$ rpki-client -vvf rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/CC72753A7CE511E985E29B7BC4F9AE02.roa File: CC72753A7CE511E985E29B7BC4F9AE02.roa (raw, json) Hash identifier: UGdOvww/zqYEiJCbgpSOvpp5LjsG3mU+jjIktHieTx8= Subject key identifier: C8:C2:DE:4F:9B:06:A5:2A:C5:E8:1C:4E:E3:C7:12:4A:6B:BB:FB:AF Certificate issuer: /CN=A9169CEB/serialNumber=895DA68BAD8A7F9D3178856C7B62E9C1688B2B73 Certificate serial: 0F77 Authority key identifier: 89:5D:A6:8B:AD:8A:7F:9D:31:78:85:6C:7B:62:E9:C1:68:8B:2B:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/CC72753A7CE511E985E29B7BC4F9AE02.roa Signing time: Fri 02 May 2025 17:57:45 +0000 ROA not before: Fri 02 May 2025 17:57:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139002 IP address blocks: 103.138.94.0/24 maxlen: 24 2001:df0:3a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.crl rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3959 (0xf77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169CEB, serialNumber=895DA68BAD8A7F9D3178856C7B62E9C1688B2B73 Validity Not Before: May 2 17:57:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68150799-129f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:97:c1:1d:cc:fd:dd:20:31:e0:47:0d:dd:1d: e4:08:9a:06:d9:60:7b:14:fd:05:85:e0:3e:1e:30: 9e:eb:c1:06:d7:38:1a:22:11:c3:54:30:3e:c8:07: 86:9a:42:ba:10:96:31:43:57:92:50:96:e1:8f:c1: a6:f3:a1:e2:00:60:0f:46:d0:d7:95:4f:21:27:90: d7:ea:d4:7f:51:70:50:99:78:f1:5f:41:a4:c7:ec: 5d:d2:c8:6b:59:6c:f0:3c:b1:eb:9a:5d:b5:82:68: d1:ab:51:2f:a3:85:01:5e:82:a7:ec:b6:94:f1:0d: 2a:6f:42:ad:ea:51:2d:3a:74:53:ed:aa:ae:d7:e6: 3b:73:54:8c:e9:27:1a:18:75:64:68:c9:68:e5:50: 09:58:26:4e:99:2a:b6:2d:53:e7:37:9d:60:bc:51: 4c:35:66:3f:10:ab:66:72:2b:27:47:57:64:91:ca: 79:05:0a:2b:a7:36:54:bd:bd:59:4c:bd:9d:e7:8d: 9d:a1:ea:32:a5:31:ed:29:fc:8b:91:66:bd:7c:08: 71:4e:ca:1e:9b:a4:fb:bc:5c:20:58:13:4f:c7:51: 16:8a:52:92:86:c9:ee:2f:64:48:6e:ce:10:2c:ab: 68:4a:36:2d:43:65:a2:77:c2:79:3c:95:58:19:46: 9b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C2:DE:4F:9B:06:A5:2A:C5:E8:1C:4E:E3:C7:12:4A:6B:BB:FB:AF X509v3 Authority Key Identifier: keyid:89:5D:A6:8B:AD:8A:7F:9D:31:78:85:6C:7B:62:E9:C1:68:8B:2B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/CC72753A7CE511E985E29B7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.94.0/24 IPv6: 2001:df0:3a80::/48 Signature Algorithm: sha256WithRSAEncryption 00:2a:87:58:36:5b:d7:9b:ea:4f:43:94:61:fe:d9:0b:0a:36: 4a:7c:d1:1c:7a:c8:d8:99:62:4f:d4:38:49:a3:cd:e7:c7:8f: 1e:04:ec:aa:f8:57:13:81:ce:28:dc:c3:5f:e2:14:7c:01:54: 5c:f4:7e:56:b8:87:c7:68:93:8e:a3:00:c2:29:aa:a8:fe:68: 00:4b:12:95:6b:0c:cc:21:e8:39:84:27:bb:4c:be:35:18:89: ed:be:6f:36:43:8d:82:21:ff:b0:e5:bb:a7:4d:16:09:6f:8d: 38:87:78:65:28:4a:31:e6:c5:fc:7b:bd:d6:ec:17:7b:8d:33: 63:e0:7f:62:44:e6:f8:7c:fd:3f:f7:d5:f9:fb:62:db:0a:5c: 48:bf:e1:28:98:56:c6:10:e6:9f:52:16:cf:28:d4:b8:98:0e: 2f:a8:66:6f:1a:9f:70:b3:2a:3d:93:51:06:d8:2c:b9:09:22: 6a:af:a0:16:19:c9:ec:b3:d3:88:23:89:d7:19:6b:bf:63:af: 9c:ce:77:dc:83:23:09:54:15:7b:0e:97:83:9e:02:7e:4d:06: 9e:6a:35:87:30:32:9c:2e:d0:b0:8a:3e:b8:31:b3:39:25:50: 1a:86:8a:eb:0e:e9:c2:75:2c:12:12:76:56:6d:83:56:91:06: 66:19:1b:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICD3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDRUIxMTAvBgNVBAUTKDg5NURBNjhCQUQ4QTdGOUQzMTc4ODU2QzdCNjJFOUMx Njg4QjJCNzMwHhcNMjUwNTAyMTc1NzQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc5OS0xMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupfBHcz93SAx4EcN3R3kCJoG2WB7FP0FheA+HjCe68EG1zgaIhHDVDA+yAeG mkK6EJYxQ1eSUJbhj8Gm86HiAGAPRtDXlU8hJ5DX6tR/UXBQmXjxX0Gkx+xd0shr WWzwPLHrml21gmjRq1Evo4UBXoKn7LaU8Q0qb0Kt6lEtOnRT7aqu1+Y7c1SM6Sca GHVkaMlo5VAJWCZOmSq2LVPnN51gvFFMNWY/EKtmcisnR1dkkcp5BQorpzZUvb1Z TL2d542doeoypTHtKfyLkWa9fAhxTsoem6T7vFwgWBNPx1EWilKShsnuL2RIbs4Q LKtoSjYtQ2Wid8J5PJVYGUab8wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMjC3k+b BqUqxegcTuPHEkpru/uvMB8GA1UdIwQYMBaAFIldpoutin+dMXiFbHti6cFoiytz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUNFQi83REE1ODNFNDY1 NTYxMUU5ODU4MTBEMzdDNEY5QUUwMi9pVjJtaTYyS2Y1MHhlSVZzZTJMcHdXaUxL M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWMm1pNjJLZjUweGVJVnNlMkxwd1dpTEszTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlDRUIvN0RBNTgzRTQ2NTU2MTFFOTg1ODEwRDM3QzRGOUFFMDIvQ0M3Mjc1M0E3 Q0U1MTFFOTg1RTI5QjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnil4wDwQCAAIwCQMHACABDfA6gDANBgkqhkiG9w0BAQsF AAOCAQEAACqHWDZb15vqT0OUYf7ZCwo2SnzRHHrI2JliT9Q4SaPN58ePHgTsqvhX E4HOKNzDX+IUfAFUXPR+VriHx2iTjqMAwimqqP5oAEsSlWsMzCHoOYQnu0y+NRiJ 7b5vNkONgiH/sOW7p00WCW+NOId4ZShKMebF/Hu91uwXe40zY+B/YkTm+Hz9P/fV +fti2wpcSL/hKJhWxhDmn1IWzyjUuJgOL6hmbxqfcLMqPZNRBtgsuQkiaq+gFhnJ 7LPTiCOJ1xlrv2OvnM533IMjCVQVew6Xg54Cfk0Gnmo1hzAynC7QsIo+uDGzOSVQ GoaK6w7pwnUsEhJ2Vm2DVpEGZhkbpw== -----END CERTIFICATE-----Generated at Wed May 14 19:29:27 2025 by rpki-client