$ rpki-client -vvf rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/A9D77A74303B11F09861D972C4F9AE02.roa File: A9D77A74303B11F09861D972C4F9AE02.roa (raw, json) Hash identifier: upearG3OOzCwYgAqeyBFnYcYU7ZV5h8gPyMBSHU5ybc= Subject key identifier: E4:BF:DF:D2:E9:57:1F:06:3C:36:8C:8F:BC:B6:A3:4E:F8:A1:9F:60 Certificate issuer: /CN=A917315B/serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0 Certificate serial: 0318 Authority key identifier: 19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/A9D77A74303B11F09861D972C4F9AE02.roa Signing time: Tue 13 May 2025 20:49:37 +0000 ROA not before: Tue 13 May 2025 20:49:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 208171 IP address blocks: 103.189.191.0/24 maxlen: 24 2001:df0:d840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917315B, serialNumber=196F92773293E4954B4D97A5D37AC820A745C2E0 Validity Not Before: May 13 20:49:37 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6823b060-1014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:0d:48:aa:8f:f1:1e:7e:6c:3d:57:41:ab: 3f:54:64:39:49:17:32:50:6e:4e:e4:ff:dc:4f:dc: f0:04:8e:d7:e2:51:15:3e:72:6e:dd:36:b9:ed:67: f5:3a:9e:4b:9a:b3:fb:a4:89:d1:9c:6b:f7:fd:20: 31:c9:13:3e:2f:0a:c7:e5:2c:54:05:d4:21:68:d3: 82:34:6d:51:7b:8a:a0:8e:be:64:1f:b4:b6:a7:6e: 84:85:5a:d4:89:c8:e5:3c:ff:ac:2a:c9:46:fe:ce: d8:58:d4:ba:74:25:be:33:60:85:4e:1e:ea:73:3b: 04:21:ae:ba:1c:be:b0:50:90:1a:d2:f0:ee:37:39: 84:6a:e9:7b:53:b5:c9:ef:0e:21:be:7d:18:81:d7: 9d:98:25:b5:4a:af:58:65:f0:4d:be:fd:74:24:03: 27:4d:dd:96:d3:45:0a:ec:8a:37:c6:d0:66:74:0c: 3f:e4:ef:64:a2:f2:e5:6a:06:2b:55:95:e8:9d:89: 75:77:f7:4a:7e:82:30:c9:8d:f7:3c:60:a1:28:6f: 86:b7:d6:41:92:25:f8:7f:1a:55:45:b5:fa:a3:5f: ab:11:ae:32:88:4e:83:50:2b:c0:8b:d2:8f:ab:db: 93:46:95:9e:85:f3:51:d9:5d:c7:53:8e:8a:e6:0c: 2c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BF:DF:D2:E9:57:1F:06:3C:36:8C:8F:BC:B6:A3:4E:F8:A1:9F:60 X509v3 Authority Key Identifier: keyid:19:6F:92:77:32:93:E4:95:4B:4D:97:A5:D3:7A:C8:20:A7:45:C2:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/GW-SdzKT5JVLTZel03rIIKdFwuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW-SdzKT5JVLTZel03rIIKdFwuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917315B/D735A3B4ED4B11ECA9553778C4F9AE02/A9D77A74303B11F09861D972C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.191.0/24 IPv6: 2001:df0:d840::/48 Signature Algorithm: sha256WithRSAEncryption b9:95:33:6d:e3:cb:0c:7d:16:4f:b0:9b:b1:b9:d1:31:06:c6: f8:54:8d:30:73:d7:2b:64:e1:82:a5:be:ac:67:f2:8e:d6:ed: 18:b6:6d:d7:b5:f1:54:bd:f5:b4:41:26:ba:1f:55:4a:0a:b4: 29:31:a0:29:85:b7:51:48:3e:4d:d4:e8:3f:e8:d6:61:1b:41: 8b:a8:7e:0b:3c:02:fe:ee:57:1a:72:ed:89:f7:54:09:79:36: fe:15:ca:92:33:72:f2:e3:da:ad:31:b1:54:fe:09:8f:3a:e1: 1b:0a:bf:e9:6b:af:90:e5:0b:bd:a0:8c:6d:94:48:a9:32:e9: c0:ab:0c:e7:66:30:b7:85:ed:4c:62:13:ea:9f:43:e2:0a:1f: a3:1f:bc:f0:e7:00:ef:dc:c4:2b:d9:95:d1:71:0d:bb:ef:46: 79:fa:d9:aa:0b:3e:a5:36:41:b0:1c:ba:29:96:f0:04:2e:fe: f3:d6:6f:95:f3:3a:69:df:c2:86:40:f1:a5:27:1a:ab:44:fb: d8:95:de:9a:6a:46:0e:4c:bf:94:12:4a:f9:c1:03:b1:4d:80: cd:f0:b5:e7:f9:1e:19:89:ee:3e:18:fa:c6:fa:a4:4a:8b:99: ab:22:70:94:1b:08:45:32:10:64:fd:7b:67:37:c9:02:eb:47: 71:5e:3d:13 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNUIxMTAvBgNVBAUTKDE5NkY5Mjc3MzI5M0U0OTU0QjREOTdBNUQzN0FDODIw QTc0NUMyRTAwHhcNMjUwNTEzMjA0OTM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIzYjA2MC0xMDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9wNSKqP8R5+bD1XQas/VGQ5SRcyUG5O5P/cT9zwBI7X4lEVPnJu3Ta57Wf1 Op5LmrP7pInRnGv3/SAxyRM+LwrH5SxUBdQhaNOCNG1Re4qgjr5kH7S2p26EhVrU icjlPP+sKslG/s7YWNS6dCW+M2CFTh7qczsEIa66HL6wUJAa0vDuNzmEaul7U7XJ 7w4hvn0YgdedmCW1Sq9YZfBNvv10JAMnTd2W00UK7Io3xtBmdAw/5O9kovLlagYr VZXonYl1d/dKfoIwyY33PGChKG+Gt9ZBkiX4fxpVRbX6o1+rEa4yiE6DUCvAi9KP q9uTRpWehfNR2V3HU46K5gwsvQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOS/39Lp Vx8GPDaMj7y2o074oZ9gMB8GA1UdIwQYMBaAFBlvkncyk+SVS02XpdN6yCCnRcLg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE1Qi9ENzM1QTNCNEVE NEIxMUVDQTk1NTM3NzhDNEY5QUUwMi9HVy1TZHpLVDVKVkxUWmVsMDNySUlLZEZ3 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dXLVNkektUNUpWTFRaZWwwM3JJSUtkRnd1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxNUIvRDczNUEzQjRFRDRCMTFFQ0E5NTUzNzc4QzRGOUFFMDIvQTlENzdBNzQz MDNCMTFGMDk4NjFEOTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnvb8wDwQCAAIwCQMHACABDfDYQDANBgkqhkiG9w0BAQsF AAOCAQEAuZUzbePLDH0WT7CbsbnRMQbG+FSNMHPXK2ThgqW+rGfyjtbtGLZt17Xx VL31tEEmuh9VSgq0KTGgKYW3UUg+TdToP+jWYRtBi6h+CzwC/u5XGnLtifdUCXk2 /hXKkjNy8uParTGxVP4JjzrhGwq/6WuvkOULvaCMbZRIqTLpwKsM52Ywt4XtTGIT 6p9D4gofox+88OcA79zEK9mV0XENu+9GefrZqgs+pTZBsBy6KZbwBC7+89ZvlfM6 ad/ChkDxpScaq0T72JXemmpGDky/lBJK+cEDsU2AzfC15/keGYnuPhj6xvqkSouZ qyJwlBsIRTIQZP17ZzfJAutHcV49Ew== -----END CERTIFICATE-----Generated at Sat May 17 07:08:14 2025 by rpki-client