$ rpki-client -vvf rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa File: F9B8A0AEB04911EE98449A2BC4F9AE02.roa (raw, json) Hash identifier: K1vHSv3K4UpAg/heoh8ddgfPtcSWtBerkM6jq/2Qdbc= Subject key identifier: 83:F3:8F:C3:69:36:4B:5C:D4:5D:03:B2:2C:AB:5F:48:55:0D:6B:30 Certificate issuer: /CN=A916002E/serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Certificate serial: 0104 Authority key identifier: 04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa Signing time: Thu 08 May 2025 08:04:58 +0000 ROA not before: Thu 08 May 2025 08:04:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 17456 IP address blocks: 103.212.24.0/22 maxlen: 22 103.212.26.0/24 maxlen: 24 139.5.136.0/22 maxlen: 22 203.95.8.0/21 maxlen: 21 2402:6200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916002E, serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Validity Not Before: May 8 08:04:58 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=681c65a9-9957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:aa:1b:6c:30:ae:6c:7e:73:28:94:3c:1d: 12:5d:cb:c7:b3:c3:2d:03:17:5d:27:a3:6b:48:e0: b8:09:e6:1e:9d:fa:97:d8:88:d3:55:ce:d5:16:5c: 72:51:88:ae:f9:ba:91:3a:17:8f:d2:69:84:44:09: fb:77:e6:e4:01:56:f8:5d:e4:e5:4d:3a:19:d9:b9: 10:4e:e7:7b:e4:43:39:03:a5:d4:ae:e0:e7:38:10: c1:65:f6:06:7e:80:15:84:79:3d:7f:99:da:4a:be: 43:22:0e:8c:5a:69:5c:e7:fb:32:23:7d:dc:5b:e2: 38:92:55:2d:a6:46:78:08:99:06:10:d8:6c:f3:fa: 3d:2b:fe:b4:b6:bf:28:57:ac:de:5a:e8:82:a0:e4: 48:67:7e:b9:14:f3:a2:fb:d5:34:82:24:da:03:04: 4d:d3:b3:86:cb:7a:94:56:b2:41:6f:82:f1:75:df: e1:f8:a3:4e:8b:47:ad:7a:0c:99:7d:34:96:b2:c6: 01:94:93:79:6c:6c:82:0e:e1:09:48:b3:48:d0:b6: b2:3a:6e:b6:fd:b6:88:6e:b5:17:56:81:68:ec:d1: 6e:c4:0a:7a:03:ae:c4:29:9c:57:a8:04:86:8f:da: 53:81:b9:bf:4c:90:f9:89:ce:29:54:78:f5:e2:12: e4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F3:8F:C3:69:36:4B:5C:D4:5D:03:B2:2C:AB:5F:48:55:0D:6B:30 X509v3 Authority Key Identifier: keyid:04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.24.0/22 139.5.136.0/22 203.95.8.0/21 IPv6: 2402:6200::/32 Signature Algorithm: sha256WithRSAEncryption 4a:4e:00:ed:72:51:df:51:7e:76:09:33:dc:a3:63:f4:2d:25: 89:d9:cd:ed:ee:f3:55:84:d7:46:1f:bb:c0:85:e3:e2:fb:17: 4f:14:fd:c5:07:94:7a:08:7c:8a:a5:9e:2e:88:35:e6:d6:23: e8:af:32:7b:4e:f7:a3:52:7a:c7:fc:06:8e:cb:04:f8:70:f7: 78:5d:eb:01:ec:7d:ca:e7:ea:b6:33:e1:b8:ca:4d:dd:e0:41: d5:0d:4c:b8:9b:79:a5:e6:d3:b9:e5:98:6f:59:a5:e9:fd:82: 83:e1:91:3d:ef:44:42:71:eb:5f:73:48:23:62:aa:8c:ac:29: 72:a9:4f:03:2f:42:86:9a:47:f8:cd:98:69:e3:0b:4d:95:f1: e0:24:3a:11:a7:28:fe:39:65:a0:68:51:84:4e:4e:b8:6a:b0: 4f:c8:78:f6:70:74:4b:89:a2:cf:97:29:0d:68:1b:03:52:8c: 7e:eb:97:33:a6:de:6a:0b:78:21:78:a4:e7:54:2a:11:04:f0: e3:dc:aa:c0:f6:74:e8:24:0a:10:fa:fb:36:5a:a6:39:e4:71: a4:f4:1a:cc:f0:35:29:64:a9:46:0e:60:ee:1a:df:28:ac:71: 63:88:7d:90:aa:f6:a7:57:ad:70:0b:e1:8d:40:61:49:a4:e7: 40:d1:f5:5f -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAwMkUxMTAvBgNVBAUTKDA0QTU1RjdBQjNBRTM5OUQ0RjI1N0Q0RkQyODlCMTA1 ODA4RTVDM0MwHhcNMjUwNTA4MDgwNDU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjNjVhOS05OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0yqG2wwrmx+cyiUPB0SXcvHs8MtAxddJ6NrSOC4CeYenfqX2IjTVc7VFlxy UYiu+bqROheP0mmERAn7d+bkAVb4XeTlTToZ2bkQTud75EM5A6XUruDnOBDBZfYG foAVhHk9f5naSr5DIg6MWmlc5/syI33cW+I4klUtpkZ4CJkGENhs8/o9K/60tr8o V6zeWuiCoORIZ365FPOi+9U0giTaAwRN07OGy3qUVrJBb4Lxdd/h+KNOi0etegyZ fTSWssYBlJN5bGyCDuEJSLNI0LayOm62/baIbrUXVoFo7NFuxAp6A67EKZxXqASG j9pTgbm/TJD5ic4pVHj14hLkdwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIPzj8Np Nktc1F0DsiyrX0hVDWswMB8GA1UdIwQYMBaAFASlX3qzrjmdTyV9T9KJsQWAjlw8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDAyRS9GMjg3RDMwQUIw MTExMUVFQkM1ODY5NjRDNEY5QUUwMi9CS1ZmZXJPdU9aMVBKWDFQMG9teEJZQ09Y RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLVmZlck91T1oxUEpYMVAwb214QllDT1hEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjAwMkUvRjI4N0QzMEFCMDExMTFFRUJDNTg2OTY0QzRGOUFFMDIvRjlCOEEwQUVC MDQ5MTFFRTk4NDQ5QTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJn1BgDBAKLBYgDBAPLXwgwDQQCAAIwBwMFACQCYgAwDQYJ KoZIhvcNAQELBQADggEBAEpOAO1yUd9RfnYJM9yjY/QtJYnZze3u81WE10Yfu8CF 4+L7F08U/cUHlHoIfIqlni6INebWI+ivMntO96NSesf8Bo7LBPhw93hd6wHsfcrn 6rYz4bjKTd3gQdUNTLibeaXm07nlmG9Zpen9goPhkT3vREJx619zSCNiqoysKXKp TwMvQoaaR/jNmGnjC02V8eAkOhGnKP45ZaBoUYROTrhqsE/IePZwdEuJos+XKQ1o GwNSjH7rlzOm3moLeCF4pOdUKhEE8OPcqsD2dOgkChD6+zZapjnkcaT0GszwNSlk qUYOYO4a3yiscWOIfZCq9qdXrXAL4Y1AYUmk50DR9V8= -----END CERTIFICATE-----Generated at Tue May 13 19:22:37 2025 by rpki-client