$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa File: 97A9C872450611F093EC3A65C4F9AE02.roa (raw, json) Hash identifier: U8BSX2DX6JtfXzvuoqYA9Tm3bqF1pxPrmS12/E0gdmw= Subject key identifier: 85:8E:AD:93:A3:44:20:4B:3F:5E:7E:CB:B7:AF:68:07:C1:AF:42:C1 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 1445 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa Signing time: Wed 16 Jul 2025 18:05:18 +0000 ROA not before: Wed 16 Jul 2025 18:05:18 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 401696 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 116.204.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5189 (0x1445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jul 16 18:05:18 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6877e9dd-0c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:31:de:94:26:92:4b:09:b5:b7:ac:a4:ec:ae: 12:a0:67:78:93:44:7a:cf:60:26:67:49:e2:83:cd: b2:f1:29:af:2e:e3:ee:72:5a:bf:30:15:1f:03:37: 4b:13:48:ee:50:0e:db:d7:0b:2d:1c:e9:7d:6b:64: a9:6c:89:21:99:5d:bf:f4:63:12:cf:3b:5c:38:4a: c2:15:63:e3:79:af:09:42:b4:e2:e3:fd:50:f0:21: 9a:8a:6a:de:16:a7:35:cd:c7:4a:cf:9f:2b:ea:d6: eb:77:ea:15:85:50:9b:cd:54:5f:3b:b1:dc:a5:3c: a3:29:88:11:d0:3c:cd:0f:3b:59:2a:60:47:78:aa: 05:5a:d4:b1:21:8f:88:cb:a1:b3:c4:8c:86:bd:f3: c0:56:23:66:af:27:e8:6c:9c:d1:9a:f8:65:fa:f9: 12:98:de:ed:09:d8:7d:0d:1a:8b:46:03:c4:85:cb: 30:4c:c6:3a:81:db:33:51:cd:2b:9c:27:9d:96:11: 7e:df:75:df:95:11:ab:b7:c9:dc:96:90:f2:11:b2: d9:b0:f1:c4:52:5e:66:42:45:98:ab:7d:66:81:96: 81:c2:76:b7:8a:93:79:be:18:ec:99:30:eb:b4:ad: b6:81:86:97:4d:48:50:f7:5f:62:a6:eb:d5:d7:67: 5b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8E:AD:93:A3:44:20:4B:3F:5E:7E:CB:B7:AF:68:07:C1:AF:42:C1 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 116.204.132.0/22 Signature Algorithm: sha256WithRSAEncryption aa:52:b3:79:48:8f:85:dc:96:cc:3f:8d:89:4e:e7:df:d9:59: 6c:34:f3:fe:f7:f3:e0:c1:14:61:88:c6:46:5c:13:a2:2d:87: 35:92:1c:5a:2e:41:53:af:06:57:b4:25:b5:db:2c:ed:ee:ec: 72:39:f0:42:2a:5b:8e:43:b0:f0:3d:b1:16:4e:61:33:f8:6c: ee:5f:35:08:f6:b5:83:b2:1b:1f:f9:85:ac:9e:31:34:b4:08: b1:83:b3:8a:15:d0:ab:de:b5:a8:a7:37:ae:6f:e9:7f:ee:a1: e1:4d:35:91:26:04:e0:a1:c5:a6:f3:1b:e2:a6:c6:f5:8b:7d: e1:e7:c6:b8:34:48:03:6c:5d:e9:33:93:09:a6:7a:52:65:8e: dd:25:27:d4:f3:89:13:9f:ca:4e:64:6a:e8:b0:b6:79:df:5a: 3a:7f:fe:bf:10:88:0c:03:1f:53:2b:a2:fd:47:dc:14:97:6b: 44:f1:e1:81:cb:99:c5:87:79:07:9d:c7:d2:e1:26:5b:c7:5e: 67:3b:7d:9a:41:1c:55:a2:2e:b5:b1:3f:07:c5:f3:f4:b8:f3: d1:02:eb:ab:d4:07:6f:c8:42:86:dd:cb:f3:be:a3:57:60:80: d1:05:29:39:8a:c9:5e:f1:84:25:cb:62:ac:65:47:86:16:4e: a4:29:22:ec -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICFEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwNzE2MTgwNTE4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3ZTlkZC0wYzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTHelCaSSwm1t6yk7K4SoGd4k0R6z2AmZ0nig82y8SmvLuPuclq/MBUfAzdL E0juUA7b1wstHOl9a2SpbIkhmV2/9GMSzztcOErCFWPjea8JQrTi4/1Q8CGaimre Fqc1zcdKz58r6tbrd+oVhVCbzVRfO7HcpTyjKYgR0DzNDztZKmBHeKoFWtSxIY+I y6GzxIyGvfPAViNmryfobJzRmvhl+vkSmN7tCdh9DRqLRgPEhcswTMY6gdszUc0r nCedlhF+33XflRGrt8nclpDyEbLZsPHEUl5mQkWYq31mgZaBwna3ipN5vhjsmTDr tK22gYaXTUhQ919ipuvV12dbdQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIWOrZOj RCBLP15+y7evaAfBr0LBMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvOTdBOUM4NzI0 NTA2MTFGMDkzRUMzQTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnarwDBAJndPQDBAJ0zIQwDQYJKoZIhvcNAQELBQADggEB AKpSs3lIj4Xclsw/jYlO59/ZWWw08/738+DBFGGIxkZcE6IthzWSHFouQVOvBle0 JbXbLO3u7HI58EIqW45DsPA9sRZOYTP4bO5fNQj2tYOyGx/5hayeMTS0CLGDs4oV 0KvetainN65v6X/uoeFNNZEmBOChxabzG+KmxvWLfeHnxrg0SANsXekzkwmmelJl jt0lJ9TziROfyk5kauiwtnnfWjp//r8QiAwDH1Mrov1H3BSXa0Tx4YHLmcWHeQed x9LhJlvHXmc7fZpBHFWiLrWxPwfF8/S489EC66vUB2/IQobdy/O+o1dggNEFKTmK yV7xhCXLYqxlR4YWTqQpIuw= -----END CERTIFICATE-----Generated at Sun Jul 20 13:48:32 2025 by rpki-client