$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/894936BE60A911F098EEE824C4F9AE02.roa File: 894936BE60A911F098EEE824C4F9AE02.roa (raw, json) Hash identifier: 6+ZtG4tMJV/LeRgQcj4Jq30ubiMB6Q5WScbIN7WAFn8= Subject key identifier: D4:89:55:6F:5D:8B:B8:74:32:CD:45:D7:8A:DB:8C:86:6C:B1:BD:46 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 0127 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/894936BE60A911F098EEE824C4F9AE02.roa Signing time: Mon 14 Jul 2025 11:56:12 +0000 ROA not before: Mon 14 Jul 2025 11:56:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9260 IP address blocks: 103.101.232.0/24 maxlen: 24 103.165.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Jul 14 11:56:12 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6874f05c-1cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2a:60:f7:be:3b:3a:80:48:49:55:c1:61:eb: 3c:b8:8c:d1:05:4c:8d:84:6f:16:90:5c:68:d5:39: f8:36:d2:d3:8a:d1:16:be:a2:b3:b7:af:9c:f1:89: 0a:b5:3c:49:68:e9:1e:04:c0:4b:c5:67:f1:d8:ef: e1:35:94:c6:6f:d2:16:e5:3b:66:b9:97:c3:0a:e9: b4:b3:40:6a:a4:51:5f:24:ca:57:32:0b:b9:be:af: a0:3c:f1:a2:b7:60:fe:cc:09:ce:13:dd:a4:df:df: 01:32:29:7a:84:bb:7d:04:2b:b8:4e:ce:74:82:61: f9:50:39:5b:78:d8:75:8b:27:68:21:39:e4:9d:7e: 5d:bd:df:5d:85:14:f5:2b:0c:a3:35:d6:5e:fc:01: 09:c0:0d:b8:f2:25:eb:1f:e6:c6:36:be:f9:81:8e: 9f:3d:2b:ac:8d:21:f5:49:e9:9c:89:80:70:43:46: 36:0b:e9:47:97:52:9e:98:e3:f7:fc:45:d7:33:33: 80:d9:d4:f8:d6:3d:e5:34:ee:2f:76:4a:8f:ee:47: 3e:16:2e:fa:c8:5b:d1:7a:56:52:66:39:46:34:22: 5d:f6:7b:bb:b9:e2:85:a6:78:03:88:16:92:9f:14: e0:17:cd:9c:44:a3:b5:4d:d5:9d:46:ec:55:6b:f9: d9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:89:55:6F:5D:8B:B8:74:32:CD:45:D7:8A:DB:8C:86:6C:B1:BD:46 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/894936BE60A911F098EEE824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.232.0/24 103.165.176.0/24 Signature Algorithm: sha256WithRSAEncryption b8:fe:95:53:ae:19:60:42:e6:ad:a6:43:66:9a:9b:08:86:27: b7:e7:f6:5b:de:be:de:b4:42:12:72:5f:7b:50:40:e4:e6:8c: 75:ae:e0:04:de:0b:54:2b:25:21:7c:89:31:42:6b:8b:50:d2: 5c:90:3c:4c:10:d9:94:4e:40:24:20:c4:92:d0:d3:79:20:cc: 52:07:e9:f1:af:43:75:a0:64:54:91:1f:6a:6e:df:a1:b8:55: a1:4a:3a:d4:68:0e:d9:c7:16:93:ac:85:66:43:25:7a:da:8b: cb:b8:f6:8f:ad:6b:25:9b:6e:26:32:b0:cc:42:17:7e:50:85: 6d:55:d3:7f:86:f8:b6:a6:4c:53:e5:29:55:9a:bb:0a:43:47: 9f:11:65:e7:32:61:93:7c:68:f5:b2:1e:05:0b:e5:e4:2e:c5: c0:d2:f7:b4:e0:1c:85:e9:55:b7:cb:3e:c7:9f:63:dc:cd:2e: c0:6e:d4:53:21:ac:ba:8f:8e:01:13:3d:dc:c7:bc:a9:b5:74: 83:11:04:72:67:9c:7d:3e:1b:3e:69:a2:4b:78:ca:61:dd:e1: 94:c3:d3:c0:b4:25:c4:8f:d3:c4:93:0d:7d:36:86:ee:0f:a9: 33:bc:c9:0d:8d:0b:c3:88:c1:e3:20:73:8f:ff:0c:4e:aa:16: c7:76:45:56 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUwNzE0MTE1NjEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0ZjA1Yy0xY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSpg9747OoBISVXBYes8uIzRBUyNhG8WkFxo1Tn4NtLTitEWvqKzt6+c8YkK tTxJaOkeBMBLxWfx2O/hNZTGb9IW5TtmuZfDCum0s0BqpFFfJMpXMgu5vq+gPPGi t2D+zAnOE92k398BMil6hLt9BCu4Ts50gmH5UDlbeNh1iydoITnknX5dvd9dhRT1 KwyjNdZe/AEJwA248iXrH+bGNr75gY6fPSusjSH1SemciYBwQ0Y2C+lHl1KemOP3 /EXXMzOA2dT41j3lNO4vdkqP7kc+Fi76yFvRelZSZjlGNCJd9nu7ueKFpngDiBaS nxTgF82cRKO1TdWdRuxVa/nZGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNSJVW9d i7h0Ms1F14rbjIZssb1GMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FDQTgvRjk3MTRBRTZBQUZBMTFFRUEyMjFFNzJFQzRGOUFFMDIvODk0OTM2QkU2 MEE5MTFGMDk4RUVFODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZegDBABnpbAwDQYJKoZIhvcNAQELBQADggEBALj+lVOu GWBC5q2mQ2aamwiGJ7fn9lvevt60QhJyX3tQQOTmjHWu4ATeC1QrJSF8iTFCa4tQ 0lyQPEwQ2ZROQCQgxJLQ03kgzFIH6fGvQ3WgZFSRH2pu36G4VaFKOtRoDtnHFpOs hWZDJXrai8u49o+tayWbbiYysMxCF35QhW1V03+G+LamTFPlKVWauwpDR58RZecy YZN8aPWyHgUL5eQuxcDS97TgHIXpVbfLPsefY9zNLsBu1FMhrLqPjgETPdzHvKm1 dIMRBHJnnH0+Gz5pokt4ymHd4ZTD08C0JcSP08STDX02hu4PqTO8yQ2NC8OIweMg c4//DE6qFsd2RVY= -----END CERTIFICATE-----Generated at Sun Jul 20 03:29:52 2025 by rpki-client