$ rpki-client -vvf rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa File: B71C4F80253711EFA1D2A943C4F9AE02.roa (raw, json) Hash identifier: H+qQQZmD1p/qPnv6XT6KRZsCtfSFefjGnHy0mI1YrpE= Subject key identifier: A0:4B:33:0B:5C:08:30:3C:0C:84:BA:06:72:CD:95:58:F0:2C:C7:EA Certificate issuer: /CN=A9157450/serialNumber=81A0CF9CE9AAA990ED1AFE8A830A707874F9AABE Certificate serial: AC Authority key identifier: 81:A0:CF:9C:E9:AA:A9:90:ED:1A:FE:8A:83:0A:70:78:74:F9:AA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa Signing time: Sat 03 May 2025 05:42:23 +0000 ROA not before: Sat 03 May 2025 05:42:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45152 IP address blocks: 103.9.56.0/22 maxlen: 22 103.9.56.0/24 maxlen: 24 103.9.57.0/24 maxlen: 24 103.9.58.0/24 maxlen: 24 103.9.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.crl rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157450, serialNumber=81A0CF9CE9AAA990ED1AFE8A830A707874F9AABE Validity Not Before: May 3 05:42:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815acbf-ee09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e6:7d:f7:d3:cc:02:00:90:8f:ee:dd:df:e4: 1f:1e:0c:51:fb:b3:e9:7c:c7:de:cf:89:fe:ac:6a: 84:84:04:46:d2:bb:c7:89:14:b4:78:be:d0:5a:23: 43:12:43:56:9b:ef:57:93:e9:2b:9d:fc:a4:8f:fc: bc:7b:e3:53:96:71:76:9b:3b:c8:a6:d0:2f:23:9e: 3a:49:1e:43:fa:00:9e:57:cf:d6:33:da:e1:72:35: e8:60:be:30:e8:76:b2:5b:73:a8:4e:08:5f:90:38: 28:02:9c:3c:1d:dc:01:81:da:41:d5:c1:36:d0:6c: e7:6a:78:5a:91:b9:32:37:40:e7:15:64:a0:71:6b: 2d:17:1c:c0:5d:a9:cf:08:59:07:6c:8e:d0:df:6b: f9:30:2f:2a:29:b3:22:ca:5b:09:bf:3d:97:49:53: 3c:ae:23:26:5f:2d:2f:a7:3a:fb:7f:09:da:9f:11: 4a:d2:8d:77:b6:8b:d6:38:0f:c5:da:fd:68:90:0e: 03:2d:e7:7b:a7:9f:17:3b:4d:f3:32:fe:0d:e8:89: 80:a9:b9:71:a9:94:a5:ef:5f:c4:c8:cb:f5:03:55: b2:45:ea:5e:4b:04:17:ff:e7:57:0b:14:06:ae:c8: 2d:db:c7:fa:43:d5:0e:e7:96:56:71:ed:8c:fd:90: 5a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4B:33:0B:5C:08:30:3C:0C:84:BA:06:72:CD:95:58:F0:2C:C7:EA X509v3 Authority Key Identifier: keyid:81:A0:CF:9C:E9:AA:A9:90:ED:1A:FE:8A:83:0A:70:78:74:F9:AA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.56.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:ed:dd:2c:d4:1e:98:ec:54:a4:27:72:db:69:b0:d5:77:20: bd:1e:6d:65:2f:43:25:e5:0b:64:a8:39:59:bc:be:a9:f4:54: e6:49:0f:65:28:8d:6f:01:dc:cc:fe:2b:04:29:91:4f:21:4b: c3:50:47:f7:dd:30:43:69:be:1a:d8:e1:45:6c:2d:b7:80:09: 1f:43:73:9a:a4:eb:a8:e0:aa:6b:bd:9b:26:f7:13:5a:ac:c3: c0:6f:ef:f5:56:d1:eb:f2:30:57:93:10:86:91:90:07:da:60: 12:2c:a0:9b:c6:ae:5b:51:0f:68:36:72:10:50:d2:34:9d:51: 53:42:aa:80:b1:fd:49:b7:26:bc:6d:ab:4b:b0:f9:63:ea:81: 10:17:b3:da:d7:13:96:c5:e9:18:89:f5:d9:5e:09:8f:32:71: 19:04:eb:0b:24:e0:17:70:e1:83:37:e4:b5:95:0f:c9:47:5c: a8:d3:43:9d:28:7e:91:bc:71:42:d0:58:e5:4a:85:b6:0c:7d: 9c:8f:f6:84:aa:01:e1:69:f0:28:b7:e3:92:eb:d6:44:42:92: 7a:88:30:67:db:56:2e:c5:d1:95:82:24:c3:ec:53:4f:a3:fb: ff:d4:de:31:00:1a:4a:7a:f1:4a:a1:ac:5d:8d:5a:ad:8c:23: 21:37:09:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc0NTAxMTAvBgNVBAUTKDgxQTBDRjlDRTlBQUE5OTBFRDFBRkU4QTgzMEE3MDc4 NzRGOUFBQkUwHhcNMjUwNTAzMDU0MjIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YWNiZi1lZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeZ999PMAgCQj+7d3+QfHgxR+7PpfMfez4n+rGqEhARG0rvHiRS0eL7QWiND EkNWm+9Xk+krnfykj/y8e+NTlnF2mzvIptAvI546SR5D+gCeV8/WM9rhcjXoYL4w 6HayW3OoTghfkDgoApw8HdwBgdpB1cE20GznanhakbkyN0DnFWSgcWstFxzAXanP CFkHbI7Q32v5MC8qKbMiylsJvz2XSVM8riMmXy0vpzr7fwnanxFK0o13tovWOA/F 2v1okA4DLed7p58XO03zMv4N6ImAqblxqZSl71/EyMv1A1WyRepeSwQX/+dXCxQG rsgt28f6Q9UO55ZWce2M/ZBaywIDAQABo4IClTCCApEwHQYDVR0OBBYEFKBLMwtc CDA8DIS6BnLNlVjwLMfqMB8GA1UdIwQYMBaAFIGgz5zpqqmQ7Rr+ioMKcHh0+aq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzQ1MC84MkQ5QkEwNjI1 MzYxMUVGOUExQ0VGMjNDNEY5QUUwMi9nYURQbk9tcXFaRHRHdjZLZ3dwd2VIVDVx cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhRFBuT21xcVpEdEd2Nktnd3B3ZUhUNXFyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTc0NTAvODJEOUJBMDYyNTM2MTFFRjlBMUNFRjIzQzRGOUFFMDIvQjcxQzRGODAy NTM3MTFFRkExRDJBOTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnCTgwDQYJKoZIhvcNAQELBQADggEBABzt3SzUHpjsVKQn cttpsNV3IL0ebWUvQyXlC2SoOVm8vqn0VOZJD2UojW8B3Mz+KwQpkU8hS8NQR/fd MENpvhrY4UVsLbeACR9Dc5qk66jgqmu9myb3E1qsw8Bv7/VW0evyMFeTEIaRkAfa YBIsoJvGrltRD2g2chBQ0jSdUVNCqoCx/Um3Jrxtq0uw+WPqgRAXs9rXE5bF6RiJ 9dleCY8ycRkE6wsk4Bdw4YM35LWVD8lHXKjTQ50ofpG8cULQWOVKhbYMfZyP9oSq AeFp8Ci345Lr1kRCknqIMGfbVi7F0ZWCJMPsU0+j+//U3jEAGkp68UqhrF2NWq2M IyE3Ce4= -----END CERTIFICATE-----Generated at Thu May 15 16:05:06 2025 by rpki-client