$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa File: CC5C527A0AA611EE84B0053DC4F9AE02.roa (raw, json) Hash identifier: JR+JLVhrBv19TVxeSOsCpkJTUKAD4jSPXjbCWZYYaDQ= Subject key identifier: 00:4B:BB:A5:2A:57:CA:98:A7:84:25:5D:D9:FD:FB:67:76:9A:CC:9A Certificate issuer: /CN=A9174C15/serialNumber=C7B0004FF6B18688C197BC4B39FAC125D49FBCF9 Certificate serial: 0556 Authority key identifier: C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa Signing time: Fri 19 Sep 2025 00:05:58 +0000 ROA not before: Fri 19 Sep 2025 00:05:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.172.141.0/24 maxlen: 24 2407:d4c0:1000::/40 maxlen: 40 2407:d4c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C15, serialNumber=C7B0004FF6B18688C197BC4B39FAC125D49FBCF9 Validity Not Before: Sep 19 00:05:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cc9e66-3afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c0:02:bf:40:6d:29:6e:d8:4b:5e:8b:11:ff: 11:6a:a7:22:7c:dc:d7:2a:bc:59:a4:da:4c:a9:75: 43:c4:7a:8a:af:4b:21:a9:8c:a0:11:02:81:3e:a2: 04:73:ce:9c:13:d0:b8:66:2d:12:8f:8c:bf:df:fe: fc:cf:46:82:ab:54:93:15:87:28:c3:b4:be:9f:57: 19:53:92:07:bd:c7:88:f0:99:00:71:a7:e2:91:22: 9d:f8:a4:e0:55:b8:90:10:43:c4:10:41:e3:a7:13: 15:8e:3c:d5:3c:44:61:78:f0:b9:49:fd:2a:04:6d: f6:dc:98:26:80:0b:0a:ea:06:b0:a7:c6:18:d9:6e: 66:11:2b:22:29:51:8d:2c:57:6b:88:08:7e:81:b3: bb:d5:1a:7d:7b:f0:e6:33:a1:06:3f:5a:b8:88:2a: b2:a0:0b:58:3d:60:d6:ab:5e:4b:22:3b:a2:04:5b: fc:6e:be:38:42:1c:db:25:ad:94:95:7f:2c:90:aa: 33:74:ce:eb:8d:82:fa:aa:c1:a8:00:1c:1e:a8:72: b7:10:a6:f0:9e:19:99:65:d7:cb:24:49:a8:a3:61: 87:08:51:23:ac:15:39:dd:55:8a:10:fc:32:b2:65: 08:05:99:da:2c:54:2b:ac:e8:f8:99:3c:86:f5:84: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4B:BB:A5:2A:57:CA:98:A7:84:25:5D:D9:FD:FB:67:76:9A:CC:9A X509v3 Authority Key Identifier: keyid:C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.141.0/24 IPv6: 2407:d4c0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 4d:ad:5c:70:10:ee:4a:45:76:e1:28:9a:d3:33:e7:0d:ef:96: 10:0c:1e:d8:a7:e2:af:54:43:13:f2:86:ed:ab:f4:6c:fa:a0: 35:63:4f:74:06:3b:06:e4:f0:c9:f0:f9:2d:0d:bd:ce:4e:e5: 71:5f:24:fd:6d:6f:78:19:70:af:a2:39:fd:96:f5:91:97:63: 7f:c8:b3:88:75:c3:70:42:fa:da:a9:9a:ee:cf:0c:5c:5d:7d: 70:ad:3c:73:48:e3:ab:f3:a3:78:ea:ad:91:82:b1:3c:ac:8e: db:fc:ff:c5:26:63:a2:8a:c5:db:cf:fd:38:04:3b:0c:db:39: 62:87:06:fa:f0:ac:87:f4:00:02:55:e8:72:97:28:57:30:07: 1c:1b:43:5d:91:ce:e7:dd:72:69:6f:a0:67:f7:a8:11:dc:d1: e1:f4:0e:95:3d:07:4c:e5:34:fc:2e:2f:cb:69:40:9f:2f:51: ad:2d:b1:84:e1:75:c3:87:e3:92:34:4a:2d:b7:ea:94:ca:69: 95:29:b0:93:95:27:b8:04:09:a8:81:a6:a3:22:20:6c:13:5d: 94:d1:20:e4:c0:40:72:d6:9e:37:16:9c:08:4b:09:dc:e6:57: 26:28:ad:0b:86:d3:df:c5:78:1e:8a:a4:70:b5:08:04:85:44: 2e:8e:24:93 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDMTUxMTAvBgNVBAUTKEM3QjAwMDRGRjZCMTg2ODhDMTk3QkM0QjM5RkFDMTI1 RDQ5RkJDRjkwHhcNMjUwOTE5MDAwNTU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjOWU2Ni0zYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sACv0BtKW7YS16LEf8RaqcifNzXKrxZpNpMqXVDxHqKr0shqYygEQKBPqIE c86cE9C4Zi0Sj4y/3/78z0aCq1STFYcow7S+n1cZU5IHvceI8JkAcafikSKd+KTg VbiQEEPEEEHjpxMVjjzVPERhePC5Sf0qBG323JgmgAsK6gawp8YY2W5mESsiKVGN LFdriAh+gbO71Rp9e/DmM6EGP1q4iCqyoAtYPWDWq15LIjuiBFv8br44QhzbJa2U lX8skKozdM7rjYL6qsGoABweqHK3EKbwnhmZZdfLJEmoo2GHCFEjrBU53VWKEPwy smUIBZnaLFQrrOj4mTyG9YRomQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFABLu6Uq V8qYp4QlXdn9+2d2msyaMB8GA1UdIwQYMBaAFMewAE/2sYaIwZe8Szn6wSXUn7z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEMxNS9BQzlDNkI1MDBB NDQxMUVDOTQ3OTdFNTNDNEY5QUUwMi94N0FBVF9heGhvakJsN3hMT2ZyQkpkU2Z2 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3QUFUX2F4aG9qQmw3eExPZnJCSmRTZnZQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDMTUvQUM5QzZCNTAwQTQ0MTFFQzk0Nzk3RTUzQzRGOUFFMDIvQ0M1QzUyN0Ew QUE2MTFFRTg0QjAwNTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnrI0wDgQCAAIwCAMGACQH1MAQMA0GCSqGSIb3DQEBCwUA A4IBAQBNrVxwEO5KRXbhKJrTM+cN75YQDB7Yp+KvVEMT8obtq/Rs+qA1Y090BjsG 5PDJ8PktDb3OTuVxXyT9bW94GXCvojn9lvWRl2N/yLOIdcNwQvraqZruzwxcXX1w rTxzSOOr86N46q2RgrE8rI7b/P/FJmOiisXbz/04BDsM2zlihwb68KyH9AACVehy lyhXMAccG0Ndkc7n3XJpb6Bn96gR3NHh9A6VPQdM5TT8Li/LaUCfL1GtLbGE4XXD h+OSNEott+qUymmVKbCTlSe4BAmogaajIiBsE12U0SDkwEBy1p43FpwISwnc5lcm KK0LhtPfxXgeiqRwtQgEhUQujiST -----END CERTIFICATE-----Generated at Fri Sep 19 07:30:21 2025 by rpki-client