$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa File: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (raw, json) Hash identifier: d6abLKyd7fr1z0R2GJ3OwWkvRu3wB2ZUv3mxpyp6whI= Subject key identifier: 05:D1:CE:7E:3C:BF:04:7E:56:96:A0:A6:05:DD:84:1F:81:25:17:90 Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: EA Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa Signing time: Fri 23 May 2025 04:55:39 +0000 ROA not before: Fri 23 May 2025 04:55:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63981 IP address blocks: 103.167.140.0/24 maxlen: 24 103.167.141.0/24 maxlen: 24 103.197.28.0/22 maxlen: 24 2407:6bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: May 23 04:55:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=682fffca-1763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ad:6f:c2:39:9d:7d:95:6e:f7:53:0f:d0:a6: 0c:8d:63:99:36:d3:35:86:3a:0e:d0:83:b4:f5:fc: 4a:8f:c6:b4:2a:00:e7:3b:4e:3a:2f:c4:84:f0:82: 42:45:b0:91:19:d0:44:df:fe:a4:f4:90:4d:7b:da: 90:44:6d:03:3e:f3:a7:63:2b:4c:3e:3c:35:2c:7d: 9c:6a:1a:b3:f5:d7:97:6b:99:d8:ae:a2:50:be:5c: fe:d4:7a:ae:97:8f:19:3c:08:fc:b7:61:2a:23:d9: e8:6c:66:01:db:32:70:48:a7:98:99:2f:9d:ae:fc: cc:ad:7c:15:12:62:1e:74:b9:7f:c5:fe:ce:c6:69: 3c:52:64:59:51:ef:3b:ec:dc:ee:f0:60:02:87:53: aa:fe:10:aa:79:34:80:37:e9:c3:e1:54:f9:66:13: 44:1a:fe:12:b7:ab:93:37:d7:33:a5:ca:a5:6f:38: 7a:70:49:48:82:d0:a0:55:f9:cf:af:d8:6b:a0:24: c1:3c:84:5a:9c:1c:47:86:dd:ad:9b:d7:e2:1f:f6: ab:c1:53:84:5e:0a:85:e3:90:43:bf:99:3b:1e:78: 06:aa:a0:da:38:4b:35:0c:75:82:0e:0d:23:40:59: 4f:3b:7e:42:8b:77:40:11:ec:cd:aa:57:f0:51:a9: ad:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D1:CE:7E:3C:BF:04:7E:56:96:A0:A6:05:DD:84:1F:81:25:17:90 X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.140.0/23 103.197.28.0/22 IPv6: 2407:6bc0::/32 Signature Algorithm: sha256WithRSAEncryption b4:56:3c:70:4c:59:d8:46:ec:b9:de:aa:8f:81:10:25:50:c0: cb:39:8e:4d:10:9a:79:89:34:9d:e9:fd:42:2e:3d:b2:62:6c: 6e:a0:75:12:9b:4a:3b:26:b8:60:8e:14:13:88:90:82:01:5f: c6:fd:bc:13:a6:8c:97:f2:c4:5f:e6:7c:15:25:2a:52:2d:8b: 67:83:8c:54:a6:13:14:bf:1d:05:e4:7f:6f:1b:e6:57:29:59: 43:6d:f4:b9:ca:f9:34:35:68:29:88:d7:98:c8:12:b1:bf:7d: 62:55:7e:be:f1:16:26:78:c2:15:17:7b:79:5e:81:ca:c5:e2: 99:7a:6c:a2:54:dc:58:36:f0:d2:3e:d7:4b:c6:f0:86:ee:ee: 7c:f7:c1:bf:72:e1:50:81:4f:49:48:6c:34:fc:9b:e1:3d:c5: c2:58:67:7e:a4:be:60:58:fb:85:de:3b:b4:aa:60:7b:ac:8a: b8:00:af:7e:f0:a3:79:78:7c:23:d4:82:45:5e:41:fc:58:ec: fd:ee:75:b0:a7:bd:c5:ef:bf:5c:46:2c:05:88:50:56:13:2c: 30:b8:f6:51:fa:84:22:42:fd:c3:97:45:4d:60:3f:53:6a:dc: a3:18:ae:ee:fc:e9:b1:eb:f5:3e:13:a3:dc:17:e4:3a:f2:88: 65:1f:d5:f7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdBNzIxMTAvBgNVBAUTKDkwQTQ3RjNDNjU5QjM3MThGREM4MkQzMDA3QTlEMzQy NDlDQ0M4RjQwHhcNMjUwNTIzMDQ1NTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZmZjYS0xNzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK1vwjmdfZVu91MP0KYMjWOZNtM1hjoO0IO09fxKj8a0KgDnO046L8SE8IJC RbCRGdBE3/6k9JBNe9qQRG0DPvOnYytMPjw1LH2cahqz9deXa5nYrqJQvlz+1Hqu l48ZPAj8t2EqI9nobGYB2zJwSKeYmS+drvzMrXwVEmIedLl/xf7Oxmk8UmRZUe87 7Nzu8GACh1Oq/hCqeTSAN+nD4VT5ZhNEGv4St6uTN9czpcqlbzh6cElIgtCgVfnP r9hroCTBPIRanBxHht2tm9fiH/arwVOEXgqF45BDv5k7HngGqqDaOEs1DHWCDg0j QFlPO35Ci3dAEezNqlfwUamt7QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAXRzn48 vwR+VpagpgXdhB+BJReQMB8GA1UdIwQYMBaAFJCkfzxlmzcY/cgtMAep00JJzMj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0E3Mi8yMkZEMTIxQURD RjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9rS1JfUEdXYk54ajl5QzB3QjZuVFFrbk15 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdBNzIvMjJGRDEyMUFEQ0YwMTFFRUJDOTAzMTFFQzRGOUFFMDIvRjgxRjdFMEVF MkExMTFFRUEyREQ5RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnp4wDBAJnxRwwDQQCAAIwBwMFACQHa8AwDQYJKoZIhvcN AQELBQADggEBALRWPHBMWdhG7Lneqo+BECVQwMs5jk0QmnmJNJ3p/UIuPbJibG6g dRKbSjsmuGCOFBOIkIIBX8b9vBOmjJfyxF/mfBUlKlIti2eDjFSmExS/HQXkf28b 5lcpWUNt9LnK+TQ1aCmI15jIErG/fWJVfr7xFiZ4whUXe3legcrF4pl6bKJU3Fg2 8NI+10vG8Ibu7nz3wb9y4VCBT0lIbDT8m+E9xcJYZ36kvmBY+4XeO7SqYHusirgA r37wo3l4fCPUgkVeQfxY7P3udbCnvcXvv1xGLAWIUFYTLDC49lH6hCJC/cOXRU1g P1Nq3KMYru786bHr9T4To9wX5DryiGUf1fc= -----END CERTIFICATE-----Generated at Thu Jun 5 19:56:17 2025 by rpki-client