$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa File: B0D3DA64107B11F097717C77C4F9AE02.roa (raw, json) Hash identifier: RGlFmJuXgAC6PPf7l+HcJ1krRy6yK3ExJE3uIj0fjJ8= Subject key identifier: 42:23:B5:AF:0A:78:01:6F:99:2A:86:5F:13:46:5F:7D:76:6D:57:21 Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: F1 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa Signing time: Tue 19 Aug 2025 06:44:30 +0000 ROA not before: Tue 19 Aug 2025 06:44:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149296 IP address blocks: 43.255.52.0/24 maxlen: 24 43.255.53.0/24 maxlen: 24 43.255.54.0/24 maxlen: 24 43.255.55.0/24 maxlen: 24 103.129.54.0/23 maxlen: 23 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Aug 19 06:44:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68a41d4e-55ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:03:3b:8f:fe:39:cf:68:0a:c9:9d:e8:ee: 45:fa:e1:53:72:6e:ec:1f:9f:bc:47:cf:dc:01:8d: 87:c1:42:d9:ce:f6:6b:c8:ad:f6:f3:3f:c2:ca:5f: cc:19:59:16:53:69:fd:97:bb:b9:5f:f4:1c:d7:bd: f5:51:f2:00:19:88:08:84:a2:56:22:b7:4c:c0:fa: 1d:98:02:91:6f:27:20:0c:bb:6b:a5:c0:3f:3d:8f: d5:ac:71:f9:00:5f:76:a2:0d:8b:a7:30:8e:fc:cb: 3d:cb:eb:b4:5f:2e:92:7e:d7:ef:29:d4:66:f9:c2: ea:55:1a:d1:51:8f:e2:42:3f:31:b8:3c:0d:bd:36: 27:c2:9f:59:2e:d9:23:93:6d:ee:64:4e:f3:0b:dd: ce:dd:7a:fa:0c:ff:90:3a:55:0f:71:e1:cd:59:71: 89:b0:13:c9:34:9d:cc:9c:52:d6:c7:42:3b:68:2a: 9a:9e:e0:f9:89:1f:55:a5:94:17:b4:22:20:03:c3: 19:a3:e1:ba:d3:2a:45:81:46:25:b7:82:d1:5f:da: 80:ef:64:4d:ea:89:bf:3e:f9:ed:2f:ed:08:a4:69: ef:11:f3:59:d8:0b:b4:7b:a4:bb:46:f8:72:31:4d: ae:97:59:02:d1:b3:c1:94:a4:8a:f9:e0:25:10:da: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:23:B5:AF:0A:78:01:6F:99:2A:86:5F:13:46:5F:7D:76:6D:57:21 X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.52.0/22 103.129.54.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:18:48:47:ed:c4:be:f0:0b:fb:9f:7e:33:81:2b:7f:3b:d6: 4b:59:72:a5:c8:f8:55:95:8c:ff:68:e0:47:92:91:70:c1:92: 5c:b8:c2:98:d6:c9:9f:99:29:ba:a9:7d:91:e6:86:9d:30:18: 01:f9:6f:41:bf:21:6b:86:ff:31:ca:73:76:3d:b2:52:b8:ea: 82:9f:89:7f:36:15:53:91:01:4a:ad:2c:f8:92:7f:70:d1:92: b6:34:08:cb:94:5d:43:b7:08:e3:34:1c:95:4f:36:a2:bb:b4: 75:0d:cc:b6:5a:c4:03:49:8f:5c:d3:49:a3:a2:92:ad:da:eb: c5:d8:75:a2:70:bc:74:83:00:30:4e:f5:02:81:db:55:72:10: 7a:a6:07:5a:3e:e0:8a:30:7c:39:e8:73:61:ee:1f:18:3a:56: 8c:ef:6d:3f:25:31:b9:7e:b9:55:73:0d:e8:c4:7b:b4:e3:c9: 50:a6:12:a5:4e:08:ff:2f:0f:95:75:fd:9b:1c:8b:91:97:f5: 2c:d9:f7:c7:75:1f:20:5b:8d:e9:6a:e6:49:bc:96:74:fb:51: 43:d4:18:3f:64:0f:0d:6f:84:7f:f0:0e:7b:08:72:15:a9:a1: 5f:83:1c:f2:a4:b5:8c:04:ea:2e:7b:15:38:93:27:d3:18:ab: a1:1a:5d:45 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDA1NzM5NUI0ODc4RkIxQTY3RkNCQUQ1ODI2MTdCN0JB QUYyQzMxRkYwHhcNMjUwODE5MDY0NDMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MWQ0ZS01NWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWQDO4/+Oc9oCsmd6O5F+uFTcm7sH5+8R8/cAY2HwULZzvZryK328z/Cyl/M GVkWU2n9l7u5X/Qc1731UfIAGYgIhKJWIrdMwPodmAKRbycgDLtrpcA/PY/VrHH5 AF92og2LpzCO/Ms9y+u0Xy6SftfvKdRm+cLqVRrRUY/iQj8xuDwNvTYnwp9ZLtkj k23uZE7zC93O3Xr6DP+QOlUPceHNWXGJsBPJNJ3MnFLWx0I7aCqanuD5iR9VpZQX tCIgA8MZo+G60ypFgUYlt4LRX9qA72RN6om/PvntL+0IpGnvEfNZ2Au0e6S7Rvhy MU2ul1kC0bPBlKSK+eAlENoJqQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEIjta8K eAFvmSqGXxNGX312bVchMB8GA1UdIwQYMBaAFAVzlbSHj7Gmf8utWCYXt7qvLDH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GQTBFMDVBNDZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9CWE9WdEllUHNhWl95NjFZSmhlM3VxOHNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZDOEYvRkEwRTA1QTQ2QjVBMTFFRkJDOTk5MjVDQzRGOUFFMDIvQjBEM0RBNjQx MDdCMTFGMDk3NzE3Qzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/zQDBAFngTYwDQYJKoZIhvcNAQELBQADggEBAFwYSEft xL7wC/uffjOBK3871ktZcqXI+FWVjP9o4EeSkXDBkly4wpjWyZ+ZKbqpfZHmhp0w GAH5b0G/IWuG/zHKc3Y9slK46oKfiX82FVORAUqtLPiSf3DRkrY0CMuUXUO3COM0 HJVPNqK7tHUNzLZaxANJj1zTSaOikq3a68XYdaJwvHSDADBO9QKB21VyEHqmB1o+ 4IowfDnoc2HuHxg6VozvbT8lMbl+uVVzDejEe7TjyVCmEqVOCP8vD5V1/Zsci5GX 9SzZ98d1HyBbjelq5km8lnT7UUPUGD9kDw1vhH/wDnsIchWpoV+DHPKktYwE6i57 FTiTJ9MYq6EaXUU= -----END CERTIFICATE-----Generated at Sun Aug 24 06:30:20 2025 by rpki-client