$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa File: 94EA7370050111EA9BDD372BC4F9AE02.roa (raw, json) Hash identifier: QfGMdR7Uov5mHwO7nve3pQizSQl2DkOhX5cYoqv4O50= Subject key identifier: 8A:CA:7F:D1:08:B6:83:53:08:3F:50:A9:21:91:EC:81:21:4B:DB:5E Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0C77 Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa Signing time: Tue 26 Aug 2025 18:57:34 +0000 ROA not before: Tue 26 Aug 2025 18:57:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7474 IP address blocks: 103.77.128.0/24 maxlen: 24 202.129.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 18:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29, serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Aug 26 18:57:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ae039e-8582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:26:b4:4b:21:5f:0b:b9:d5:c4:83:8f:14:91: 5b:cd:59:37:fb:7f:e1:99:b0:41:39:42:de:f9:aa: e1:d6:71:69:e7:b2:91:16:7e:7f:f9:ac:1f:12:9c: c9:13:0b:20:19:33:62:09:89:2c:66:db:1a:5b:25: d1:c8:29:06:f0:e9:74:fb:4f:46:00:9c:12:92:92: 73:7c:32:82:8e:db:34:58:f3:48:26:8e:64:10:2f: c6:09:10:64:93:1d:78:72:c2:7a:38:bb:8e:e2:a9: a0:bd:a3:a2:32:f5:77:3c:7f:aa:d4:55:f4:95:37: 21:a7:e1:2f:a4:7d:87:88:20:0e:79:d1:81:dd:a5: b4:d4:0d:ab:1f:0f:94:97:71:f9:75:a7:20:75:91: 65:e8:7d:c7:2b:4f:b0:e9:3e:72:ae:eb:96:88:77: 12:65:36:53:13:75:cf:65:b8:71:be:8b:d8:80:72: de:02:df:e8:72:78:b1:b9:23:b0:bb:4d:b4:6e:e2: 21:75:a5:b1:59:42:b5:6b:46:a9:bf:82:6d:61:4f: 92:74:bb:60:88:e7:64:ea:bf:66:63:60:64:4a:46: 56:b0:c2:0b:bb:9a:e8:e8:01:71:2e:71:31:3d:76: 79:14:e2:a0:10:7d:3c:e8:87:b1:9d:28:c7:d5:a4: 5c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CA:7F:D1:08:B6:83:53:08:3F:50:A9:21:91:EC:81:21:4B:DB:5E X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.128.0/24 202.129.218.0/24 Signature Algorithm: sha256WithRSAEncryption 99:2f:2a:ac:bd:e6:25:48:88:cb:7b:03:c9:86:3e:56:e8:0c: 58:04:88:1a:b5:3c:e7:22:37:32:a7:64:a8:3b:66:e2:7e:fa: 24:5d:e8:71:70:ee:d7:08:ad:78:8b:f2:c4:0a:e8:23:b0:7e: 9c:12:2d:0e:19:fb:0e:66:b0:e7:dd:50:e3:b6:a0:64:76:aa: aa:34:3a:31:30:ec:87:1f:bd:74:e0:35:ae:9a:56:95:f7:52: fb:71:7d:e3:18:f0:78:9f:24:2f:0f:44:39:27:18:29:e0:02: 44:5e:56:24:fd:a9:21:32:87:9f:a0:e2:4b:0f:da:2d:e9:68: c0:f7:e2:71:ee:69:d2:2e:f4:a3:89:78:e5:92:fd:11:75:86: 85:31:7b:93:c5:ad:3f:46:8d:f1:ad:c5:a7:75:d0:7d:79:2b: 24:ce:0b:4e:47:e6:9b:32:cf:9d:1d:28:c7:38:5a:de:80:b0: 41:45:26:9c:9e:3c:8a:8c:74:26:76:08:34:be:04:a6:cc:d3: e3:3f:1b:dc:70:91:fe:e2:85:8d:b6:95:b1:02:39:b2:90:af: 20:e4:0e:8f:bb:e8:56:0f:1b:e6:4b:3f:e5:a5:2b:21:0e:5e: 76:54:ec:93:4e:9d:4e:78:de:21:02:dd:bc:b9:d6:88:40:c1: c7:ff:e7:31 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjUwODI2MTg1NzM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlMDM5ZS04NTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ya0SyFfC7nVxIOPFJFbzVk3+3/hmbBBOULe+arh1nFp57KRFn5/+awfEpzJ EwsgGTNiCYksZtsaWyXRyCkG8Ol0+09GAJwSkpJzfDKCjts0WPNIJo5kEC/GCRBk kx14csJ6OLuO4qmgvaOiMvV3PH+q1FX0lTchp+EvpH2HiCAOedGB3aW01A2rHw+U l3H5dacgdZFl6H3HK0+w6T5yruuWiHcSZTZTE3XPZbhxvovYgHLeAt/ocnixuSOw u020buIhdaWxWUK1a0apv4JtYU+SdLtgiOdk6r9mY2BkSkZWsMILu5ro6AFxLnEx PXZ5FOKgEH086IexnSjH1aRc7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIrKf9EI toNTCD9QqSGR7IEhS9teMB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJFMjkvQUQzMzQwMUMwNEZGMTFFQUI1OENCODIzQzRGOUFFMDIvOTRFQTczNzAw NTAxMTFFQTlCREQzNzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnTYADBADKgdowDQYJKoZIhvcNAQELBQADggEBAJkvKqy9 5iVIiMt7A8mGPlboDFgEiBq1POciNzKnZKg7ZuJ++iRd6HFw7tcIrXiL8sQK6COw fpwSLQ4Z+w5msOfdUOO2oGR2qqo0OjEw7IcfvXTgNa6aVpX3UvtxfeMY8HifJC8P RDknGCngAkReViT9qSEyh5+g4ksP2i3paMD34nHuadIu9KOJeOWS/RF1hoUxe5PF rT9GjfGtxad10H15KyTOC05H5psyz50dKMc4Wt6AsEFFJpyePIqMdCZ2CDS+BKbM 0+M/G9xwkf7ihY22lbECObKQryDkDo+76FYPG+ZLP+WlKyEOXnZU7JNOnU543iEC 3by51ohAwcf/5zE= -----END CERTIFICATE-----Generated at Sat Sep 6 13:14:53 2025 by rpki-client