$ rpki-client -vvf rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa File: 1090CE74EBC211EEB58D4343C4F9AE02.roa (raw, json) Hash identifier: jcaCq3HWImgQ/NDx2leALcjgxzkZ4FPifc2Ybb4pZFU= Subject key identifier: D9:71:F2:28:1C:FE:5B:9F:3C:F9:1F:5D:FA:AD:1B:64:C4:BF:74:41 Certificate issuer: /CN=A9146514/serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Certificate serial: D6 Authority key identifier: 4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa Signing time: Sat 03 May 2025 05:11:59 +0000 ROA not before: Sat 03 May 2025 05:11:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132240 IP address blocks: 103.8.72.0/23 maxlen: 23 103.8.72.0/24 maxlen: 24 103.16.172.0/23 maxlen: 23 103.16.172.0/24 maxlen: 24 103.229.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146514, serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Validity Not Before: May 3 05:11:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a59e-7eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:21:09:7f:61:18:2e:80:ed:4b:ea:06:8e:70: 27:8a:59:28:4c:5a:49:7b:87:ff:a1:0e:45:c6:5b: a9:88:2b:49:34:24:f4:ff:7f:c6:d9:85:45:62:35: 11:6c:ec:b4:df:98:7d:a3:18:51:47:82:a9:cd:6d: 0c:73:31:59:a6:7c:62:a0:b1:ee:23:9a:f2:8b:6c: 83:76:21:b4:00:20:68:5c:ed:23:1b:18:80:0e:8d: e6:47:e7:94:52:8a:eb:2b:bd:27:2d:f4:63:44:3e: dd:71:8a:ee:ff:94:4e:33:c8:a8:b8:62:35:a9:4d: f2:43:2e:2e:48:3f:ab:54:66:b7:a2:6b:8b:43:94: c0:26:a8:a1:4d:5a:62:3d:d1:b9:b5:4a:e3:f1:ba: e2:a2:44:a2:22:e3:8b:e2:04:27:fc:2e:0c:30:36: 2c:52:54:51:d5:62:87:ea:37:7a:8e:c2:75:ed:95: 8d:d1:0b:6f:21:ef:27:ea:1d:92:91:84:29:7d:81: 10:6c:eb:04:de:a1:f5:7b:12:de:a5:3e:ef:6d:02: fb:2f:01:5b:80:3f:83:b1:79:37:35:a4:8e:7f:5b: 11:ec:b2:83:dc:f9:ee:66:16:78:e4:2e:bb:c3:07: 8f:29:f2:82:a5:45:1d:3e:ee:a0:f4:9a:00:51:1a: 0c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:71:F2:28:1C:FE:5B:9F:3C:F9:1F:5D:FA:AD:1B:64:C4:BF:74:41 X509v3 Authority Key Identifier: keyid:4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.72.0/23 103.16.172.0/23 103.229.98.0/23 Signature Algorithm: sha256WithRSAEncryption 02:38:a4:1e:ef:68:47:81:0f:68:6f:d5:3f:31:05:86:51:e9: 27:e7:90:68:a0:53:f4:1a:2c:e9:47:ac:3f:7e:83:49:a5:fe: ec:43:e6:7b:82:fb:8c:1b:73:35:8d:c1:39:a0:d3:43:66:1b: bb:4c:b0:29:ea:9c:0f:65:dc:74:03:f3:cd:6d:e6:90:fe:7b: c9:44:0a:76:a3:87:db:1e:6a:1c:b2:a5:db:1d:f4:a8:04:cd: 8e:0b:aa:c4:04:59:fa:60:a5:fe:07:b5:21:8f:c2:a2:ff:da: 34:85:d1:1f:7c:3d:48:36:84:14:77:48:b4:bb:ef:c7:fd:33: 49:45:c9:77:2e:79:bd:00:10:a6:ea:80:dc:cd:94:02:35:93: d6:a5:a2:19:c3:40:bc:5b:f2:29:b5:4d:01:27:74:89:e4:65: af:14:8d:67:f4:eb:c6:75:40:fe:92:1a:9c:93:5a:dd:e2:bf: b2:c1:7a:46:58:e7:99:39:ae:41:8a:58:61:f2:8e:a1:57:aa: 5d:72:af:09:b2:24:22:b6:c8:c4:f9:07:0f:87:ea:dd:74:42: 85:16:c1:34:55:04:50:04:76:d1:9d:fa:a4:3f:80:5b:3d:de: 41:cd:68:5d:86:fb:9f:17:c4:5a:87:ce:d6:13:6d:89:99:a6: 54:9a:c5:9d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1MTQxMTAvBgNVBAUTKDRBNEQ3RjU4RUZCRDQ4Qjg2MzZEQjZBMEJGN0MyREU1 MEYwNDM2MjEwHhcNMjUwNTAzMDUxMTU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTU5ZS03ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iEJf2EYLoDtS+oGjnAnilkoTFpJe4f/oQ5FxlupiCtJNCT0/3/G2YVFYjUR bOy035h9oxhRR4KpzW0MczFZpnxioLHuI5ryi2yDdiG0ACBoXO0jGxiADo3mR+eU UorrK70nLfRjRD7dcYru/5ROM8iouGI1qU3yQy4uSD+rVGa3omuLQ5TAJqihTVpi PdG5tUrj8briokSiIuOL4gQn/C4MMDYsUlRR1WKH6jd6jsJ17ZWN0QtvIe8n6h2S kYQpfYEQbOsE3qH1exLepT7vbQL7LwFbgD+DsXk3NaSOf1sR7LKD3PnuZhZ45C67 wwePKfKCpUUdPu6g9JoAURoMXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNlx8igc /lufPPkfXfqtG2TEv3RBMB8GA1UdIwQYMBaAFEpNf1jvvUi4Y222oL98LeUPBDYh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUxNC9CNzczQTE2NEVC QzAxMUVFOUJCM0Y0M0ZDNEY5QUUwMi9TazFfV08tOVNMaGpiYmFndjN3dDVROEVO aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NrMV9XTy05U0xoamJiYWd2M3d0NVE4RU5pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY1MTQvQjc3M0ExNjRFQkMwMTFFRTlCQjNGNDNGQzRGOUFFMDIvMTA5MENFNzRF QkMyMTFFRUI1OEQ0MzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnCEgDBAFnEKwDBAFn5WIwDQYJKoZIhvcNAQELBQADggEB AAI4pB7vaEeBD2hv1T8xBYZR6SfnkGigU/QaLOlHrD9+g0ml/uxD5nuC+4wbczWN wTmg00NmG7tMsCnqnA9l3HQD881t5pD+e8lECnajh9seahyypdsd9KgEzY4LqsQE Wfpgpf4HtSGPwqL/2jSF0R98PUg2hBR3SLS778f9M0lFyXcueb0AEKbqgNzNlAI1 k9alohnDQLxb8im1TQEndInkZa8UjWf068Z1QP6SGpyTWt3iv7LBekZY55k5rkGK WGHyjqFXql1yrwmyJCK2yMT5Bw+H6t10QoUWwTRVBFAEdtGd+qQ/gFs93kHNaF2G +58XxFqHztYTbYmZplSaxZ0= -----END CERTIFICATE-----Generated at Thu May 15 16:39:41 2025 by rpki-client