$ rpki-client -vvf rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/BE35EDD80CCA11EF9AEDB96EC4F9AE02.roa File: BE35EDD80CCA11EF9AEDB96EC4F9AE02.roa (raw, json) Hash identifier: b2DvF/SZ+GHHFAxyJ3laRGL0H7z2P7tsopwqRWHfJo8= Subject key identifier: FB:CF:8E:4E:4B:38:FB:F1:85:9F:93:4F:E5:98:B8:44:43:05:BB:4D Certificate issuer: /CN=A9122E09/serialNumber=5F1D30E973B5C1C8A80F6047DC52977894044C3F Certificate serial: 07A1 Authority key identifier: 5F:1D:30:E9:73:B5:C1:C8:A8:0F:60:47:DC:52:97:78:94:04:4C:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xx0w6XO1wcioD2BH3FKXeJQETD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/BE35EDD80CCA11EF9AEDB96EC4F9AE02.roa Signing time: Mon 30 Jun 2025 21:57:49 +0000 ROA not before: Mon 30 Jun 2025 21:57:49 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 55720 IP address blocks: 43.249.254.0/24 maxlen: 24 43.249.255.0/24 maxlen: 24 103.229.144.0/24 maxlen: 24 103.229.145.0/24 maxlen: 24 103.229.146.0/24 maxlen: 24 103.229.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/Xx0w6XO1wcioD2BH3FKXeJQETD8.crl rsync://rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/Xx0w6XO1wcioD2BH3FKXeJQETD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xx0w6XO1wcioD2BH3FKXeJQETD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122E09, serialNumber=5F1D30E973B5C1C8A80F6047DC52977894044C3F Validity Not Before: Jun 30 21:57:49 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6863085c-a3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:e4:7a:eb:71:70:ff:03:f8:99:dc:e8:a2: 74:25:c1:fb:e9:71:f8:cd:04:1a:22:b5:d7:2e:6b: 8b:f8:99:20:bc:7c:ff:f4:a6:ae:82:75:1c:b4:53: fc:8e:9c:77:84:5a:68:88:35:46:0c:1c:16:5e:e9: 73:ad:cf:e4:b2:a9:e1:8f:45:d4:aa:74:3b:27:df: 40:53:96:80:6b:5f:08:22:99:89:e0:8f:d6:8e:3b: c6:ad:e7:c9:67:e6:45:56:d1:4d:60:ac:85:75:82: 07:b2:97:f1:0b:45:08:3a:a8:5b:21:5c:cb:9f:53: 44:38:29:9e:3c:18:de:f1:de:00:a6:59:ee:10:63: 22:10:ea:dc:97:2b:1a:d9:9b:3e:b6:3b:c1:9f:a6: 19:b7:b3:4f:11:dc:d9:17:f4:ad:dd:5e:3d:4a:d1: f7:de:41:dc:b7:d8:9e:c6:f3:fa:58:35:91:13:45: 96:25:e6:4b:93:c7:a6:de:64:78:c2:03:ef:63:2d: 8c:86:d1:ca:c0:3d:70:58:2d:2f:2b:46:a7:a7:6c: 17:25:b5:82:1e:1f:87:79:60:5b:94:05:12:c3:95: 48:b3:23:26:29:d0:27:b0:7f:7a:08:ca:ef:0c:c3: 44:3f:19:fd:a8:33:e0:25:77:df:7a:0c:79:ab:25: 3b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CF:8E:4E:4B:38:FB:F1:85:9F:93:4F:E5:98:B8:44:43:05:BB:4D X509v3 Authority Key Identifier: keyid:5F:1D:30:E9:73:B5:C1:C8:A8:0F:60:47:DC:52:97:78:94:04:4C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/Xx0w6XO1wcioD2BH3FKXeJQETD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xx0w6XO1wcioD2BH3FKXeJQETD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122E09/01A5837A0F6411EB9FD53749C4F9AE02/BE35EDD80CCA11EF9AEDB96EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.254.0/23 103.229.144.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:6f:34:d4:8a:47:ae:d2:e8:38:6d:c4:30:f2:7d:fe:78:b5: 16:45:f6:e3:4f:eb:67:ce:eb:ba:18:49:73:ba:c6:3d:e6:03: fa:53:44:2c:83:45:0c:0b:6a:be:3b:36:1e:43:83:c6:a0:e6: 99:82:e0:98:11:9f:f6:97:36:15:db:68:a7:aa:bd:68:9e:fd: ab:50:69:0e:67:f1:5f:f4:50:69:1b:63:e1:7e:a9:1d:bd:e5: a6:7e:79:c0:7f:b2:c9:a5:6e:9b:be:4b:4c:0b:f6:ec:4b:45: ac:84:16:db:35:d5:16:66:af:97:8d:5a:01:0f:bd:89:95:74: 3f:a0:48:89:41:44:07:7d:cd:14:ac:0b:e0:02:31:76:40:67: dc:c7:7e:10:5b:70:dc:20:b0:ec:4a:02:bc:b4:61:21:bf:f3: 41:f2:96:86:42:57:e2:12:54:7c:12:0a:81:f1:4b:c7:d2:6a: 50:2d:b6:63:aa:3e:58:69:d2:7b:ea:1c:e0:81:2d:5e:f2:fb: a7:55:f4:c5:3b:f9:60:47:4a:d9:4c:8d:6e:df:17:2e:c8:7a: ce:2f:78:63:5a:1c:a4:b3:f6:19:0e:06:c0:62:37:65:af:e6: 48:d3:c8:fd:cd:8d:82:13:74:5f:d6:a1:37:7d:d1:ed:ff:0b: 65:7f:5e:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFMDkxMTAvBgNVBAUTKDVGMUQzMEU5NzNCNUMxQzhBODBGNjA0N0RDNTI5Nzc4 OTQwNDRDM0YwHhcNMjUwNjMwMjE1NzQ5WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMDg1Yy1hM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1XkeutxcP8D+Jnc6KJ0JcH76XH4zQQaIrXXLmuL+JkgvHz/9KaugnUctFP8 jpx3hFpoiDVGDBwWXulzrc/ksqnhj0XUqnQ7J99AU5aAa18IIpmJ4I/WjjvGrefJ Z+ZFVtFNYKyFdYIHspfxC0UIOqhbIVzLn1NEOCmePBje8d4AplnuEGMiEOrclysa 2Zs+tjvBn6YZt7NPEdzZF/St3V49StH33kHct9iexvP6WDWRE0WWJeZLk8em3mR4 wgPvYy2MhtHKwD1wWC0vK0anp2wXJbWCHh+HeWBblAUSw5VIsyMmKdAnsH96CMrv DMNEPxn9qDPgJXffegx5qyU7NQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPvPjk5L OPvxhZ+TT+WYuERDBbtNMB8GA1UdIwQYMBaAFF8dMOlztcHIqA9gR9xSl3iUBEw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkUwOS8wMUE1ODM3QTBG NjQxMUVCOUZENTM3NDlDNEY5QUUwMi9YeDB3NlhPMXdjaW9EMkJIM0ZLWGVKUUVU RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4MHc2WE8xd2Npb0QyQkgzRktYZUpRRVREOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJFMDkvMDFBNTgzN0EwRjY0MTFFQjlGRDUzNzQ5QzRGOUFFMDIvQkUzNUVERDgw Q0NBMTFFRjlBRURCOTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEr+f4DBAJn5ZAwDQYJKoZIhvcNAQELBQADggEBAC5vNNSK R67S6DhtxDDyff54tRZF9uNP62fO67oYSXO6xj3mA/pTRCyDRQwLar47Nh5Dg8ag 5pmC4JgRn/aXNhXbaKeqvWie/atQaQ5n8V/0UGkbY+F+qR295aZ+ecB/ssmlbpu+ S0wL9uxLRayEFts11RZmr5eNWgEPvYmVdD+gSIlBRAd9zRSsC+ACMXZAZ9zHfhBb cNwgsOxKAry0YSG/80HyloZCV+ISVHwSCoHxS8fSalAttmOqPlhp0nvqHOCBLV7y +6dV9MU7+WBHStlMjW7fFy7Ies4veGNaHKSz9hkOBsBiN2Wv5kjTyP3NjYITdF/W oTd90e3/C2V/XrY= -----END CERTIFICATE-----Generated at Wed Jul 2 16:13:00 2025 by rpki-client