$ rpki-client -vvf rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa File: A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa (raw, json) Hash identifier: r2GEMiOfnscgdpCkR3elgdL+OdlduqhLjKNmAhLGMa8= Subject key identifier: F7:A9:9C:C2:E2:48:79:CC:D9:23:42:DB:1B:F0:2B:4B:8C:B7:D3:1F Certificate issuer: /CN=A9123431/serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Certificate serial: 01BD Authority key identifier: 2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa Signing time: Mon 23 Jun 2025 02:40:10 +0000 ROA not before: Mon 23 Jun 2025 02:40:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134359 IP address blocks: 103.233.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 03:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123431, serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Validity Not Before: Jun 23 02:40:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858be8a-0400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:23:86:0c:72:28:82:61:5f:8a:e3:55:dd:b6: 3f:59:f5:c8:75:23:f7:82:93:f8:90:fc:79:b4:2e: 32:68:2a:76:18:11:f1:97:ad:8a:86:50:ee:93:62: 87:82:8a:82:38:bf:fe:7e:cd:9f:a8:fe:39:3d:07: 5a:dc:45:9d:df:64:4b:fa:be:7c:e7:ad:72:a6:e9: 4c:56:4a:64:d4:a6:3f:ee:7b:be:23:b0:02:a2:18: 3f:84:35:8f:ee:86:10:ef:9f:4d:75:33:92:f4:8e: 1e:66:28:e4:16:07:3b:96:27:fd:2d:cf:38:dc:aa: 32:fd:c8:3a:d6:5d:da:c3:29:ec:c9:48:aa:87:5a: bc:76:65:e9:7a:96:98:01:8a:4e:bc:3c:57:8f:9e: 53:e3:4b:d0:1d:a3:9d:c6:0f:a9:18:17:53:33:54: db:33:f2:4c:0e:30:e0:6d:75:67:21:df:c7:d6:89: ed:f5:d1:35:ec:33:55:2e:6e:d9:99:85:6a:74:0a: ea:7f:ab:b0:c1:e6:a2:a7:5f:3b:ad:43:b4:6d:5f: 15:55:d2:4b:c6:6e:11:e0:c8:be:ed:ab:c2:f2:cf: b5:c5:7e:ad:96:6f:58:3d:e1:60:4b:54:8d:f2:5b: 91:5b:38:10:1c:5e:d6:71:62:81:a4:fa:11:c8:d6: c5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A9:9C:C2:E2:48:79:CC:D9:23:42:DB:1B:F0:2B:4B:8C:B7:D3:1F X509v3 Authority Key Identifier: keyid:2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.132.0/22 Signature Algorithm: sha256WithRSAEncryption d7:ca:36:5f:26:e1:17:5c:96:53:62:e8:dc:65:00:2a:f9:da: ce:3c:78:b1:18:23:33:de:48:1c:b4:dd:6d:fa:72:47:5b:b7: 0e:61:00:b7:fa:79:91:e4:ae:c6:f6:a8:27:97:cf:99:c2:b9: 34:59:f8:7f:f5:dc:f1:d6:3c:99:7f:05:f6:46:24:2e:70:7a: 3e:a6:82:53:7d:79:11:fb:c4:6e:52:de:3c:dd:ad:37:92:ee: 74:de:de:64:ab:be:6b:2c:bc:e1:16:2f:1c:b9:de:81:e2:e9: 50:4b:ac:de:52:e4:82:94:1b:48:36:62:64:06:89:14:66:0e: c6:6a:c3:63:0b:72:9b:c1:4d:c4:28:b2:ed:b6:f5:81:14:48: 78:42:e2:b9:4a:46:f5:89:48:fe:49:9e:7a:e6:21:95:21:77: ac:9d:91:99:30:17:fe:f1:72:13:3d:f8:ba:36:b6:96:40:d6: 90:a5:cf:bb:1b:08:dc:70:7c:16:ba:bc:77:f8:d0:b5:79:96: 5a:cf:a6:39:be:e4:26:32:8e:41:06:4a:82:a8:8a:d2:91:86: 6f:1c:49:70:45:46:47:5f:28:d8:f9:42:f7:57:2a:65:0b:51: 5a:19:57:4b:26:d7:2a:62:9d:cf:8e:dd:c2:df:28:a9:39:b7: 69:76:3a:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM0MzExMTAvBgNVBAUTKDJEMkUyQzU2OUQ0QjYzOTk2N0U2NThBRDVDNDk3QzMz MUFBQjg4NUYwHhcNMjUwNjIzMDI0MDEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4YmU4YS0wNDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryOGDHIogmFfiuNV3bY/WfXIdSP3gpP4kPx5tC4yaCp2GBHxl62KhlDuk2KH goqCOL/+fs2fqP45PQda3EWd32RL+r58561ypulMVkpk1KY/7nu+I7ACohg/hDWP 7oYQ759NdTOS9I4eZijkFgc7lif9Lc843Koy/cg61l3awynsyUiqh1q8dmXpepaY AYpOvDxXj55T40vQHaOdxg+pGBdTM1TbM/JMDjDgbXVnId/H1ont9dE17DNVLm7Z mYVqdArqf6uwweaip187rUO0bV8VVdJLxm4R4Mi+7avC8s+1xX6tlm9YPeFgS1SN 8luRWzgQHF7WcWKBpPoRyNbFDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPepnMLi SHnM2SNC2xvwK0uMt9MfMB8GA1UdIwQYMBaAFC0uLFadS2OZZ+ZYrVxJfDMaq4hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzQzMS9DMTdCN0M2NEFD QzMxMUVEOEVDNDIxMTFDNEY5QUUwMi9MUzRzVnAxTFk1bG41bGl0WEVsOE14cXJp RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xTNHNWcDFMWTVsbjVsaXRYRWw4TXhxcmlGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM0MzEvQzE3QjdDNjRBQ0MzMTFFRDhFQzQyMTExQzRGOUFFMDIvQTdCNTk2MzZB Q0NCMTFFREE4REFGRjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn6YQwDQYJKoZIhvcNAQELBQADggEBANfKNl8m4RdcllNi 6NxlACr52s48eLEYIzPeSBy03W36ckdbtw5hALf6eZHkrsb2qCeXz5nCuTRZ+H/1 3PHWPJl/BfZGJC5wej6mglN9eRH7xG5S3jzdrTeS7nTe3mSrvmssvOEWLxy53oHi 6VBLrN5S5IKUG0g2YmQGiRRmDsZqw2MLcpvBTcQosu229YEUSHhC4rlKRvWJSP5J nnrmIZUhd6ydkZkwF/7xchM9+Lo2tpZA1pClz7sbCNxwfBa6vHf40LV5llrPpjm+ 5CYyjkEGSoKoitKRhm8cSXBFRkdfKNj5QvdXKmULUVoZV0sm1ypinc+O3cLfKKk5 t2l2Oio= -----END CERTIFICATE-----Generated at Thu Jul 17 11:12:59 2025 by rpki-client