHWCY/0W3cCqBjcxUufjpPqIJhUfbYaVy8n5Xn/0LwjkjtXubQF6lc 6kKJxACTFbS/wKvMjWMra9cXed7yCUj6U7g2TV/n1aR0+0x2vF+sH7kOvNLJ35Cd cFPqzTYDNrkul12nHi07ObKKkcQiuqHNArkJ7JeGjL8s8Y0ytpYq/LgpnL52pUxg gkyzZ65cB+JcXuEXrZR4lwjQ5KIj7n3ATKxNppklia5tcuHueaLk9vhjoqBbw7OJ ejOmIp2dqITbnaZasKn7H7L2ejA= -----END CERTIFICATE-----Generated at Fri Jul 4 08:25:59 2025 by rpki-client