$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa File: 1F8D757623B811E9971D8168C4F9AE02.roa (raw, json) Hash identifier: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ= Subject key identifier: 2E:4B:85:4C:91:75:7B:F3:B8:CF:9B:37:69:5B:39:82:42:B1:01:DC Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10C4 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa Signing time: Wed 30 Apr 2025 17:26:30 +0000 ROA not before: Wed 30 Apr 2025 17:26:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138549 IP address blocks: 103.132.220.0/22 maxlen: 22 103.132.220.0/23 maxlen: 23 103.132.220.0/24 maxlen: 24 103.132.221.0/24 maxlen: 24 103.132.222.0/23 maxlen: 23 103.132.222.0/24 maxlen: 24 103.132.223.0/24 maxlen: 24 2404:40c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4292 (0x10c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Apr 30 17:26:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68125d46-46c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0d:5d:47:e6:ae:e6:a9:4c:7b:38:c9:70:6d: 14:8c:58:ab:3a:f9:2e:0d:1b:d8:49:5f:2e:be:8f: 4d:46:4c:58:80:68:e7:6e:a1:d1:84:04:74:8e:45: 47:03:2f:d7:c6:a4:f5:8c:ea:af:3b:14:5f:31:a7: 85:4d:f0:c8:33:78:1f:86:ff:e5:d4:3a:63:75:0e: 08:47:3a:ed:9e:3e:67:53:e2:e9:05:3b:6e:58:b0: 9a:a3:8e:f6:14:f1:2f:38:ac:d1:f5:88:81:fe:30: ea:c5:85:9d:77:88:fe:36:dc:86:66:3a:a8:98:79: 6c:d0:9d:8b:7a:cc:81:ac:ec:1f:42:74:de:e6:bb: 95:e4:8d:2f:f3:9e:f4:3b:0d:39:cb:c0:09:e1:fd: c4:0e:01:bf:76:be:07:71:76:9b:16:82:53:3f:38: 18:3d:f4:e9:46:af:12:dd:62:22:04:ba:10:17:73: 63:20:f3:17:30:39:3b:88:46:92:ef:39:25:c2:57: 3a:5d:32:47:91:cf:eb:06:76:6e:1a:3b:57:37:51: 35:7e:4f:fa:2e:ab:cb:dc:d4:da:fc:8c:e8:fe:04: 2c:bc:64:be:7c:c3:f7:16:eb:83:59:db:c9:db:0c: b9:73:43:cf:8e:32:7e:57:b6:a0:a8:32:d5:d9:28: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4B:85:4C:91:75:7B:F3:B8:CF:9B:37:69:5B:39:82:42:B1:01:DC X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/22 IPv6: 2404:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 29:18:da:6f:4a:5c:04:4c:50:50:82:19:1a:9e:da:34:3b:ed: d2:7a:29:43:93:5e:96:0a:6f:98:e7:6d:54:b8:84:02:82:ee: e4:65:ff:c4:51:3f:43:52:d0:ce:80:52:83:6b:f8:0d:6d:0c: dd:b8:f9:70:e9:aa:0e:d7:c3:61:60:b8:f0:cf:f1:8d:b2:fd: 6f:1a:73:21:4a:da:03:43:e9:e7:36:eb:be:20:2e:6e:93:54: a2:94:a5:97:c4:82:93:bf:3c:71:a8:df:b1:fb:90:c7:c9:dc: 9f:88:b1:4d:b3:2f:68:91:2c:bd:4f:69:20:2b:98:41:66:79: 69:9a:9b:4b:e3:53:b6:74:14:59:a4:99:68:7b:13:27:94:7d: ab:bd:ee:af:51:59:f4:db:b7:63:b0:02:4d:a0:18:0b:88:01: f7:1e:69:53:26:86:2a:e7:c7:f3:a1:8f:ec:07:6e:a3:a1:a6: 10:53:53:a2:bd:fd:00:50:1d:d6:1c:82:4b:0b:8c:04:82:54: d1:1e:81:e1:8b:cd:9d:37:90:a9:80:35:49:5a:29:ac:8e:86: b7:74:b0:eb:05:aa:50:49:ac:06:e4:35:48:0a:6e:d0:bc:57: 06:f9:ad:94:9b:e1:0d:45:f7:2a:e0:7d:c8:08:80:71:90:43: 7c:5d:2e:cb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNDMwMTcyNjMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNWQ0Ni00NmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyw1dR+au5qlMezjJcG0UjFirOvkuDRvYSV8uvo9NRkxYgGjnbqHRhAR0jkVH Ay/XxqT1jOqvOxRfMaeFTfDIM3gfhv/l1DpjdQ4IRzrtnj5nU+LpBTtuWLCao472 FPEvOKzR9YiB/jDqxYWdd4j+NtyGZjqomHls0J2LesyBrOwfQnTe5ruV5I0v8570 Ow05y8AJ4f3EDgG/dr4HcXabFoJTPzgYPfTpRq8S3WIiBLoQF3NjIPMXMDk7iEaS 7zklwlc6XTJHkc/rBnZuGjtXN1E1fk/6LqvL3NTa/Izo/gQsvGS+fMP3FuuDWdvJ 2wy5c0PPjjJ+V7agqDLV2Shr0QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC5LhUyR dXvzuM+bN2lbOYJCsQHcMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvMUY4RDc1NzYy M0I4MTFFOTk3MUQ4MTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhNwwDQQCAAIwBwMFACQEQMAwDQYJKoZIhvcNAQELBQAD ggEBACkY2m9KXARMUFCCGRqe2jQ77dJ6KUOTXpYKb5jnbVS4hAKC7uRl/8RRP0NS 0M6AUoNr+A1tDN24+XDpqg7Xw2FguPDP8Y2y/W8acyFK2gND6ec2674gLm6TVKKU pZfEgpO/PHGo37H7kMfJ3J+IsU2zL2iRLL1PaSArmEFmeWmam0vjU7Z0FFmkmWh7 EyeUfau97q9RWfTbt2OwAk2gGAuIAfceaVMmhirnx/Ohj+wHbqOhphBTU6K9/QBQ HdYcgksLjASCVNEegeGLzZ03kKmANUlaKayOhrd0sOsFqlBJrAbkNUgKbtC8Vwb5 rZSb4Q1F9yrgfcgIgHGQQ3xdLss= -----END CERTIFICATE-----Generated at Fri May 16 13:55:49 2025 by rpki-client