$ rpki-client -vvf rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa File: 04CC562A444E11E88204061CC4F9AE02.roa (raw, json) Hash identifier: W5nO0Dm01E1L0J0RrwxDTx9HsKlaz3AShpTaXk9sHks= Subject key identifier: 53:50:D1:03:38:A0:3B:AF:C0:69:3F:58:AD:7B:3A:0A:81:61:D7:AB Certificate issuer: /CN=A9147456/serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Certificate serial: 251C Authority key identifier: C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa Signing time: Tue 12 Aug 2025 15:53:17 +0000 ROA not before: Tue 12 Aug 2025 15:53:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58779 IP address blocks: 45.125.112.0/23 maxlen: 23 45.125.113.0/24 maxlen: 24 45.125.114.0/23 maxlen: 23 45.125.114.0/24 maxlen: 24 45.125.115.0/24 maxlen: 24 103.193.248.0/23 maxlen: 23 103.193.250.0/23 maxlen: 23 103.193.250.0/24 maxlen: 24 103.193.251.0/24 maxlen: 24 2402:b780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9500 (0x251c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147456, serialNumber=C9CC794FFCB4CDF2D9DFBDEB763809B87D2D8F57 Validity Not Before: Aug 12 15:53:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689b636d-97d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:dd:fd:19:ad:0e:c8:01:ff:0f:d8:b6:12:b9: 29:d4:3c:9a:5c:7e:66:6e:7c:35:a0:c6:48:c7:6a: 48:12:9d:59:ba:de:bd:4d:8b:29:63:15:72:8a:d8: 0b:34:38:c7:8d:10:73:f9:1a:b0:de:26:da:0f:1b: c5:33:a2:e6:cb:55:f7:89:25:1d:f6:a3:e4:88:e9: cb:0b:61:43:77:ec:93:54:87:86:35:3b:c4:ca:49: 06:42:f5:67:76:eb:07:5e:ad:cc:5b:21:a1:83:d4: 54:cb:d0:1b:4d:70:85:bf:5c:7a:c3:30:c6:08:4b: b0:e8:f8:07:09:48:c7:ed:ed:12:fa:c0:e5:ce:19: 8f:cb:c3:8f:1c:17:30:b7:2f:d3:29:31:e5:6d:10: a0:e3:cd:0c:ca:96:78:6a:68:cd:00:23:26:87:28: 3c:ab:62:43:c1:ce:f9:d1:54:b6:b1:aa:a2:f8:06: d9:af:88:ac:b8:ac:68:95:99:07:7c:83:72:9e:c4: c4:87:99:0c:a0:d0:e1:0a:22:cb:ce:8c:5a:ef:02: d0:93:ed:77:fb:4c:53:31:5b:e1:2d:90:31:be:60: aa:bf:6e:e4:da:3c:45:28:f7:f6:e3:f3:96:48:cc: 36:5b:99:39:ef:f2:a3:92:82:a7:44:09:3b:3e:1a: 8c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:50:D1:03:38:A0:3B:AF:C0:69:3F:58:AD:7B:3A:0A:81:61:D7:AB X509v3 Authority Key Identifier: keyid:C9:CC:79:4F:FC:B4:CD:F2:D9:DF:BD:EB:76:38:09:B8:7D:2D:8F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/ycx5T_y0zfLZ373rdjgJuH0tj1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycx5T_y0zfLZ373rdjgJuH0tj1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147456/6154D168372E11E581F0FB39C4F9AE02/04CC562A444E11E88204061CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.112.0/22 103.193.248.0/22 IPv6: 2402:b780::/32 Signature Algorithm: sha256WithRSAEncryption 10:21:fa:89:f3:e8:13:7b:94:79:27:11:02:35:2e:2d:15:14: b7:aa:f4:8c:f1:36:18:f6:f9:65:c4:21:be:40:f9:0a:f3:47: 19:9c:a9:b1:32:6f:e8:bf:ac:f8:ee:f8:1a:f6:3c:23:45:03: 90:67:59:4c:21:69:68:a7:4b:e9:ad:0d:51:52:e4:e9:7f:f8: 06:14:d9:d3:36:e8:4a:1b:76:40:8b:e4:27:95:9f:7b:f7:88: ef:1a:67:f3:3e:5a:c7:34:1a:59:53:f8:2f:be:9f:c5:ee:2a: 00:a3:2d:18:fc:a5:41:60:22:0a:b7:6e:20:cc:2d:aa:a5:97: 43:28:4b:c3:8a:32:fc:e9:8e:da:3a:4e:d1:af:57:7f:e2:ec: 88:af:f4:1c:32:5a:9c:15:50:ee:1e:ca:5b:63:e3:b9:52:e6: db:73:68:93:82:f5:92:d6:c1:5a:0b:58:3d:eb:1d:3a:1c:f3: 09:9c:ea:8f:24:71:bc:1f:20:fa:14:ca:eb:16:a0:5d:c7:36: 98:10:fb:26:e6:2b:e1:30:5f:34:e8:1f:12:02:09:87:8a:dd: 67:be:f3:f9:9a:0c:85:ad:a9:10:88:08:f8:2f:70:b6:b0:c4: 71:18:ff:a5:85:64:92:05:fe:a5:7c:f3:04:56:a8:15:67:8c: 85:92:a2:da -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0NTYxMTAvBgNVBAUTKEM5Q0M3OTRGRkNCNENERjJEOURGQkRFQjc2MzgwOUI4 N0QyRDhGNTcwHhcNMjUwODEyMTU1MzE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliNjM2ZC05N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3N39Ga0OyAH/D9i2Erkp1DyaXH5mbnw1oMZIx2pIEp1Zut69TYspYxVyitgL NDjHjRBz+Rqw3ibaDxvFM6Lmy1X3iSUd9qPkiOnLC2FDd+yTVIeGNTvEykkGQvVn dusHXq3MWyGhg9RUy9AbTXCFv1x6wzDGCEuw6PgHCUjH7e0S+sDlzhmPy8OPHBcw ty/TKTHlbRCg480MypZ4amjNACMmhyg8q2JDwc750VS2saqi+AbZr4isuKxolZkH fINynsTEh5kMoNDhCiLLzoxa7wLQk+13+0xTMVvhLZAxvmCqv27k2jxFKPf24/OW SMw2W5k57/KjkoKnRAk7PhqMLwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFNQ0QM4 oDuvwGk/WK17OgqBYderMB8GA1UdIwQYMBaAFMnMeU/8tM3y2d+963Y4Cbh9LY9X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ1Ni82MTU0RDE2ODM3 MkUxMUU1ODFGMEZCMzlDNEY5QUUwMi95Y3g1VF95MHpmTFozNzNyZGpnSnVIMHRq MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljeDVUX3kwemZMWjM3M3JkamdKdUgwdGoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0NTYvNjE1NEQxNjgzNzJFMTFFNTgxRjBGQjM5QzRGOUFFMDIvMDRDQzU2MkE0 NDRFMTFFODgyMDQwNjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItfXADBAJnwfgwDQQCAAIwBwMFACQCt4AwDQYJKoZIhvcN AQELBQADggEBABAh+onz6BN7lHknEQI1Li0VFLeq9IzxNhj2+WXEIb5A+QrzRxmc qbEyb+i/rPju+Br2PCNFA5BnWUwhaWinS+mtDVFS5Ol/+AYU2dM26EobdkCL5CeV n3v3iO8aZ/M+Wsc0GllT+C++n8XuKgCjLRj8pUFgIgq3biDMLaqll0MoS8OKMvzp jto6TtGvV3/i7Iiv9BwyWpwVUO4eyltj47lS5ttzaJOC9ZLWwVoLWD3rHToc8wmc 6o8kcbwfIPoUyusWoF3HNpgQ+ybmK+EwXzToHxICCYeK3We+8/maDIWtqRCICPgv cLawxHEY/6WFZJIF/qV88wRWqBVnjIWSoto= -----END CERTIFICATE-----Generated at Sun Aug 24 02:38:26 2025 by rpki-client