$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa File: 9BC1D2907EDF11EE86C6A27BC4F9AE02.roa (raw, json) Hash identifier: aXPGPliFMNRdmipqY0pnCkYXCLYjrZXxds+RZFMmzeM= Subject key identifier: 4B:7D:5B:1A:31:4B:41:81:BD:50:FA:1E:C3:6B:24:D2:65:4E:66:1F Certificate issuer: /CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Certificate serial: 017E Authority key identifier: 4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa Signing time: Sat 03 May 2025 03:39:54 +0000 ROA not before: Sat 03 May 2025 03:39:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150142 IP address blocks: 103.213.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3C, serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Validity Not Before: May 3 03:39:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6815900a-ab7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:8a:f8:10:06:52:53:74:13:f2:11:c1:cc: 37:11:d0:aa:ab:7b:ab:0b:58:36:59:f0:35:ca:96: 5e:7c:d1:cb:6d:b8:33:55:b0:0b:6b:01:43:0d:91: 04:e2:f8:c0:ac:56:e1:d2:ee:8a:52:b7:88:77:5a: f0:db:fa:f5:ab:4b:74:aa:37:cf:d9:62:3e:77:18: 2c:eb:b3:b7:d3:f6:41:94:03:6c:04:97:3b:33:21: 7d:c8:a6:dc:e1:1b:c5:fa:92:be:6f:f5:50:77:d7: 90:a1:10:44:46:fb:49:3f:6b:36:ae:65:9e:65:77: 8d:f5:2b:d5:5b:93:36:9d:74:e9:11:bf:83:11:c9: 55:4f:2c:9e:4a:f8:98:d7:1f:99:df:f6:b9:46:1e: c3:4b:b5:ea:d6:f5:d2:44:27:4d:c7:17:2c:0b:57: 77:79:ab:e2:f3:17:52:82:f9:36:8c:55:b4:9b:98: 56:4d:78:22:9a:1c:80:da:5d:b6:09:0e:13:3d:65: 91:30:e7:35:21:22:b5:77:e9:1c:6c:63:1e:71:f9: 19:97:81:00:9d:8c:6b:87:49:22:8c:f5:3e:d5:b7: 21:a2:0e:60:6d:19:df:43:80:3d:ec:ed:01:1f:44: 9f:8f:1c:59:62:88:8e:7d:8f:56:d6:b7:a8:5a:7c: 59:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7D:5B:1A:31:4B:41:81:BD:50:FA:1E:C3:6B:24:D2:65:4E:66:1F X509v3 Authority Key Identifier: keyid:4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.38.0/24 Signature Algorithm: sha256WithRSAEncryption 52:23:ad:8a:58:c1:aa:77:aa:b8:16:43:3f:3a:15:2b:e7:e4: 30:e7:5e:e4:85:1b:4e:4e:5e:e0:b6:17:f5:a2:cc:34:bf:52: a8:46:b5:16:a4:a2:b7:be:2e:22:66:97:75:9c:d2:5c:9b:72: dd:4e:0c:1e:68:ed:0c:fd:bc:f0:87:52:5b:84:fa:62:c3:6c: b0:6c:cf:49:35:7b:15:02:f9:1e:74:0b:91:62:d5:81:d0:52: af:47:12:ff:42:72:e4:b9:eb:97:cc:cc:22:9a:93:06:79:8a: 5c:ce:26:4e:6d:49:a2:57:2a:a4:e1:e5:28:86:6b:44:4f:b2: e2:04:c9:8a:9f:6c:2d:43:7d:a2:93:43:11:b6:e1:cc:1d:13: c1:bc:20:bd:85:61:e7:24:ba:30:cf:8d:78:27:bc:ce:87:f6: 03:7b:df:e3:ea:bf:ad:33:3e:59:0f:b7:bb:32:db:9a:c7:9e: 72:2d:a4:09:15:1d:d6:7b:a6:b8:ad:dc:75:31:d4:a1:55:8e: 4e:ca:33:ce:63:95:ce:2e:13:8a:6c:28:5b:06:67:b0:ae:3c: 49:d2:83:f0:c9:c3:9f:74:d2:08:43:6d:f8:81:cc:ae:d6:ed: 50:34:ca:61:15:bc:16:ab:b6:70:00:b1:a2:61:88:7f:78:97: 45:f6:60:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0MxMTAvBgNVBAUTKDRERUUwODM2RkEwRjdFRTkyQzJFNkE2QzE5ODAxNkRF OENGOEJGMTYwHhcNMjUwNTAzMDMzOTU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1OTAwYS1hYjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcSK+BAGUlN0E/IRwcw3EdCqq3urC1g2WfA1ypZefNHLbbgzVbALawFDDZEE 4vjArFbh0u6KUreId1rw2/r1q0t0qjfP2WI+dxgs67O30/ZBlANsBJc7MyF9yKbc 4RvF+pK+b/VQd9eQoRBERvtJP2s2rmWeZXeN9SvVW5M2nXTpEb+DEclVTyyeSviY 1x+Z3/a5Rh7DS7Xq1vXSRCdNxxcsC1d3eavi8xdSgvk2jFW0m5hWTXgimhyA2l22 CQ4TPWWRMOc1ISK1d+kcbGMecfkZl4EAnYxrh0kijPU+1bchog5gbRnfQ4A97O0B H0SfjxxZYoiOfY9W1reoWnxZTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEt9Wxox S0GBvVD6HsNrJNJlTmYfMB8GA1UdIwQYMBaAFE3uCDb6D37pLC5qbBmAFt6M+L8W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzQy8xMjcxNTdGMjA1 NkExMUVFQjg4NzAwMTNDNEY5QUUwMi9UZTRJTnZvUGZ1a3NMbXBzR1lBVzNvejR2 eFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlNElOdm9QZnVrc0xtcHNHWUFXM296NHZ4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0MvMTI3MTU3RjIwNTZBMTFFRUI4ODcwMDEzQzRGOUFFMDIvOUJDMUQyOTA3 RURGMTFFRTg2QzZBMjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1SYwDQYJKoZIhvcNAQELBQADggEBAFIjrYpYwap3qrgW Qz86FSvn5DDnXuSFG05OXuC2F/WizDS/UqhGtRakore+LiJml3Wc0lybct1ODB5o 7Qz9vPCHUluE+mLDbLBsz0k1exUC+R50C5Fi1YHQUq9HEv9CcuS565fMzCKakwZ5 ilzOJk5tSaJXKqTh5SiGa0RPsuIEyYqfbC1DfaKTQxG24cwdE8G8IL2FYeckujDP jXgnvM6H9gN73+Pqv60zPlkPt7sy25rHnnItpAkVHdZ7prit3HUx1KFVjk7KM85j lc4uE4psKFsGZ7CuPEnSg/DJw5900ghDbfiBzK7W7VA0ymEVvBartnAAsaJhiH94 l0X2YC4= -----END CERTIFICATE-----Generated at Thu May 15 12:23:06 2025 by rpki-client