$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/8327C2403DE011ECAB508171C4F9AE02.roa File: 8327C2403DE011ECAB508171C4F9AE02.roa (raw, json) Hash identifier: nj3zL8oObjV8NLXqj4IbNKya+FtBjMvRptjlINscrUo= Subject key identifier: 0A:17:6D:22:49:5F:5B:62:7E:82:6B:9C:BD:8E:96:81:3B:A1:87:28 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 04A1 Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/8327C2403DE011ECAB508171C4F9AE02.roa Signing time: Wed 25 Jun 2025 00:04:54 +0000 ROA not before: Wed 25 Jun 2025 00:04:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132797 IP address blocks: 103.25.229.0/24 maxlen: 24 2001:dec::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: Jun 25 00:04:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685b3d25-c364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f9:da:70:f3:ad:ca:68:80:bc:42:67:d0:78: 89:a7:ec:57:c5:42:dd:fc:e1:1e:d9:ae:7e:f0:e6: 25:79:b3:6e:86:d6:3c:1c:e8:b2:23:40:8f:9e:f3: 61:f7:60:87:d7:0c:d4:93:99:99:91:73:e7:19:fd: d5:d8:1e:31:2a:8a:fb:60:c1:ba:76:31:68:a5:d1: 95:a6:20:28:d6:f1:5c:07:5b:56:fc:db:67:00:51: 02:63:3e:ed:4c:3b:e8:72:25:98:ff:5a:74:f9:bb: 2e:49:80:17:01:11:4b:31:85:2d:be:10:38:28:21: 34:6e:ed:44:82:06:60:6f:40:da:d0:f5:76:c5:1f: 4f:6f:4f:3d:91:b7:7e:06:49:33:cb:1b:ba:f5:9a: a9:eb:51:46:f1:5c:e0:cc:17:d0:5e:65:28:92:88: e2:71:36:a6:6d:50:fe:8d:6c:8e:00:0c:7a:2f:36: 5c:80:f0:8a:3c:81:21:a5:6f:d4:b7:c7:41:53:65: 0d:8d:66:9c:ae:db:6a:b8:e4:3d:68:1f:1c:f5:b0: 5e:dc:ab:c4:f0:0f:f7:ed:e6:9a:f3:3e:56:f1:d1: ea:7d:85:82:39:28:77:c0:61:4d:fd:2d:a4:43:e5: e2:ea:af:a8:8d:00:e8:ee:b9:c4:a2:9a:8c:a9:07: b6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:17:6D:22:49:5F:5B:62:7E:82:6B:9C:BD:8E:96:81:3B:A1:87:28 X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/8327C2403DE011ECAB508171C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.229.0/24 IPv6: 2001:dec::/48 Signature Algorithm: sha256WithRSAEncryption a7:66:c2:63:c0:fa:d1:c8:43:a1:5e:18:31:88:d4:36:23:28: 65:6a:e6:07:ae:0b:70:f0:fb:10:33:8b:d3:cf:90:f9:ba:0c: fb:01:03:f4:24:92:b0:9b:b1:6a:fe:78:2d:3b:f8:79:66:1d: 16:0d:6e:e4:b6:f1:e5:f7:77:e0:9c:00:d1:c3:9d:3e:6f:cd: 11:88:6d:31:b5:db:de:15:4e:a1:c8:2e:5f:f1:34:4f:d7:9d: 65:8f:4c:3e:bf:04:ac:98:f3:52:4b:d4:8d:c7:30:a1:b4:bd: df:25:fd:8a:31:ea:b3:9a:ba:0b:44:1f:85:ba:8c:64:82:e8: 9f:10:5e:f8:2f:16:40:f4:81:5e:e0:dd:2a:8e:eb:9a:89:72: 7b:c5:fc:fd:de:5e:39:0a:3b:3b:6e:09:31:2e:80:8c:ce:25: 48:be:7d:b9:ac:50:38:66:59:07:1e:c9:02:a9:74:78:c7:0b: fe:da:12:43:a4:8b:0b:49:7a:12:a5:c7:43:11:54:4b:3e:a3: fc:ac:1c:67:5d:1b:80:3d:7c:0d:09:60:6b:8e:9a:e9:21:69: 6b:e0:04:85:e9:dc:87:9a:d1:72:88:f0:63:be:76:6c:c2:cf: ca:0c:16:29:5d:bc:c8:2c:21:09:a2:a8:a2:df:6f:0e:93:76: c8:fb:98:a3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjUwNjI1MDAwNDU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViM2QyNS1jMzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/nacPOtymiAvEJn0HiJp+xXxULd/OEe2a5+8OYlebNuhtY8HOiyI0CPnvNh 92CH1wzUk5mZkXPnGf3V2B4xKor7YMG6djFopdGVpiAo1vFcB1tW/NtnAFECYz7t TDvociWY/1p0+bsuSYAXARFLMYUtvhA4KCE0bu1EggZgb0Da0PV2xR9Pb089kbd+ Bkkzyxu69Zqp61FG8VzgzBfQXmUokojicTambVD+jWyOAAx6LzZcgPCKPIEhpW/U t8dBU2UNjWacrttquOQ9aB8c9bBe3KvE8A/37eaa8z5W8dHqfYWCOSh3wGFN/S2k Q+Xi6q+ojQDo7rnEopqMqQe2OwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAoXbSJJ X1tifoJrnL2OloE7oYcoMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThGRDAvMjBCNEJEODAzREQ1MTFFQ0I3MjY2NDY0QzRGOUFFMDIvODMyN0MyNDAz REUwMTFFQ0FCNTA4MTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnGeUwDwQCAAIwCQMHACABDewAADANBgkqhkiG9w0BAQsF AAOCAQEAp2bCY8D60chDoV4YMYjUNiMoZWrmB64LcPD7EDOL08+Q+boM+wED9CSS sJuxav54LTv4eWYdFg1u5Lbx5fd34JwA0cOdPm/NEYhtMbXb3hVOocguX/E0T9ed ZY9MPr8ErJjzUkvUjccwobS93yX9ijHqs5q6C0QfhbqMZILonxBe+C8WQPSBXuDd Ko7rmolye8X8/d5eOQo7O24JMS6AjM4lSL59uaxQOGZZBx7JAql0eMcL/toSQ6SL C0l6EqXHQxFUSz6j/KwcZ10bgD18DQlga46a6SFpa+AEhench5rRcojwY752bMLP ygwWKV28yCwhCaKoot9vDpN2yPuYow== -----END CERTIFICATE-----Generated at Sat Jul 5 08:20:14 2025 by rpki-client