$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa File: B0D3DA64107B11F097717C77C4F9AE02.roa (raw, json) Hash identifier: nIMY3bqxx7G6z1cn5yKE35WnxglS+FWNkDKyhwYO+X8= Subject key identifier: 6F:71:20:C6:E2:64:DA:EB:EA:BD:16:42:DF:29:2F:4C:8E:DA:FA:4B Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: F9 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa Signing time: Tue 26 Aug 2025 07:19:59 +0000 ROA not before: Tue 26 Aug 2025 07:19:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149296 IP address blocks: 43.255.52.0/24 maxlen: 24 43.255.53.0/24 maxlen: 24 43.255.54.0/24 maxlen: 24 43.255.55.0/24 maxlen: 24 103.129.52.0/22 maxlen: 22 103.129.54.0/23 maxlen: 23 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Aug 26 07:19:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ad601f-7023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d2:4d:a7:06:e3:38:55:94:d6:f7:37:b2:be: 08:ad:34:5f:19:47:ca:8d:6c:fa:60:51:d9:5e:f1: ce:67:86:2f:db:14:1f:ef:20:77:d8:36:a7:13:84: 8d:0c:1b:db:5f:63:c3:be:ae:0f:81:97:69:fe:62: 6c:20:a4:ef:3c:80:da:f0:48:d1:35:0a:b1:23:97: 7d:13:a3:f3:3f:53:3b:2e:c0:50:43:db:7b:95:e3: 74:8a:27:61:c3:4d:1b:96:ca:6c:3d:e9:a9:e9:07: fb:9d:e7:d4:94:8e:1c:43:00:e6:58:42:5e:df:1c: a8:7a:b8:24:3f:85:99:6f:aa:a6:e4:70:37:d7:16: 36:23:8d:8a:46:64:ed:93:25:82:eb:5b:6f:0f:48: f7:b0:85:c4:6a:ad:59:ec:f5:2c:8e:36:ef:fd:0a: 2a:35:71:1a:32:67:4d:38:fd:87:12:ac:7e:f1:d7: 14:cf:ff:84:22:70:20:70:e6:11:d1:b6:3a:65:1e: ae:e3:f9:ab:47:26:d4:b2:9c:0e:f8:b5:ff:47:37: a6:34:4b:52:0c:be:15:c4:29:c3:0d:30:c5:8c:e5: 00:f4:71:1f:e2:23:45:94:c8:59:b4:75:14:7a:cb: 00:54:1f:12:b2:48:11:e5:9b:f6:0f:95:cd:ec:aa: cd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:71:20:C6:E2:64:DA:EB:EA:BD:16:42:DF:29:2F:4C:8E:DA:FA:4B X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.52.0/22 103.129.52.0/22 Signature Algorithm: sha256WithRSAEncryption 89:c1:97:fa:23:4d:81:1a:9d:39:cb:8a:51:3a:68:28:00:44: ec:cc:31:7d:97:13:a2:7c:b5:b6:d6:19:ea:ff:31:c2:29:84: 86:8a:72:e6:41:9e:37:51:da:be:c9:bd:a4:36:1b:39:fd:4d: b8:b3:3d:84:cf:62:bf:26:35:2a:e2:5a:ec:69:d8:13:73:c1: 80:9c:a6:3f:a4:7c:b0:af:0a:2d:f7:d1:83:13:60:b2:e3:7d: 9c:2e:74:bc:b0:0a:2f:b0:28:b1:50:b5:89:c7:b6:d0:1c:f5: 4a:d2:62:61:3b:c6:a5:cd:b5:c8:5e:6a:8e:09:70:1f:19:62: a3:fa:ba:cd:96:29:8e:3f:e5:88:5a:b1:95:f0:1e:3d:28:23: 9e:2f:59:de:2b:56:14:71:0f:d4:4a:15:48:9d:28:c7:c5:f4: ff:67:29:a3:da:02:b4:f8:5a:16:e5:8c:7d:1d:b0:3c:d0:20: e3:92:1d:e7:39:9f:1e:24:61:b2:d0:d5:ed:86:25:74:77:3b: 53:0b:6d:11:8e:6f:6c:39:12:55:33:07:88:3a:ea:c1:d5:c5: 11:50:ec:33:f8:8d:53:5b:bf:15:2c:90:76:1f:4f:ba:9d:9e: 65:f7:6e:2a:96:6b:42:6a:ed:49:8e:73:a6:8c:c2:ba:4f:55: 28:98:4f:fc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDA1NzM5NUI0ODc4RkIxQTY3RkNCQUQ1ODI2MTdCN0JB QUYyQzMxRkYwHhcNMjUwODI2MDcxOTU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkNjAxZi03MDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtJNpwbjOFWU1vc3sr4IrTRfGUfKjWz6YFHZXvHOZ4Yv2xQf7yB32DanE4SN DBvbX2PDvq4PgZdp/mJsIKTvPIDa8EjRNQqxI5d9E6PzP1M7LsBQQ9t7leN0iidh w00blspsPemp6Qf7nefUlI4cQwDmWEJe3xyoergkP4WZb6qm5HA31xY2I42KRmTt kyWC61tvD0j3sIXEaq1Z7PUsjjbv/QoqNXEaMmdNOP2HEqx+8dcUz/+EInAgcOYR 0bY6ZR6u4/mrRybUspwO+LX/RzemNEtSDL4VxCnDDTDFjOUA9HEf4iNFlMhZtHUU essAVB8SskgR5Zv2D5XN7KrNkwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG9xIMbi ZNrr6r0WQt8pL0yO2vpLMB8GA1UdIwQYMBaAFAVzlbSHj7Gmf8utWCYXt7qvLDH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GQTBFMDVBNDZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9CWE9WdEllUHNhWl95NjFZSmhlM3VxOHNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZDOEYvRkEwRTA1QTQ2QjVBMTFFRkJDOTk5MjVDQzRGOUFFMDIvQjBEM0RBNjQx MDdCMTFGMDk3NzE3Qzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/zQDBAJngTQwDQYJKoZIhvcNAQELBQADggEBAInBl/oj TYEanTnLilE6aCgAROzMMX2XE6J8tbbWGer/McIphIaKcuZBnjdR2r7JvaQ2Gzn9 TbizPYTPYr8mNSriWuxp2BNzwYCcpj+kfLCvCi330YMTYLLjfZwudLywCi+wKLFQ tYnHttAc9UrSYmE7xqXNtcheao4JcB8ZYqP6us2WKY4/5YhasZXwHj0oI54vWd4r VhRxD9RKFUidKMfF9P9nKaPaArT4WhbljH0dsDzQIOOSHec5nx4kYbLQ1e2GJXR3 O1MLbRGOb2w5ElUzB4g66sHVxRFQ7DP4jVNbvxUskHYfT7qdnmX3biqWa0Jq7UmO c6aMwrpPVSiYT/w= -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:33 2025 by rpki-client