$ rpki-client -vvf rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/7D20FF46F3E511EBB8BBF720C4F9AE02.roa File: 7D20FF46F3E511EBB8BBF720C4F9AE02.roa (raw, json) Hash identifier: C7jDphWDYFgMA4L/08ep7MPFd0RKLP2oweu77NqfdxM= Subject key identifier: 70:53:78:89:96:49:C0:B6:5C:D5:91:C8:36:B8:92:98:3A:5B:78:E5 Certificate issuer: /CN=A9151E54/serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Certificate serial: 0539 Authority key identifier: 27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/7D20FF46F3E511EBB8BBF720C4F9AE02.roa Signing time: Sun 04 May 2025 23:34:30 +0000 ROA not before: Sun 04 May 2025 23:34:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136500 IP address blocks: 103.90.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1337 (0x539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151E54, serialNumber=27E38BBEB8E2DB271FCFA17C1347DE6B06834460 Validity Not Before: May 4 23:34:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817f986-0646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:be:69:92:58:03:9a:8b:1c:28:94:cf:97: cf:73:3a:0b:6f:73:a4:52:82:25:88:62:23:d6:50: 47:d7:52:fd:5d:48:d9:5a:6d:e2:4b:dc:d8:99:42: 76:06:3b:e1:20:ea:c2:d2:09:a7:3b:4a:84:b8:4d: c3:d2:af:dd:9e:20:5c:fe:34:16:b1:6b:0b:81:24: 29:1c:d8:09:c7:41:c3:b4:f9:5e:cc:05:2f:53:a2: c6:e9:42:68:11:1a:67:44:e7:16:47:ae:68:7a:34: 8b:2f:6a:4e:89:69:23:44:66:bf:0c:e7:23:a5:dd: a2:44:2a:35:f5:73:40:f8:1d:ea:6b:70:11:79:78: 67:74:cc:48:93:e6:ef:17:4e:53:7d:18:8e:8b:b8: 6f:1f:7f:13:b6:5b:9d:4a:45:63:d1:60:23:ac:e5: 3f:a4:2f:8a:7f:07:18:03:ad:06:c5:f1:3e:68:19: 05:ea:14:ff:68:79:27:af:c7:01:1e:08:3b:d8:be: 18:f2:2a:61:9d:c3:4d:72:57:f1:57:16:f3:7e:d8: 70:dc:4d:ba:20:1e:e7:cc:8a:bf:bb:f3:fb:97:8a: 67:37:5a:b0:73:bf:8c:03:4f:dd:9d:0b:0b:3a:68: fe:d3:08:f6:17:3e:fd:a2:dd:33:03:7d:b9:be:f9: 78:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:53:78:89:96:49:C0:B6:5C:D5:91:C8:36:B8:92:98:3A:5B:78:E5 X509v3 Authority Key Identifier: keyid:27:E3:8B:BE:B8:E2:DB:27:1F:CF:A1:7C:13:47:DE:6B:06:83:44:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/J-OLvrji2ycfz6F8E0feawaDRGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-OLvrji2ycfz6F8E0feawaDRGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151E54/AFD17A36F3E211EBAACEA71DC4F9AE02/7D20FF46F3E511EBB8BBF720C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.174.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:28:42:b5:9e:47:9a:ca:e4:ac:2a:eb:5c:fc:60:0b:cb:ad: 93:28:7d:6a:11:98:67:e4:28:2f:f1:d0:24:7c:40:2b:fd:97: ef:6d:08:51:17:32:14:dd:6e:f8:7b:34:ef:22:e7:d2:c7:c2: 80:3c:5b:78:66:95:fb:06:5c:fd:63:ba:d0:81:da:a8:0a:2d: ab:a6:8c:b8:b8:eb:9d:24:e3:40:d4:56:6c:0b:69:87:e1:42: 4d:b8:bb:1c:a3:17:e2:77:34:75:da:39:3a:3b:cb:4c:ac:47: 58:7a:c7:13:28:b9:f4:5e:75:14:d1:bf:98:b7:f3:f0:5b:f1: 0e:2c:31:cf:f8:dc:e7:63:51:c0:51:16:e7:55:f9:83:59:78: d4:7a:e3:e1:a1:c9:e6:12:0e:9d:c8:65:fa:f0:39:7b:ec:8c: 79:6e:e2:cb:a9:5e:3f:dd:1f:f5:1b:37:97:e6:b0:93:70:26: 61:ff:9f:ad:45:91:e6:c4:fb:38:30:58:72:30:50:15:c3:4a: 68:53:ef:f7:98:5f:90:c9:90:64:4a:e9:86:ac:75:67:57:45: 39:eb:ae:de:0e:00:94:c5:61:82:0e:ae:da:45:91:f8:02:f5: e4:03:e5:50:ea:6c:b4:35:91:f4:dc:4a:d4:16:1a:23:c5:d5: 3c:0b:b3:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFFNTQxMTAvBgNVBAUTKDI3RTM4QkJFQjhFMkRCMjcxRkNGQTE3QzEzNDdERTZC MDY4MzQ0NjAwHhcNMjUwNTA0MjMzNDMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3Zjk4Ni0wNjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ze+aZJYA5qLHCiUz5fPczoLb3OkUoIliGIj1lBH11L9XUjZWm3iS9zYmUJ2 BjvhIOrC0gmnO0qEuE3D0q/dniBc/jQWsWsLgSQpHNgJx0HDtPlezAUvU6LG6UJo ERpnROcWR65oejSLL2pOiWkjRGa/DOcjpd2iRCo19XNA+B3qa3AReXhndMxIk+bv F05TfRiOi7hvH38TtludSkVj0WAjrOU/pC+KfwcYA60GxfE+aBkF6hT/aHknr8cB Hgg72L4Y8iphncNNclfxVxbzfthw3E26IB7nzIq/u/P7l4pnN1qwc7+MA0/dnQsL Omj+0wj2Fz79ot0zA325vvl4FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHBTeImW ScC2XNWRyDa4kpg6W3jlMB8GA1UdIwQYMBaAFCfji7644tsnH8+hfBNH3msGg0Rg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUU1NC9BRkQxN0EzNkYz RTIxMUVCQUFDRUE3MURDNEY5QUUwMi9KLU9MdnJqaTJ5Y2Z6NkY4RTBmZWF3YURS R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0otT0x2cmppMnljZno2RjhFMGZlYXdhRFJHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFFNTQvQUZEMTdBMzZGM0UyMTFFQkFBQ0VBNzFEQzRGOUFFMDIvN0QyMEZGNDZG M0U1MTFFQkI4QkJGNzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnWq4wDQYJKoZIhvcNAQELBQADggEBABwoQrWeR5rK5Kwq 61z8YAvLrZMofWoRmGfkKC/x0CR8QCv9l+9tCFEXMhTdbvh7NO8i59LHwoA8W3hm lfsGXP1jutCB2qgKLaumjLi4650k40DUVmwLaYfhQk24uxyjF+J3NHXaOTo7y0ys R1h6xxMoufRedRTRv5i38/Bb8Q4sMc/43OdjUcBRFudV+YNZeNR64+GhyeYSDp3I ZfrwOXvsjHlu4supXj/dH/UbN5fmsJNwJmH/n61FkebE+zgwWHIwUBXDSmhT7/eY X5DJkGRK6YasdWdXRTnrrt4OAJTFYYIOrtpFkfgC9eQD5VDqbLQ1kfTcStQWGiPF 1TwLsyM= -----END CERTIFICATE-----Generated at Sun May 11 09:40:02 2025 by rpki-client