$ rpki-client -vvf rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa File: 6EC5F1A8420611ECB8345E7DC4F9AE02.roa (raw, json) Hash identifier: pWVT/yLPwS8QXceP4ztZ/aw/Myzun+GPcuksVrgOEUk= Subject key identifier: 9C:4F:04:42:BE:E2:0D:4D:49:38:75:73:E1:4B:F4:32:CD:0D:98:7A Certificate issuer: /CN=A9171DB9/serialNumber=96F631B37B2DCCAFBEE7B09BFDF4715E1A1C505B Certificate serial: 0457 Authority key identifier: 96:F6:31:B3:7B:2D:CC:AF:BE:E7:B0:9B:FD:F4:71:5E:1A:1C:50:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa Signing time: Fri 28 Feb 2025 07:10:48 +0000 ROA not before: Fri 28 Feb 2025 07:10:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 147068 IP address blocks: 103.142.126.0/24 maxlen: 24 103.172.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.crl rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171DB9, serialNumber=96F631B37B2DCCAFBEE7B09BFDF4715E1A1C505B Validity Not Before: Feb 28 07:10:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=67c16178-ac01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a8:20:8e:62:e2:f1:15:c4:f0:c3:b4:a1:3b: 79:ac:c9:1a:86:6e:24:5b:2f:ef:bc:b0:85:78:15: a7:14:85:5e:03:a4:75:78:a1:66:fd:8e:0c:7b:2a: c3:6b:28:37:66:f3:ed:59:05:17:11:d8:9e:71:7b: 64:16:93:d5:96:26:d9:fc:54:66:35:88:8c:fe:3c: d3:3c:43:0c:62:9d:23:66:9b:66:17:9e:52:73:c3: be:82:c6:b5:2d:ce:74:4d:0a:f6:39:4f:48:61:49: cc:97:9b:81:f1:04:15:c6:f4:e5:b7:31:ca:3c:a1: 83:62:74:b1:d8:f6:58:fb:26:35:67:dd:0b:28:b6: 85:5b:4e:d6:b9:f5:22:d2:68:c2:36:e1:a8:ac:9f: d8:99:93:5c:fb:88:2c:60:24:dd:39:47:97:62:64: e7:8f:d0:8c:95:68:1d:8a:e3:8b:21:82:c3:51:c0: f7:e8:05:ca:d0:71:9c:8c:92:60:05:43:68:20:70: 10:c3:e5:3d:9e:cc:52:4d:fe:57:a5:28:bd:cd:25: 2e:aa:61:46:57:b6:4b:0e:4c:57:8e:68:bd:12:8a: 88:32:5e:7d:c7:f2:a0:eb:8f:1a:84:bb:43:72:57: ff:7a:20:73:cf:d1:71:77:4d:55:14:e4:57:b6:a6: a1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4F:04:42:BE:E2:0D:4D:49:38:75:73:E1:4B:F4:32:CD:0D:98:7A X509v3 Authority Key Identifier: keyid:96:F6:31:B3:7B:2D:CC:AF:BE:E7:B0:9B:FD:F4:71:5E:1A:1C:50:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.126.0/24 103.172.140.0/24 Signature Algorithm: sha256WithRSAEncryption 60:d0:40:39:f4:bc:3c:19:ab:cd:5c:13:bd:6b:0b:a8:b6:99: cd:a2:9d:d0:55:2c:5d:b1:05:17:43:29:f5:b9:56:a3:45:f2: a0:6b:a4:68:c6:7f:04:7d:d8:d6:85:93:38:38:35:c2:50:7e: e9:9c:3a:5e:1c:ab:2d:fe:66:42:c8:26:bf:04:23:83:5c:85: b8:5e:7e:58:a4:b0:17:45:44:ab:04:72:cf:80:ca:3e:2f:d2: bc:4f:28:07:e1:f4:33:3a:11:1f:e9:30:48:67:6b:f0:2c:b2: b3:ec:e1:96:02:67:7d:4b:d5:19:26:13:92:25:42:9e:87:72: ec:47:0a:e2:f8:fa:79:f3:ff:14:19:ac:f1:49:ef:0c:8e:0f: f8:13:49:28:c1:ee:cb:1b:c1:87:5e:be:b7:81:53:91:cc:bb: 95:90:fa:86:39:59:3f:06:7a:0b:d8:95:4f:c1:b2:61:3c:b8: c7:fb:d4:b0:f4:3a:ef:aa:96:60:f1:65:99:74:19:50:a5:5b: 77:cb:24:6e:29:db:5e:e8:51:20:b1:5d:79:21:ca:44:8a:4e: 13:00:7f:0e:b2:46:f5:12:31:58:8a:e5:35:c0:f3:f2:0f:77: 0a:38:b3:91:56:06:8b:f2:3e:7f:a5:79:7e:3c:6b:eb:c9:93: 05:bb:cb:5e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEQjkxMTAvBgNVBAUTKDk2RjYzMUIzN0IyRENDQUZCRUU3QjA5QkZERjQ3MTVF MUExQzUwNUIwHhcNMjUwMjI4MDcxMDQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxNjE3OC1hYzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKggjmLi8RXE8MO0oTt5rMkahm4kWy/vvLCFeBWnFIVeA6R1eKFm/Y4MeyrD ayg3ZvPtWQUXEdiecXtkFpPVlibZ/FRmNYiM/jzTPEMMYp0jZptmF55Sc8O+gsa1 Lc50TQr2OU9IYUnMl5uB8QQVxvTltzHKPKGDYnSx2PZY+yY1Z90LKLaFW07WufUi 0mjCNuGorJ/YmZNc+4gsYCTdOUeXYmTnj9CMlWgdiuOLIYLDUcD36AXK0HGcjJJg BUNoIHAQw+U9nsxSTf5XpSi9zSUuqmFGV7ZLDkxXjmi9EoqIMl59x/Kg648ahLtD clf/eiBzz9Fxd01VFORXtqahvQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJxPBEK+ 4g1NSTh1c+FL9DLNDZh6MB8GA1UdIwQYMBaAFJb2MbN7Lcyvvuewm/30cV4aHFBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MURCOS9BOUM5MEYxNDQy MDIxMUVDQkEyNjE5NzZDNEY5QUUwMi9sdll4czNzdHpLLS01N0NiX2ZSeFhob2NV RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2WXhzM3N0ekstLTU3Q2JfZlJ4WGhvY1VGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEQjkvQTlDOTBGMTQ0MjAyMTFFQ0JBMjYxOTc2QzRGOUFFMDIvNkVDNUYxQTg0 MjA2MTFFQ0I4MzQ1RTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnjn4DBABnrIwwDQYJKoZIhvcNAQELBQADggEBAGDQQDn0 vDwZq81cE71rC6i2mc2indBVLF2xBRdDKfW5VqNF8qBrpGjGfwR92NaFkzg4NcJQ fumcOl4cqy3+ZkLIJr8EI4NchbhefliksBdFRKsEcs+Ayj4v0rxPKAfh9DM6ER/p MEhna/AssrPs4ZYCZ31L1RkmE5IlQp6HcuxHCuL4+nnz/xQZrPFJ7wyOD/gTSSjB 7ssbwYdevreBU5HMu5WQ+oY5WT8GegvYlU/BsmE8uMf71LD0Ou+qlmDxZZl0GVCl W3fLJG4p217oUSCxXXkhykSKThMAfw6yRvUSMViK5TXA8/IPdwo4s5FWBovyPn+l eX48a+vJkwW7y14= -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:22 2025 by rpki-client