$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa File: 209BA8B682DF11EAABBC5018C4F9AE02.roa (raw, json) Hash identifier: BPcITeixSaXAriwkv0vsDzYrlqCAlvQdRZ4cRFHy1EA= Subject key identifier: 50:AF:5A:67:E8:67:3A:60:48:76:85:F7:0C:E7:42:7A:37:A6:2F:BB Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 09D3 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa Signing time: Mon 16 Jun 2025 20:05:22 +0000 ROA not before: Mon 16 Jun 2025 20:05:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135433 IP address blocks: 45.250.240.0/22 maxlen: 22 45.250.240.0/24 maxlen: 24 45.250.241.0/24 maxlen: 24 45.250.242.0/24 maxlen: 24 45.250.243.0/24 maxlen: 24 103.219.156.0/22 maxlen: 22 103.219.156.0/24 maxlen: 24 103.219.157.0/24 maxlen: 24 103.219.158.0/24 maxlen: 24 103.219.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2515 (0x9d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Jun 16 20:05:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68507902-db97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:fe:3c:32:d5:9e:94:96:13:72:a9:08:63: d4:12:ac:6d:87:f9:77:42:23:2c:9d:c2:65:e0:cf: ad:17:d9:6b:23:64:97:db:92:0b:5f:f7:2e:00:f7: fe:bd:1e:58:8a:e2:70:e5:90:32:a7:c2:13:a7:74: 37:37:cf:7f:4b:1d:24:01:96:39:f5:35:39:11:9c: 09:fb:c1:3b:1a:a9:1c:af:10:94:85:a5:b6:fe:b7: 39:76:52:b9:7d:da:6b:94:54:85:b9:9f:b2:3f:62: 49:d3:fc:4d:83:f9:11:0d:d9:46:00:e8:3b:8d:5d: 6e:8f:1a:ec:ce:50:49:07:0c:79:14:c2:a7:ee:0d: b0:a4:a0:42:e8:8d:89:59:aa:1f:de:71:36:97:9c: 7a:bd:23:fd:91:10:c9:b3:4a:4f:60:de:b8:e0:61: 10:25:62:8d:59:8f:df:92:77:09:e7:5b:64:a0:fe: 9b:a1:d1:0d:c4:aa:95:c0:15:17:15:89:16:f2:76: bd:62:2d:91:03:48:08:84:4c:e7:f9:2d:70:ec:65: b1:fc:67:51:5e:d3:7c:3d:c2:8e:ae:92:f3:70:06: 9e:a4:04:d5:90:d1:2e:0a:0a:e3:33:af:03:44:9d: 06:bb:e3:0a:ea:00:35:5d:4a:82:da:07:c6:62:75: 9c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:AF:5A:67:E8:67:3A:60:48:76:85:F7:0C:E7:42:7A:37:A6:2F:BB X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/209BA8B682DF11EAABBC5018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.240.0/22 103.219.156.0/22 Signature Algorithm: sha256WithRSAEncryption 21:a9:5f:60:6a:35:e3:24:a8:03:23:7f:d4:c3:6b:6a:28:bf: f4:39:b2:1b:ff:99:49:29:cd:5e:be:40:fe:98:a7:91:25:47: 71:c5:c7:c1:3c:c4:53:ac:54:35:92:4d:e3:0b:c0:73:74:86: b2:71:00:6b:de:8e:39:2e:f2:db:c2:bc:77:d2:b4:60:58:1b: 23:5a:2b:f3:6c:0f:a2:44:ac:65:1e:36:78:5d:0c:86:08:e3: d4:99:9f:fd:94:1d:5f:6b:e6:7b:19:2a:f2:00:8d:4b:41:94: f2:37:19:37:5b:61:19:1b:f7:df:67:a2:91:c6:9a:d5:6d:94: 31:53:24:74:f3:6d:89:82:3d:74:9f:63:c5:9e:3b:32:0d:a9: ed:0b:a1:ad:30:c8:d1:a7:e6:63:f3:f9:71:75:3f:c0:e0:df: 83:f8:27:ee:cc:26:f5:54:79:e9:f6:cb:88:68:2e:cc:e1:49: f5:b3:6f:51:96:f6:5f:eb:c7:12:a2:56:cf:b6:6c:33:64:e0: 2a:2a:40:aa:af:fa:30:88:d7:3b:f7:c1:76:ab:4a:88:c1:44: a1:2b:85:a8:91:a8:98:08:6c:f7:99:b7:07:dc:c3:a5:85:a9: a8:13:ae:48:e2:bf:5f:57:94:14:ba:30:50:a5:4d:48:c8:7e: 93:4d:d6:f4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUwNjE2MjAwNTIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwNzkwMi1kYjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWz+PDLVnpSWE3KpCGPUEqxth/l3QiMsncJl4M+tF9lrI2SX25ILX/cuAPf+ vR5YiuJw5ZAyp8ITp3Q3N89/Sx0kAZY59TU5EZwJ+8E7GqkcrxCUhaW2/rc5dlK5 fdprlFSFuZ+yP2JJ0/xNg/kRDdlGAOg7jV1ujxrszlBJBwx5FMKn7g2wpKBC6I2J Waof3nE2l5x6vSP9kRDJs0pPYN644GEQJWKNWY/fkncJ51tkoP6bodENxKqVwBUX FYkW8na9Yi2RA0gIhEzn+S1w7GWx/GdRXtN8PcKOrpLzcAaepATVkNEuCgrjM68D RJ0Gu+MK6gA1XUqC2gfGYnWcsQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFCvWmfo ZzpgSHaF9wznQno3pi+7MB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ5MjYvQjM4NTc4QzQ4MkQ5MTFFQUI5RkNEMjg1QzRGOUFFMDIvMjA5QkE4QjY4 MkRGMTFFQUFCQkM1MDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+vADBAJn25wwDQYJKoZIhvcNAQELBQADggEBACGpX2Bq NeMkqAMjf9TDa2oov/Q5shv/mUkpzV6+QP6Yp5ElR3HFx8E8xFOsVDWSTeMLwHN0 hrJxAGvejjku8tvCvHfStGBYGyNaK/NsD6JErGUeNnhdDIYI49SZn/2UHV9r5nsZ KvIAjUtBlPI3GTdbYRkb999nopHGmtVtlDFTJHTzbYmCPXSfY8WeOzINqe0Loa0w yNGn5mPz+XF1P8Dg34P4J+7MJvVUeen2y4hoLszhSfWzb1GW9l/rxxKiVs+2bDNk 4CoqQKqv+jCI1zv3wXarSojBRKErhaiRqJgIbPeZtwfcw6WFqagTrkjiv19XlBS6 MFClTUjIfpNN1vQ= -----END CERTIFICATE-----Generated at Fri Jul 4 08:03:16 2025 by rpki-client