$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa File: 1BCA5982656311ECA4E81323C4F9AE02.roa (raw, json) Hash identifier: sZSppAngvswKy+MC+ed/ihAoI4UmVi4rfOBl63CnJSc= Subject key identifier: 41:EB:E3:CE:85:EF:41:26:13:EA:61:27:CD:C5:6C:86:30:5A:CB:9C Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 101B Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa Signing time: Mon 30 Jun 2025 17:50:20 +0000 ROA not before: Mon 30 Jun 2025 17:50:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59382 IP address blocks: 103.237.36.0/22 maxlen: 24 160.202.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4123 (0x101b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A, serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Jun 30 17:50:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862ce5c-74d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:5a:48:e1:d4:5f:21:9c:72:3b:19:5c:b7: 38:01:0c:ed:46:41:9f:bf:98:53:38:8a:ac:a3:06: 59:ba:36:4a:32:dd:b7:db:12:a5:60:83:55:92:3a: b1:41:b4:2d:e6:af:c4:03:5e:b6:be:96:b4:db:c9: 55:34:46:29:0f:8d:85:b7:38:8f:1e:ff:70:35:4e: 7c:9f:59:94:5d:fa:5b:79:84:c9:02:66:77:87:ae: f2:a4:73:de:6c:9d:95:90:47:bc:fa:3c:a5:f0:08: b3:7d:06:a3:e2:12:49:51:48:80:d1:63:6e:c6:4e: b0:76:e2:e8:e1:6d:92:18:a2:92:1d:9a:15:21:a1: 26:19:d2:79:88:a4:43:cf:c8:74:21:c0:e0:0c:a9: 25:dd:a8:ea:4c:57:c6:30:75:56:74:ff:4c:f1:97: 2c:a0:6c:0d:6e:e7:8e:42:c4:b8:58:63:82:85:c9: 03:93:5e:28:5f:a1:3a:aa:f0:e0:9f:f4:2e:7e:fc: 9b:fc:92:44:46:b3:6b:de:ff:2e:f2:be:f4:f1:21: 8d:a4:f1:13:ab:e9:00:61:e5:d8:a3:53:73:a4:c9: 0e:2e:7a:2a:87:a4:a9:84:b1:1e:19:fe:d9:a2:84: ae:f9:92:45:e3:74:45:cd:c3:5d:ad:92:da:c1:da: 81:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EB:E3:CE:85:EF:41:26:13:EA:61:27:CD:C5:6C:86:30:5A:CB:9C X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/1BCA5982656311ECA4E81323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.36.0/22 160.202.144.0/22 Signature Algorithm: sha256WithRSAEncryption 76:10:fa:36:c1:b9:f3:f7:fb:c3:93:a1:7e:a6:62:65:e8:c9: 9c:70:fb:50:3b:df:b7:dc:39:19:b9:d8:c8:80:12:4d:30:4e: e2:6e:9c:f0:f0:74:dc:88:83:d1:18:3a:93:b2:dd:f4:6f:d1: 01:48:6a:9f:60:db:6c:1d:bd:b2:19:2a:ea:45:2a:a5:ff:89: 74:ec:17:6c:cc:3e:a1:bb:22:87:d6:31:12:df:8e:f3:47:1d: 19:3a:9b:8f:16:de:6e:a3:a4:58:ad:f4:01:3c:8b:e5:f6:af: 55:ec:68:9a:80:a3:24:53:ae:c5:2c:0e:ec:58:83:25:a4:03: 91:9b:73:d9:bd:36:a9:9a:a8:45:c4:df:cb:2d:d5:20:5f:d8: ef:c8:43:57:ca:51:ae:c7:1f:2a:ec:0b:f7:b2:47:08:b8:88: 48:e7:1a:fa:d7:c2:5e:19:d7:d0:d8:14:1c:b2:c7:07:6d:ce: 5b:cf:49:44:65:b7:54:d2:af:a8:0c:8f:e3:6f:7b:a5:f2:f4: 44:4f:4e:cf:ec:98:b4:4a:da:a4:95:db:0d:1f:8f:d0:08:e0: 58:19:2b:f7:8d:53:3b:fc:d7:dc:f5:97:35:ca:60:32:a2:43: 9d:35:10:9c:07:83:4c:e1:73:54:73:00:34:13:8e:23:36:de: 82:c6:97:4e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjUwNjMwMTc1MDIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyY2U1Yy03NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztxaSOHUXyGccjsZXLc4AQztRkGfv5hTOIqsowZZujZKMt232xKlYINVkjqx QbQt5q/EA162vpa028lVNEYpD42FtziPHv9wNU58n1mUXfpbeYTJAmZ3h67ypHPe bJ2VkEe8+jyl8AizfQaj4hJJUUiA0WNuxk6wduLo4W2SGKKSHZoVIaEmGdJ5iKRD z8h0IcDgDKkl3ajqTFfGMHVWdP9M8ZcsoGwNbueOQsS4WGOChckDk14oX6E6qvDg n/Qufvyb/JJERrNr3v8u8r708SGNpPETq+kAYeXYo1NzpMkOLnoqh6SphLEeGf7Z ooSu+ZJF43RFzcNdrZLawdqB8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEHr486F 70EmE+phJ83FbIYwWsucMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCNkEvMDg3NUY0OTY0Qzc0MTFFOTk3OTAwRjU1QzRGOUFFMDIvMUJDQTU5ODI2 NTYzMTFFQ0E0RTgxMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn7SQDBAKgypAwDQYJKoZIhvcNAQELBQADggEBAHYQ+jbB ufP3+8OToX6mYmXoyZxw+1A737fcORm52MiAEk0wTuJunPDwdNyIg9EYOpOy3fRv 0QFIap9g22wdvbIZKupFKqX/iXTsF2zMPqG7IofWMRLfjvNHHRk6m48W3m6jpFit 9AE8i+X2r1XsaJqAoyRTrsUsDuxYgyWkA5Gbc9m9NqmaqEXE38st1SBf2O/IQ1fK Ua7HHyrsC/eyRwi4iEjnGvrXwl4Z19DYFByyxwdtzlvPSURlt1TSr6gMj+Nve6Xy 9ERPTs/smLRK2qSV2w0fj9AI4FgZK/eNUzv819z1lzXKYDKiQ501EJwHg0zhc1Rz ADQTjiM23oLGl04= -----END CERTIFICATE-----Generated at Thu Jul 3 17:38:36 2025 by rpki-client