$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5C1CF19EA9C011EABAAB4624C4F9AE02.roa File: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (raw, json) Hash identifier: 6/x/Fge5uH5YfUQOVxF7eyYbzP45tBqEPaICPxzEb2c= Subject key identifier: 2A:BB:69:6D:8D:D8:C8:30:8A:EF:9A:84:7F:25:DF:0B:AF:B7:60:56 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 09FD Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5C1CF19EA9C011EABAAB4624C4F9AE02.roa Signing time: Mon 12 May 2025 20:25:56 +0000 ROA not before: Mon 12 May 2025 20:25:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.150.46.0/24 maxlen: 24 103.150.47.0/24 maxlen: 24 2001:df3:5580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2557 (0x9fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: May 12 20:25:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68225954-5766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:44:2c:8d:a5:f6:91:14:fb:75:8d:9a:7b:4f: 5c:55:54:e8:a6:5c:77:0e:df:00:09:75:b5:54:89: 5b:fb:8b:6b:03:d7:f0:2d:08:4d:d4:0c:16:a5:ad: b5:71:3a:2e:9e:22:06:00:35:89:3e:83:00:f0:ff: 80:2b:5f:c2:6d:32:f5:fa:c7:d8:e6:c6:0b:59:46: 44:97:13:25:0d:7d:5b:92:2e:03:cc:e2:0d:55:33: a3:ef:0e:69:86:33:e5:1b:82:b3:f1:a1:62:dd:d3: d5:a2:c0:73:40:38:5a:9b:81:c1:d2:cf:10:e5:0e: c9:dd:a4:ad:f6:06:16:b3:33:01:f5:36:0c:8a:14: 69:a6:2d:58:48:8f:e1:9a:8d:67:be:20:28:e6:6c: e8:0c:2f:4f:a4:ee:b2:bb:36:41:c3:5f:6b:87:3a: 76:84:ab:d0:cb:3f:38:8f:97:51:ae:c1:39:0e:5c: 79:d4:3b:06:b4:b7:b3:02:83:cb:33:1e:4e:89:41: e2:09:e0:d9:38:4c:2b:81:b7:e7:9b:8d:a3:b6:77: e5:7f:39:53:6a:9f:1e:9b:38:06:3e:cc:15:d8:a4: d4:2d:3a:f4:64:c2:60:de:a2:c3:02:9f:8e:ce:d2: 02:19:4b:22:08:25:1f:1f:75:cc:eb:27:38:13:49: 56:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BB:69:6D:8D:D8:C8:30:8A:EF:9A:84:7F:25:DF:0B:AF:B7:60:56 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/5C1CF19EA9C011EABAAB4624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.46.0/23 IPv6: 2001:df3:5580::/48 Signature Algorithm: sha256WithRSAEncryption 8e:8d:6f:b6:29:3f:ff:48:33:04:c3:ae:4e:32:1e:f4:fa:ca: fe:0a:a2:af:49:c4:fd:dd:12:dd:d6:30:ff:f4:3d:1a:fc:17: fb:cf:82:2e:90:00:49:69:e5:0f:dc:80:02:ab:55:31:7e:ca: 3c:77:10:f6:5c:7f:fb:87:75:30:02:62:fb:06:21:08:cd:47: fb:15:fb:44:57:6d:de:74:83:65:aa:cb:b6:fd:65:0c:c4:3d: b8:78:2d:d1:7e:19:14:77:fe:d2:24:18:d0:c8:30:a0:1d:af: 41:d7:74:21:cc:9d:f0:05:1a:b8:38:5e:67:8c:b5:3b:b3:ca: 32:37:df:0a:01:a0:1d:75:1e:2b:ef:c2:1e:7f:8e:52:58:36: 95:e1:e5:1b:05:67:5b:8b:c9:ef:a8:5d:1b:b3:c2:bc:65:a2: 19:8f:1c:fa:f0:95:52:40:1d:76:08:b7:8c:7b:e5:66:a9:e4: 01:01:b5:b8:54:8a:45:6a:82:30:6d:f0:d1:65:5d:93:fa:cf: 2d:9c:44:09:af:86:22:e9:e6:8f:bf:26:9a:6d:5b:aa:7c:f6: e8:53:c8:3f:f6:0a:04:ef:72:36:71:22:1a:49:51:5a:8c:fb: f4:8e:6c:d2:3b:a2:6f:d6:16:99:2c:bb:c9:08:0e:89:e4:e9: 04:dd:43:63 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjUwNTEyMjAyNTU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyNTk1NC01NzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkQsjaX2kRT7dY2ae09cVVToplx3Dt8ACXW1VIlb+4trA9fwLQhN1AwWpa21 cTouniIGADWJPoMA8P+AK1/CbTL1+sfY5sYLWUZElxMlDX1bki4DzOINVTOj7w5p hjPlG4Kz8aFi3dPVosBzQDham4HB0s8Q5Q7J3aSt9gYWszMB9TYMihRppi1YSI/h mo1nviAo5mzoDC9PpO6yuzZBw19rhzp2hKvQyz84j5dRrsE5Dlx51DsGtLezAoPL Mx5OiUHiCeDZOEwrgbfnm42jtnflfzlTap8emzgGPswV2KTULTr0ZMJg3qLDAp+O ztICGUsiCCUfH3XM6yc4E0lWnwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCq7aW2N 2Mgwiu+ahH8l3wuvt2BWMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVENEYvNTg1RjREMEU3ODc5MTFFQUFFQkEzQjM4QzRGOUFFMDIvNUMxQ0YxOUVB OUMwMTFFQUJBQUI0NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnli4wDwQCAAIwCQMHACABDfNVgDANBgkqhkiG9w0BAQsF AAOCAQEAjo1vtik//0gzBMOuTjIe9PrK/gqir0nE/d0S3dYw//Q9GvwX+8+CLpAA SWnlD9yAAqtVMX7KPHcQ9lx/+4d1MAJi+wYhCM1H+xX7RFdt3nSDZarLtv1lDMQ9 uHgt0X4ZFHf+0iQY0MgwoB2vQdd0Icyd8AUauDheZ4y1O7PKMjffCgGgHXUeK+/C Hn+OUlg2leHlGwVnW4vJ76hdG7PCvGWiGY8c+vCVUkAddgi3jHvlZqnkAQG1uFSK RWqCMG3w0WVdk/rPLZxECa+GIunmj78mmm1bqnz26FPIP/YKBO9yNnEiGklRWoz7 9I5s0juib9YWmSy7yQgOieTpBN1DYw== -----END CERTIFICATE-----Generated at Sat May 17 01:27:40 2025 by rpki-client