$ rpki-client -vvf rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/9CAFFE72B58F11ECBCF10934C4F9AE02.roa File: 9CAFFE72B58F11ECBCF10934C4F9AE02.roa (raw, json) Hash identifier: pgajZ3VJQpgDJGVaoR7CuOxH3YcIXoTwpkhUZA61CNs= Subject key identifier: 83:AB:6A:00:01:F5:20:A3:E3:C5:5D:22:2A:8A:33:BC:91:31:95:A5 Certificate issuer: /CN=A917275D/serialNumber=6A0CCCBF093FF1036FBA032CA51DE013A64B4B8B Certificate serial: 0351 Authority key identifier: 6A:0C:CC:BF:09:3F:F1:03:6F:BA:03:2C:A5:1D:E0:13:A6:4B:4B:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/9CAFFE72B58F11ECBCF10934C4F9AE02.roa Signing time: Fri 09 May 2025 01:14:15 +0000 ROA not before: Fri 09 May 2025 01:14:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149771 IP address blocks: 103.185.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.crl rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917275D, serialNumber=6A0CCCBF093FF1036FBA032CA51DE013A64B4B8B Validity Not Before: May 9 01:14:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681d56e7-4ac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1b:74:a1:41:f7:8f:06:b6:7f:15:57:f0:20: e0:cb:4f:bd:39:32:b0:e4:33:ec:6d:9f:e1:5c:e7: b5:fc:10:19:52:01:89:04:85:a3:11:b7:4e:78:bb: fc:ed:ac:7d:55:52:bd:4f:92:fd:dc:f2:86:33:c3: 5c:f4:7c:22:ed:46:6b:dd:62:f5:76:46:24:66:21: 71:ab:1f:b9:5f:6a:29:3a:6c:76:55:67:ec:76:e3: 0d:25:af:2d:01:3a:ad:48:83:6a:4b:4a:eb:a6:9c: 9c:96:6a:ac:ba:19:d1:2e:97:b8:03:6e:89:02:8e: ef:59:d6:0e:84:36:bb:d8:71:dc:ea:47:d6:3b:fd: b9:38:76:53:55:7f:ec:2e:07:5b:23:d8:94:45:0c: 2a:c5:bd:8f:02:33:03:41:86:79:21:5c:7c:b2:7e: dd:1e:35:ab:b3:57:7e:5f:98:1d:94:08:a7:a7:46: f3:29:9e:d9:65:61:fe:06:93:75:e4:f4:6a:fe:a0: 28:a0:0e:01:7f:e7:86:84:ae:98:b2:11:72:ba:01: 90:bb:13:41:54:f5:39:d2:1f:a5:9a:e7:80:77:e0: 39:8a:53:0e:2d:2b:94:32:36:86:b3:5f:4a:dd:c2: 8c:6b:78:77:8a:01:9e:6b:26:f9:e7:9a:7d:fe:17: 8e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AB:6A:00:01:F5:20:A3:E3:C5:5D:22:2A:8A:33:BC:91:31:95:A5 X509v3 Authority Key Identifier: keyid:6A:0C:CC:BF:09:3F:F1:03:6F:BA:03:2C:A5:1D:E0:13:A6:4B:4B:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/agzMvwk_8QNvugMspR3gE6ZLS4s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/agzMvwk_8QNvugMspR3gE6ZLS4s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917275D/9DABF022B58C11EC9AFB8731C4F9AE02/9CAFFE72B58F11ECBCF10934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.231.0/24 Signature Algorithm: sha256WithRSAEncryption 63:94:0e:65:20:04:d7:df:9d:b9:f4:87:a1:8e:af:77:38:46: c8:06:12:28:c5:23:fb:77:25:2b:ed:a6:b5:fe:ae:76:ec:1b: 10:5d:3f:fd:c4:89:f8:da:0b:1a:e4:3d:b8:bb:28:cd:77:13: 0d:49:ba:48:43:a5:a8:8a:31:fc:eb:d1:48:d8:4a:77:bc:ab: 1f:bf:7a:8e:11:de:d6:45:21:9a:9a:b3:4c:15:98:10:a1:92: 81:8b:3a:1e:94:54:64:cb:3d:cf:21:15:05:82:3a:e7:5d:a7: 59:07:28:d2:88:cf:22:88:70:1b:f7:6c:d6:e5:cf:c6:e7:63: c4:5e:fb:eb:ca:90:98:2d:ab:69:ad:68:a9:a7:77:fa:3c:76: 02:1b:7e:9a:30:30:a1:c5:8c:8a:0d:cb:4f:6e:f9:f9:76:ad: c9:8f:01:aa:c8:18:e7:d2:50:1b:a8:61:8c:40:97:40:9e:a9: ae:ed:95:ac:a0:38:c1:36:ba:34:5a:93:66:96:b9:5d:f5:e3: c6:24:6c:83:8c:b6:29:3b:65:20:b9:57:39:9a:98:01:5e:90: 03:a0:c7:20:b7:ff:5b:e0:9e:67:7a:3a:a8:dc:54:59:3e:00: 6a:71:c3:b0:4e:e9:2c:32:0c:1e:57:92:71:65:32:c2:14:43: e7:0c:17:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3NUQxMTAvBgNVBAUTKDZBMENDQ0JGMDkzRkYxMDM2RkJBMDMyQ0E1MURFMDEz QTY0QjRCOEIwHhcNMjUwNTA5MDExNDE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNTZlNy00YWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bt0oUH3jwa2fxVX8CDgy0+9OTKw5DPsbZ/hXOe1/BAZUgGJBIWjEbdOeLv8 7ax9VVK9T5L93PKGM8Nc9Hwi7UZr3WL1dkYkZiFxqx+5X2opOmx2VWfsduMNJa8t ATqtSINqS0rrppyclmqsuhnRLpe4A26JAo7vWdYOhDa72HHc6kfWO/25OHZTVX/s LgdbI9iURQwqxb2PAjMDQYZ5IVx8sn7dHjWrs1d+X5gdlAinp0bzKZ7ZZWH+BpN1 5PRq/qAooA4Bf+eGhK6YshFyugGQuxNBVPU50h+lmueAd+A5ilMOLSuUMjaGs19K 3cKMa3h3igGeayb555p9/heOVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIOragAB 9SCj48VdIiqKM7yRMZWlMB8GA1UdIwQYMBaAFGoMzL8JP/EDb7oDLKUd4BOmS0uL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjc1RC85REFCRjAyMkI1 OEMxMUVDOUFGQjg3MzFDNEY5QUUwMi9hZ3pNdndrXzhRTnZ1Z01zcFIzZ0U2WkxT NHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fnek12d2tfOFFOdnVnTXNwUjNnRTZaTFM0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI3NUQvOURBQkYwMjJCNThDMTFFQzlBRkI4NzMxQzRGOUFFMDIvOUNBRkZFNzJC NThGMTFFQ0JDRjEwOTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnuecwDQYJKoZIhvcNAQELBQADggEBAGOUDmUgBNffnbn0 h6GOr3c4RsgGEijFI/t3JSvtprX+rnbsGxBdP/3EifjaCxrkPbi7KM13Ew1JukhD paiKMfzr0UjYSne8qx+/eo4R3tZFIZqas0wVmBChkoGLOh6UVGTLPc8hFQWCOudd p1kHKNKIzyKIcBv3bNblz8bnY8Re++vKkJgtq2mtaKmnd/o8dgIbfpowMKHFjIoN y09u+fl2rcmPAarIGOfSUBuoYYxAl0Ceqa7tlaygOME2ujRak2aWuV3148YkbIOM tik7ZSC5VzmamAFekAOgxyC3/1vgnmd6OqjcVFk+AGpxw7BO6SwyDB5XknFlMsIU Q+cMF3Q= -----END CERTIFICATE-----Generated at Tue May 13 15:13:10 2025 by rpki-client