$ rpki-client -vvf rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa File: 576B4A9298AB11EDBC12AA81C4F9AE02.roa (raw, json) Hash identifier: hpINcvJULE4XElDu0MJmStTQHvk/pvkVHzA8BiayIb0= Subject key identifier: CE:27:6A:D9:F0:0C:0A:B8:33:F9:C6:EE:03:0C:95:4A:87:0C:DE:79 Certificate issuer: /CN=A9174B04/serialNumber=69D70B3635676E4F731B8EF1C5855B5E2F27F388 Certificate serial: 01CF Authority key identifier: 69:D7:0B:36:35:67:6E:4F:73:1B:8E:F1:C5:85:5B:5E:2F:27:F3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa Signing time: Wed 25 Jun 2025 02:50:08 +0000 ROA not before: Wed 25 Jun 2025 02:50:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135427 IP address blocks: 45.250.200.0/24 maxlen: 24 45.250.201.0/24 maxlen: 24 45.250.202.0/24 maxlen: 24 45.250.203.0/24 maxlen: 24 103.219.108.0/24 maxlen: 24 103.219.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.crl rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174B04, serialNumber=69D70B3635676E4F731B8EF1C5855B5E2F27F388 Validity Not Before: Jun 25 02:50:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b63e0-a78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e0:30:dd:80:72:2c:76:04:dd:6a:06:19:70: af:39:97:0e:df:b4:20:56:98:22:b2:b3:d4:1b:83: d4:10:e5:78:34:d4:ed:35:c9:fb:4e:01:ce:09:9c: e6:11:29:1c:ab:9c:b7:1c:6b:5b:02:e8:83:ef:a6: 3d:df:2c:01:dd:a1:c7:24:43:0f:78:37:37:69:90: 3e:46:f3:45:b8:9e:07:8f:fa:a6:9d:14:9f:9e:9a: 6b:85:cc:8e:36:8c:8b:d5:ab:24:c1:34:07:f7:6f: 20:0c:65:ef:96:37:9f:62:a2:87:61:76:07:01:97: 36:98:90:31:a4:cc:2b:10:f7:b7:66:41:70:11:84: 11:bf:ab:ae:f2:cb:29:e7:18:d6:97:cd:12:c2:16: e0:b3:00:a6:7f:c0:f3:ef:49:7f:85:1a:46:ca:12: ec:14:72:4e:8e:4f:2e:15:8a:46:69:f2:24:50:ce: c1:65:3f:60:13:dc:f1:56:07:04:fd:87:be:b9:59: 8b:24:12:dd:41:25:f7:e0:fd:3c:6f:8e:ad:56:86: ca:69:fc:25:27:5e:9b:c1:a0:c6:3b:67:be:80:9e: f2:8a:a7:3e:05:cc:98:10:e0:2e:68:d1:68:ff:46: 45:74:53:14:65:4d:77:11:a2:27:4d:d2:2d:07:23: d7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:27:6A:D9:F0:0C:0A:B8:33:F9:C6:EE:03:0C:95:4A:87:0C:DE:79 X509v3 Authority Key Identifier: keyid:69:D7:0B:36:35:67:6E:4F:73:1B:8E:F1:C5:85:5B:5E:2F:27:F3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/adcLNjVnbk9zG47xxYVbXi8n84g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/adcLNjVnbk9zG47xxYVbXi8n84g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174B04/3C689E0698A711EDB94DC87BC4F9AE02/576B4A9298AB11EDBC12AA81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.200.0/22 103.219.108.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:84:cd:6a:39:5e:43:98:68:fe:ed:0f:c2:d7:5c:da:90:d9: 58:ba:70:ad:6d:28:46:37:00:18:c3:5b:3c:f1:5f:f4:45:69: f8:76:99:15:a2:0a:f3:69:2c:92:e1:91:c1:6d:fc:fd:1a:c0: 54:0b:55:2c:bf:1b:80:8a:0e:a5:9a:ba:c1:9c:45:ef:d7:4b: d0:2b:0b:e8:8f:e7:67:97:e3:fd:13:d1:22:6f:20:f1:2b:14: c7:ba:1c:07:fa:80:98:40:c9:79:7b:4b:76:5d:aa:63:be:d0: 0b:3f:ff:06:24:e3:9d:2a:83:e6:1b:ff:8c:6f:07:32:dd:86: 6c:79:cb:7f:9d:85:68:06:dd:65:32:ac:47:01:02:ea:a5:35: 02:ed:06:8a:0f:5c:d4:91:ee:71:05:72:42:47:f8:49:0d:a3: 02:f1:51:28:7f:d8:81:cc:87:f0:8a:86:f1:8b:5f:fd:7e:a3: 28:6b:47:6f:95:8f:ca:41:a4:f3:74:0e:ae:86:75:a2:f3:c0: 71:1e:e7:1e:7c:6d:f8:70:b4:85:b8:5a:00:e7:73:6d:2f:2b: 1c:6c:69:92:19:f3:64:23:5f:9d:bb:37:b9:e4:55:f7:0a:e9: c0:51:d9:c7:a1:47:17:e5:17:6f:c1:74:cf:53:7c:49:04:31: 8c:08:3e:01 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRCMDQxMTAvBgNVBAUTKDY5RDcwQjM2MzU2NzZFNEY3MzFCOEVGMUM1ODU1QjVF MkYyN0YzODgwHhcNMjUwNjI1MDI1MDA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNjNlMC1hNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuAw3YByLHYE3WoGGXCvOZcO37QgVpgisrPUG4PUEOV4NNTtNcn7TgHOCZzm ESkcq5y3HGtbAuiD76Y93ywB3aHHJEMPeDc3aZA+RvNFuJ4Hj/qmnRSfnpprhcyO NoyL1askwTQH928gDGXvljefYqKHYXYHAZc2mJAxpMwrEPe3ZkFwEYQRv6uu8ssp 5xjWl80SwhbgswCmf8Dz70l/hRpGyhLsFHJOjk8uFYpGafIkUM7BZT9gE9zxVgcE /Ye+uVmLJBLdQSX34P08b46tVobKafwlJ16bwaDGO2e+gJ7yiqc+BcyYEOAuaNFo /0ZFdFMUZU13EaInTdItByPX3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM4natnw DAq4M/nG7gMMlUqHDN55MB8GA1UdIwQYMBaAFGnXCzY1Z25PcxuO8cWFW14vJ/OI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEIwNC8zQzY4OUUwNjk4 QTcxMUVEQjk0REM4N0JDNEY5QUUwMi9hZGNMTmpWbmJrOXpHNDd4eFlWYlhpOG44 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FkY0xOalZuYms5ekc0N3h4WVZiWGk4bjg0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRCMDQvM0M2ODlFMDY5OEE3MTFFREI5NERDODdCQzRGOUFFMDIvNTc2QjRBOTI5 OEFCMTFFREJDMTJBQTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+sgDBAFn22wwDQYJKoZIhvcNAQELBQADggEBABuEzWo5 XkOYaP7tD8LXXNqQ2Vi6cK1tKEY3ABjDWzzxX/RFafh2mRWiCvNpLJLhkcFt/P0a wFQLVSy/G4CKDqWausGcRe/XS9ArC+iP52eX4/0T0SJvIPErFMe6HAf6gJhAyXl7 S3ZdqmO+0As//wYk450qg+Yb/4xvBzLdhmx5y3+dhWgG3WUyrEcBAuqlNQLtBooP XNSR7nEFckJH+EkNowLxUSh/2IHMh/CKhvGLX/1+oyhrR2+Vj8pBpPN0Dq6GdaLz wHEe5x58bfhwtIW4WgDnc20vKxxsaZIZ82QjX527N7nkVfcK6cBR2cehRxflF2/B dM9TfEkEMYwIPgE= -----END CERTIFICATE-----Generated at Sun Jul 6 10:34:57 2025 by rpki-client