$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa File: 075152B253CB11F09DA22358C4F9AE02.roa (raw, json) Hash identifier: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM= Subject key identifier: 4D:00:07:45:F9:F6:85:7B:D5:47:1E:0E:2A:DE:8D:18:BD:39:11:A0 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34B6 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa Signing time: Sat 28 Jun 2025 02:53:12 +0000 ROA not before: Sat 28 Jun 2025 02:53:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45193 IP address blocks: 103.39.252.0/22 maxlen: 22 119.252.123.0/24 maxlen: 24 119.252.124.0/23 maxlen: 23 119.252.124.0/24 maxlen: 24 119.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Jun 28 02:53:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685f5917-27a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:84:c9:33:8a:60:04:0f:9b:82:39:44:c7:70: a5:7e:a1:cd:c0:8c:4e:a9:4d:8c:de:fe:87:34:39: 1e:70:f6:3d:70:06:85:5e:5b:d0:fd:26:20:4b:6a: 60:9b:7e:01:a7:3b:6e:5d:34:54:47:3b:de:60:a6: e3:f0:a9:df:77:e9:65:e5:f0:86:13:0a:67:f2:dc: 7a:fb:eb:48:8a:15:80:62:f8:7f:75:f9:47:8c:bf: a7:ef:8a:22:9f:84:86:78:91:ce:c7:50:6d:76:af: df:ad:a7:b0:d0:39:d4:0a:cc:02:bb:a2:8c:9d:fa: 8b:f1:72:7c:20:79:dc:1f:47:d7:29:8c:45:f8:00: 31:74:70:54:53:dd:32:71:92:96:c9:4b:20:b1:dd: f3:c0:9c:30:91:53:7f:b5:99:64:1b:04:ab:3a:10: b5:b2:3e:da:bd:8a:0e:f4:e2:c6:a9:e7:54:79:b2: 1f:95:c7:fe:81:8e:a6:dd:96:20:40:68:5c:88:36: c4:c6:5a:c0:0a:af:22:b2:1d:ad:11:0f:4b:e7:af: 46:00:4d:b5:a6:02:23:bd:71:99:35:a9:be:14:09: 7d:8e:0a:37:ac:d9:cf:c6:fd:8d:da:6e:66:a8:be: 2a:90:9a:b4:eb:c7:43:12:df:90:11:dd:b1:7e:50: ad:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:00:07:45:F9:F6:85:7B:D5:47:1E:0E:2A:DE:8D:18:BD:39:11:A0 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/075152B253CB11F09DA22358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.252.0/22 119.252.123.0-119.252.125.255 Signature Algorithm: sha256WithRSAEncryption 09:a3:7c:42:f8:b5:81:10:85:fe:8b:0f:3d:7e:35:39:ca:1f: 1b:ef:bc:14:2b:3e:09:4e:1a:eb:2c:8c:d4:3c:ec:00:7f:8e: f6:3a:70:74:2f:44:fd:c4:c7:6f:73:6d:04:bd:1c:f7:37:23: 2f:f6:8b:e7:7f:9e:99:37:29:30:7b:c4:63:1c:4e:47:03:c3: 03:a9:f6:63:f0:64:21:f1:23:47:74:00:b7:8a:db:ec:8f:dd: 56:62:5a:1b:0c:e6:20:30:46:d4:9d:10:e0:f6:fa:4f:aa:45: 8a:35:59:1e:38:0d:f9:10:43:6e:76:92:e5:fa:e6:95:b9:02: cb:40:a9:b7:6d:61:2c:d9:bc:d8:1e:72:52:98:b7:9b:44:3b: 6d:fe:d0:15:8c:e3:c4:9f:70:f1:ff:2d:3e:8c:4a:23:fb:3a: 41:49:9e:1e:74:52:75:4e:be:ba:30:56:1e:5e:64:05:2d:89: da:c8:4c:a4:23:d4:cf:4f:ea:30:37:e5:04:9c:40:fa:3a:72: 8d:7e:5f:0f:df:e9:3b:6b:a0:c3:66:96:dd:7a:0d:61:40:5d: 3d:ec:de:ff:80:eb:ae:83:47:24:cd:51:f2:29:79:85:4c:a7: e6:a3:be:d2:b7:70:58:3e:9a:85:1e:22:46:9a:93:30:71:ed: 2c:f3:12:93 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNjI4MDI1MzEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVmNTkxNy0yN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oTJM4pgBA+bgjlEx3ClfqHNwIxOqU2M3v6HNDkecPY9cAaFXlvQ/SYgS2pg m34BpztuXTRURzveYKbj8Knfd+ll5fCGEwpn8tx6++tIihWAYvh/dflHjL+n74oi n4SGeJHOx1Btdq/fraew0DnUCswCu6KMnfqL8XJ8IHncH0fXKYxF+AAxdHBUU90y cZKWyUsgsd3zwJwwkVN/tZlkGwSrOhC1sj7avYoO9OLGqedUebIflcf+gY6m3ZYg QGhciDbExlrACq8ish2tEQ9L569GAE21pgIjvXGZNam+FAl9jgo3rNnPxv2N2m5m qL4qkJq068dDEt+QEd2xflCt6QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFE0AB0X5 9oV71UceDirejRi9ORGgMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQTAvM0EwRDkzMTAxRDhDMTFFMjhFRkY1N0U3MDhCMDJDRDIvMDc1MTUyQjI1 M0NCMTFGMDlEQTIyMzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJnJ/wwDAMEAHf8ewMEAXf8fDANBgkqhkiG9w0BAQsFAAOC AQEACaN8Qvi1gRCF/osPPX41OcofG++8FCs+CU4a6yyM1DzsAH+O9jpwdC9E/cTH b3NtBL0c9zcjL/aL53+emTcpMHvEYxxORwPDA6n2Y/BkIfEjR3QAt4rb7I/dVmJa GwzmIDBG1J0Q4Pb6T6pFijVZHjgN+RBDbnaS5frmlbkCy0Cpt21hLNm82B5yUpi3 m0Q7bf7QFYzjxJ9w8f8tPoxKI/s6QUmeHnRSdU6+ujBWHl5kBS2J2shMpCPUz0/q MDflBJxA+jpyjX5fD9/pO2ugw2aW3XoNYUBdPeze/4DrroNHJM1R8il5hUyn5qO+ 0rdwWD6ahR4iRpqTMHHtLPMSkw== -----END CERTIFICATE-----Generated at Sun Jul 6 09:39:07 2025 by rpki-client