$ rpki-client -vvf rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa File: BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa (raw, json) Hash identifier: CvSPVq3Ao9wPfXBwbGY/XZu0M+365J1WHXP7HCUvGEM= Subject key identifier: 37:34:8C:76:5C:82:63:05:7C:01:E6:84:BE:E2:FA:73:33:B4:F3:42 Certificate issuer: /CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Certificate serial: 0670 Authority key identifier: B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa Signing time: Mon 30 Jun 2025 16:46:17 +0000 ROA not before: Mon 30 Jun 2025 16:46:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142063 IP address blocks: 103.166.102.0/24 maxlen: 24 103.166.103.0/24 maxlen: 24 2001:df1:b340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131067, serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Validity Not Before: Jun 30 16:46:16 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6862bf58-d423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ce:c0:83:99:01:17:ec:ce:02:2e:18:e7:f6: e9:cb:9f:72:7d:bc:dd:d8:c6:6c:4f:4c:13:dd:28: 2c:de:cb:68:a3:b9:5a:0a:a9:2e:cd:3d:6c:9f:b7: 1d:45:cb:63:e9:3a:5e:96:86:6b:99:c0:85:2b:7a: c6:12:e2:52:33:26:e0:13:52:38:ce:b9:f1:d7:a6: 4c:8c:ee:91:4d:73:f1:f4:07:59:5b:4f:56:6f:a9: f3:c6:a7:f8:25:e0:26:9a:a9:e8:05:b8:64:12:e8: 32:28:d2:ef:64:a0:d6:26:06:6d:7a:1a:25:ea:39: a0:20:27:75:47:18:05:28:1a:87:bc:35:50:06:13: 8f:dd:06:2c:99:6f:82:9d:f7:78:c3:85:01:39:b9: 38:8e:cb:00:2c:b3:1b:1c:f0:01:d5:dd:41:1a:2b: 55:03:07:7a:54:b7:64:0f:21:c6:27:95:69:3a:e0: 0a:f2:08:cc:a3:37:7c:d6:b7:3d:7a:1b:0a:45:69: 3a:03:bf:1a:48:17:4c:fb:fa:1f:99:10:35:42:be: 9e:5d:9b:2a:04:8e:b4:23:8d:5c:bd:47:96:c9:a0: f8:53:08:5c:62:9a:24:69:ba:65:81:aa:24:29:2a: aa:49:56:fd:a3:eb:a4:39:26:4c:ec:21:4f:a2:5b: ca:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:34:8C:76:5C:82:63:05:7C:01:E6:84:BE:E2:FA:73:33:B4:F3:42 X509v3 Authority Key Identifier: keyid:B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.102.0/23 IPv6: 2001:df1:b340::/48 Signature Algorithm: sha256WithRSAEncryption 68:ea:1e:1c:d5:6c:ea:ee:3d:9c:c6:dc:7e:2c:05:bc:0b:f9: 03:f3:6a:ff:36:08:cf:af:99:6d:cc:32:8b:d1:79:f5:27:61: e5:5b:e5:b5:5c:37:fc:f4:ce:c4:3f:aa:87:41:f6:c7:b7:39: 86:57:c1:15:4c:ac:c0:4a:3d:8b:17:9f:50:20:f7:fd:cf:9a: 33:72:fd:fe:5b:47:34:d6:66:07:35:93:c1:79:69:ac:ee:a1: 29:69:67:32:21:ae:cb:f8:f9:d7:23:83:64:b3:0f:1a:ee:33: 69:b1:05:6f:27:0b:0c:8d:56:30:a4:44:17:84:a2:13:d5:ee: a9:2c:60:44:e5:80:24:5b:15:d2:5d:76:41:6e:4e:3e:64:78: 41:8b:7d:d8:a9:e9:6f:9e:5c:dc:78:f6:0e:d5:64:cb:1e:ba: 21:bb:7a:5e:df:bd:82:1b:c1:a5:e7:5a:70:2e:27:94:29:94: ae:df:81:44:1a:d9:94:9d:f9:6a:eb:9d:0f:7b:f1:87:25:1a: 4e:45:ef:7b:98:56:12:00:f4:a4:29:5a:55:22:b7:c1:e2:12: 66:a1:70:45:c4:42:a7:8d:61:a1:06:09:8b:b8:ba:2c:85:9a: 04:c4:96:eb:d6:7e:fb:c3:13:c3:62:93:9b:8a:a6:1d:e4:43: d5:56:62:df -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEwNjcxMTAvBgNVBAUTKEIyQzQ3QzJFM0Q0RkM3RURDOTlBRTIwRTQ2QjE3NEIx MEEwMzc1RjYwHhcNMjUwNjMwMTY0NjE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyYmY1OC1kNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA187Ag5kBF+zOAi4Y5/bpy59yfbzd2MZsT0wT3Sgs3stoo7laCqkuzT1sn7cd Rctj6TpeloZrmcCFK3rGEuJSMybgE1I4zrnx16ZMjO6RTXPx9AdZW09Wb6nzxqf4 JeAmmqnoBbhkEugyKNLvZKDWJgZtehol6jmgICd1RxgFKBqHvDVQBhOP3QYsmW+C nfd4w4UBObk4jssALLMbHPAB1d1BGitVAwd6VLdkDyHGJ5VpOuAK8gjMozd81rc9 ehsKRWk6A78aSBdM+/ofmRA1Qr6eXZsqBI60I41cvUeWyaD4UwhcYpokabplgaok KSqqSVb9o+ukOSZM7CFPolvKuQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDc0jHZc gmMFfAHmhL7i+nMztPNCMB8GA1UdIwQYMBaAFLLEfC49T8ftyZriDkaxdLEKA3X2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTA2Ny84REQwMEY1NkE2 QUQxMUVCODI3RkMxMUNDNEY5QUUwMi9zc1I4TGoxUHgtM0ptdUlPUnJGMHNRb0Rk ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NzUjhMajFQeC0zSm11SU9SckYwc1FvRGRmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzEwNjcvOEREMDBGNTZBNkFEMTFFQjgyN0ZDMTFDQzRGOUFFMDIvQkQ5QUU0QUU1 NUQxMTFGMEE3Q0ZCQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpmYwDwQCAAIwCQMHACABDfGzQDANBgkqhkiG9w0BAQsF AAOCAQEAaOoeHNVs6u49nMbcfiwFvAv5A/Nq/zYIz6+Zbcwyi9F59Sdh5VvltVw3 /PTOxD+qh0H2x7c5hlfBFUyswEo9ixefUCD3/c+aM3L9/ltHNNZmBzWTwXlprO6h KWlnMiGuy/j51yODZLMPGu4zabEFbycLDI1WMKREF4SiE9XuqSxgROWAJFsV0l12 QW5OPmR4QYt92Knpb55c3Hj2DtVkyx66Ibt6Xt+9ghvBpedacC4nlCmUrt+BRBrZ lJ35auudD3vxhyUaTkXve5hWEgD0pClaVSK3weISZqFwRcRCp41hoQYJi7i6LIWa BMSW69Z++8MTw2KTm4qmHeRD1VZi3w== -----END CERTIFICATE-----Generated at Thu Jul 3 09:44:42 2025 by rpki-client