$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa File: 6AA5FC16905211EE840DED1DC4F9AE02.roa (raw, json) Hash identifier: 7Dqx51HWm5FHrY3yqH5za3wPDKkHA22oTIJYfgHsb38= Subject key identifier: 68:71:98:ED:19:ED:BD:60:E7:8A:F8:35:C0:25:36:C0:06:5A:94:3A Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 01D2 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa Signing time: Sat 19 Jul 2025 03:38:50 +0000 ROA not before: Sat 19 Jul 2025 03:38:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149838 IP address blocks: 103.187.190.0/23 maxlen: 23 103.187.190.0/24 maxlen: 24 103.187.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Jul 19 03:38:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687b134a-7371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:20:d2:26:80:ea:c9:21:2b:ee:f4:38:2a:e1: 1a:a3:ed:bb:97:2b:72:ac:03:c8:40:30:25:9d:46: 82:8c:ad:9a:99:c5:66:cf:7a:fc:3c:c7:49:dd:a1: 26:de:6b:de:33:8e:e3:83:eb:a0:6d:0a:e3:8d:64: 8b:bb:32:b2:2b:ac:e0:da:72:fd:02:3a:79:33:04: f0:54:a2:79:58:90:a2:49:44:0b:93:1d:77:30:5c: 46:2b:21:33:5a:44:e9:81:c7:d2:cd:88:77:71:01: 1f:15:5d:6f:ff:21:bc:71:e1:67:c0:b0:7d:81:89: 2d:b3:6a:32:26:84:64:0c:6d:01:66:8b:16:07:9c: 14:19:cf:f3:31:c1:e9:84:97:a7:49:39:f3:0a:f1: 4f:93:ea:1e:a1:f2:41:09:91:38:a6:23:ee:eb:db: 8a:9c:f3:cf:98:f6:b7:7a:cd:0f:03:0c:2c:2b:43: a3:7c:2a:2a:9e:de:25:25:3f:45:34:4e:db:51:c1: 43:80:47:75:a9:2d:a5:af:a1:fc:e6:b4:82:45:41: 54:cb:0c:91:f5:e5:1f:ac:d7:4b:e5:64:5e:49:cd: 83:a7:f4:51:cc:06:63:b8:fd:dc:20:63:e7:a6:2d: bb:90:03:18:eb:26:c0:92:95:2f:cb:f1:f5:a9:f5: 6e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:71:98:ED:19:ED:BD:60:E7:8A:F8:35:C0:25:36:C0:06:5A:94:3A X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.190.0/23 Signature Algorithm: sha256WithRSAEncryption 91:29:40:72:11:a3:d5:7b:51:d9:e8:f2:3d:f4:c5:15:70:ae: 5d:87:57:9d:2a:48:ef:ad:f6:70:5c:45:2a:d8:33:f4:19:c9: ce:19:d9:04:fb:a0:7b:b1:2e:d0:a4:1c:e9:db:cc:ff:4b:41: 61:f2:48:00:39:94:c0:66:12:98:e5:a3:3e:b5:8e:02:d1:ce: 28:ee:b7:96:d1:00:50:41:2b:25:31:22:e4:3f:66:df:33:ef: 2b:06:4a:fe:1d:6a:b2:ad:6e:5f:91:be:66:2f:aa:9d:d6:99: 0a:d3:3a:87:6f:9a:8b:4b:28:43:e4:38:49:c2:f3:09:29:cf: b6:d9:88:48:63:8b:ce:4e:31:43:4b:2c:24:27:19:c8:59:52: 37:3d:01:54:65:1c:d6:28:04:af:c1:85:7e:34:82:f1:eb:37: be:23:49:8b:2d:a4:7b:0f:31:ae:9e:94:90:12:3d:33:a5:c7: ea:fa:bd:c3:a2:9d:3f:2c:1c:c4:aa:b3:0b:ef:2a:cd:e4:bd: dd:8a:94:96:ca:dc:4d:66:25:a9:b7:36:a1:d0:ce:7f:21:0a: 5d:df:28:18:3f:37:43:28:d8:b9:59:6b:d3:7d:c1:71:23:19: 38:56:a8:7f:a4:8c:23:5b:e9:fd:59:6c:27:66:1a:ad:e9:5e: d0:72:41:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUwNzE5MDMzODUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdiMTM0YS03MzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SDSJoDqySEr7vQ4KuEao+27lytyrAPIQDAlnUaCjK2amcVmz3r8PMdJ3aEm 3mveM47jg+ugbQrjjWSLuzKyK6zg2nL9Ajp5MwTwVKJ5WJCiSUQLkx13MFxGKyEz WkTpgcfSzYh3cQEfFV1v/yG8ceFnwLB9gYkts2oyJoRkDG0BZosWB5wUGc/zMcHp hJenSTnzCvFPk+oeofJBCZE4piPu69uKnPPPmPa3es0PAwwsK0OjfCoqnt4lJT9F NE7bUcFDgEd1qS2lr6H85rSCRUFUywyR9eUfrNdL5WReSc2Dp/RRzAZjuP3cIGPn pi27kAMY6ybAkpUvy/H1qfVuvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGhxmO0Z 7b1g54r4NcAlNsAGWpQ6MB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MjcvRkQ4QjIyQjBCQzJGMTFFREE4Rjc2NTNFQzRGOUFFMDIvNkFBNUZDMTY5 MDUyMTFFRTg0MERFRDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnu74wDQYJKoZIhvcNAQELBQADggEBAJEpQHIRo9V7Udno 8j30xRVwrl2HV50qSO+t9nBcRSrYM/QZyc4Z2QT7oHuxLtCkHOnbzP9LQWHySAA5 lMBmEpjloz61jgLRzijut5bRAFBBKyUxIuQ/Zt8z7ysGSv4darKtbl+RvmYvqp3W mQrTOodvmotLKEPkOEnC8wkpz7bZiEhji85OMUNLLCQnGchZUjc9AVRlHNYoBK/B hX40gvHrN74jSYstpHsPMa6elJASPTOlx+r6vcOinT8sHMSqswvvKs3kvd2KlJbK 3E1mJam3NqHQzn8hCl3fKBg/N0Mo2LlZa9N9wXEjGThWqH+kjCNb6f1ZbCdmGq3p XtByQTc= -----END CERTIFICATE-----Generated at Sun Jul 20 11:13:31 2025 by rpki-client