$ rpki-client -vvf rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa File: 0C77B118353C11EFB0FA2527C4F9AE02.roa (raw, json) Hash identifier: TNeim+c/SqFpRd1l3QdyFDanyKYRvKOEj0vZ8enHI5M= Subject key identifier: 74:05:93:CF:61:4C:7C:CB:9E:C6:E8:1C:5E:5C:25:C0:5D:17:E1:DD Certificate issuer: /CN=A9153646/serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06 Certificate serial: 0756 Authority key identifier: 34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa Signing time: Sun 06 Jul 2025 09:11:49 +0000 ROA not before: Sun 06 Jul 2025 09:11:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 64074 IP address blocks: 103.203.176.0/24 maxlen: 24 103.203.177.0/24 maxlen: 24 103.203.178.0/24 maxlen: 24 103.203.179.0/24 maxlen: 24 223.29.212.0/24 maxlen: 24 223.29.213.0/24 maxlen: 24 223.29.215.0/24 maxlen: 24 2401:b8c0::/32 maxlen: 32 2401:b8c0::/48 maxlen: 48 2401:b8c0:1::/48 maxlen: 48 2401:b8c0:2::/48 maxlen: 48 2401:b8c0:3::/48 maxlen: 48 2401:b8c0:4::/48 maxlen: 48 2401:b8c0:5::/48 maxlen: 48 2401:b8c0:6::/48 maxlen: 48 2401:b8c0:7::/48 maxlen: 48 2401:b8c0:8::/48 maxlen: 48 2401:b8c0:9::/48 maxlen: 48 2401:b8c0:b::/48 maxlen: 48 2401:b8c0:c::/48 maxlen: 48 2401:b8c0:e::/48 maxlen: 48 2401:b8c0:f::/48 maxlen: 48 2401:b8c0:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1878 (0x756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153646, serialNumber=3492EFFE9622B1FFF881597003763C1BA24A1E06 Validity Not Before: Jul 6 09:11:49 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=686a3dd5-0f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:51:74:a1:49:2d:b0:e9:ae:ca:16:ce:26: e9:10:a9:92:98:e7:11:83:c4:3c:37:16:63:d1:1a: f5:9c:04:87:85:5f:7d:88:e7:e5:e9:f5:47:26:e0: cf:99:cb:07:d3:34:9f:e5:95:b7:36:b7:e1:14:f1: 86:4f:36:0f:a2:f0:fe:c8:bb:c0:f7:00:92:6a:54: d9:e2:de:5d:72:e0:e2:60:9b:78:4a:0b:99:69:b5: e9:00:0b:ab:a5:5a:f3:8d:bc:ec:c0:9f:19:b7:c4: 58:7d:ae:21:56:b4:27:6d:cd:4f:66:e2:75:04:03: 8b:77:c3:a7:2d:8d:e4:01:74:c7:56:c9:d3:8c:34: 51:0b:f8:64:df:1e:0e:ba:fc:f3:25:62:e6:4c:4d: 72:93:2b:a0:0c:5c:30:23:75:f5:3e:01:be:8b:30: 37:bb:c0:60:2d:80:11:4b:a4:3e:26:38:31:04:af: 64:3d:34:9a:96:0e:0c:5d:eb:3b:43:c3:cd:5f:05: 2b:f6:42:b6:66:fb:b9:39:95:41:51:0d:66:7f:f9: 08:1f:b6:ea:2e:b0:cd:94:10:1e:c2:d5:c2:26:a2: 8e:8f:a0:a5:00:41:81:f0:e5:c6:4d:17:b8:0a:1b: 63:8c:4f:22:bf:be:ee:ac:7d:94:cd:28:04:d2:5a: 58:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:05:93:CF:61:4C:7C:CB:9E:C6:E8:1C:5E:5C:25:C0:5D:17:E1:DD X509v3 Authority Key Identifier: keyid:34:92:EF:FE:96:22:B1:FF:F8:81:59:70:03:76:3C:1B:A2:4A:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/NJLv_pYisf_4gVlwA3Y8G6JKHgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJLv_pYisf_4gVlwA3Y8G6JKHgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153646/6B8EFA5AFF9811E987C80A6AC4F9AE02/0C77B118353C11EFB0FA2527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.176.0/22 223.29.212.0/23 223.29.215.0/24 IPv6: 2401:b8c0::/32 Signature Algorithm: sha256WithRSAEncryption 33:5f:c5:95:06:ae:a5:00:b4:22:8b:8c:2e:e3:36:c5:d4:9d: 1d:41:86:d9:1f:c3:30:f5:9d:f3:a5:95:55:a7:0c:38:2c:31: a0:c9:e9:ec:f7:24:1d:83:8e:bb:69:e2:0c:dc:26:b2:08:7d: 59:04:75:4a:10:c5:03:ed:f7:be:03:03:cd:b4:ee:33:0b:87: d5:e3:1f:cc:3d:09:70:bd:a3:c4:a0:1c:04:cc:80:fe:f3:d2: 35:1d:90:84:f6:31:9f:48:d7:1c:ce:c8:98:aa:77:b9:a8:ba: e9:cc:b5:fd:f2:20:7b:b8:08:5e:25:1d:0d:97:4f:35:e2:74: 01:2a:bb:06:d6:33:73:31:b5:b6:6f:c9:59:2e:f8:7a:53:18: d0:42:74:c9:b3:ee:40:e0:83:c4:f3:9c:0c:91:0a:21:9c:1e: e3:be:b2:dc:d2:f4:ed:95:ab:03:c1:ba:55:95:96:56:8c:13: 3e:c2:d6:43:2e:5e:74:15:e4:aa:d5:1e:cc:17:f8:63:e2:13: 02:5c:be:dc:1c:86:55:49:35:81:c0:ae:22:79:5c:b8:f5:3b: f3:c4:ff:a7:8e:93:55:d0:18:d2:af:59:7f:fe:a6:52:b8:87: 3c:09:f8:32:85:dc:87:53:5a:70:45:e6:c6:b7:02:98:e0:7a: b3:59:0d:ea -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICB1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NDYxMTAvBgNVBAUTKDM0OTJFRkZFOTYyMkIxRkZGODgxNTk3MDAzNzYzQzFC QTI0QTFFMDYwHhcNMjUwNzA2MDkxMTQ5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZhM2RkNS0wZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoBRdKFJLbDprsoWzibpEKmSmOcRg8Q8NxZj0Rr1nASHhV99iOfl6fVHJuDP mcsH0zSf5ZW3NrfhFPGGTzYPovD+yLvA9wCSalTZ4t5dcuDiYJt4SguZabXpAAur pVrzjbzswJ8Zt8RYfa4hVrQnbc1PZuJ1BAOLd8OnLY3kAXTHVsnTjDRRC/hk3x4O uvzzJWLmTE1ykyugDFwwI3X1PgG+izA3u8BgLYARS6Q+JjgxBK9kPTSalg4MXes7 Q8PNXwUr9kK2Zvu5OZVBUQ1mf/kIH7bqLrDNlBAewtXCJqKOj6ClAEGB8OXGTRe4 ChtjjE8iv77urH2UzSgE0lpY6QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHQFk89h THzLnsboHF5cJcBdF+HdMB8GA1UdIwQYMBaAFDSS7/6WIrH/+IFZcAN2PBuiSh4G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY0Ni82QjhFRkE1QUZG OTgxMUU5ODdDODBBNkFDNEY5QUUwMi9OSkx2X3BZaXNmXzRnVmx3QTNZOEc2SktI Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KTHZfcFlpc2ZfNGdWbHdBM1k4RzZKS0hnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM2NDYvNkI4RUZBNUFGRjk4MTFFOTg3QzgwQTZBQzRGOUFFMDIvMEM3N0IxMTgz NTNDMTFFRkIwRkEyNTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJny7ADBAHfHdQDBADfHdcwDQQCAAIwBwMFACQBuMAwDQYJ KoZIhvcNAQELBQADggEBADNfxZUGrqUAtCKLjC7jNsXUnR1BhtkfwzD1nfOllVWn DDgsMaDJ6ez3JB2Djrtp4gzcJrIIfVkEdUoQxQPt974DA8207jMLh9XjH8w9CXC9 o8SgHATMgP7z0jUdkIT2MZ9I1xzOyJiqd7mouunMtf3yIHu4CF4lHQ2XTzXidAEq uwbWM3MxtbZvyVku+HpTGNBCdMmz7kDgg8TznAyRCiGcHuO+stzS9O2VqwPBulWV llaMEz7C1kMuXnQV5KrVHswX+GPiEwJcvtwchlVJNYHAriJ5XLj1O/PE/6eOk1XQ GNKvWX/+plK4hzwJ+DKF3IdTWnBF5sa3ApjgerNZDeo= -----END CERTIFICATE-----Generated at Sun Jul 20 19:09:44 2025 by rpki-client