$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/2A24EFB878D011F08CEB9275C4F9AE02.roa File: 2A24EFB878D011F08CEB9275C4F9AE02.roa (raw, json) Hash identifier: 375LHM1yZlB1oAmZQzLIJXDZlGTGau+1ulH9dm838tM= Subject key identifier: 93:B9:EC:C9:07:CB:E3:00:EA:A0:8A:9A:10:41:7C:20:13:6F:56:6C Certificate issuer: /CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Certificate serial: 34C9 Authority key identifier: E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/2A24EFB878D011F08CEB9275C4F9AE02.roa Signing time: Thu 14 Aug 2025 05:33:10 +0000 ROA not before: Thu 14 Aug 2025 05:33:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132827 IP address blocks: 27.123.208.0/22 maxlen: 22 101.0.8.0/24 maxlen: 24 101.0.9.0/24 maxlen: 24 101.0.10.0/24 maxlen: 24 101.0.11.0/24 maxlen: 24 101.0.24.0/24 maxlen: 24 101.0.25.0/24 maxlen: 24 101.0.26.0/23 maxlen: 23 103.3.16.0/24 maxlen: 24 103.3.17.0/24 maxlen: 24 103.3.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13513 (0x34c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E03, serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Validity Not Before: Aug 14 05:33:10 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=689d7516-5965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:50:e9:0b:f2:90:a0:72:e1:3c:91:6a:91:5d: ba:b2:7b:f5:95:56:60:e4:b2:fd:79:30:37:b1:8e: d8:5c:82:d5:2a:26:66:45:d9:89:41:60:69:e4:eb: 87:d9:e0:a7:3e:3b:a2:f5:1e:a8:25:47:61:e2:f7: 8a:70:b9:48:cb:df:d4:eb:b9:c5:c3:bf:71:e7:fc: b2:01:3b:e8:bd:07:55:cd:ee:e1:70:e3:be:69:93: fb:ee:5e:a0:a2:db:cf:2f:81:43:89:60:23:77:b4: c3:10:fb:58:d1:64:85:61:53:c3:60:73:61:69:22: 1e:f0:f7:8b:c4:de:73:64:85:f8:1a:47:81:58:5d: b0:5e:1b:dd:9b:ab:35:9d:d7:b0:92:99:9c:ea:aa: 71:da:ac:52:53:01:cb:73:16:02:da:09:a6:f1:57: b6:2e:c9:40:21:0f:ff:8e:f4:da:14:a5:77:82:f3: 9c:32:ba:40:50:0c:7c:87:f8:1e:d1:2c:a8:be:29: d9:a0:3a:74:9a:75:61:42:89:84:ee:2a:56:59:94: 8b:03:9a:c8:55:61:bf:18:21:b7:b4:c0:ed:ea:d6: ef:24:38:3d:98:93:b0:a7:ff:92:54:17:f5:0c:8d: b0:8a:42:7a:24:13:ce:98:42:e6:c1:22:34:a8:19: aa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B9:EC:C9:07:CB:E3:00:EA:A0:8A:9A:10:41:7C:20:13:6F:56:6C X509v3 Authority Key Identifier: keyid:E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/2A24EFB878D011F08CEB9275C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.208.0/22 101.0.8.0/22 101.0.24.0/22 103.3.16.0/23 103.3.19.0/24 Signature Algorithm: sha256WithRSAEncryption 67:c7:37:01:ee:a4:01:45:63:c9:13:0d:79:f1:f4:d9:19:b1: 8d:d6:45:af:84:01:d3:af:0d:cd:5d:bf:f9:68:c2:ee:c7:3a: 2b:ef:55:83:5d:1c:5a:9b:2a:af:a8:3d:92:07:28:f5:44:29: 82:66:51:ec:c1:60:d8:b8:10:2b:52:fa:40:4d:a0:48:cb:87: b7:b9:47:b9:35:3e:f4:85:0d:b8:8b:c8:53:9b:4b:23:7f:27: 33:33:8d:6d:08:8e:a4:f0:b0:d5:ce:ad:01:40:95:5c:ae:32: d5:33:fb:0f:4d:96:ef:2d:d5:c4:7e:35:ea:9b:bf:09:0b:42: 40:da:57:8c:68:6e:5c:2a:a9:01:23:75:fd:33:46:fd:4e:02: 1d:d0:34:7d:ed:cb:51:85:dd:5b:e9:c6:bf:67:b7:53:96:ee: 86:4a:2f:67:cd:27:b0:14:dc:81:08:7d:26:fb:8f:13:81:94: e0:12:62:22:7a:b4:67:12:3a:1b:b9:b7:8f:22:27:41:a1:2d: b5:c8:1b:ae:6e:2e:91:03:f7:1f:1a:d0:73:11:16:8b:b9:b2: f2:75:bd:79:31:d2:9d:59:81:56:2e:15:f9:3f:6a:ec:a7:45: bc:d9:d7:ed:f0:be:4d:a3:eb:9c:6f:3d:38:03:58:1b:e5:6d: b3:da:76:a7 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICNMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFMDMxMTAvBgNVBAUTKEUzOUFCMUQwN0I1MERCQjlBQkUyQ0I1MUNEOUIxRTNB NUE4NTQ1MjEwHhcNMjUwODE0MDUzMzEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlkNzUxNi01OTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFDpC/KQoHLhPJFqkV26snv1lVZg5LL9eTA3sY7YXILVKiZmRdmJQWBp5OuH 2eCnPjui9R6oJUdh4veKcLlIy9/U67nFw79x5/yyATvovQdVze7hcOO+aZP77l6g otvPL4FDiWAjd7TDEPtY0WSFYVPDYHNhaSIe8PeLxN5zZIX4GkeBWF2wXhvdm6s1 ndewkpmc6qpx2qxSUwHLcxYC2gmm8Ve2LslAIQ//jvTaFKV3gvOcMrpAUAx8h/ge 0SyovinZoDp0mnVhQomE7ipWWZSLA5rIVWG/GCG3tMDt6tbvJDg9mJOwp/+SVBf1 DI2wikJ6JBPOmELmwSI0qBmqAQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJO57MkH y+MA6qCKmhBBfCATb1ZsMB8GA1UdIwQYMBaAFOOasdB7UNu5q+LLUc2bHjpahUUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEUwMy8zRjQ4RjIyNDFE QTYxMUUyOUEwNzVEOUQwOEIwMkNEMi80NXF4MEh0UTI3bXI0c3RSelpzZU9scUZS U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1cXgwSHRRMjdtcjRzdFJ6WnNlT2xxRlJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFMDMvM0Y0OEYyMjQxREE2MTFFMjlBMDc1RDlEMDhCMDJDRDIvMkEyNEVGQjg3 OEQwMTFGMDhDRUI5Mjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAIbe9ADBAJlAAgDBAJlABgDBAFnAxADBABnAxMwDQYJKoZI hvcNAQELBQADggEBAGfHNwHupAFFY8kTDXnx9NkZsY3WRa+EAdOvDc1dv/lowu7H OivvVYNdHFqbKq+oPZIHKPVEKYJmUezBYNi4ECtS+kBNoEjLh7e5R7k1PvSFDbiL yFObSyN/JzMzjW0IjqTwsNXOrQFAlVyuMtUz+w9Nlu8t1cR+NeqbvwkLQkDaV4xo blwqqQEjdf0zRv1OAh3QNH3ty1GF3Vvpxr9nt1OW7oZKL2fNJ7AU3IEIfSb7jxOB lOASYiJ6tGcSOhu5t48iJ0GhLbXIG65uLpED9x8a0HMRFou5svJ1vXkx0p1ZgVYu Ffk/auynRbzZ1+3wvk2j65xvPTgDWBvlbbPadqc= -----END CERTIFICATE-----Generated at Sun Aug 24 06:32:37 2025 by rpki-client