$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/C2C5450E608B11F0BF46DC2EC4F9AE02.roa File: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (raw, json) Hash identifier: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg= Subject key identifier: 81:E8:49:9C:4E:F8:B8:64:11:B5:26:30:DB:96:C0:7F:B2:2A:C5:D4 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0762 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/C2C5450E608B11F0BF46DC2EC4F9AE02.roa Signing time: Mon 14 Jul 2025 08:23:03 +0000 ROA not before: Mon 14 Jul 2025 08:23:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 13335 IP address blocks: 103.215.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Jul 14 08:23:03 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6874be67-d061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:d8:6b:19:98:4d:a6:32:6b:e3:fe:18:90: c8:b0:48:87:99:b7:fe:85:41:50:58:cc:eb:e7:b0: 73:4f:a3:15:6c:69:ae:b4:76:6e:bb:d5:a8:9e:d5: ca:cc:a5:e8:1c:80:f1:04:4a:d8:6b:5c:fc:02:47: 7a:e9:a0:ce:7b:1f:14:29:53:d1:8a:a2:2f:d9:c1: e6:7b:31:d4:02:d2:0d:55:80:94:3d:24:53:69:95: 5e:ac:fc:f7:1e:26:a4:1c:ca:7d:99:ce:5f:22:93: c2:b7:38:54:ef:3d:f1:5d:ab:98:73:4a:cd:80:8b: 80:dc:3c:c9:5d:23:57:90:5b:35:19:a9:70:01:a0: 4f:7f:da:83:d3:31:43:59:54:97:9c:b4:c5:dd:b2: 10:91:ca:ac:0b:b3:18:90:22:eb:b4:88:69:5e:98: 93:74:5e:6e:0b:dd:34:4b:2d:d9:15:7f:60:0c:a5: 5c:1f:ae:9e:c2:b1:6f:2a:1a:cc:a1:6f:1f:94:5c: 31:fe:52:67:e3:4b:9b:c8:2f:65:2e:da:26:8f:14: e1:21:d2:2e:2d:e6:f4:8a:9c:74:ed:d7:63:3d:11: 76:20:65:34:df:5c:43:ec:1b:1f:ab:4c:51:27:ed: d9:26:67:7e:e0:5f:66:46:67:91:83:54:2c:77:0d: 23:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E8:49:9C:4E:F8:B8:64:11:B5:26:30:DB:96:C0:7F:B2:2A:C5:D4 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/C2C5450E608B11F0BF46DC2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.22.0/24 Signature Algorithm: sha256WithRSAEncryption b8:f1:81:31:e3:94:c3:f4:a0:68:2a:36:6d:ea:a3:b3:92:ed: 9c:3e:73:33:7c:e7:5c:5e:ee:20:90:d3:9f:2d:23:6c:24:43: 5f:da:89:7a:b4:58:37:72:21:47:09:24:75:19:48:40:f5:3f: 5a:f7:64:a0:1c:1f:0a:a6:4c:41:04:18:13:c6:4f:8a:7b:83: 9b:87:69:85:af:41:1d:f1:df:af:9a:de:6b:ec:36:f4:29:5f: 2a:fa:41:2c:22:84:f2:12:98:19:d6:82:17:64:34:ba:7e:49: ac:63:80:eb:0d:64:31:fa:54:0d:60:20:58:d5:05:0f:5a:2b: ab:03:b9:d1:17:68:ea:58:d3:83:ec:e4:a9:a9:41:4b:20:75: 32:e8:b1:13:15:6e:cf:5b:4f:db:5f:a7:93:3d:8a:90:4a:0a: cc:76:d4:be:be:0b:74:2c:a6:9b:8d:de:42:ae:30:9b:58:8f: 04:72:95:37:28:a7:5a:dc:aa:d2:b9:e7:5f:bd:f4:d4:12:8c: 6f:90:39:df:ec:9b:27:52:77:b2:08:54:25:cb:5d:68:f8:c1: d5:83:88:22:89:f9:af:9a:9a:44:5f:64:b5:8e:8b:cb:54:22: 58:7a:e6:f3:c0:db:2d:20:31:5e:60:91:31:41:b8:01:32:9c: 45:6b:87:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwNzE0MDgyMzAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0YmU2Ny1kMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvszYaxmYTaYya+P+GJDIsEiHmbf+hUFQWMzr57BzT6MVbGmutHZuu9WontXK zKXoHIDxBErYa1z8Akd66aDOex8UKVPRiqIv2cHmezHUAtINVYCUPSRTaZVerPz3 HiakHMp9mc5fIpPCtzhU7z3xXauYc0rNgIuA3DzJXSNXkFs1GalwAaBPf9qD0zFD WVSXnLTF3bIQkcqsC7MYkCLrtIhpXpiTdF5uC900Sy3ZFX9gDKVcH66ewrFvKhrM oW8flFwx/lJn40ubyC9lLtomjxThIdIuLeb0ipx07ddjPRF2IGU031xD7Bsfq0xR J+3ZJmd+4F9mRmeRg1Qsdw0jmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIHoSZxO +LhkEbUmMNuWwH+yKsXUMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFCNzEvOUZENUY4MEUyRUE5MTFFQjkxNjhGQjM3QzRGOUFFMDIvQzJDNTQ1MEU2 MDhCMTFGMEJGNDZEQzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1xYwDQYJKoZIhvcNAQELBQADggEBALjxgTHjlMP0oGgq Nm3qo7OS7Zw+czN851xe7iCQ058tI2wkQ1/aiXq0WDdyIUcJJHUZSED1P1r3ZKAc HwqmTEEEGBPGT4p7g5uHaYWvQR3x36+a3mvsNvQpXyr6QSwihPISmBnWghdkNLp+ SaxjgOsNZDH6VA1gIFjVBQ9aK6sDudEXaOpY04Ps5KmpQUsgdTLosRMVbs9bT9tf p5M9ipBKCsx21L6+C3QsppuN3kKuMJtYjwRylTcop1rcqtK551+99NQSjG+QOd/s mydSd7IIVCXLXWj4wdWDiCKJ+a+amkRfZLWOi8tUIlh65vPA2y0gMV5gkTFBuAEy nEVrh9s= -----END CERTIFICATE-----Generated at Sun Jul 20 07:53:16 2025 by rpki-client