$ rpki-client -vvf rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa File: D411F96C532E11EFB0B63E60C4F9AE02.roa (raw, json) Hash identifier: jzzWgD3HRpvAEJBXK/vfne+ihxsbOdjQU7WB0KMRVgw= Subject key identifier: E4:BA:B4:5B:8A:E0:B1:FA:CE:C3:56:B5:2F:C6:1B:D3:E7:1D:D9:06 Certificate issuer: /CN=A9146944/serialNumber=ED1F958CB604B576E82214B4CF3CC0FE620EF9F4 Certificate serial: 0A0B Authority key identifier: ED:1F:95:8C:B6:04:B5:76:E8:22:14:B4:CF:3C:C0:FE:62:0E:F9:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa Signing time: Mon 30 Jun 2025 20:35:53 +0000 ROA not before: Mon 30 Jun 2025 20:35:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9825 IP address blocks: 103.202.222.0/24 maxlen: 24 103.209.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.crl rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146944, serialNumber=ED1F958CB604B576E82214B4CF3CC0FE620EF9F4 Validity Not Before: Jun 30 20:35:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862f529-c0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:56:73:76:6d:35:6a:73:e3:89:38:d5:cf:60: 69:ff:7f:1c:95:56:4f:3e:59:28:98:28:5e:d6:64: 01:61:bb:4b:dc:5f:42:55:5b:cf:bc:99:f4:6c:9d: 31:2e:52:32:d0:68:d9:b8:59:d8:08:b6:de:64:77: 04:61:2e:41:d9:e9:de:92:76:ae:4e:e3:c6:05:e9: fc:25:1c:f3:8c:75:76:fb:e3:52:f3:58:11:72:78: 35:d9:8a:10:c4:00:2f:f1:80:e3:3d:02:89:ba:5f: b5:c4:f1:0e:3c:52:b8:9a:99:79:18:30:11:24:1b: ce:3c:f7:21:d7:bf:ca:20:57:78:b0:13:0d:b3:58: b0:48:5a:93:32:be:35:2f:e6:e7:c1:9c:c5:8a:08: b0:af:11:85:36:69:47:ce:dd:f3:91:2e:8f:f3:e8: f4:98:3d:0b:f6:af:4e:4a:bf:06:27:0b:50:5d:dc: 40:3b:75:d2:88:58:e3:2b:97:a6:18:7f:be:57:6d: b9:2e:5d:0f:0e:3b:50:20:c1:48:98:90:f4:eb:4c: 50:3a:2e:73:0d:85:2a:93:43:51:8d:33:f4:57:c5: 1b:fa:13:3a:9c:61:ac:30:76:64:53:85:89:7a:0c: c7:62:44:21:01:46:15:45:5f:ee:99:14:5b:7b:90: 81:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BA:B4:5B:8A:E0:B1:FA:CE:C3:56:B5:2F:C6:1B:D3:E7:1D:D9:06 X509v3 Authority Key Identifier: keyid:ED:1F:95:8C:B6:04:B5:76:E8:22:14:B4:CF:3C:C0:FE:62:0E:F9:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.202.222.0/24 103.209.198.0/24 Signature Algorithm: sha256WithRSAEncryption a5:c5:69:78:04:31:9a:f5:d0:84:03:0b:d2:72:a4:6b:2c:ea: 64:ab:55:f2:67:6e:19:e3:45:7b:db:28:40:00:a5:d1:22:5a: 60:13:f5:cc:09:67:f7:db:92:dd:df:15:8d:86:2f:da:20:ce: df:89:0b:bd:46:6b:50:56:0d:5d:36:dc:d9:cc:0d:ed:ed:f5: 1e:2b:cd:1c:b9:0f:90:99:03:1c:2d:e5:de:83:1c:4c:cd:72: 9a:2b:1a:cb:46:5e:12:3a:68:7a:f3:fd:63:f5:d7:f7:98:89: 6e:d0:d6:b9:78:b9:4f:57:78:2a:96:b7:59:57:79:88:f8:2e: 0b:31:12:12:00:2d:e6:59:37:ad:08:b7:5d:af:94:ce:58:82: eb:e6:7b:6b:17:a8:ad:b5:92:69:07:1b:92:8f:d4:36:97:15: bc:17:c8:9e:e0:06:de:c5:32:9f:f8:bc:a3:05:0a:5b:2d:16: 13:a0:64:d8:e8:66:b5:f2:6d:59:0b:e1:5d:11:10:80:c4:fa: e3:5f:88:47:07:47:7d:ae:aa:d1:b1:3a:5a:3d:0c:cf:43:dd: fc:b9:d4:a6:af:2d:4a:5c:a7:37:b8:dd:8e:17:2f:14:45:19: 45:8f:d1:78:fa:5e:18:e6:5c:f9:11:2c:d4:e9:3f:9a:9d:20: fe:a9:cd:e0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY5NDQxMTAvBgNVBAUTKEVEMUY5NThDQjYwNEI1NzZFODIyMTRCNENGM0NDMEZF NjIwRUY5RjQwHhcNMjUwNjMwMjAzNTUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZjUyOS1jMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1Zzdm01anPjiTjVz2Bp/38clVZPPlkomChe1mQBYbtL3F9CVVvPvJn0bJ0x LlIy0GjZuFnYCLbeZHcEYS5B2eneknauTuPGBen8JRzzjHV2++NS81gRcng12YoQ xAAv8YDjPQKJul+1xPEOPFK4mpl5GDARJBvOPPch17/KIFd4sBMNs1iwSFqTMr41 L+bnwZzFigiwrxGFNmlHzt3zkS6P8+j0mD0L9q9OSr8GJwtQXdxAO3XSiFjjK5em GH++V225Ll0PDjtQIMFImJD060xQOi5zDYUqk0NRjTP0V8Ub+hM6nGGsMHZkU4WJ egzHYkQhAUYVRV/umRRbe5CBBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOS6tFuK 4LH6zsNWtS/GG9PnHdkGMB8GA1UdIwQYMBaAFO0flYy2BLV26CIUtM88wP5iDvn0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Njk0NC80M0JEMUM2RThF OTUxMUVBQTlENzNBMkVDNEY5QUUwMi83Ui1WakxZRXRYYm9JaFMwenp6QV9tSU8t ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSLVZqTFlFdFhib0loUzB6enpBX21JTy1mUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY5NDQvNDNCRDFDNkU4RTk1MTFFQUE5RDczQTJFQzRGOUFFMDIvRDQxMUY5NkM1 MzJFMTFFRkIwQjYzRTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnyt4DBABn0cYwDQYJKoZIhvcNAQELBQADggEBAKXFaXgE MZr10IQDC9JypGss6mSrVfJnbhnjRXvbKEAApdEiWmAT9cwJZ/fbkt3fFY2GL9og zt+JC71Ga1BWDV023NnMDe3t9R4rzRy5D5CZAxwt5d6DHEzNcporGstGXhI6aHrz /WP11/eYiW7Q1rl4uU9XeCqWt1lXeYj4LgsxEhIALeZZN60It12vlM5Yguvme2sX qK21kmkHG5KP1DaXFbwXyJ7gBt7FMp/4vKMFClstFhOgZNjoZrXybVkL4V0REIDE +uNfiEcHR32uqtGxOlo9DM9D3fy51KavLUpcpze43Y4XLxRFGUWP0Xj6XhjmXPkR LNTpP5qdIP6pzeA= -----END CERTIFICATE-----Generated at Fri Jul 4 01:07:38 2025 by rpki-client