$ rpki-client -vvf rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa File: 9E5F4D0060E111EEBD81AD43C4F9AE02.roa (raw, json) Hash identifier: LvsVsArM6WgAwVg4l/iixUJeke5f36Ab2xwAtLEZPnA= Subject key identifier: AE:C3:FB:F0:67:66:D8:20:53:94:CB:FC:29:B0:4C:CF:C7:9C:E0:5D Certificate issuer: /CN=A9185FD0/serialNumber=59B6D6CD7305F2DEEC2B8E613C5D8F49425E0039 Certificate serial: 016C Authority key identifier: 59:B6:D6:CD:73:05:F2:DE:EC:2B:8E:61:3C:5D:8F:49:42:5E:00:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa Signing time: Mon 05 May 2025 03:09:56 +0000 ROA not before: Mon 05 May 2025 03:09:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151066 IP address blocks: 103.129.124.0/23 maxlen: 23 103.129.124.0/24 maxlen: 24 103.129.125.0/24 maxlen: 24 2001:df2:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.crl rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185FD0, serialNumber=59B6D6CD7305F2DEEC2B8E613C5D8F49425E0039 Validity Not Before: May 5 03:09:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68182c04-a89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:84:c5:65:cc:47:0a:0e:cc:fa:97:6f:10:76: 5f:7f:ac:3a:bc:d0:5a:7a:1c:00:14:da:44:22:4e: 5d:2a:25:98:60:b1:27:06:55:ed:88:7a:68:ce:a0: b8:aa:87:86:77:e5:8e:55:25:c5:90:ce:96:af:df: b8:ad:34:1b:3e:5b:2d:bd:b6:0b:84:87:54:0a:d6: a0:d1:ac:c0:56:17:7c:f7:22:9a:26:be:af:0f:81: 19:7f:7d:d8:85:96:2a:b3:86:27:86:8d:6d:bc:d0: 93:f6:c3:ab:6e:9d:97:3d:c5:22:22:16:27:a9:f5: 10:10:30:2f:a8:3b:ab:77:8c:bc:48:98:3e:e1:c2: 90:b1:8c:e0:25:9a:15:d9:9b:4f:92:16:01:bf:14: f8:1d:4f:75:25:19:4d:00:03:30:21:44:f5:e0:9e: 01:bf:78:98:fa:58:5a:c9:54:98:52:56:34:d9:fa: 7b:e6:c2:e6:bf:5a:07:56:be:8d:bd:57:7d:8a:15: 2b:6c:9c:5c:f3:64:0e:9d:d6:84:c9:a2:09:4a:4c: a4:c8:78:3e:fe:69:e0:9f:ce:6f:c9:a3:a7:a1:84: 36:50:e4:a9:d0:02:d9:1e:f0:3f:a6:90:e5:7a:8e: df:9b:86:e9:74:0c:1d:c5:82:f4:bc:1d:fb:65:5d: bb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C3:FB:F0:67:66:D8:20:53:94:CB:FC:29:B0:4C:CF:C7:9C:E0:5D X509v3 Authority Key Identifier: keyid:59:B6:D6:CD:73:05:F2:DE:EC:2B:8E:61:3C:5D:8F:49:42:5E:00:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.124.0/23 IPv6: 2001:df2:3b40::/48 Signature Algorithm: sha256WithRSAEncryption a2:b0:3f:4b:38:e0:4a:33:50:88:f1:c4:6e:14:e9:89:b9:20: c5:5b:f3:f0:36:fa:8e:d3:1b:ac:2a:5e:5e:a8:92:e8:f2:d9: b1:28:fd:c6:f6:8b:30:84:86:01:83:05:3e:dd:77:45:b4:c5: 36:ae:98:93:2d:88:40:01:9a:73:ca:ae:eb:bb:1c:73:0f:86: 77:e9:e7:07:8c:4c:2e:c7:f3:8c:31:9e:74:79:c3:f6:dc:d9: b3:ed:34:75:67:41:d3:86:a3:b4:4d:50:ce:a3:e8:61:4c:d4: a8:da:c6:07:31:6f:65:1e:20:1c:09:fd:5d:0c:8e:ef:56:3b: 79:50:a7:df:1e:8c:e9:b5:4c:53:f3:49:77:75:ba:9b:fc:3c: 9d:6d:a2:5d:dc:52:47:46:b1:35:a4:b1:1a:4d:f1:55:3e:7c: 6f:86:da:aa:05:c0:d5:31:e8:ac:98:1b:be:49:94:6a:46:e8: c6:f2:7c:c0:51:7f:08:d6:6c:52:19:90:11:d2:ff:8e:4c:d6: 13:94:46:0d:c2:14:ff:ba:2c:e2:d8:dd:73:8b:49:ac:45:56: ed:f1:16:db:fb:d1:8b:df:96:7b:91:8b:2c:27:b4:f3:7a:d6: d1:65:89:e5:64:4a:06:ba:e8:6a:e4:07:8a:da:37:ec:62:c4: d7:aa:13:e2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGRDAxMTAvBgNVBAUTKDU5QjZENkNENzMwNUYyREVFQzJCOEU2MTNDNUQ4RjQ5 NDI1RTAwMzkwHhcNMjUwNTA1MDMwOTU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MmMwNC1hODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoTFZcxHCg7M+pdvEHZff6w6vNBaehwAFNpEIk5dKiWYYLEnBlXtiHpozqC4 qoeGd+WOVSXFkM6Wr9+4rTQbPlstvbYLhIdUCtag0azAVhd89yKaJr6vD4EZf33Y hZYqs4Ynho1tvNCT9sOrbp2XPcUiIhYnqfUQEDAvqDurd4y8SJg+4cKQsYzgJZoV 2ZtPkhYBvxT4HU91JRlNAAMwIUT14J4Bv3iY+lhayVSYUlY02fp75sLmv1oHVr6N vVd9ihUrbJxc82QOndaEyaIJSkykyHg+/mngn85vyaOnoYQ2UOSp0ALZHvA/ppDl eo7fm4bpdAwdxYL0vB37ZV27rQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK7D+/Bn ZtggU5TL/CmwTM/HnOBdMB8GA1UdIwQYMBaAFFm21s1zBfLe7CuOYTxdj0lCXgA5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUZEMC8zODMzNDQ3ODA5 Q0YxMUVFQTVFODI1MzJDNEY5QUUwMi9XYmJXelhNRjh0N3NLNDVoUEYyUFNVSmVB RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1diYld6WE1GOHQ3c0s0NWhQRjJQU1VKZUFEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVGRDAvMzgzMzQ0NzgwOUNGMTFFRUE1RTgyNTMyQzRGOUFFMDIvOUU1RjREMDA2 MEUxMTFFRUJEODFBRDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFngXwwDwQCAAIwCQMHACABDfI7QDANBgkqhkiG9w0BAQsF AAOCAQEAorA/SzjgSjNQiPHEbhTpibkgxVvz8Db6jtMbrCpeXqiS6PLZsSj9xvaL MISGAYMFPt13RbTFNq6Yky2IQAGac8qu67sccw+Gd+nnB4xMLsfzjDGedHnD9tzZ s+00dWdB04ajtE1QzqPoYUzUqNrGBzFvZR4gHAn9XQyO71Y7eVCn3x6M6bVMU/NJ d3W6m/w8nW2iXdxSR0axNaSxGk3xVT58b4baqgXA1THorJgbvkmUakboxvJ8wFF/ CNZsUhmQEdL/jkzWE5RGDcIU/7os4tjdc4tJrEVW7fEW2/vRi9+We5GLLCe083rW 0WWJ5WRKBrroauQHito37GLE16oT4g== -----END CERTIFICATE-----Generated at Wed May 14 13:03:32 2025 by rpki-client