$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa File: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (raw, json) Hash identifier: UrlgPQXsb4gQDscf1nttcVc31km04Zvk2KGgC6tLDaQ= Subject key identifier: 84:5C:D3:BC:D4:DD:10:30:26:AE:4C:AD:38:8C:5C:30:3C:C7:4C:75 Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 0672 Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa Signing time: Sat 14 Jun 2025 22:41:24 +0000 ROA not before: Sat 14 Jun 2025 22:41:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64063 IP address blocks: 103.164.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 23:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: Jun 14 22:41:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684dfa94-533b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:3b:fa:7c:48:76:26:0d:e6:92:b2:8a:a7: 19:fb:9e:78:26:81:91:75:bd:0f:2a:d8:15:87:8d: 46:a7:09:b9:36:2d:52:c7:26:17:02:04:05:f1:74: a3:49:2d:bf:10:2c:30:70:6a:3e:1d:ec:7f:3c:e6: be:f4:ac:11:08:35:61:59:f6:44:1e:74:c6:12:14: e6:5b:aa:39:67:2a:c2:76:5b:3d:e9:20:00:39:9f: fe:b1:a0:5f:75:44:6d:71:72:3c:82:50:f8:fb:82: 02:96:55:82:45:fa:65:34:11:56:af:85:13:ac:13: 1d:ed:13:e3:84:0d:8e:32:1f:89:58:cf:7d:4d:60: cc:dc:e1:87:a1:ed:4e:b2:50:32:33:1e:ec:5d:d0: 0f:10:84:93:a7:d5:37:ef:ca:1a:cf:34:5c:d0:6c: 0a:0a:af:e1:83:d2:aa:58:73:ca:01:5f:e5:0c:b2: e1:12:25:5e:14:a2:ee:5e:b8:80:05:85:18:c7:69: 3f:eb:a4:a1:06:8e:7f:e5:e1:f0:6a:c3:02:90:89: 98:fc:a6:df:39:54:f9:6d:de:8e:e2:10:f2:ab:e7: 76:15:db:59:5e:c3:90:f5:95:69:43:8b:ea:0d:52: 92:7c:b5:e0:f9:34:2a:14:89:21:f8:23:63:1b:c3: 8b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5C:D3:BC:D4:DD:10:30:26:AE:4C:AD:38:8C:5C:30:3C:C7:4C:75 X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.254.0/24 Signature Algorithm: sha256WithRSAEncryption 53:32:c8:88:a8:f7:0e:5f:c8:44:2e:00:68:01:5c:17:3a:27: 7b:bf:36:b5:42:0b:04:95:6f:3d:92:fd:a3:3f:ab:ae:a1:5d: eb:09:5f:2d:4e:55:e7:b6:a3:c3:8c:f4:2d:d6:d7:a4:1d:37: 29:1e:7f:f6:45:14:8e:96:af:d4:92:44:45:70:0e:de:b4:4e: 40:cb:a1:f2:1e:2d:0b:a1:86:9b:35:19:72:b2:2b:83:92:6a: a3:47:ab:02:f6:4c:dc:15:13:b4:cc:83:aa:3e:ae:fd:52:38: 17:d9:48:3a:e3:4b:a0:01:5a:73:89:de:fa:e4:d1:b1:55:77: 14:2f:e9:4b:b3:98:fd:83:0c:53:5c:f2:45:d6:d2:e5:36:f0: 60:2d:ba:e4:21:39:ab:29:43:ca:b6:6d:e9:33:1e:ec:a5:51: 15:4b:71:22:de:0e:05:25:52:08:1c:15:cd:fd:f8:1d:1f:1f: 34:6a:7d:17:78:00:84:3b:4a:5d:92:0f:c4:56:2a:04:68:43: 56:a0:5a:ce:77:78:45:10:0d:0e:b3:f4:5a:61:06:50:13:12: 44:b7:98:65:81:2c:c2:57:8c:74:d6:e0:2a:74:48:97:d1:28: 33:9d:4f:37:c9:38:fe:d9:1b:71:e5:4d:5b:5f:a2:53:b7:02: ea:5c:11:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjUwNjE0MjI0MTI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkZmE5NC01MzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9M7+nxIdiYN5pKyiqcZ+554JoGRdb0PKtgVh41Gpwm5Ni1SxyYXAgQF8XSj SS2/ECwwcGo+Hex/POa+9KwRCDVhWfZEHnTGEhTmW6o5ZyrCdls96SAAOZ/+saBf dURtcXI8glD4+4ICllWCRfplNBFWr4UTrBMd7RPjhA2OMh+JWM99TWDM3OGHoe1O slAyMx7sXdAPEISTp9U378oazzRc0GwKCq/hg9KqWHPKAV/lDLLhEiVeFKLuXriA BYUYx2k/66ShBo5/5eHwasMCkImY/KbfOVT5bd6O4hDyq+d2FdtZXsOQ9ZVpQ4vq DVKSfLXg+TQqFIkh+CNjG8OLfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIRc07zU 3RAwJq5MrTiMXDA8x0x1MB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEQjUvMEM5OTlFQzA4RkExMTFFQkEyMjA2NjFFQzRGOUFFMDIvMjREOEQ2OUNB REFFMTFFQkI2RTc1NjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpP4wDQYJKoZIhvcNAQELBQADggEBAFMyyIio9w5fyEQu AGgBXBc6J3u/NrVCCwSVbz2S/aM/q66hXesJXy1OVee2o8OM9C3W16QdNykef/ZF FI6Wr9SSREVwDt60TkDLofIeLQuhhps1GXKyK4OSaqNHqwL2TNwVE7TMg6o+rv1S OBfZSDrjS6ABWnOJ3vrk0bFVdxQv6UuzmP2DDFNc8kXW0uU28GAtuuQhOaspQ8q2 bekzHuylURVLcSLeDgUlUggcFc39+B0fHzRqfRd4AIQ7Sl2SD8RWKgRoQ1agWs53 eEUQDQ6z9FphBlATEkS3mGWBLMJXjHTW4Cp0SJfRKDOdTzfJOP7ZG3HlTVtfolO3 AupcEYY= -----END CERTIFICATE-----Generated at Tue Oct 28 17:19:09 2025 by rpki-client