$ rpki-client -vvf rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/AA15744E2B0111F09CD4A96AC4F9AE02.roa File: AA15744E2B0111F09CD4A96AC4F9AE02.roa (raw, json) Hash identifier: 45hnvJuRb+v92htfdvjwOgRNSDtIXR5oDwj0w/Xa5e0= Subject key identifier: B7:69:9E:44:BA:01:5F:AD:85:F5:13:80:6D:45:78:FC:23:80:12:DC Certificate issuer: /CN=A9142B64/serialNumber=9A566A12E1BC4635326F5E02AEE9DB7181DD3BDE Certificate serial: 347D Authority key identifier: 9A:56:6A:12:E1:BC:46:35:32:6F:5E:02:AE:E9:DB:71:81:DD:3B:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlZqEuG8RjUyb14CrunbcYHdO94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/AA15744E2B0111F09CD4A96AC4F9AE02.roa Signing time: Wed 07 May 2025 05:11:00 +0000 ROA not before: Wed 07 May 2025 05:11:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58955 IP address blocks: 103.40.116.0/24 maxlen: 24 103.40.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/mlZqEuG8RjUyb14CrunbcYHdO94.crl rsync://rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/mlZqEuG8RjUyb14CrunbcYHdO94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlZqEuG8RjUyb14CrunbcYHdO94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13437 (0x347d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142B64, serialNumber=9A566A12E1BC4635326F5E02AEE9DB7181DD3BDE Validity Not Before: May 7 05:11:00 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=681aeb63-7ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2a:bf:7d:26:cb:4a:c9:5e:f3:fd:38:af:2f: 0b:e4:61:c3:5c:cb:c8:d8:d9:e4:c2:c7:6e:8b:d6: 00:4e:43:ed:19:c4:fe:10:14:83:7a:f7:6f:cb:4b: 46:47:83:41:da:17:c3:b0:50:39:57:69:75:6a:2d: de:91:78:a3:4e:0e:9b:e7:cc:af:ed:e2:37:b9:8b: e1:46:c9:cf:ec:ec:57:69:9e:eb:7a:7b:87:f3:38: 78:88:32:8c:9b:6e:22:35:aa:96:0c:ac:44:42:44: 29:05:02:ff:2f:e6:d7:53:ae:2a:c7:f5:ba:1e:d2: 9e:2c:70:26:c0:00:f9:11:b9:d4:01:c1:ae:c8:4a: ef:bb:5e:80:d6:83:51:8a:19:d9:74:bb:ab:2e:41: 50:e0:62:52:10:69:eb:70:1c:c9:a6:fb:96:27:4c: 12:97:d6:c8:d3:19:ab:21:ce:53:21:aa:d3:7e:01: f4:06:63:d3:1c:8a:d0:18:46:74:b5:65:84:4c:85: a7:32:ea:69:c1:be:80:9d:b2:6e:66:d0:6d:7f:c3: 9b:e8:c8:f1:3c:d8:f5:3a:df:95:80:78:a9:9c:92: 20:ad:a8:3c:28:28:9d:07:a1:3b:c6:73:84:43:31: 9c:df:e0:c4:52:8f:79:58:ec:7b:d2:37:e1:57:6b: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:69:9E:44:BA:01:5F:AD:85:F5:13:80:6D:45:78:FC:23:80:12:DC X509v3 Authority Key Identifier: keyid:9A:56:6A:12:E1:BC:46:35:32:6F:5E:02:AE:E9:DB:71:81:DD:3B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/mlZqEuG8RjUyb14CrunbcYHdO94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlZqEuG8RjUyb14CrunbcYHdO94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142B64/EA59A85A1D9911E292B9C68608B02CD2/AA15744E2B0111F09CD4A96AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.116.0/23 Signature Algorithm: sha256WithRSAEncryption 99:99:2d:0d:9c:a4:19:b1:f5:c7:b3:1e:80:d1:55:ff:57:41: c4:dc:7b:f6:60:44:3d:dc:41:50:7b:38:28:f4:ba:4e:8f:00: 45:45:b6:4a:32:43:7e:34:f0:90:0f:1a:96:dd:93:11:19:77: c5:a5:ad:26:51:c2:1d:a4:1a:63:7f:60:85:26:48:7b:32:60: 27:44:76:5f:f4:a4:51:8b:a9:c4:51:5f:c4:78:ce:52:0e:93: 1b:f1:cb:e2:cc:88:fc:57:a1:c2:a0:21:36:11:40:b2:38:fa: c5:d8:d4:be:57:6c:50:9f:2b:b3:2c:e5:3e:29:37:59:09:b3: a5:2b:52:0f:36:b1:17:49:f8:94:d9:2a:66:1c:7d:b6:9e:3c: b7:f7:4c:70:18:4f:16:f5:91:1b:0d:10:a7:01:64:50:0a:e4: 42:64:a8:2d:25:20:45:42:be:3e:32:0e:8f:c0:4f:f9:69:37: af:97:99:f5:45:0b:b3:82:c3:23:50:5f:25:81:4f:ec:17:d6: fe:5e:10:c0:8e:4b:a0:28:51:7e:db:d6:24:87:5b:7d:ee:eb: 7b:57:cd:33:46:6a:ef:25:a3:78:e0:a5:fc:cd:9f:4f:d4:48: f8:ce:fb:54:37:11:16:43:c0:b3:ee:02:7c:91:46:22:e8:da: a3:c7:80:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJCNjQxMTAvBgNVBAUTKDlBNTY2QTEyRTFCQzQ2MzUzMjZGNUUwMkFFRTlEQjcx ODFERDNCREUwHhcNMjUwNTA3MDUxMTAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZWI2My03ZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yq/fSbLSsle8/04ry8L5GHDXMvI2Nnkwsdui9YATkPtGcT+EBSDevdvy0tG R4NB2hfDsFA5V2l1ai3ekXijTg6b58yv7eI3uYvhRsnP7OxXaZ7renuH8zh4iDKM m24iNaqWDKxEQkQpBQL/L+bXU64qx/W6HtKeLHAmwAD5EbnUAcGuyErvu16A1oNR ihnZdLurLkFQ4GJSEGnrcBzJpvuWJ0wSl9bI0xmrIc5TIarTfgH0BmPTHIrQGEZ0 tWWETIWnMuppwb6AnbJuZtBtf8Ob6MjxPNj1Ot+VgHipnJIgrag8KCidB6E7xnOE QzGc3+DEUo95WOx70jfhV2sw+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLdpnkS6 AV+thfUTgG1FePwjgBLcMB8GA1UdIwQYMBaAFJpWahLhvEY1Mm9eAq7p23GB3Tve MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkI2NC9FQTU5QTg1QTFE OTkxMUUyOTJCOUM2ODYwOEIwMkNEMi9tbFpxRXVHOFJqVXliMTRDcnVuYmNZSGRP OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21sWnFFdUc4UmpVeWIxNENydW5iY1lIZE85NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJCNjQvRUE1OUE4NUExRDk5MTFFMjkyQjlDNjg2MDhCMDJDRDIvQUExNTc0NEUy QjAxMTFGMDlDRDRBOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnKHQwDQYJKoZIhvcNAQELBQADggEBAJmZLQ2cpBmx9cez HoDRVf9XQcTce/ZgRD3cQVB7OCj0uk6PAEVFtkoyQ3408JAPGpbdkxEZd8WlrSZR wh2kGmN/YIUmSHsyYCdEdl/0pFGLqcRRX8R4zlIOkxvxy+LMiPxXocKgITYRQLI4 +sXY1L5XbFCfK7Ms5T4pN1kJs6UrUg82sRdJ+JTZKmYcfbaePLf3THAYTxb1kRsN EKcBZFAK5EJkqC0lIEVCvj4yDo/AT/lpN6+XmfVFC7OCwyNQXyWBT+wX1v5eEMCO S6AoUX7b1iSHW33u63tXzTNGau8lo3jgpfzNn0/USPjO+1Q3ERZDwLPuAnyRRiLo 2qPHgC0= -----END CERTIFICATE-----Generated at Sun May 11 17:10:44 2025 by rpki-client