$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa File: BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa (raw, json) Hash identifier: sWbEBie3r4Rs9tqZdxaTO4p/g0MLaIAVIR769Fluhr4= Subject key identifier: 83:B8:72:0D:F7:D7:14:11:42:75:8C:9C:C7:E7:44:21:9E:82:1D:9C Certificate issuer: /CN=A9194AF5/serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Certificate serial: 0126 Authority key identifier: 97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa Signing time: Mon 21 Jul 2025 05:10:50 +0000 ROA not before: Mon 21 Jul 2025 05:10:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132822 IP address blocks: 103.65.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AF5, serialNumber=97D11AE212CB213DF9652F5BB6248E40CE0C29FA Validity Not Before: Jul 21 05:10:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687dcbda-0f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:69:a9:95:72:12:a7:da:a4:c8:c0:34:e7: cd:c1:2f:bb:23:89:35:79:d4:ca:09:73:6d:4d:da: 05:96:6c:83:2e:1b:0a:98:c3:32:d2:31:8c:b9:af: 7c:35:9b:4e:a6:55:35:a6:31:f3:1d:5f:59:37:0f: 77:7f:ac:ef:07:ce:3e:70:16:db:5d:bc:8e:1e:2b: f7:db:c5:23:69:5c:8a:37:85:e7:e7:0f:4b:80:3a: 97:9f:62:69:4d:52:48:44:07:b1:ef:52:c7:90:8e: 6a:be:bf:89:7f:75:c9:3d:6f:80:57:36:95:e8:8e: 6d:82:28:9a:90:51:ff:dc:1e:b9:d9:95:2a:fd:18: 35:2b:5d:d9:a3:0b:da:d8:b6:96:67:4c:47:b8:f8: 06:ab:60:26:e2:57:30:0a:d1:e3:95:a7:16:6e:ba: 3e:ee:b4:1a:bb:4e:80:68:8a:46:6f:a0:36:2c:8f: c8:55:ea:de:04:ab:09:d8:d6:16:74:71:06:b3:ec: df:94:11:83:7b:6a:e8:92:32:9f:3f:1b:cc:a4:c0: 0e:0e:9d:82:91:ea:9b:2a:34:02:60:65:e7:2a:cb: b9:07:b0:12:50:de:c6:c5:83:a3:4b:29:b2:02:5a: c2:76:6a:ae:39:b2:77:07:bf:f4:85:09:97:f2:9e: a1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B8:72:0D:F7:D7:14:11:42:75:8C:9C:C7:E7:44:21:9E:82:1D:9C X509v3 Authority Key Identifier: keyid:97:D1:1A:E2:12:CB:21:3D:F9:65:2F:5B:B6:24:8E:40:CE:0C:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/l9Ea4hLLIT35ZS9btiSOQM4MKfo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9Ea4hLLIT35ZS9btiSOQM4MKfo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AF5/1B1C2466AB5711EE818A283EC4F9AE02/BC87CB52AB5711EEBC6EBB3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.239.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:29:4d:5b:73:f1:bc:f1:9d:d6:53:23:96:df:35:fb:c8:08: 16:0a:6a:b1:44:a0:33:57:0b:5b:32:b6:64:f2:8a:38:84:b3: 53:9b:c3:ee:d3:29:5a:a2:1f:f8:d9:ae:ea:b5:04:cb:2b:5c: 0e:85:72:b8:e6:d0:5c:64:24:66:b0:5d:0c:cd:2c:ba:bf:0d: a2:6d:28:8d:ee:6f:c6:97:86:b2:f1:4e:4c:bd:aa:b3:06:76: 0d:cb:a9:95:23:6c:bf:98:a1:be:b7:31:85:97:7f:f3:e1:0b: 49:16:82:79:c9:55:15:f6:e6:dd:a4:be:eb:d5:30:47:5d:50: cb:c4:ac:ad:99:2c:8e:5f:97:e7:b4:24:c9:95:8e:85:e7:47: c0:3b:91:69:f3:e6:de:84:be:76:6e:b3:2f:3f:45:33:d4:71: ef:23:11:dc:fc:dd:c5:a8:9c:d8:7b:02:40:38:e8:09:82:5d: d1:a4:82:a8:07:a4:26:f0:25:74:d5:72:ce:5b:f5:f1:ed:f8: d5:6d:7e:78:60:3c:77:0d:f2:c7:9b:ad:56:e0:8c:69:8b:3b: b9:28:49:87:31:3a:2d:49:d1:11:06:1d:12:2e:3b:c6:fa:16: 1e:e2:ae:fa:13:e9:25:98:e6:08:f8:c9:f3:2f:a4:ee:25:de: 39:9b:b7:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRjUxMTAvBgNVBAUTKDk3RDExQUUyMTJDQjIxM0RGOTY1MkY1QkI2MjQ4RTQw Q0UwQzI5RkEwHhcNMjUwNzIxMDUxMDUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdkY2JkYS0wZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOdpqZVyEqfapMjANOfNwS+7I4k1edTKCXNtTdoFlmyDLhsKmMMy0jGMua98 NZtOplU1pjHzHV9ZNw93f6zvB84+cBbbXbyOHiv328UjaVyKN4Xn5w9LgDqXn2Jp TVJIRAex71LHkI5qvr+Jf3XJPW+AVzaV6I5tgiiakFH/3B652ZUq/Rg1K13Zowva 2LaWZ0xHuPgGq2Am4lcwCtHjlacWbro+7rQau06AaIpGb6A2LI/IVereBKsJ2NYW dHEGs+zflBGDe2rokjKfPxvMpMAODp2CkeqbKjQCYGXnKsu5B7ASUN7GxYOjSymy AlrCdmquObJ3B7/0hQmX8p6hoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIO4cg33 1xQRQnWMnMfnRCGegh2cMB8GA1UdIwQYMBaAFJfRGuISyyE9+WUvW7YkjkDODCn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFGNS8xQjFDMjQ2NkFC NTcxMUVFODE4QTI4M0VDNEY5QUUwMi9sOUVhNGhMTElUMzVaUzlidGlTT1FNNE1L Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5RWE0aExMSVQzNVpTOWJ0aVNPUU00TUtmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBRjUvMUIxQzI0NjZBQjU3MTFFRTgxOEEyODNFQzRGOUFFMDIvQkM4N0NCNTJB QjU3MTFFRUJDNkVCQjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQe8wDQYJKoZIhvcNAQELBQADggEBAB0pTVtz8bzxndZT I5bfNfvICBYKarFEoDNXC1sytmTyijiEs1Obw+7TKVqiH/jZruq1BMsrXA6Fcrjm 0FxkJGawXQzNLLq/DaJtKI3ub8aXhrLxTky9qrMGdg3LqZUjbL+Yob63MYWXf/Ph C0kWgnnJVRX25t2kvuvVMEddUMvErK2ZLI5fl+e0JMmVjoXnR8A7kWnz5t6EvnZu sy8/RTPUce8jEdz83cWonNh7AkA46AmCXdGkgqgHpCbwJXTVcs5b9fHt+NVtfnhg PHcN8sebrVbgjGmLO7koSYcxOi1J0REGHRIuO8b6Fh7irvoT6SWY5gj4yfMvpO4l 3jmbt6A= -----END CERTIFICATE-----Generated at Tue Jul 22 00:13:34 2025 by rpki-client