$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/BF811486DC1E11EBB2C72F52C4F9AE02.roa File: BF811486DC1E11EBB2C72F52C4F9AE02.roa (raw, json) Hash identifier: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY= Subject key identifier: 5F:34:9E:6E:3A:6E:E3:04:2F:AB:AB:11:84:FC:C6:53:AB:AF:CB:ED Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 0591 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/BF811486DC1E11EBB2C72F52C4F9AE02.roa Signing time: Tue 01 Jul 2025 00:03:22 +0000 ROA not before: Tue 01 Jul 2025 00:03:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142136 IP address blocks: 103.166.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1425 (0x591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Jul 1 00:03:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686325ca-639b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:87:08:dc:43:ff:2e:d8:e9:2c:89:69:31: 89:7d:52:74:f9:7b:30:58:72:a6:7d:b9:51:89:ae: 86:be:1b:66:a1:ac:37:4c:02:55:70:df:e0:fe:5a: 0d:8b:8d:eb:11:46:79:8b:f7:11:1f:da:fc:12:57: 54:d5:bc:22:32:1c:df:e5:a7:3c:03:d1:a9:a8:c9: f2:22:f4:99:77:99:52:ac:6d:b3:77:ec:87:30:6a: aa:0a:a6:0c:44:c5:e4:a9:65:93:c8:84:73:81:5a: 7e:e1:2f:e4:5b:d2:c4:3f:fc:5c:ee:5d:3e:0d:ef: d3:55:1c:42:2f:0c:e3:48:ae:8f:a6:1b:66:99:15: dd:30:37:3e:15:32:23:05:cf:e1:f5:28:0a:1a:fd: 5b:a9:b0:f6:e6:33:f4:4d:28:db:cc:07:97:81:47: 81:b6:54:07:6b:7c:d8:d1:af:00:5d:b3:fe:35:70: 91:f4:44:43:4e:c4:96:06:55:a0:62:93:e2:81:cd: cd:cb:5a:97:43:34:fa:8a:c5:b9:7e:7f:40:07:bf: ef:52:ec:a3:ea:20:12:5f:6d:43:8d:06:96:31:65: de:df:88:22:66:87:53:fb:fe:b7:a3:87:f2:a6:a5: 7e:8a:06:4a:e7:1f:00:19:15:5e:5d:ed:18:0c:1e: 68:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:34:9E:6E:3A:6E:E3:04:2F:AB:AB:11:84:FC:C6:53:AB:AF:CB:ED X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/BF811486DC1E11EBB2C72F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.193.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:c9:31:fa:97:3c:34:61:4b:0b:ba:a0:83:a4:91:68:e4:14: e5:39:bf:a5:db:2a:ff:5e:7a:42:ca:48:88:9d:7c:f7:73:54: 68:ee:02:77:bc:49:de:dc:39:cb:25:e8:10:ab:85:eb:82:30: 60:c8:0b:80:b8:ac:9b:d4:25:60:62:a5:87:9a:39:3d:bf:56: bd:05:89:74:1e:a5:bf:c0:59:67:28:df:89:36:86:42:7c:12: 5a:63:f4:68:19:b5:de:78:35:cb:01:34:d0:c9:33:5a:2a:cb: 30:78:ed:8a:c4:d4:7f:5a:58:30:54:08:57:d7:5d:71:96:89: 3a:2e:5e:4d:cb:4a:fc:7f:50:7d:4f:52:bc:fc:e1:f0:c0:db: cd:e9:07:9b:6d:cd:fa:21:2b:d3:0f:19:cc:e3:37:cd:6e:db: d6:fa:18:0d:11:3b:6c:7f:66:32:06:b4:fa:d4:90:22:bb:15: 9c:bf:b9:77:9e:e9:f6:e9:c6:8e:e1:21:cf:d1:e2:d1:64:94: cc:86:69:44:38:5f:54:3c:a0:3a:86:84:2e:2d:55:3f:9c:d5: a1:c8:69:a4:66:fc:a8:2f:16:03:e0:14:33:db:dc:0e:03:54: 11:9d:9e:4d:81:7f:df:93:fd:d1:d3:4d:d1:60:87:29:30:f1: 4f:3e:43:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwNzAxMDAwMzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMjVjYS02MzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFqHCNxD/y7Y6SyJaTGJfVJ0+XswWHKmfblRia6Gvhtmoaw3TAJVcN/g/loN i43rEUZ5i/cRH9r8EldU1bwiMhzf5ac8A9GpqMnyIvSZd5lSrG2zd+yHMGqqCqYM RMXkqWWTyIRzgVp+4S/kW9LEP/xc7l0+De/TVRxCLwzjSK6PphtmmRXdMDc+FTIj Bc/h9SgKGv1bqbD25jP0TSjbzAeXgUeBtlQHa3zY0a8AXbP+NXCR9ERDTsSWBlWg YpPigc3Ny1qXQzT6isW5fn9AB7/vUuyj6iASX21DjQaWMWXe34giZodT+/63o4fy pqV+igZK5x8AGRVeXe0YDB5oKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF80nm46 buMEL6urEYT8xlOrr8vtMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDOUMvOUI2QzQyODBEQzFCMTFFQkE2MzU1MDRFQzRGOUFFMDIvQkY4MTE0ODZE QzFFMTFFQkIyQzcyRjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpsEwDQYJKoZIhvcNAQELBQADggEBAG7JMfqXPDRhSwu6 oIOkkWjkFOU5v6XbKv9eekLKSIidfPdzVGjuAne8Sd7cOcsl6BCrheuCMGDIC4C4 rJvUJWBipYeaOT2/Vr0FiXQepb/AWWco34k2hkJ8Elpj9GgZtd54NcsBNNDJM1oq yzB47YrE1H9aWDBUCFfXXXGWiTouXk3LSvx/UH1PUrz84fDA283pB5ttzfohK9MP GczjN81u29b6GA0RO2x/ZjIGtPrUkCK7FZy/uXee6fbpxo7hIc/R4tFklMyGaUQ4 X1Q8oDqGhC4tVT+c1aHIaaRm/KgvFgPgFDPb3A4DVBGdnk2Bf9+T/dHTTdFghykw 8U8+QyY= -----END CERTIFICATE-----Generated at Sun Jul 6 04:28:54 2025 by rpki-client