$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa File: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (raw, json) Hash identifier: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4= Subject key identifier: DD:1F:7C:3F:7A:18:DC:69:83:67:CC:97:F7:74:AA:66:28:D0:06:50 Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05C6 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa Signing time: Tue 01 Jul 2025 00:02:44 +0000 ROA not before: Tue 01 Jul 2025 00:02:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142283 IP address blocks: 103.167.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jul 1 00:02:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686325a4-c099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:1c:61:04:09:8b:dc:f9:fe:b1:0b:06:24: 0d:69:64:8d:02:0b:d0:ca:34:87:4e:f7:f3:20:7d: d7:8f:17:61:ed:a6:5b:8c:df:ea:88:91:73:74:05: 19:bd:7c:6b:67:1c:f2:56:74:85:21:15:37:b1:44: 5a:d7:b5:b2:dc:9b:7d:4a:ae:0b:80:fd:60:91:6e: be:56:93:ee:9f:aa:53:cc:4b:c3:d9:6e:17:f8:a3: 57:1c:05:d2:ef:aa:c7:d7:71:c7:94:3e:4b:09:80: 2f:ab:4a:15:10:f4:43:fd:b8:88:82:5b:a6:3b:c2: d3:44:37:c9:2e:e4:14:4e:b7:b6:bd:a3:d0:cb:5f: 1e:f0:1e:39:3f:46:05:54:c5:c9:7a:78:98:5b:73: 40:09:56:ab:54:20:6d:5c:df:c2:99:8e:05:e2:c7: 9f:24:5c:4f:a4:46:e1:f5:4a:f2:86:60:58:ac:17: 9f:63:bb:3a:a7:0b:62:0e:b6:f1:da:aa:04:65:5a: ad:64:f7:1e:3a:1a:02:7a:f5:2d:b8:d0:d7:64:f8: d8:63:d7:84:34:f3:96:cb:ee:b8:46:2c:14:b1:6c: e2:59:f0:bd:10:bc:e7:99:67:8b:0f:59:57:8b:29: 46:6e:19:6a:33:72:a9:f3:44:89:16:c8:32:93:41: a0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1F:7C:3F:7A:18:DC:69:83:67:CC:97:F7:74:AA:66:28:D0:06:50 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.81.0/24 Signature Algorithm: sha256WithRSAEncryption 07:ce:6f:00:bc:54:1c:c5:ea:15:a4:38:bf:75:08:23:20:f8: 28:a7:88:0f:69:c3:11:68:c4:1c:3d:ee:60:ac:3d:69:6e:b0: 37:3d:c0:46:3b:cd:8f:b5:2a:97:8e:4b:7e:42:11:68:bd:da: d5:e8:76:eb:93:29:50:4b:06:b4:ff:51:b5:ba:12:1f:4a:c2: b1:23:0a:22:9b:2e:82:2a:e6:ae:6d:7e:b8:2f:a9:bc:12:78: 05:e4:f7:98:ab:36:1d:be:25:26:9b:11:29:55:39:dd:be:79: 48:5a:30:cf:71:38:87:87:64:d2:c8:0f:a5:c0:44:b3:b1:21: ac:22:63:31:44:b8:b2:80:7c:ca:b2:79:10:66:26:47:a2:67: 21:62:0c:67:24:0d:f6:23:49:75:8a:1e:46:04:f0:3d:7a:da: 3a:5f:c5:d3:0d:d2:a5:ce:d9:ff:b2:77:4a:a1:85:88:48:ae: 00:b0:3f:b5:f7:7a:cd:e6:ad:eb:75:71:54:80:75:88:62:bb: 89:53:d4:40:8d:f2:7e:2d:00:b1:39:7d:a0:9a:a4:e6:c3:7f: c2:94:ea:a4:ab:53:17:c9:2b:f9:64:7c:1f:01:fc:36:10:44: 82:04:e3:cd:36:db:da:f3:dd:74:10:15:6f:84:40:dd:fb:61: 76:f3:1c:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwNzAxMDAwMjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMjVhNC1jMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6ccYQQJi9z5/rELBiQNaWSNAgvQyjSHTvfzIH3Xjxdh7aZbjN/qiJFzdAUZ vXxrZxzyVnSFIRU3sURa17Wy3Jt9Sq4LgP1gkW6+VpPun6pTzEvD2W4X+KNXHAXS 76rH13HHlD5LCYAvq0oVEPRD/biIglumO8LTRDfJLuQUTre2vaPQy18e8B45P0YF VMXJeniYW3NACVarVCBtXN/CmY4F4sefJFxPpEbh9UryhmBYrBefY7s6pwtiDrbx 2qoEZVqtZPceOhoCevUtuNDXZPjYY9eENPOWy+64RiwUsWziWfC9ELznmWeLD1lX iylGbhlqM3Kp80SJFsgyk0GgIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN0ffD96 GNxpg2fMl/d0qmYo0AZQMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NzcvRjA1ODU4QjhDQTcwMTFFQkE5RDJEQzYxQzRGOUFFMDIvREQyMUFERkFD QTczMTFFQkFBNkUwNTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp1EwDQYJKoZIhvcNAQELBQADggEBAAfObwC8VBzF6hWk OL91CCMg+CiniA9pwxFoxBw97mCsPWlusDc9wEY7zY+1KpeOS35CEWi92tXoduuT KVBLBrT/UbW6Eh9KwrEjCiKbLoIq5q5tfrgvqbwSeAXk95irNh2+JSabESlVOd2+ eUhaMM9xOIeHZNLID6XARLOxIawiYzFEuLKAfMqyeRBmJkeiZyFiDGckDfYjSXWK HkYE8D162jpfxdMN0qXO2f+yd0qhhYhIrgCwP7X3es3mret1cVSAdYhiu4lT1ECN 8n4tALE5faCapObDf8KU6qSrUxfJK/lkfB8B/DYQRIIE480229rz3XQQFW+EQN37 YXbzHMY= -----END CERTIFICATE-----Generated at Fri Jul 4 17:56:29 2025 by rpki-client