$ rpki-client -vvf rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa File: 9CD74392C9E411EC956B0A3CC4F9AE02.roa (raw, json) Hash identifier: qvqgBUl0a4zKeWl1I3fwpsPKJV0El11IrKtIQQYLmrE= Subject key identifier: 67:93:25:E3:FC:C0:D7:5C:D2:D2:A6:BF:D5:2F:26:58:4D:04:D6:D3 Certificate issuer: /CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Certificate serial: 034A Authority key identifier: 44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa Signing time: Sat 05 Jul 2025 01:39:12 +0000 ROA not before: Sat 05 Jul 2025 01:39:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45858 IP address blocks: 103.227.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171235, serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Validity Not Before: Jul 5 01:39:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868823f-463e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f3:8b:d2:c2:79:71:26:9f:7b:01:65:84:b9: 19:f8:67:64:ae:df:4a:57:2f:43:28:9d:c5:26:4e: 84:9d:fe:b8:14:58:30:94:94:08:a2:d1:c1:23:bd: 3a:42:53:f0:f8:12:81:94:cf:57:65:35:cd:0c:24: 29:4e:27:cd:90:1f:7b:ea:b8:b4:7e:00:d5:71:ea: 4f:61:93:30:70:c0:5f:66:80:5d:ae:0e:29:31:3d: b6:90:99:98:c9:e5:89:e5:c5:01:18:f5:1c:89:0b: 2b:59:aa:bf:60:d2:1c:a1:53:bf:d4:b7:6d:be:67: d5:23:23:3f:47:ea:5a:e1:be:32:7e:7e:2e:3a:77: f5:3e:5c:60:ab:15:f6:9e:49:8e:da:fb:3f:56:21: 44:1c:b6:f3:5b:d1:b0:86:9d:8f:0d:8c:85:b0:d9: 63:d5:a3:7b:fb:88:e3:3e:4d:bf:34:b0:c3:6a:7d: c5:9c:2e:4f:a6:5e:3c:bc:12:9a:2d:c0:b1:67:ce: 00:ee:6b:e3:a7:57:11:72:da:df:f2:c7:b8:e6:06: d3:68:05:ea:5a:62:27:d4:f6:64:e6:de:25:09:66: 5f:7e:bf:ff:2f:c1:86:24:8d:1a:8d:8f:fc:86:32: 78:a6:74:af:ec:0f:a3:a2:f4:7b:97:92:14:fe:1a: 11:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:93:25:E3:FC:C0:D7:5C:D2:D2:A6:BF:D5:2F:26:58:4D:04:D6:D3 X509v3 Authority Key Identifier: keyid:44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.44.0/22 Signature Algorithm: sha256WithRSAEncryption cb:4d:50:c9:c7:a4:2b:a9:e4:69:6e:ab:2c:da:ff:65:e0:fb: 0d:20:0a:e5:2c:7b:ef:98:e4:47:87:df:ee:53:c6:11:94:c8: e2:5b:ab:73:48:b9:71:53:32:20:82:eb:08:c9:17:fa:ed:ae: 56:1b:59:6e:46:43:68:80:aa:3a:02:da:4e:fc:de:32:d8:d2: df:32:60:93:22:86:60:da:18:21:4f:16:dd:bd:8f:f5:3b:f8: b9:7e:cb:b6:7c:2e:f2:87:83:6a:bd:5d:22:87:7b:23:f2:8e: 3a:ea:0a:27:7f:ae:90:f3:b8:08:23:cc:cd:57:3d:73:b4:c6: f7:ca:9e:6e:a1:33:ef:1a:5a:b2:f6:ba:a5:b1:45:5f:fd:8a: 15:66:d7:10:0c:63:9b:46:17:44:9a:ef:52:f0:b5:04:b7:e5: 59:a2:e5:ea:00:e7:b8:98:91:0a:ac:8c:9f:dc:81:b1:31:ce: 67:1e:43:ab:c5:2d:fb:1f:00:05:06:f1:f5:85:e1:de:40:6a: ce:79:24:9c:92:d3:54:23:68:29:de:79:84:15:7b:50:6d:77: 73:ab:f9:cb:fb:fd:23:a8:b6:9c:d2:41:42:92:55:57:6e:ab: 3c:44:11:63:58:8e:48:41:1c:35:2a:7d:eb:61:71:0d:31:fc: 81:fe:fb:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyMzUxMTAvBgNVBAUTKDQ0MUNCMEQ4NkE5MkNFREZCRTgwODNERUQ2OTdBMjZE NjIzRUU2NTUwHhcNMjUwNzA1MDEzOTEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4ODIzZi00NjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fOL0sJ5cSafewFlhLkZ+Gdkrt9KVy9DKJ3FJk6Enf64FFgwlJQIotHBI706 QlPw+BKBlM9XZTXNDCQpTifNkB976ri0fgDVcepPYZMwcMBfZoBdrg4pMT22kJmY yeWJ5cUBGPUciQsrWaq/YNIcoVO/1LdtvmfVIyM/R+pa4b4yfn4uOnf1PlxgqxX2 nkmO2vs/ViFEHLbzW9Gwhp2PDYyFsNlj1aN7+4jjPk2/NLDDan3FnC5Ppl48vBKa LcCxZ84A7mvjp1cRctrf8se45gbTaAXqWmIn1PZk5t4lCWZffr//L8GGJI0ajY/8 hjJ4pnSv7A+jovR7l5IU/hoRRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGeTJeP8 wNdc0tKmv9UvJlhNBNbTMB8GA1UdIwQYMBaAFEQcsNhqks7fvoCD3taXom1iPuZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTIzNS9ERDYxRTIyRUM1 REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0LS1nSVBlMXBlaWJXSS01 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCeXcyR3FTenQtLWdJUGUxcGVpYldJLTVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzEyMzUvREQ2MUUyMkVDNUREMTFFQ0JFRjQyQzc3QzRGOUFFMDIvOUNENzQzOTJD OUU0MTFFQzk1NkIwQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4ywwDQYJKoZIhvcNAQELBQADggEBAMtNUMnHpCup5Glu qyza/2Xg+w0gCuUse++Y5EeH3+5TxhGUyOJbq3NIuXFTMiCC6wjJF/rtrlYbWW5G Q2iAqjoC2k783jLY0t8yYJMihmDaGCFPFt29j/U7+Ll+y7Z8LvKHg2q9XSKHeyPy jjrqCid/rpDzuAgjzM1XPXO0xvfKnm6hM+8aWrL2uqWxRV/9ihVm1xAMY5tGF0Sa 71LwtQS35Vmi5eoA57iYkQqsjJ/cgbExzmceQ6vFLfsfAAUG8fWF4d5Aas55JJyS 01QjaCneeYQVe1Btd3Or+cv7/SOotpzSQUKSVVduqzxEEWNYjkhBHDUqfethcQ0x /IH++7g= -----END CERTIFICATE-----Generated at Sun Jul 20 11:08:23 2025 by rpki-client