$ rpki-client -vvf rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/AA99F49CFC3711EFA9688687C4F9AE02.roa File: AA99F49CFC3711EFA9688687C4F9AE02.roa (raw, json) Hash identifier: 970zffhkVpQStk3jgKgrN42mDxhaIFK4aP3YfXR8LM0= Subject key identifier: CC:DB:57:C3:C2:75:DF:1A:17:AA:A2:9D:97:28:87:E4:68:22:F3:B1 Certificate issuer: /CN=A9127DE3/serialNumber=D79FE0B09CA44A846692838FC42BCF43D2A32AD2 Certificate serial: 45 Authority key identifier: D7:9F:E0:B0:9C:A4:4A:84:66:92:83:8F:C4:2B:CF:43:D2:A3:2A:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15_gsJykSoRmkoOPxCvPQ9KjKtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/AA99F49CFC3711EFA9688687C4F9AE02.roa Signing time: Tue 15 Jul 2025 08:14:27 +0000 ROA not before: Tue 15 Jul 2025 08:14:27 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135027 IP address blocks: 103.219.62.0/23 maxlen: 24 103.251.134.0/24 maxlen: 24 103.251.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/15_gsJykSoRmkoOPxCvPQ9KjKtI.crl rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/15_gsJykSoRmkoOPxCvPQ9KjKtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15_gsJykSoRmkoOPxCvPQ9KjKtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127DE3, serialNumber=D79FE0B09CA44A846692838FC42BCF43D2A32AD2 Validity Not Before: Jul 15 08:14:27 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68760de3-a76c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:c2:e2:5f:79:59:a6:52:b6:17:a0:1c:c2: 77:2f:b8:78:2c:44:36:3e:71:dd:54:12:db:3f:bc: 30:f8:35:63:e7:93:47:50:1c:d4:a7:67:33:8f:7d: de:be:dc:b2:af:06:bb:0e:fe:65:27:0a:53:70:40: b2:42:f8:cd:0b:40:2e:35:df:f6:b7:dd:3f:eb:9a: 98:f7:e0:a8:48:71:b1:c1:32:b0:3c:4b:1e:02:de: a7:4a:75:c4:19:d4:9c:41:77:00:95:6a:4e:2e:96: b6:5a:53:4c:58:18:8f:14:f4:e0:e5:c0:96:f9:e6: 4e:f8:ac:4a:0c:50:2d:19:d7:89:1d:19:8f:d7:2e: 1c:82:6b:41:de:14:e8:ca:50:14:d1:b4:a1:b2:89: d6:2d:fc:f6:ce:94:2b:38:fa:5b:2d:ea:2f:26:1d: 12:b4:7a:52:9d:4b:23:40:76:a3:f6:f4:cb:e2:34: 1a:ea:8e:2f:23:9c:55:d2:22:bb:8a:a7:ad:7f:21: 48:27:78:5e:23:9e:f5:11:53:d8:9f:6a:0c:e5:c6: 0b:32:d5:58:c6:b0:39:93:ad:79:aa:a1:55:22:be: 3d:3b:f3:ee:c8:81:2b:68:81:ab:be:20:0c:5e:1c: 8e:85:50:79:db:99:59:2f:d6:53:1f:88:c5:c5:f6: 81:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DB:57:C3:C2:75:DF:1A:17:AA:A2:9D:97:28:87:E4:68:22:F3:B1 X509v3 Authority Key Identifier: keyid:D7:9F:E0:B0:9C:A4:4A:84:66:92:83:8F:C4:2B:CF:43:D2:A3:2A:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/15_gsJykSoRmkoOPxCvPQ9KjKtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15_gsJykSoRmkoOPxCvPQ9KjKtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/AA99F49CFC3711EFA9688687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.62.0/23 103.251.134.0/23 Signature Algorithm: sha256WithRSAEncryption 99:87:30:64:17:32:c4:b9:cf:e9:14:da:83:ec:5a:85:2f:5b: be:1b:e3:82:0f:7a:59:b9:be:74:60:54:86:5e:df:db:d2:81: 5d:38:91:23:f3:bf:07:92:e0:b0:bf:59:ca:0b:67:49:10:cb: f9:59:d7:ff:82:d9:36:0a:64:1c:31:36:6e:f9:79:28:cf:84: 1b:23:82:29:91:7c:5b:9a:80:4f:f7:cd:d5:22:d5:14:6b:1c: 1a:0b:46:60:3a:d6:5e:96:79:d8:c9:cf:1e:b9:7f:16:4d:70: 97:99:c5:10:ec:95:51:b7:62:7f:f7:d1:02:4c:9b:04:72:a2: ca:4b:fd:41:32:94:14:53:93:9b:68:d0:06:57:62:19:2b:54: 97:cb:84:65:3a:c2:06:66:f5:c8:fa:f8:7a:9c:ce:e2:6f:87: 05:28:39:df:c0:96:5a:7f:6a:dc:a1:ac:bd:52:5d:5d:fa:7b: 02:7a:20:e5:59:20:96:83:7a:d1:f6:d8:e0:ff:fc:e0:8e:6a: 43:ce:4c:71:ad:52:80:12:f5:f5:9f:32:6e:a3:8a:b0:39:72: 2c:85:ad:e5:d3:49:9a:72:e3:24:25:29:a8:6c:50:16:71:f8: a1:bf:c5:2d:1f:cf:a1:a6:84:c4:fe:05:5c:04:0f:e1:ec:1d: 6c:e4:1b:8d -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0RFMzExMC8GA1UEBRMoRDc5RkUwQjA5Q0E0NEE4NDY2OTI4MzhGQzQyQkNGNDNE MkEzMkFEMjAeFw0yNTA3MTUwODE0MjdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzYwZGUzLWE3NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7kMLiX3lZplK2F6AcwncvuHgsRDY+cd1UEts/vDD4NWPnk0dQHNSnZzOPfd6+ 3LKvBrsO/mUnClNwQLJC+M0LQC413/a33T/rmpj34KhIcbHBMrA8Sx4C3qdKdcQZ 1JxBdwCVak4ulrZaU0xYGI8U9ODlwJb55k74rEoMUC0Z14kdGY/XLhyCa0HeFOjK UBTRtKGyidYt/PbOlCs4+lst6i8mHRK0elKdSyNAdqP29MviNBrqji8jnFXSIruK p61/IUgneF4jnvURU9ifagzlxgsy1VjGsDmTrXmqoVUivj078+7IgStogau+IAxe HI6FUHnbmVkv1lMfiMXF9oFrAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUzNtXw8J1 3xoXqqKdlyiH5Ggi87EwHwYDVR0jBBgwFoAU15/gsJykSoRmkoOPxCvPQ9KjKtIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3REUzLzRFMUVFQUJBRkMz NzExRUZCMUMwNzI4NkM0RjlBRTAyLzE1X2dzSnlrU29SbWtvT1B4Q3ZQUTlLakt0 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMTVfZ3NKeWtTb1Jta29PUHhDdlBROUtqS3RJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0RFMy80RTFFRUFCQUZDMzcxMUVGQjFDMDcyODZDNEY5QUUwMi9BQTk5RjQ5Q0ZD MzcxMUVGQTk2ODg2ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWfbPgMEAWf7hjANBgkqhkiG9w0BAQsFAAOCAQEAmYcwZBcy xLnP6RTag+xahS9bvhvjgg96Wbm+dGBUhl7f29KBXTiRI/O/B5LgsL9ZygtnSRDL +VnX/4LZNgpkHDE2bvl5KM+EGyOCKZF8W5qAT/fN1SLVFGscGgtGYDrWXpZ52MnP Hrl/Fk1wl5nFEOyVUbdif/fRAkybBHKiykv9QTKUFFOTm2jQBldiGStUl8uEZTrC Bmb1yPr4epzO4m+HBSg538CWWn9q3KGsvVJdXfp7Anog5VkgloN60fbY4P/84I5q Q85Mca1SgBL19Z8ybqOKsDlyLIWt5dNJmnLjJCUpqGxQFnH4ob/FLR/PoaaExP4F XAQP4ewdbOQbjQ== -----END CERTIFICATE-----Generated at Mon Jul 21 13:22:10 2025 by rpki-client