$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa File: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (raw, json) Hash identifier: ugBH0sY3xsy9vZ2jc2RKWYdBc6yrBC0CxRNIPq7VafI= Subject key identifier: 30:F7:9E:D9:3E:65:04:19:3E:8C:39:45:B8:9C:A0:8D:A2:E0:B6:9B Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: 53 Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa Signing time: Fri 13 Jun 2025 06:47:28 +0000 ROA not before: Fri 13 Jun 2025 06:47:28 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151210 IP address blocks: 103.132.102.0/23 maxlen: 23 103.132.102.0/24 maxlen: 24 103.132.103.0/24 maxlen: 24 2001:df2:5fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Jun 13 06:47:28 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684bc980-a6f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:62:e8:80:4a:5d:a1:c5:55:e0:e5:ed:fe:0f: 56:bb:15:5e:9f:86:a4:6b:ea:be:48:ed:c1:a9:c0: 19:45:99:2e:3a:b2:62:47:97:02:ae:49:3a:8b:ee: b7:bb:a3:cc:34:f4:f6:52:fa:9f:20:74:43:08:53: a0:cf:ab:bc:8b:1c:73:ec:ae:28:df:b1:0d:4a:f0: ba:60:18:dc:c8:3e:5d:64:5b:02:49:92:1c:cb:ea: 9b:d4:67:1f:8d:93:ef:34:a1:af:97:15:44:08:6c: e5:a2:04:c8:9a:88:f6:ed:4c:e3:03:f8:8b:7f:70: 73:47:a8:2f:e6:6e:0e:e4:33:e2:4a:5a:70:a4:cb: ef:fe:4f:8a:09:c5:88:a4:30:1a:78:1a:43:8d:45: 12:66:95:fd:19:16:9b:2d:f1:9b:7a:6f:16:a5:8e: 1e:e2:da:0e:44:75:c2:bf:1c:fd:5a:90:32:b9:3b: c6:95:9d:58:3b:99:17:b9:bf:e2:61:f0:42:87:f8: 03:89:f8:6c:b4:25:58:c9:97:eb:b0:7e:54:50:12: ac:01:52:e5:3a:35:11:78:e6:91:a7:c7:42:d5:28: 83:de:d8:5d:5c:cd:0a:9b:ba:83:47:2f:cf:a9:24: 08:4d:2e:15:3f:ab:1c:0e:87:2c:4d:b6:0f:07:87: eb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F7:9E:D9:3E:65:04:19:3E:8C:39:45:B8:9C:A0:8D:A2:E0:B6:9B X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.102.0/23 IPv6: 2001:df2:5fc0::/48 Signature Algorithm: sha256WithRSAEncryption 15:ac:9b:e5:98:f8:94:56:77:06:17:a0:95:eb:5d:70:1a:7c: 83:98:2a:86:da:5c:cc:be:e4:74:51:4d:d7:b0:84:0b:d4:dc: 23:77:6e:d3:69:f2:cd:ff:10:5f:b0:3f:87:df:6e:f1:45:01: 84:0b:62:74:27:9d:8d:50:f0:97:a1:84:2c:01:c2:6a:e0:fb: df:89:9f:56:4d:97:39:7a:b9:20:b8:35:3c:87:6b:84:e9:90: 05:0b:6d:68:ba:b8:58:df:87:df:be:38:af:52:0f:bc:7c:96: d7:ac:c5:09:41:c3:e3:50:9d:a6:dc:63:fb:76:6d:5c:af:2d: 31:c7:c9:5d:8a:df:e7:5b:f9:87:93:21:25:16:06:cc:ab:1e: 78:ae:ba:a3:fb:15:6c:94:7e:dc:6b:89:ca:6a:96:14:c3:65: 55:ec:d8:c8:3c:27:57:bf:5e:2d:2c:b9:86:2e:dd:56:eb:6b: 68:59:ca:80:72:37:88:6c:8b:8b:e7:a4:7f:11:2b:57:dd:66: ec:9e:94:29:28:2c:70:d1:a0:a2:af:7f:ab:02:27:10:a6:e5: 9b:37:0f:30:e6:cc:6f:4f:86:a1:de:e9:6a:66:8d:da:09:8b: 60:28:1a:ba:97:79:da:55:02:c1:0f:bb:f3:40:59:af:14:61: e7:0d:85:8f -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI1ODExMC8GA1UEBRMoNzg0NDU5QTRCNjZDODM1RkNGNUQ2RTVBNTY4NzJEOTI0 N0Q0NjU4QTAeFw0yNTA2MTMwNjQ3MjhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGJjOTgwLWE2ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfYuiASl2hxVXg5e3+D1a7FV6fhqRr6r5I7cGpwBlFmS46smJHlwKuSTqL7re7 o8w09PZS+p8gdEMIU6DPq7yLHHPsrijfsQ1K8LpgGNzIPl1kWwJJkhzL6pvUZx+N k+80oa+XFUQIbOWiBMiaiPbtTOMD+It/cHNHqC/mbg7kM+JKWnCky+/+T4oJxYik MBp4GkONRRJmlf0ZFpst8Zt6bxaljh7i2g5EdcK/HP1akDK5O8aVnVg7mRe5v+Jh 8EKH+AOJ+Gy0JVjJl+uwflRQEqwBUuU6NRF45pGnx0LVKIPe2F1czQqbuoNHL8+p JAhNLhU/qxwOhyxNtg8Hh+tdAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUMPee2T5l BBk+jDlFuJygjaLgtpswHwYDVR0jBBgwFoAUeERZpLZsg1/PXW5aVoctkkfUZYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjU4L0FDMDlDNkVFRTMw NjExRUZBODA3QjA1M0M0RjlBRTAyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUVSWnBMWnNnMV9QWFc1YVZvY3Rra2ZVWllvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI1OC9BQzA5QzZFRUUzMDYxMUVGQTgwN0IwNTNDNEY5QUUwMi8yQzdBRTc4NjA0 MjcxMUYwQkNFQjRBNzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeEZjAPBAIAAjAJAwcAIAEN8l/AMA0GCSqGSIb3DQEBCwUA A4IBAQAVrJvlmPiUVncGF6CV611wGnyDmCqG2lzMvuR0UU3XsIQL1Nwjd27TafLN /xBfsD+H327xRQGEC2J0J52NUPCXoYQsAcJq4PvfiZ9WTZc5erkguDU8h2uE6ZAF C21ourhY34ffvjivUg+8fJbXrMUJQcPjUJ2m3GP7dm1cry0xx8ldit/nW/mHkyEl FgbMqx54rrqj+xVslH7ca4nKapYUw2VV7NjIPCdXv14tLLmGLt1W62toWcqAcjeI bIuL56R/EStX3WbsnpQpKCxw0aCir3+rAicQpuWbNw8w5sxvT4ah3ulqZo3aCYtg KBq6l3naVQLBD7vzQFmvFGHnDYWP -----END CERTIFICATE-----Generated at Sat Jul 5 05:00:49 2025 by rpki-client