$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: ce8eVhU6m1rxVz2XMIA3QgTRmrpD6cmjmSLDWld45vc= Subject key identifier: 5C:B9:F2:B9:3A:40:9D:97:6F:05:5F:A1:CC:B5:F6:4F:FB:DE:B8:64 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B2A Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Sat 14 Jun 2025 12:27:50 +0000 ROA not before: Sat 14 Jun 2025 12:27:50 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:100::/40 maxlen: 40 2403:da40:101::/48 maxlen: 48 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Jun 14 12:27:50 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=684d6ac6-284b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:61:40:51:92:e6:c7:ed:05:19:69:f1:6c: 02:af:6c:8e:ae:b7:21:ed:9d:d2:f8:19:04:de:8b: 35:c1:c9:6f:d0:99:97:df:de:ee:3c:39:dc:b2:f3: 58:b9:6b:0f:83:64:8a:79:b1:f1:7a:8b:5b:0c:bf: 28:94:af:cf:87:b4:9b:7b:e7:67:d1:9a:0b:94:59: 8f:7d:b6:3c:89:75:87:a1:c6:7c:1a:51:40:a0:d9: ce:ff:b8:a7:48:fb:21:24:4a:68:34:ec:11:e9:d3: e8:c9:8c:1a:7d:47:84:b4:5a:2a:f7:3d:8b:dc:b7: 2d:6b:af:8d:04:1d:5b:37:ff:2d:a2:36:eb:17:01: d9:ff:f8:c5:76:46:d1:79:ae:88:6d:b7:41:d6:de: 5e:da:e2:83:46:cc:e8:ba:0f:ef:e0:be:4c:93:06: bc:ca:7d:a6:14:8b:b3:8c:f6:a0:e3:75:59:cd:d0: 3e:d0:d9:48:9d:be:e5:e1:56:d6:5c:9a:23:2b:60: e9:1f:72:a2:e0:93:82:96:c3:91:2b:d6:f2:06:89: ff:cd:b4:b3:61:af:30:c2:a9:06:ee:bb:2a:3b:cc: ef:ac:9f:c8:0b:55:ce:db:55:72:f0:e6:b3:ef:10: c9:7e:98:bd:24:ec:16:72:6f:ea:7d:11:c4:15:2f: d1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B9:F2:B9:3A:40:9D:97:6F:05:5F:A1:CC:B5:F6:4F:FB:DE:B8:64 X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption 98:01:72:44:cd:bf:8a:17:3f:ee:4a:06:e7:d2:da:b8:96:d0: c7:1a:b1:e9:6e:b7:a4:71:2a:03:86:31:ce:e9:31:a2:59:c8: 29:0a:ab:4f:df:78:de:40:df:f6:1e:41:13:3b:18:e0:4b:4d: 52:60:2b:c5:7d:6a:cb:f3:2b:f1:08:46:fb:70:fe:60:c0:64: a4:1b:68:ff:4b:e1:93:d6:54:6f:b7:bc:4b:e6:3c:d4:ad:a4: 85:a9:c1:58:b5:b0:0d:d9:00:d1:28:84:32:94:38:16:12:b9: 80:7f:a5:68:10:7b:2a:29:c7:93:a7:b6:89:7b:8d:b2:a2:6d: 18:0e:0d:a8:39:1e:f9:b9:d2:93:a6:66:a2:21:a9:cc:df:04: 30:76:91:f6:9b:2a:fd:fc:30:57:16:10:96:be:a0:6f:93:dc: 19:c1:14:6e:77:1b:43:f0:27:31:8a:ad:e9:6e:37:37:42:bb: b0:ce:aa:78:68:f0:d1:8a:d1:58:81:53:d2:e4:14:88:9c:cb: a4:b7:f3:4a:ba:b9:32:89:ff:d4:63:b2:9c:0f:c6:50:5b:6f: 13:0c:f8:82:fd:3a:6c:00:08:f7:9d:6b:f6:87:46:85:f0:93: 4c:be:54:63:66:ac:8d:8e:84:74:79:0d:14:ff:e3:63:53:06: a5:f9:5e:b5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUwNjE0MTIyNzUwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkNmFjNi0yODRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1JhQFGS5sftBRlp8WwCr2yOrrch7Z3S+BkE3os1wclv0JmX397uPDncsvNY uWsPg2SKebHxeotbDL8olK/Ph7Sbe+dn0ZoLlFmPfbY8iXWHocZ8GlFAoNnO/7in SPshJEpoNOwR6dPoyYwafUeEtFoq9z2L3Lcta6+NBB1bN/8tojbrFwHZ//jFdkbR ea6IbbdB1t5e2uKDRszoug/v4L5Mkwa8yn2mFIuzjPag43VZzdA+0NlInb7l4VbW XJojK2DpH3Ki4JOClsORK9byBon/zbSzYa8wwqkG7rsqO8zvrJ/IC1XO21Vy8Oaz 7xDJfpi9JOwWcm/qfRHEFS/RjQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFy58rk6 QJ2XbwVfocy19k/73rhkMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfDQwDQQCAAIwBwMFACQD2kAwDQYJKoZIhvcNAQELBQAD ggEBAJgBckTNv4oXP+5KBufS2riW0Mcaselut6RxKgOGMc7pMaJZyCkKq0/feN5A 3/YeQRM7GOBLTVJgK8V9asvzK/EIRvtw/mDAZKQbaP9L4ZPWVG+3vEvmPNStpIWp wVi1sA3ZANEohDKUOBYSuYB/pWgQeyopx5Ontol7jbKibRgODag5Hvm50pOmZqIh qczfBDB2kfabKv38MFcWEJa+oG+T3BnBFG53G0PwJzGKreluNzdCu7DOqnho8NGK 0ViBU9LkFIicy6S380q6uTKJ/9RjspwPxlBbbxMM+IL9OmwACPeda/aHRoXwk0y+ VGNmrI2OhHR5DRT/42NTBqX5XrU= -----END CERTIFICATE-----Generated at Tue Jul 1 23:26:33 2025 by rpki-client