$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa File: B0D3DA64107B11F097717C77C4F9AE02.roa (raw, json) Hash identifier: cHwQ63Z60E3TtJaa+ceKddkbgrqHWoaCrkF7NGBCHAg= Subject key identifier: E5:8E:35:4B:8F:D8:99:A8:05:94:3D:D7:E4:CF:71:36:04:E7:5A:77 Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: CB Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa Signing time: Fri 20 Jun 2025 08:23:48 +0000 ROA not before: Fri 20 Jun 2025 08:23:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 149296 IP address blocks: 43.255.52.0/24 maxlen: 24 43.255.53.0/24 maxlen: 24 43.255.54.0/24 maxlen: 24 43.255.55.0/24 maxlen: 24 103.129.54.0/23 maxlen: 23 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Jun 20 08:23:48 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68551a93-131d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:80:65:f2:75:cd:6d:7e:77:22:70:80:72:18: eb:bc:d5:62:29:74:e8:c6:33:7f:00:89:c3:90:5f: 80:7e:21:a0:06:f9:d9:b6:8f:eb:15:f0:21:a3:37: a2:7c:ec:c2:dd:ee:7f:03:a5:db:96:fd:57:05:0d: 70:46:8a:96:48:b3:fa:01:66:b2:00:c2:e9:7c:f4: 7c:b0:a8:67:bb:45:39:0b:f2:0d:49:7d:84:e1:03: f2:f6:48:db:dc:19:f5:c6:12:29:0e:12:89:af:c7: 88:9f:10:9c:b8:31:c7:2f:b1:e9:b1:51:92:c9:9f: ef:a4:79:e7:0d:eb:82:49:fc:a9:7e:24:c7:41:95: f1:9d:7f:ef:83:a6:93:24:e9:6a:5a:fe:70:86:cc: 7c:d4:ef:81:9f:32:49:0a:13:72:ae:3a:5f:94:6f: 11:be:52:42:80:46:88:3b:7c:b1:d8:a3:c1:92:3c: a4:c0:ee:53:d9:2b:8b:bc:88:97:b6:b5:9f:20:49: 49:06:1f:94:52:8f:a1:3e:2d:07:a3:0a:32:55:78: 48:37:c1:3b:e4:f7:7e:ff:dd:09:8a:02:6f:12:22: cd:35:b3:7b:a7:cb:8a:a1:43:99:6d:80:9b:2f:1a: e2:d2:e1:e1:7d:0a:74:fb:9f:df:e8:b5:86:2a:93: 3c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8E:35:4B:8F:D8:99:A8:05:94:3D:D7:E4:CF:71:36:04:E7:5A:77 X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.52.0/22 103.129.54.0/23 Signature Algorithm: sha256WithRSAEncryption a7:a7:16:a4:a3:0d:58:ff:7d:7d:b1:b5:08:93:ce:ec:7e:88: 1b:5b:9c:44:1a:f6:90:a3:e7:d0:1a:95:a6:b6:99:b9:99:18: 08:67:14:81:27:79:cd:25:9e:7b:18:7b:c1:81:48:de:ca:06: e5:5c:4d:be:37:6a:55:3f:47:db:78:b2:ae:50:71:73:9b:fc: ac:5b:91:82:81:b2:ba:e7:72:db:f6:d7:92:de:a2:dc:29:f1: 47:7c:d0:17:bc:6e:41:78:51:f8:e0:90:d7:2f:77:69:cc:e5: ec:85:fa:43:a4:7c:97:8f:1a:26:2d:f6:2e:95:0b:d4:68:e0: be:9e:a6:2d:51:37:f4:b9:34:92:2a:ca:b2:57:fd:9d:d3:bb: c7:d4:b0:9a:3f:81:b1:d5:22:27:19:9a:4d:35:d1:67:25:83: a6:6c:f5:03:7f:c3:0a:39:18:97:02:51:3b:7b:d1:a2:ca:fa: a9:e5:f6:92:db:88:61:3b:3a:70:2f:04:d3:13:cd:39:d6:d6: 47:b5:ab:ff:1f:93:62:b7:e3:c7:33:7a:59:0d:59:1a:19:24: 3b:f1:9d:1c:e7:e1:5e:ce:ff:01:3b:9c:68:3f:66:ec:80:46: 49:e2:26:02:a0:25:b2:1f:2b:ed:95:3e:12:5d:25:6b:84:b1: c8:ab:5e:fd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDA1NzM5NUI0ODc4RkIxQTY3RkNCQUQ1ODI2MTdCN0JB QUYyQzMxRkYwHhcNMjUwNjIwMDgyMzQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1MWE5My0xMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIBl8nXNbX53InCAchjrvNViKXToxjN/AInDkF+AfiGgBvnZto/rFfAhozei fOzC3e5/A6Xblv1XBQ1wRoqWSLP6AWayAMLpfPR8sKhnu0U5C/INSX2E4QPy9kjb 3Bn1xhIpDhKJr8eInxCcuDHHL7HpsVGSyZ/vpHnnDeuCSfypfiTHQZXxnX/vg6aT JOlqWv5whsx81O+BnzJJChNyrjpflG8RvlJCgEaIO3yx2KPBkjykwO5T2SuLvIiX trWfIElJBh+UUo+hPi0HowoyVXhIN8E75Pd+/90JigJvEiLNNbN7p8uKoUOZbYCb Lxri0uHhfQp0+5/f6LWGKpM8dwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOWONUuP 2JmoBZQ91+TPcTYE51p3MB8GA1UdIwQYMBaAFAVzlbSHj7Gmf8utWCYXt7qvLDH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GQTBFMDVBNDZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9CWE9WdEllUHNhWl95NjFZSmhlM3VxOHNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZDOEYvRkEwRTA1QTQ2QjVBMTFFRkJDOTk5MjVDQzRGOUFFMDIvQjBEM0RBNjQx MDdCMTFGMDk3NzE3Qzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/zQDBAFngTYwDQYJKoZIhvcNAQELBQADggEBAKenFqSj DVj/fX2xtQiTzux+iBtbnEQa9pCj59Aalaa2mbmZGAhnFIEnec0lnnsYe8GBSN7K BuVcTb43alU/R9t4sq5QcXOb/KxbkYKBsrrnctv215Leotwp8Ud80Be8bkF4Ufjg kNcvd2nM5eyF+kOkfJePGiYt9i6VC9Ro4L6epi1RN/S5NJIqyrJX/Z3Tu8fUsJo/ gbHVIicZmk010Wclg6Zs9QN/wwo5GJcCUTt70aLK+qnl9pLbiGE7OnAvBNMTzTnW 1ke1q/8fk2K348czelkNWRoZJDvxnRzn4V7O/wE7nGg/ZuyARkniJgKgJbIfK+2V PhJdJWuEscirXv0= -----END CERTIFICATE-----Generated at Thu Jul 3 13:31:10 2025 by rpki-client