$ rpki-client -vvf rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/BAAA44E0595211F0916CD979C4F9AE02.roa File: BAAA44E0595211F0916CD979C4F9AE02.roa (raw, json) Hash identifier: 1jCoy01o9WMOzZ/RiOMYbcS5Z71bqfiYIODRkQqJbF8= Subject key identifier: 77:05:32:3D:B7:8F:F2:E9:4A:C6:53:FB:FD:08:19:FA:35:84:87:2B Certificate issuer: /CN=A9120F0D/serialNumber=67F54C39C111E7DF7E7076C5C715B28B35E859F9 Certificate serial: 13B5 Authority key identifier: 67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/BAAA44E0595211F0916CD979C4F9AE02.roa Signing time: Sat 05 Jul 2025 03:47:10 +0000 ROA not before: Sat 05 Jul 2025 03:47:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135542 IP address blocks: 103.116.44.0/24 maxlen: 24 103.116.46.0/24 maxlen: 24 103.116.47.0/24 maxlen: 24 103.129.196.0/24 maxlen: 24 103.129.198.0/24 maxlen: 24 103.129.199.0/24 maxlen: 24 2402:f5c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120F0D, serialNumber=67F54C39C111E7DF7E7076C5C715B28B35E859F9 Validity Not Before: Jul 5 03:47:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868a03e-96c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:98:54:90:da:86:ce:23:04:56:1d:37:4d:f7: 2a:a4:fc:4a:9c:15:a4:f4:e0:c3:04:f8:83:ed:25: a8:84:d8:93:08:16:79:e1:88:3f:bf:3d:3e:d6:96: f0:42:3c:97:46:cc:ea:7c:7b:a3:f5:00:76:eb:d9: 6f:25:19:f8:a9:29:17:bc:20:fd:b7:76:5a:c9:21: 14:cb:b1:11:0d:24:e7:7d:75:8a:45:b1:4c:8d:bb: 41:cb:2c:9f:90:c5:7d:84:60:7b:a8:4a:21:06:5e: bf:d3:b9:10:64:fc:db:dd:e7:55:02:67:53:6f:ee: 85:53:64:a9:d7:71:5f:f6:96:b9:ad:13:ca:1c:69: 02:e8:37:11:15:45:da:79:28:da:5c:ea:f2:23:a6: 09:e7:e2:38:52:e8:62:03:58:7b:23:7d:52:1d:55: 46:14:06:ed:c0:91:2d:9b:8f:aa:56:39:75:0a:6e: 7a:c8:b0:2d:60:3f:0f:4d:e8:67:60:f7:83:2e:85: ad:e5:bd:56:cd:d4:07:59:a1:d4:a0:55:66:3a:8e: 01:56:c9:2b:c6:34:3d:54:f3:15:ce:90:17:84:dc: 37:a1:7a:63:2b:8c:f9:72:1d:6e:b1:4b:d8:c6:1c: 16:64:57:d1:7a:b8:c5:85:c6:56:e8:04:ea:3c:ce: 10:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:05:32:3D:B7:8F:F2:E9:4A:C6:53:FB:FD:08:19:FA:35:84:87:2B X509v3 Authority Key Identifier: keyid:67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/BAAA44E0595211F0916CD979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.44.0/24 103.116.46.0/23 103.129.196.0/24 103.129.198.0/23 IPv6: 2402:f5c0::/32 Signature Algorithm: sha256WithRSAEncryption 30:36:07:de:47:24:5b:1b:8d:9e:ed:02:62:e8:c9:bf:06:d0: dc:f3:24:65:ad:f9:5b:18:62:54:3e:00:6f:a0:3f:3d:38:b7: 2d:3e:61:e3:57:e1:71:71:ea:8c:df:00:7e:60:11:57:2b:7a: 97:4c:74:03:91:1f:b1:92:3a:97:84:0d:78:39:5c:fe:37:30: 7d:ce:cc:85:57:66:98:00:47:31:79:b5:37:de:2c:d2:de:4e: 03:95:8e:dd:4e:9b:79:ca:9b:00:a3:39:da:71:70:7a:66:85: a5:48:bf:58:57:85:91:91:a9:25:5a:23:44:85:e3:d9:a1:24: 14:af:e3:bf:15:56:ee:2c:67:96:21:b1:f6:f4:48:96:ca:1d: 0f:ef:59:45:8a:32:5f:29:9a:68:09:ba:40:2c:39:73:93:78: 59:35:75:3d:50:81:a9:8b:b6:02:d9:47:75:49:93:57:21:50: a7:8f:5e:22:75:64:d4:75:21:91:65:39:32:5a:c1:c0:25:f7: 27:89:d7:0d:24:3f:86:0e:96:0b:c7:2e:aa:4f:88:39:56:af: a6:33:9b:1f:ed:ce:87:28:8b:1f:88:97:cd:4f:22:0b:0a:29: 3a:42:f6:cf:35:ee:b8:53:9f:ce:e4:36:d5:a9:49:3e:25:a4: 21:d6:61:44 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGMEQxMTAvBgNVBAUTKDY3RjU0QzM5QzExMUU3REY3RTcwNzZDNUM3MTVCMjhC MzVFODU5RjkwHhcNMjUwNzA1MDM0NzEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YTAzZS05NmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+JhUkNqGziMEVh03TfcqpPxKnBWk9ODDBPiD7SWohNiTCBZ54Yg/vz0+1pbw QjyXRszqfHuj9QB269lvJRn4qSkXvCD9t3ZaySEUy7ERDSTnfXWKRbFMjbtByyyf kMV9hGB7qEohBl6/07kQZPzb3edVAmdTb+6FU2Sp13Ff9pa5rRPKHGkC6DcRFUXa eSjaXOryI6YJ5+I4UuhiA1h7I31SHVVGFAbtwJEtm4+qVjl1Cm56yLAtYD8PTehn YPeDLoWt5b1WzdQHWaHUoFVmOo4BVskrxjQ9VPMVzpAXhNw3oXpjK4z5ch1usUvY xhwWZFfRerjFhcZW6ATqPM4QvwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHcFMj23 j/LpSsZT+/0IGfo1hIcrMB8GA1UdIwQYMBaAFGf1TDnBEefffnB2xccVsos16Fn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEYwRC8wOEVDMkIwQ0Ez NkUxMUU4Qjg5NjY2MkJDNEY5QUUwMi9aX1ZNT2NFUjU5OS1jSGJGeHhXeWl6WG9X ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pfVk1PY0VSNTk5LWNIYkZ4eFd5aXpYb1dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBGMEQvMDhFQzJCMENBMzZFMTFFOEI4OTY2NjJCQzRGOUFFMDIvQkFBQTQ0RTA1 OTUyMTFGMDkxNkNEOTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBABndCwDBAFndC4DBABngcQDBAFngcYwDQQCAAIwBwMFACQC 9cAwDQYJKoZIhvcNAQELBQADggEBADA2B95HJFsbjZ7tAmLoyb8G0NzzJGWt+VsY YlQ+AG+gPz04ty0+YeNX4XFx6ozfAH5gEVcrepdMdAORH7GSOpeEDXg5XP43MH3O zIVXZpgARzF5tTfeLNLeTgOVjt1Om3nKmwCjOdpxcHpmhaVIv1hXhZGRqSVaI0SF 49mhJBSv478VVu4sZ5Yhsfb0SJbKHQ/vWUWKMl8pmmgJukAsOXOTeFk1dT1QgamL tgLZR3VJk1chUKePXiJ1ZNR1IZFlOTJawcAl9yeJ1w0kP4YOlgvHLqpPiDlWr6Yz mx/tzocoix+Il81PIgsKKTpC9s817rhTn87kNtWpST4lpCHWYUQ= -----END CERTIFICATE-----Generated at Sun Jul 20 03:29:47 2025 by rpki-client