$ rpki-client -vvf rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa File: C43988E4472611EE8CB34245C4F9AE02.roa (raw, json) Hash identifier: 1i3jxewXcc2DZR9rHs9xsLpB1uq+KSefHPQwMlW+krU= Subject key identifier: 0C:4C:A5:BD:8E:23:5E:C4:51:C8:CC:22:1B:F1:7E:7C:93:3C:40:91 Certificate issuer: /CN=A9196480/serialNumber=A92F4CE489CD0E97D1676043F8C34F830679D8F7 Certificate serial: 0175 Authority key identifier: A9:2F:4C:E4:89:CD:0E:97:D1:67:60:43:F8:C3:4F:83:06:79:D8:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa Signing time: Wed 09 Jul 2025 04:40:38 +0000 ROA not before: Wed 09 Jul 2025 04:40:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58504 IP address blocks: 103.167.232.0/23 maxlen: 23 103.167.232.0/24 maxlen: 24 103.167.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.crl rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196480, serialNumber=A92F4CE489CD0E97D1676043F8C34F830679D8F7 Validity Not Before: Jul 9 04:40:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686df2c6-f30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:56:94:a5:fe:fd:a8:62:bd:3c:93:49:71:f4: 11:aa:8d:94:7b:dc:30:80:e5:60:44:0a:93:f3:2c: 79:91:21:64:8f:e2:bb:9e:bf:c2:df:13:7e:29:4a: 34:e6:f2:5c:52:78:12:6c:44:40:66:c4:4f:ca:24: 88:f9:d7:15:07:bf:c8:db:01:32:ee:6a:c5:fc:10: 8b:87:1b:b2:54:72:ba:a3:ee:a0:6d:91:07:21:bd: e1:f0:e3:58:c1:82:4c:3a:9f:63:44:72:b6:b3:3a: 9f:85:e9:2d:8e:5d:da:9d:14:33:4c:55:19:38:cd: 2c:1d:f1:e2:4e:25:27:8e:ed:c1:2e:40:b6:02:3f: 3a:38:95:0b:e1:c0:ca:82:52:79:14:ba:7e:ce:f9: 53:e4:57:af:8c:e5:6f:d3:c1:99:3f:b4:fa:4e:5e: 85:b6:9e:61:96:bf:5c:33:11:12:f3:10:34:29:bc: 6f:26:73:bc:ac:f0:2a:e6:5b:39:6a:36:aa:99:8c: 0f:aa:d2:30:8c:3a:94:43:dd:2e:f7:12:ae:a3:d4: fd:3b:b7:16:e0:d0:22:b4:f4:f2:d2:4a:a1:e5:3e: 15:72:dd:05:40:9b:14:ee:b6:e3:5f:a2:7d:bb:a4: ea:b9:db:61:5c:cb:22:a1:0f:16:b7:4f:03:5e:6c: 3b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4C:A5:BD:8E:23:5E:C4:51:C8:CC:22:1B:F1:7E:7C:93:3C:40:91 X509v3 Authority Key Identifier: keyid:A9:2F:4C:E4:89:CD:0E:97:D1:67:60:43:F8:C3:4F:83:06:79:D8:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.232.0/23 Signature Algorithm: sha256WithRSAEncryption 22:74:fb:27:9a:15:57:cf:b0:99:25:cb:ea:db:b8:f8:0d:e6: 60:d7:2e:21:b0:67:41:f1:84:53:80:c3:1d:e6:12:c2:23:cd: 14:17:15:28:5d:24:e0:77:a1:46:3e:ae:0b:a6:b2:78:f7:4d: 7c:f3:6e:5c:ac:83:23:6e:79:e8:e1:5c:f0:b4:6d:59:99:d2: 2c:cd:89:db:eb:61:82:49:ab:cd:89:e4:3c:9a:c1:f9:c5:07: 8f:d3:ec:52:16:8a:e2:e1:1d:6c:8d:ce:58:a9:35:c7:8a:06: 05:33:f0:b9:d7:42:3d:37:43:72:a2:19:fd:a8:fe:e8:9f:ac: 35:ef:7d:17:78:d2:a9:b5:06:a3:ed:35:96:08:e5:d0:92:ef: 45:fd:a1:c6:4f:4d:e1:20:92:25:53:0f:13:a8:f5:19:64:3a: 19:c9:70:b4:61:41:08:e2:a0:b8:ad:3d:45:95:dc:5c:08:57: 10:d1:1f:f3:6f:0b:0a:c2:2d:e1:dc:b0:b1:e7:e5:49:28:0b: d1:f9:cf:dd:06:bd:1d:b0:c0:49:c9:7a:a6:54:d0:8a:c0:25: de:c2:39:22:56:fb:d9:11:3d:6d:4d:c3:e7:d9:33:b8:13:2f: 06:70:c6:96:08:f3:2a:d0:f4:21:8c:ca:ea:49:75:ac:ae:c4: 58:94:7c:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0ODAxMTAvBgNVBAUTKEE5MkY0Q0U0ODlDRDBFOTdEMTY3NjA0M0Y4QzM0Rjgz MDY3OUQ4RjcwHhcNMjUwNzA5MDQ0MDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZjJjNi1mMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlaUpf79qGK9PJNJcfQRqo2Ue9wwgOVgRAqT8yx5kSFkj+K7nr/C3xN+KUo0 5vJcUngSbERAZsRPyiSI+dcVB7/I2wEy7mrF/BCLhxuyVHK6o+6gbZEHIb3h8ONY wYJMOp9jRHK2szqfhektjl3anRQzTFUZOM0sHfHiTiUnju3BLkC2Aj86OJUL4cDK glJ5FLp+zvlT5FevjOVv08GZP7T6Tl6Ftp5hlr9cMxES8xA0KbxvJnO8rPAq5ls5 ajaqmYwPqtIwjDqUQ90u9xKuo9T9O7cW4NAitPTy0kqh5T4Vct0FQJsU7rbjX6J9 u6TqudthXMsioQ8Wt08DXmw74wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAxMpb2O I17EUcjMIhvxfnyTPECRMB8GA1UdIwQYMBaAFKkvTOSJzQ6X0WdgQ/jDT4MGedj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjQ4MC80NURBM0ZFNjJC ODAxMUVFOUZGMkY1NzZDNEY5QUUwMi9xUzlNNUluTkRwZlJaMkJELU1OUGd3WjUy UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTOU01SW5ORHBmUloyQkQtTU5QZ3daNTJQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0ODAvNDVEQTNGRTYyQjgwMTFFRTlGRjJGNTc2QzRGOUFFMDIvQzQzOTg4RTQ0 NzI2MTFFRThDQjM0MjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp+gwDQYJKoZIhvcNAQELBQADggEBACJ0+yeaFVfPsJkl y+rbuPgN5mDXLiGwZ0HxhFOAwx3mEsIjzRQXFShdJOB3oUY+rgumsnj3TXzzblys gyNueejhXPC0bVmZ0izNidvrYYJJq82J5DyawfnFB4/T7FIWiuLhHWyNzlipNceK BgUz8LnXQj03Q3KiGf2o/uifrDXvfRd40qm1BqPtNZYI5dCS70X9ocZPTeEgkiVT DxOo9RlkOhnJcLRhQQjioLitPUWV3FwIVxDRH/NvCwrCLeHcsLHn5UkoC9H5z90G vR2wwEnJeqZU0IrAJd7COSJW+9kRPW1Nw+fZM7gTLwZwxpYI8yrQ9CGMyupJdayu xFiUfHU= -----END CERTIFICATE-----Generated at Sun Jul 20 10:46:54 2025 by rpki-client