$ rpki-client -vvf rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa File: F13A6FB883D011E7948A8052C4F9AE02.roa (raw, json) Hash identifier: kYdu5SvSND0wTBbIu3Tyn2sefHAK5eSHyt8KcNAu2Mw= Subject key identifier: 38:12:B5:13:6D:E6:5A:8A:DD:40:29:0C:77:18:D4:60:68:2E:DC:B9 Certificate issuer: /CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Certificate serial: 1918 Authority key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa Signing time: Tue 24 Jun 2025 16:26:57 +0000 ROA not before: Tue 24 Jun 2025 16:26:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17882 IP address blocks: 43.242.240.0/24 maxlen: 24 43.242.241.0/24 maxlen: 24 43.242.242.0/24 maxlen: 24 43.242.243.0/24 maxlen: 24 103.26.192.0/24 maxlen: 24 103.26.193.0/24 maxlen: 24 103.26.194.0/24 maxlen: 24 103.26.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6424 (0x1918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119510, serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Validity Not Before: Jun 24 16:26:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685ad1d1-ed29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:eb:75:74:da:b6:f8:c0:02:1c:d1:54:73:3b: 5c:98:0f:86:35:93:21:40:07:67:60:fa:5b:7c:42: 3d:04:ec:03:59:0f:dd:f4:9e:c5:46:0b:56:6f:7c: 86:60:ac:91:9e:9e:e1:7c:26:51:59:60:ba:b3:de: af:38:f1:bc:b4:c1:86:3c:3f:8f:9e:21:dc:a9:ff: a8:4a:8b:15:dc:5b:a6:f5:9d:58:a9:9c:10:e9:c8: 32:af:20:89:95:7a:7a:99:9b:7a:a5:ef:1e:c5:0f: da:bd:37:c1:0f:85:9e:15:46:2d:ef:39:f0:be:bc: db:7b:c8:f9:b9:23:6c:d4:e7:48:84:7e:68:ac:bc: 4d:65:1a:08:91:9b:51:fa:5e:f4:5f:d2:d8:06:0b: 7f:b0:b7:75:26:37:07:bc:a3:7d:f4:35:58:71:97: 16:83:92:46:bf:f3:ad:c6:1f:ab:d0:45:0f:0e:b7: 55:0e:9d:00:28:b9:0a:2f:a4:17:fa:c5:07:36:f6: 1d:03:e4:eb:50:65:49:64:d9:2f:d9:d4:39:6f:6d: 0c:19:6a:bf:81:18:e3:09:da:8c:0d:50:99:4d:82: ac:b4:90:e4:5e:29:1b:5c:30:68:ae:e2:54:12:70: bd:92:ac:b9:dd:91:2b:fd:54:cc:04:e5:5e:97:70: 0a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:12:B5:13:6D:E6:5A:8A:DD:40:29:0C:77:18:D4:60:68:2E:DC:B9 X509v3 Authority Key Identifier: keyid:8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.240.0/22 103.26.192.0/22 Signature Algorithm: sha256WithRSAEncryption 16:bf:78:0c:c5:d7:6c:5a:92:e7:8b:f3:50:a7:04:0c:20:ae: 86:34:19:62:af:26:c6:8a:48:36:d2:7a:fb:10:da:7f:0d:52: 88:35:65:b7:14:b8:82:ed:7c:d1:b9:c6:34:fe:6b:57:f9:89: 84:9d:5b:04:68:ff:ac:30:f2:47:57:35:7a:b3:4a:9d:2b:1c: 0c:e6:cc:df:16:d0:3d:b3:d8:59:16:84:7d:05:51:bc:84:ec: 09:f7:b4:d9:bd:8f:be:48:3b:83:36:6d:8b:6c:87:d1:a0:46: 88:d4:72:1f:c9:98:b8:6d:c5:6f:66:0a:d7:c2:8a:d3:76:ce: 5a:1b:a2:31:1c:ec:b9:a9:ab:05:ab:87:74:a7:44:34:f1:76: 8e:0f:91:49:bf:85:1a:55:52:33:86:3f:dc:99:63:78:64:97: 4d:d7:e5:b8:56:29:32:a6:22:82:84:cc:87:50:74:79:3c:a1: 90:05:5c:cf:61:f6:b8:0c:cc:23:e6:6e:31:15:61:a1:9b:37: b4:c2:65:9a:48:2b:c4:e9:a6:de:40:81:7b:bc:98:5f:e7:b7: 86:e2:96:d7:5d:f8:ce:a8:89:aa:53:08:d1:b6:88:f8:ba:9a: 59:9d:6b:4d:f4:b0:af:98:29:65:a9:5d:cf:60:0b:86:eb:f6: db:e2:c4:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1MTAxMTAvBgNVBAUTKDhCREY1MTE4OUExREJERjk2ODQzNEI1RTczNkFBOUFC RkQ0NTU2MUMwHhcNMjUwNjI0MTYyNjU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhZDFkMS1lZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOt1dNq2+MACHNFUcztcmA+GNZMhQAdnYPpbfEI9BOwDWQ/d9J7FRgtWb3yG YKyRnp7hfCZRWWC6s96vOPG8tMGGPD+PniHcqf+oSosV3Fum9Z1YqZwQ6cgyryCJ lXp6mZt6pe8exQ/avTfBD4WeFUYt7znwvrzbe8j5uSNs1OdIhH5orLxNZRoIkZtR +l70X9LYBgt/sLd1JjcHvKN99DVYcZcWg5JGv/Otxh+r0EUPDrdVDp0AKLkKL6QX +sUHNvYdA+TrUGVJZNkv2dQ5b20MGWq/gRjjCdqMDVCZTYKstJDkXikbXDBoruJU EnC9kqy53ZEr/VTMBOVel3AKUQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDgStRNt 5lqK3UApDHcY1GBoLty5MB8GA1UdIwQYMBaAFIvfURiaHb35aENLXnNqqav9RVYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTUxMC8wRERGNUIwODgz Q0YxMUU3ODM4RUE4NEVDNEY5QUUwMi9pOTlSR0pvZHZmbG9RMHRlYzJxcHFfMUZW aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5OVJHSm9kdmZsb1EwdGVjMnFwcV8xRlZody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk1MTAvMERERjVCMDg4M0NGMTFFNzgzOEVBODRFQzRGOUFFMDIvRjEzQTZGQjg4 M0QwMTFFNzk0OEE4MDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8vADBAJnGsAwDQYJKoZIhvcNAQELBQADggEBABa/eAzF 12xakueL81CnBAwgroY0GWKvJsaKSDbSevsQ2n8NUog1ZbcUuILtfNG5xjT+a1f5 iYSdWwRo/6ww8kdXNXqzSp0rHAzmzN8W0D2z2FkWhH0FUbyE7An3tNm9j75IO4M2 bYtsh9GgRojUch/JmLhtxW9mCtfCitN2zlobojEc7LmpqwWrh3SnRDTxdo4PkUm/ hRpVUjOGP9yZY3hkl03X5bhWKTKmIoKEzIdQdHk8oZAFXM9h9rgMzCPmbjEVYaGb N7TCZZpIK8Tppt5AgXu8mF/nt4biltdd+M6oiapTCNG2iPi6mlmda030sK+YKWWp Xc9gC4br9tvixKE= -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:34 2025 by rpki-client