$ rpki-client -vvf rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa File: 4578BBA89F4E11EEB293B87EC4F9AE02.roa (raw, json) Hash identifier: 3yiW508L3oftd11FyXYrUNBNgcv/84LhY7x8tmbtRS4= Subject key identifier: 1D:C2:A8:99:6F:3F:F4:E8:32:98:FD:B4:85:C0:CC:C3:0A:55:8D:1F Certificate issuer: /CN=A9193604/serialNumber=2FFFFCA3E64BD75A085E6C76732625F224C74432 Certificate serial: 011F Authority key identifier: 2F:FF:FC:A3:E6:4B:D7:5A:08:5E:6C:76:73:26:25:F2:24:C7:44:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa Signing time: Fri 27 Jun 2025 04:23:36 +0000 ROA not before: Fri 27 Jun 2025 04:23:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151365 IP address blocks: 103.67.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.crl rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193604, serialNumber=2FFFFCA3E64BD75A085E6C76732625F224C74432 Validity Not Before: Jun 27 04:23:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e1cc8-bcbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fb:9f:cb:2a:01:f0:eb:2f:91:a6:e1:09:8b: 0f:65:53:2d:c3:d5:66:80:d9:2e:74:ae:bd:9b:11: 09:82:04:3b:a6:43:20:94:6d:aa:00:f5:43:df:96: 7a:97:43:0e:cd:bd:dc:df:9b:f1:5a:86:61:bc:be: f0:89:49:1c:32:c3:97:59:7d:e0:0b:fb:fd:49:87: 4e:37:83:ae:d2:89:3c:51:c8:3b:f3:84:3a:a2:1f: e6:71:6f:a8:7e:f0:d5:04:fa:7f:bd:8b:48:98:8a: 6b:1d:fb:5b:16:57:df:58:c5:ea:07:e8:db:8a:55: fb:14:8a:a6:fa:9d:a6:3f:79:7d:37:21:ca:ae:e5: e1:0f:48:e2:ab:c8:0f:3e:4d:e1:ef:18:a2:b1:6e: 99:67:8f:e8:24:29:f7:7f:b3:31:2b:03:8f:24:0b: 50:c2:df:23:83:f0:26:d0:55:93:bb:50:a3:bc:0a: 7f:df:7e:fa:c7:1d:92:bd:06:9e:46:0c:f8:a2:3e: b9:bf:0c:3c:bb:60:b6:4d:c1:93:5e:7a:06:44:37: 06:f0:90:76:9a:2e:65:48:74:bd:9e:74:1f:60:c0: a1:ce:73:58:34:50:ac:a1:e1:50:86:da:42:26:12: d8:4d:ec:be:37:b2:40:cc:f3:4d:ad:f2:50:ca:80: 55:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C2:A8:99:6F:3F:F4:E8:32:98:FD:B4:85:C0:CC:C3:0A:55:8D:1F X509v3 Authority Key Identifier: keyid:2F:FF:FC:A3:E6:4B:D7:5A:08:5E:6C:76:73:26:25:F2:24:C7:44:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/L__8o-ZL11oIXmx2cyYl8iTHRDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L__8o-ZL11oIXmx2cyYl8iTHRDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193604/B595FDA29F4D11EE84DB0F7DC4F9AE02/4578BBA89F4E11EEB293B87EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.166.0/24 Signature Algorithm: sha256WithRSAEncryption 92:f0:48:b0:e9:29:6e:c3:f5:84:01:89:ba:4d:6b:f6:cb:2e: 5b:d4:f4:46:39:84:e0:1f:35:ba:82:ef:45:85:b9:be:1f:e0: f8:87:0f:8c:ac:ac:d2:2d:94:2b:8f:d7:0a:1f:6f:85:69:0a: 9e:b6:9e:ae:c8:ec:92:b9:f9:a3:0e:b2:e7:69:23:0f:97:d7: c6:e4:c6:c6:a6:a2:ae:8c:d0:3c:13:79:5c:8b:84:f5:fb:2b: 7e:6f:e9:8c:1a:19:76:dd:63:0f:0e:d1:18:53:ef:0c:a9:c8: 0e:dc:8e:c7:44:bc:c7:70:f4:bf:8c:64:8a:9e:02:5b:13:84: 51:2d:d0:fe:ca:7d:38:59:59:d1:e5:5a:74:c3:fe:20:94:1a: 71:9e:a4:a1:d6:42:78:e4:d2:de:e7:37:55:75:23:53:1d:c8: 16:58:c0:ba:a6:86:a1:59:12:81:14:cf:26:fd:04:36:23:04: 08:20:f4:24:f5:07:41:fe:78:84:04:ea:be:26:63:d2:5f:25: 6e:ed:58:2b:20:09:b6:0f:97:93:06:90:9e:3e:59:f8:ce:c7: d8:dc:5a:30:03:90:2f:0f:99:8c:d7:5a:5b:97:d7:b5:49:5d: 0d:f5:b7:39:a6:c8:43:4c:13:fa:e5:6a:31:61:bc:2d:5d:8d: 1d:1a:5a:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2MDQxMTAvBgNVBAUTKDJGRkZGQ0EzRTY0QkQ3NUEwODVFNkM3NjczMjYyNUYy MjRDNzQ0MzIwHhcNMjUwNjI3MDQyMzM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMWNjOC1iY2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/ufyyoB8OsvkabhCYsPZVMtw9VmgNkudK69mxEJggQ7pkMglG2qAPVD35Z6 l0MOzb3c35vxWoZhvL7wiUkcMsOXWX3gC/v9SYdON4Ou0ok8Ucg784Q6oh/mcW+o fvDVBPp/vYtImIprHftbFlffWMXqB+jbilX7FIqm+p2mP3l9NyHKruXhD0jiq8gP Pk3h7xiisW6ZZ4/oJCn3f7MxKwOPJAtQwt8jg/Am0FWTu1CjvAp/3376xx2SvQae Rgz4oj65vww8u2C2TcGTXnoGRDcG8JB2mi5lSHS9nnQfYMChznNYNFCsoeFQhtpC JhLYTey+N7JAzPNNrfJQyoBVewIDAQABo4IClTCCApEwHQYDVR0OBBYEFB3CqJlv P/ToMpj9tIXAzMMKVY0fMB8GA1UdIwQYMBaAFC///KPmS9daCF5sdnMmJfIkx0Qy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzYwNC9CNTk1RkRBMjlG NEQxMUVFODREQjBGN0RDNEY5QUUwMi9MX184by1aTDExb0lYbXgyY3lZbDhpVEhS REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xfXzhvLVpMMTFvSVhteDJjeVlsOGlUSFJESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM2MDQvQjU5NUZEQTI5RjREMTFFRTg0REIwRjdEQzRGOUFFMDIvNDU3OEJCQTg5 RjRFMTFFRUIyOTNCODdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQ6YwDQYJKoZIhvcNAQELBQADggEBAJLwSLDpKW7D9YQB ibpNa/bLLlvU9EY5hOAfNbqC70WFub4f4PiHD4ysrNItlCuP1wofb4VpCp62nq7I 7JK5+aMOsudpIw+X18bkxsamoq6M0DwTeVyLhPX7K35v6YwaGXbdYw8O0RhT7wyp yA7cjsdEvMdw9L+MZIqeAlsThFEt0P7KfThZWdHlWnTD/iCUGnGepKHWQnjk0t7n N1V1I1MdyBZYwLqmhqFZEoEUzyb9BDYjBAgg9CT1B0H+eIQE6r4mY9JfJW7tWCsg CbYPl5MGkJ4+WfjOx9jcWjADkC8PmYzXWluX17VJXQ31tzmmyENME/rlajFhvC1d jR0aWiQ= -----END CERTIFICATE-----Generated at Sat Jul 5 18:26:59 2025 by rpki-client