$ rpki-client -vvf rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/C454E4B4D94F11EBAB5C652FC4F9AE02.roa File: C454E4B4D94F11EBAB5C652FC4F9AE02.roa (raw, json) Hash identifier: 8GLZSq2u4K0rZRuLFUVu2DZuH9B8VodmiF5KxyYmSr4= Subject key identifier: 17:FA:B7:CF:B7:2A:59:14:E7:A4:8D:AB:83:9E:5B:F9:C1:BB:8A:71 Certificate issuer: /CN=A9184F2D/serialNumber=70F85D0495013856AD022CC0922969E0C8FC45E2 Certificate serial: 0588 Authority key identifier: 70:F8:5D:04:95:01:38:56:AD:02:2C:C0:92:29:69:E0:C8:FC:45:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/C454E4B4D94F11EBAB5C652FC4F9AE02.roa Signing time: Fri 16 May 2025 23:33:58 +0000 ROA not before: Fri 16 May 2025 23:33:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137441 IP address blocks: 103.166.60.0/23 maxlen: 23 103.166.60.0/24 maxlen: 24 103.166.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.crl rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184F2D, serialNumber=70F85D0495013856AD022CC0922969E0C8FC45E2 Validity Not Before: May 16 23:33:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827cb66-cce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:9c:c3:35:1a:2d:dd:6d:57:24:2a:37:77: af:aa:ce:d1:c4:7f:a4:81:12:59:96:61:6d:23:f4: 6d:b6:e4:80:6e:86:05:cf:cf:92:90:57:5a:a7:0f: 55:8a:37:37:dc:65:ff:ec:c8:35:fd:a5:d9:91:70: 28:98:0a:6f:81:94:74:7e:1c:8f:83:82:d3:25:fa: 13:f0:98:75:79:82:cc:d0:8d:51:24:ef:b3:26:40: 2f:3f:93:4a:1f:36:ae:ee:9b:23:ec:b8:79:99:51: 9a:59:9d:b1:53:17:18:bd:d5:4a:94:58:76:d5:8a: b1:59:46:74:89:4b:e6:c0:b1:b9:a0:8b:4e:ae:8f: cc:ac:70:be:fc:ce:b5:f1:1c:62:76:13:e0:54:28: c7:ae:4b:12:94:7c:00:6c:44:3b:37:bd:35:c9:a3: 26:e2:3b:52:5b:db:1a:9d:45:de:3c:63:2f:29:b2: 03:ad:41:4a:99:18:67:3e:cc:a2:a7:4d:67:98:f1: fd:2d:c0:ac:6a:f7:3f:de:e3:a1:1c:13:69:03:89: c4:90:72:83:09:25:9f:23:41:c8:ca:95:c4:58:d7: 4e:79:2b:04:c0:7f:a1:7d:4a:16:f5:1f:6c:7b:13: 35:99:d7:b0:91:b1:25:03:47:02:cf:32:6a:4e:3f: 21:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FA:B7:CF:B7:2A:59:14:E7:A4:8D:AB:83:9E:5B:F9:C1:BB:8A:71 X509v3 Authority Key Identifier: keyid:70:F8:5D:04:95:01:38:56:AD:02:2C:C0:92:29:69:E0:C8:FC:45:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/C454E4B4D94F11EBAB5C652FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.60.0/23 Signature Algorithm: sha256WithRSAEncryption 43:a4:e0:7e:01:9c:b8:03:59:6e:58:80:ca:94:ca:ad:ff:77: 9d:a9:46:7f:f7:1e:33:a4:67:e6:37:dd:63:b6:6c:2e:bd:64: b5:a3:0c:d1:8b:f0:f5:5e:7b:b6:36:20:10:2d:2a:a2:77:03: 8e:28:3a:19:e9:46:1c:f6:d2:c7:5d:29:75:4f:fd:17:e2:97: ae:e1:36:75:94:9e:52:7b:7d:fb:4d:91:b8:25:0f:08:ad:85: de:2e:d7:15:e0:29:a1:cd:4a:1d:ce:e2:74:7e:6f:12:95:e3: 41:0d:a3:1d:e9:ba:66:eb:bf:ad:66:58:e5:e0:4f:30:08:a6: 84:cb:e2:fd:07:96:61:86:c9:ff:7f:b8:74:b8:29:bc:ee:b5: 06:79:3d:a6:7f:a5:66:41:d2:fc:c0:1d:88:f2:6d:63:36:26: 0f:53:74:30:3a:e6:73:2f:74:d1:8f:00:f6:0c:db:b6:03:8f: 5a:87:ec:1d:59:28:15:7e:2e:94:be:ab:4c:08:49:0a:a6:b7: ca:8b:5b:17:04:11:76:90:a9:d2:0e:78:68:64:bb:93:65:9b: c6:30:b5:44:31:00:e3:94:46:6b:ce:b0:7b:41:b2:da:46:51: d3:1a:61:ef:7d:cf:5f:88:01:b2:19:9e:c7:c6:33:dc:b7:53: 89:45:80:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRGMkQxMTAvBgNVBAUTKDcwRjg1RDA0OTUwMTM4NTZBRDAyMkNDMDkyMjk2OUUw QzhGQzQ1RTIwHhcNMjUwNTE2MjMzMzU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2I2Ni1jY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys2cwzUaLd1tVyQqN3evqs7RxH+kgRJZlmFtI/RttuSAboYFz8+SkFdapw9V ijc33GX/7Mg1/aXZkXAomApvgZR0fhyPg4LTJfoT8Jh1eYLM0I1RJO+zJkAvP5NK Hzau7psj7Lh5mVGaWZ2xUxcYvdVKlFh21YqxWUZ0iUvmwLG5oItOro/MrHC+/M61 8RxidhPgVCjHrksSlHwAbEQ7N701yaMm4jtSW9sanUXePGMvKbIDrUFKmRhnPsyi p01nmPH9LcCsavc/3uOhHBNpA4nEkHKDCSWfI0HIypXEWNdOeSsEwH+hfUoW9R9s exM1mdewkbElA0cCzzJqTj8hQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBf6t8+3 KlkU56SNq4OeW/nBu4pxMB8GA1UdIwQYMBaAFHD4XQSVAThWrQIswJIpaeDI/EXi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEYyRC9DRkJFRDM3MEQ5 NEQxMUVCQkU1RDMxMkZDNEY5QUUwMi9jUGhkQkpVQk9GYXRBaXpBa2lscDRNajhS ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NQaGRCSlVCT0ZhdEFpekFraWxwNE1qOFJlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODRGMkQvQ0ZCRUQzNzBEOTREMTFFQkJFNUQzMTJGQzRGOUFFMDIvQzQ1NEU0QjRE OTRGMTFFQkFCNUM2NTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpjwwDQYJKoZIhvcNAQELBQADggEBAEOk4H4BnLgDWW5Y gMqUyq3/d52pRn/3HjOkZ+Y33WO2bC69ZLWjDNGL8PVee7Y2IBAtKqJ3A44oOhnp Rhz20sddKXVP/Rfil67hNnWUnlJ7fftNkbglDwithd4u1xXgKaHNSh3O4nR+bxKV 40ENox3pumbrv61mWOXgTzAIpoTL4v0HlmGGyf9/uHS4KbzutQZ5PaZ/pWZB0vzA HYjybWM2Jg9TdDA65nMvdNGPAPYM27YDj1qH7B1ZKBV+LpS+q0wISQqmt8qLWxcE EXaQqdIOeGhku5Nlm8YwtUQxAOOURmvOsHtBstpGUdMaYe99z1+IAbIZnsfGM9y3 U4lFgOk= -----END CERTIFICATE-----Generated at Mon Jun 2 06:34:05 2025 by rpki-client