$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: 4RpDGoas6qlBW19Q5SIFrbnYOe5op4thcR7lPfP6BCI= Subject key identifier: 56:BF:A4:D0:F5:2F:32:43:9B:37:D8:AF:6A:D1:E1:FA:DC:3F:B5:63 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B3F Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Sat 19 Jul 2025 06:54:04 +0000 ROA not before: Sat 19 Jul 2025 06:54:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:100::/40 maxlen: 40 2403:da40:100::/48 maxlen: 48 2403:da40:101::/48 maxlen: 48 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Jul 19 06:54:04 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=687b410b-a04e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0d:3c:1f:1b:8d:3b:e7:a0:b7:44:bf:df:3d: 13:3e:2e:aa:ee:53:17:84:98:83:8a:50:96:36:ec: 80:a1:bd:9e:b9:5f:7b:31:22:42:d4:40:37:5d:87: 70:c4:26:43:3b:8e:16:c7:cd:7d:32:ee:10:2e:86: a1:0e:36:76:d2:6c:98:59:e6:47:3f:20:b8:b6:51: 54:19:01:1f:47:9b:91:3a:89:72:25:38:83:75:45: ff:b4:e4:9d:d1:5c:65:45:3b:fc:5b:dc:c9:da:ba: 63:69:63:c0:b0:d5:3d:06:88:6d:f9:51:cb:ac:3a: 2f:52:22:83:11:9d:d7:b0:0d:69:52:00:e7:ce:8d: 45:07:20:94:44:4b:b2:52:db:44:99:0a:61:37:dc: 73:50:a1:a6:b0:2e:9b:75:74:7e:29:b2:69:71:9a: 6d:69:51:09:4a:a1:fe:5d:ee:09:3e:fc:bb:55:2b: f7:4a:e1:5d:2f:31:83:89:07:22:b9:3f:9f:28:98: 5d:e6:b1:c4:23:55:0c:69:0a:59:32:da:28:fe:41: 4d:8f:d3:9e:ac:bf:2c:38:8e:63:cc:67:2b:74:97: 9a:d4:81:60:ba:90:27:87:23:72:7f:38:04:12:e4: 82:64:32:d4:b6:49:53:11:76:1a:75:89:1e:f1:4e: 14:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BF:A4:D0:F5:2F:32:43:9B:37:D8:AF:6A:D1:E1:FA:DC:3F:B5:63 X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption a5:6b:ba:63:6e:cc:8c:25:ae:d8:a1:bc:43:98:f1:29:ec:b8: d8:8d:dc:c2:90:5e:d9:9a:43:d7:00:6b:42:12:b5:74:4e:7e: 63:20:26:7e:87:f8:e0:07:80:29:a3:5d:b1:c0:56:89:90:72: 67:bd:fe:02:65:48:45:7d:50:26:1a:6d:a3:56:ee:ff:c9:22: 3e:20:33:fd:34:d4:d9:af:88:fe:7d:39:75:f7:b0:7b:ea:8a: f3:f2:dd:95:2e:eb:a7:ef:2c:58:c8:aa:2d:43:2e:a7:b1:30: 91:1e:16:8f:1d:2c:9f:51:ec:83:2a:38:d6:e1:1b:e4:1d:36: f9:02:09:04:2f:cd:8c:5d:52:57:a9:fd:27:4d:a7:bc:c4:ac: 36:5a:66:b4:07:5a:3c:c5:d8:30:61:16:dc:7e:03:e5:cf:f9: 46:b6:b6:13:d5:3b:0f:0a:b3:65:1e:fd:a1:8d:73:12:25:a9: 71:1f:a7:40:9f:96:41:c7:03:d0:98:af:18:f4:b3:8c:0e:18: 05:58:b1:f3:f2:89:8e:f7:2e:07:22:cc:70:63:c4:cb:0a:dc: e9:0a:56:ee:75:bb:f5:4d:2b:c6:0b:25:77:d7:d6:d9:b2:da: c1:e5:bd:99:2e:4f:cb:e9:51:61:bb:de:9f:02:fe:e4:d4:a7: 82:d8:35:79 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUwNzE5MDY1NDA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdiNDEwYi1hMDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqA08HxuNO+egt0S/3z0TPi6q7lMXhJiDilCWNuyAob2euV97MSJC1EA3XYdw xCZDO44Wx819Mu4QLoahDjZ20myYWeZHPyC4tlFUGQEfR5uROolyJTiDdUX/tOSd 0VxlRTv8W9zJ2rpjaWPAsNU9Boht+VHLrDovUiKDEZ3XsA1pUgDnzo1FByCUREuy UttEmQphN9xzUKGmsC6bdXR+KbJpcZptaVEJSqH+Xe4JPvy7VSv3SuFdLzGDiQci uT+fKJhd5rHEI1UMaQpZMtoo/kFNj9OerL8sOI5jzGcrdJea1IFgupAnhyNyfzgE EuSCZDLUtklTEXYadYke8U4UlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFa/pND1 LzJDmzfYr2rR4frcP7VjMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfDQwDQQCAAIwBwMFACQD2kAwDQYJKoZIhvcNAQELBQAD ggEBAKVrumNuzIwlrtihvEOY8SnsuNiN3MKQXtmaQ9cAa0IStXROfmMgJn6H+OAH gCmjXbHAVomQcme9/gJlSEV9UCYabaNW7v/JIj4gM/001NmviP59OXX3sHvqivPy 3ZUu66fvLFjIqi1DLqexMJEeFo8dLJ9R7IMqONbhG+QdNvkCCQQvzYxdUlep/SdN p7zErDZaZrQHWjzF2DBhFtx+A+XP+Ua2thPVOw8Ks2Ue/aGNcxIlqXEfp0CflkHH A9CYrxj0s4wOGAVYsfPyiY73LgcizHBjxMsK3OkKVu51u/VNK8YLJXfX1tmy2sHl vZkuT8vpUWG73p8C/uTUp4LYNXk= -----END CERTIFICATE-----Generated at Sun Jul 20 06:11:20 2025 by rpki-client