$ rpki-client -vvf rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa File: 899A5138691611EFBED13942C4F9AE02.roa (raw, json) Hash identifier: VYrhe6Mi0RTaO+P8HqkxU1Qva61wirf2XWWIcdNAN4k= Subject key identifier: 63:A7:FF:FD:54:1F:25:B7:DB:71:83:3C:B2:9A:71:5F:3A:7F:77:F2 Certificate issuer: /CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Certificate serial: 0629 Authority key identifier: 80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa Signing time: Fri 16 May 2025 23:33:12 +0000 ROA not before: Fri 16 May 2025 23:33:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.136.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175155, serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Validity Not Before: May 16 23:33:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6827cb38-3243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:0e:74:c8:6f:a3:c5:16:f2:9a:ea:fc:32: 00:66:bc:7a:89:4c:6e:1a:86:aa:b0:f0:21:bf:2a: f5:1d:cc:12:98:9c:01:24:b7:74:e7:0f:a8:d6:cf: 1c:81:c6:8b:c1:fe:28:38:7b:8a:d3:ed:73:e0:ec: 80:25:29:46:93:df:ae:7d:73:05:cd:3a:4c:45:06: 8a:88:70:43:35:5e:f4:83:62:e8:16:82:ba:8d:27: f0:22:fc:42:b3:1b:07:18:bb:79:ac:5c:90:b3:3f: da:47:59:73:39:01:3c:ac:a8:83:4d:58:dc:dd:e8: 99:ca:40:cc:74:e1:35:cd:14:bd:31:c3:1a:21:66: 9c:76:16:59:5a:ce:83:03:ed:da:f2:0f:1e:de:2a: bf:35:6c:69:6b:96:fe:73:93:6b:7e:e0:44:db:d3: d2:0e:5b:82:70:bd:c9:b4:0e:60:7a:69:ee:62:72: c1:26:fe:7f:fc:74:7b:99:4d:24:10:7a:ed:cc:59: a1:69:0b:2d:7b:ae:64:94:bd:9f:76:8d:8d:49:30: 49:b7:4a:30:e1:1d:7b:21:ba:20:a0:74:5e:8a:6c: a9:2b:80:e7:76:26:79:d5:82:f8:75:df:b4:6d:24: f8:23:64:dc:13:ca:76:3a:55:e0:dd:1a:54:e5:8e: d9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A7:FF:FD:54:1F:25:B7:DB:71:83:3C:B2:9A:71:5F:3A:7F:77:F2 X509v3 Authority Key Identifier: keyid:80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.3.0/24 Signature Algorithm: sha256WithRSAEncryption 04:f5:30:75:3c:57:dd:bd:2c:36:27:68:10:a8:a0:c7:bd:b9: 0d:b1:49:8e:dc:c7:41:58:60:e7:67:4b:02:b3:1c:5d:27:d3: 03:33:41:1e:67:4f:e4:ec:b9:2c:64:d5:7e:5a:2a:25:84:a9: 6e:01:4f:bf:5a:91:66:8e:c1:66:ca:9e:15:e0:4f:fa:63:99: 9b:ad:56:6d:bd:1a:e1:cd:27:79:52:5c:1a:1f:aa:1c:af:53: 41:ce:f5:fc:bf:2b:92:39:f3:2d:5f:0f:af:1f:c7:6d:e9:36: d9:38:24:d8:94:26:2b:c4:67:f9:40:95:0f:ed:3c:ca:21:09: 14:37:6f:ba:da:ed:30:f1:09:64:f2:32:38:e2:65:49:7f:92: 52:10:0b:fe:3c:bd:32:0c:87:d7:8d:f0:39:b3:60:71:8a:7b: bf:6d:cb:1d:35:1b:e9:c7:fd:fe:83:c8:84:d6:66:51:67:5f: 44:09:27:ce:f7:14:20:4e:21:06:f9:4c:ae:a3:d6:e7:a8:43: bd:21:ca:d2:1f:8f:4a:eb:74:8e:31:74:ed:10:65:76:e6:2b: a3:4b:7a:6c:a7:b2:18:1d:8f:a7:df:89:12:1a:34:52:a1:fc: e4:ba:26:ef:2a:eb:4a:70:d1:b0:c4:6c:78:ce:cb:f5:a7:b2: c0:b6:2f:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNTUxMTAvBgNVBAUTKDgwMDg0QTM0RkQ0RjNCOTMyQzA5MjE4MjQwN0I4OTA1 RDk0MDY1MDAwHhcNMjUwNTE2MjMzMzEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2IzOC0zMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV8OdMhvo8UW8prq/DIAZrx6iUxuGoaqsPAhvyr1HcwSmJwBJLd05w+o1s8c gcaLwf4oOHuK0+1z4OyAJSlGk9+ufXMFzTpMRQaKiHBDNV70g2LoFoK6jSfwIvxC sxsHGLt5rFyQsz/aR1lzOQE8rKiDTVjc3eiZykDMdOE1zRS9McMaIWacdhZZWs6D A+3a8g8e3iq/NWxpa5b+c5NrfuBE29PSDluCcL3JtA5gemnuYnLBJv5//HR7mU0k EHrtzFmhaQste65klL2fdo2NSTBJt0ow4R17IbogoHReimypK4DndiZ51YL4dd+0 bST4I2TcE8p2OlXg3RpU5Y7ZnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGOn//1U HyW323GDPLKacV86f3fyMB8GA1UdIwQYMBaAFIAISjT9TzuTLAkhgkB7iQXZQGUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE1NS8zNzQ0QjNDNEIw MjgxMUVCOUQyNzg5MUFDNEY5QUUwMi9nQWhLTlAxUE81TXNDU0dDUUh1SkJkbEFa UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dBaEtOUDFQTzVNc0NTR0NRSHVKQmRsQVpRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNTUvMzc0NEIzQzRCMDI4MTFFQjlEMjc4OTFBQzRGOUFFMDIvODk5QTUxMzg2 OTE2MTFFRkJFRDEzOTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniAMwDQYJKoZIhvcNAQELBQADggEBAAT1MHU8V929LDYn aBCooMe9uQ2xSY7cx0FYYOdnSwKzHF0n0wMzQR5nT+TsuSxk1X5aKiWEqW4BT79a kWaOwWbKnhXgT/pjmZutVm29GuHNJ3lSXBofqhyvU0HO9fy/K5I58y1fD68fx23p Ntk4JNiUJivEZ/lAlQ/tPMohCRQ3b7ra7TDxCWTyMjjiZUl/klIQC/48vTIMh9eN 8DmzYHGKe79tyx01G+nH/f6DyITWZlFnX0QJJ873FCBOIQb5TK6j1ueoQ70hytIf j0rrdI4xdO0QZXbmK6NLemynshgdj6ffiRIaNFKh/OS6Ju8q60pw0bDEbHjOy/Wn ssC2L0s= -----END CERTIFICATE-----Generated at Sat May 17 12:12:46 2025 by rpki-client