$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/9BE3C7087E8311EEBC7E6681C4F9AE02.roa File: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (raw, json) Hash identifier: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg= Subject key identifier: 90:8C:EA:86:1B:9D:38:1B:D4:94:0A:5E:C1:EC:1B:A0:44:0C:E0:B2 Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 0134 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/9BE3C7087E8311EEBC7E6681C4F9AE02.roa Signing time: Fri 27 Jun 2025 04:22:58 +0000 ROA not before: Fri 27 Jun 2025 04:22:58 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149841 IP address blocks: 103.187.240.0/23 maxlen: 23 2400:7fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Jun 27 04:22:58 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e1ca2-ae74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:88:fe:09:2c:b9:dd:6a:b8:98:5a:28:fd:d4: d7:12:a2:f2:1b:41:86:18:92:89:27:dc:81:85:5c: 8f:e6:fb:d0:21:cd:46:5d:57:0e:55:25:fa:33:0f: 93:5e:17:af:4a:0f:0c:40:d0:8f:4c:2d:42:12:3d: a8:91:5a:a6:c5:e5:a7:20:88:0c:4b:ce:ce:54:31: 72:79:df:94:f9:62:2b:04:71:90:a3:78:d2:3b:fb: d3:30:45:f1:cb:ea:3c:28:75:86:c6:89:e2:6e:97: 7a:3e:52:fd:08:ca:d4:1a:44:9b:d0:15:82:03:20: b7:d0:b0:3b:a0:bc:bc:f2:c5:77:d2:a2:35:15:cf: 52:d8:67:35:43:fb:10:aa:cf:99:5f:b8:7d:82:50: da:94:c0:10:7c:0b:60:d5:ce:52:87:9e:18:e4:e0: dd:95:08:79:22:29:33:ba:bd:bc:f2:22:49:31:d6: 54:65:55:f1:e8:e5:62:21:29:30:8e:dc:d0:6d:23: fc:1e:c8:5f:2a:1e:08:05:17:af:d2:9e:b5:77:33: 39:2a:97:21:e7:62:8d:d7:f3:ce:8b:3d:c4:1c:75: e3:a2:ae:ba:b4:27:46:b7:e3:a2:82:7a:48:ba:3d: a4:db:5b:c4:56:3c:bb:14:c6:e0:92:aa:09:a6:80: 78:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8C:EA:86:1B:9D:38:1B:D4:94:0A:5E:C1:EC:1B:A0:44:0C:E0:B2 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/9BE3C7087E8311EEBC7E6681C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.240.0/23 IPv6: 2400:7fa0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:6e:82:54:81:54:f4:85:92:28:0c:ed:8e:ea:1f:71:96:6e: 71:77:48:77:86:97:0d:1b:0a:30:b8:6b:e2:de:44:e6:5a:1d: b3:b0:e2:85:69:03:a0:92:dd:10:b7:67:ca:ca:cd:75:49:c9: 07:76:06:8e:f8:15:d2:d0:9c:7c:d7:b8:21:9b:06:56:58:97: d9:d5:35:5d:f0:ed:2d:1c:58:88:88:b2:ad:32:82:8f:ea:67: 69:94:99:b6:89:8c:c3:f4:4d:b3:4b:4f:ff:b4:18:99:18:17: 9e:40:4d:0b:b4:63:17:10:5e:28:b0:4d:84:98:b2:9a:c7:22: 13:2e:31:ee:7a:08:01:55:45:3c:51:ce:8e:fa:e3:2e:13:cd: ad:9a:93:41:f4:4f:c7:e3:03:05:57:24:d9:ae:fd:39:ea:54: 98:35:df:47:d9:b7:4c:06:31:87:dd:18:93:5e:e7:16:8c:c8: 3a:80:e8:f0:b4:fa:b1:b4:b6:df:06:01:4c:8e:d2:9e:ae:48: 65:47:c4:b3:05:2b:9d:31:1c:f3:8f:f8:b1:be:1c:26:bb:d1: 77:06:1b:26:93:62:1b:72:c2:b2:89:d1:f7:ce:d0:21:48:0a: a6:8f:74:2a:b1:7d:6b:09:24:f0:e7:a5:ee:8b:c1:76:24:20: fb:06:c1:e1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUwNjI3MDQyMjU4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMWNhMi1hZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoj+CSy53Wq4mFoo/dTXEqLyG0GGGJKJJ9yBhVyP5vvQIc1GXVcOVSX6Mw+T XhevSg8MQNCPTC1CEj2okVqmxeWnIIgMS87OVDFyed+U+WIrBHGQo3jSO/vTMEXx y+o8KHWGxonibpd6PlL9CMrUGkSb0BWCAyC30LA7oLy88sV30qI1Fc9S2Gc1Q/sQ qs+ZX7h9glDalMAQfAtg1c5Sh54Y5ODdlQh5Iikzur288iJJMdZUZVXx6OViISkw jtzQbSP8HshfKh4IBRev0p61dzM5Kpch52KN1/POiz3EHHXjoq66tCdGt+OignpI uj2k21vEVjy7FMbgkqoJpoB4gQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJCM6oYb nTgb1JQKXsHsG6BEDOCyMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0RjcvMkE0ODkzODY3RTgyMTFFRTk5REE5QjdBQzRGOUFFMDIvOUJFM0M3MDg3 RTgzMTFFRUJDN0U2NjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnu/AwDQQCAAIwBwMFACQAf6AwDQYJKoZIhvcNAQELBQAD ggEBAD5uglSBVPSFkigM7Y7qH3GWbnF3SHeGlw0bCjC4a+LeROZaHbOw4oVpA6CS 3RC3Z8rKzXVJyQd2Bo74FdLQnHzXuCGbBlZYl9nVNV3w7S0cWIiIsq0ygo/qZ2mU mbaJjMP0TbNLT/+0GJkYF55ATQu0YxcQXiiwTYSYsprHIhMuMe56CAFVRTxRzo76 4y4Tza2ak0H0T8fjAwVXJNmu/TnqVJg130fZt0wGMYfdGJNe5xaMyDqA6PC0+rG0 tt8GAUyO0p6uSGVHxLMFK50xHPOP+LG+HCa70XcGGyaTYhtywrKJ0ffO0CFICqaP dCqxfWsJJPDnpe6LwXYkIPsGweE= -----END CERTIFICATE-----Generated at Thu Jul 3 02:45:57 2025 by rpki-client