$ rpki-client -vvf rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/B7E5ADEE7B2111EB89BB2347C4F9AE02.roa File: B7E5ADEE7B2111EB89BB2347C4F9AE02.roa (raw, json) Hash identifier: XhXh7/hc+7Rhp2pgMR497HY0tEko0qYz35OtmtH7m/Q= Subject key identifier: B8:B9:EE:9F:38:69:8A:BC:D4:14:FD:B4:1C:13:9C:79:F6:47:4A:86 Certificate issuer: /CN=A9131940/serialNumber=BD0CB3C48F30C1F3AB3F301AECDE6ACC022EB55F Certificate serial: 0658 Authority key identifier: BD:0C:B3:C4:8F:30:C1:F3:AB:3F:30:1A:EC:DE:6A:CC:02:2E:B5:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQyzxI8wwfOrPzAa7N5qzAIutV8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/B7E5ADEE7B2111EB89BB2347C4F9AE02.roa Signing time: Wed 26 Mar 2025 22:33:38 +0000 ROA not before: Wed 26 Mar 2025 22:33:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135081 IP address blocks: 103.208.192.0/22 maxlen: 24 137.59.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/vQyzxI8wwfOrPzAa7N5qzAIutV8.crl rsync://rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/vQyzxI8wwfOrPzAa7N5qzAIutV8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQyzxI8wwfOrPzAa7N5qzAIutV8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131940, serialNumber=BD0CB3C48F30C1F3AB3F301AECDE6ACC022EB55F Validity Not Before: Mar 26 22:33:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e480c1-94f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:73:c0:49:54:d9:74:7e:0d:81:58:20:8f: e6:da:3a:56:df:85:4b:c5:3a:2e:a8:b0:de:33:db: fe:81:88:7c:92:0f:fe:56:00:42:5a:4d:e9:59:da: 8c:2f:6a:8e:2e:6b:9b:6d:73:d8:32:1d:03:d6:0e: f6:5b:79:e2:2e:a6:c7:53:13:8e:41:90:28:cb:03: 9e:cf:28:31:f0:ba:5d:47:a4:bd:db:6c:9b:ae:03: 3b:48:05:0a:38:bb:b0:75:4e:f9:1a:7c:01:43:25: 3d:84:06:96:b8:fc:eb:2b:9b:5b:d2:6f:b7:3c:57: 0f:d8:64:e2:26:3e:f8:43:44:f3:e7:46:bf:42:78: f0:9b:c9:bb:58:3a:d1:27:71:3f:df:3b:05:2d:91: 6f:23:68:14:fb:dd:90:3e:1e:0e:98:76:ec:b3:3c: 0d:04:4b:b7:5e:46:8b:e6:97:64:2f:e6:50:ee:d5: e6:2d:bb:ab:d6:53:ab:92:c6:62:20:6d:fa:35:d7: 27:7c:8d:3e:54:1e:da:47:35:1b:67:3f:8e:83:14: 82:04:89:27:90:57:a2:46:79:0b:68:cf:65:4d:01: 46:f3:28:33:14:6f:cb:ef:a1:f1:c6:19:fb:ba:b0: 15:00:b5:e9:2a:a2:79:9a:d8:c2:9a:4c:30:95:ba: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B9:EE:9F:38:69:8A:BC:D4:14:FD:B4:1C:13:9C:79:F6:47:4A:86 X509v3 Authority Key Identifier: keyid:BD:0C:B3:C4:8F:30:C1:F3:AB:3F:30:1A:EC:DE:6A:CC:02:2E:B5:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/vQyzxI8wwfOrPzAa7N5qzAIutV8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vQyzxI8wwfOrPzAa7N5qzAIutV8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131940/9CF60BB07B2011EBB0C8DC46C4F9AE02/B7E5ADEE7B2111EB89BB2347C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.192.0/22 137.59.208.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:cf:e2:d9:d5:8a:54:61:19:c4:82:24:d4:b0:bb:a2:00:61: 13:15:8b:75:68:06:72:e5:3a:b3:bf:fb:eb:ce:59:cd:bb:49: a0:a3:14:a4:6a:1d:e5:1d:4c:76:7c:8c:ba:20:11:5f:df:94: 38:1d:3f:8f:c3:4f:7f:1f:1e:6b:b7:4c:ad:1c:48:56:d6:21: 98:95:b5:41:6d:52:30:0e:70:2e:6f:91:4c:fa:35:5b:a8:31: f0:9a:b5:82:9d:c9:9e:5c:eb:fa:95:f3:44:bd:22:f6:85:39: ef:eb:39:73:44:8d:0e:09:37:a3:32:4d:b6:68:14:9d:25:30: f6:32:a7:f6:d6:87:c1:95:20:a2:6c:b5:c8:2a:14:00:7d:be: d1:4a:30:f6:bd:d5:ea:dd:af:af:1e:17:07:ec:56:0b:68:4d: 0c:05:89:b6:f2:2f:95:da:87:68:5a:fc:65:96:95:e7:b8:84: 8d:34:ef:ce:f4:86:a3:5e:5d:06:8c:73:ea:e9:a6:82:c1:f8: 86:db:5d:49:a6:3a:ef:8b:f6:ae:a5:26:b0:c5:96:13:7b:a2: 7a:ba:c0:8f:b8:3c:ad:aa:c2:46:24:ee:40:26:b0:e2:d6:c9: d5:9c:cd:88:28:3f:10:5c:c9:b9:18:0c:1d:3b:e6:d8:1a:eb: 96:c6:c1:f8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5NDAxMTAvBgNVBAUTKEJEMENCM0M0OEYzMEMxRjNBQjNGMzAxQUVDREU2QUND MDIyRUI1NUYwHhcNMjUwMzI2MjIzMzM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0ODBjMS05NGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/lzwElU2XR+DYFYII/m2jpW34VLxTouqLDeM9v+gYh8kg/+VgBCWk3pWdqM L2qOLmubbXPYMh0D1g72W3niLqbHUxOOQZAoywOezygx8LpdR6S922ybrgM7SAUK OLuwdU75GnwBQyU9hAaWuPzrK5tb0m+3PFcP2GTiJj74Q0Tz50a/Qnjwm8m7WDrR J3E/3zsFLZFvI2gU+92QPh4OmHbsszwNBEu3XkaL5pdkL+ZQ7tXmLbur1lOrksZi IG36NdcnfI0+VB7aRzUbZz+OgxSCBIknkFeiRnkLaM9lTQFG8ygzFG/L76Hxxhn7 urAVALXpKqJ5mtjCmkwwlbr2tQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLi57p84 aYq81BT9tBwTnHn2R0qGMB8GA1UdIwQYMBaAFL0Ms8SPMMHzqz8wGuzeaswCLrVf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTk0MC85Q0Y2MEJCMDdC MjAxMUVCQjBDOERDNDZDNEY5QUUwMi92UXl6eEk4d3dmT3JQekFhN041cXpBSXV0 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZReXp4STh3d2ZPclB6QWE3TjVxekFJdXRWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE5NDAvOUNGNjBCQjA3QjIwMTFFQkIwQzhEQzQ2QzRGOUFFMDIvQjdFNUFERUU3 QjIxMTFFQjg5QkIyMzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn0MADBAKJO9AwDQYJKoZIhvcNAQELBQADggEBAGvP4tnV ilRhGcSCJNSwu6IAYRMVi3VoBnLlOrO/++vOWc27SaCjFKRqHeUdTHZ8jLogEV/f lDgdP4/DT38fHmu3TK0cSFbWIZiVtUFtUjAOcC5vkUz6NVuoMfCatYKdyZ5c6/qV 80S9IvaFOe/rOXNEjQ4JN6MyTbZoFJ0lMPYyp/bWh8GVIKJstcgqFAB9vtFKMPa9 1erdr68eFwfsVgtoTQwFibbyL5Xah2ha/GWWlee4hI007870hqNeXQaMc+rppoLB +IbbXUmmOu+L9q6lJrDFlhN7onq6wI+4PK2qwkYk7kAmsOLWydWczYgoPxBcybkY DB075tga65bGwfg= -----END CERTIFICATE-----Generated at Thu May 15 08:57:20 2025 by rpki-client