$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1CC78D4651B911F097C15C49C4F9AE02.roa File: 1CC78D4651B911F097C15C49C4F9AE02.roa (raw, json) Hash identifier: CBpPhJ6pPqhVc/HJrSFukBxQwV65YTwQkZm/veGYg0U= Subject key identifier: CA:53:A7:AD:68:84:37:D0:A1:FD:A5:4E:C1:55:5D:6A:CF:B1:C3:6A Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 04E4 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1CC78D4651B911F097C15C49C4F9AE02.roa Signing time: Wed 25 Jun 2025 11:39:54 +0000 ROA not before: Wed 25 Jun 2025 11:39:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 1239 IP address blocks: 103.120.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B, serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Jun 25 11:39:54 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=685be00a-623f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:68:f0:56:7d:0d:0b:92:68:9f:cc:1f:7a:08: 93:ec:18:a8:a5:b0:3e:4c:90:da:6f:17:2d:4b:6c: f9:4f:ac:9f:81:cf:a4:7a:72:a9:8c:48:90:1a:c7: 88:4a:9f:62:b4:66:15:77:97:99:23:04:14:98:5a: b5:60:66:a8:c4:41:84:99:22:cc:90:f2:64:a3:90: 9a:f8:d4:fb:0e:15:08:be:c6:31:a8:f7:1e:c8:1e: ac:1c:f7:11:38:11:05:14:b1:61:de:b9:58:50:4a: a0:84:5b:91:72:4b:9a:6e:9d:09:25:b6:27:0f:98: 6d:9d:ee:ca:fd:81:b6:03:e8:68:d1:99:54:a1:87: 8c:bf:8c:c0:2c:4b:b1:39:cd:16:eb:f1:22:81:b5: 3d:a0:eb:a1:27:2c:95:16:62:11:72:9a:2c:89:21: 60:7c:de:61:30:2a:46:e1:68:7e:3f:21:bd:4b:14: ce:a1:0e:63:0b:92:c2:bd:07:80:f6:2c:62:e5:b6: 03:17:96:88:bf:37:68:a2:64:ef:5d:90:ce:3b:bb: 36:28:b2:7b:f8:26:a7:f6:eb:7a:65:ce:13:57:7d: d8:cf:12:5d:81:e9:e5:87:91:03:fa:74:b5:d7:4b: 5d:7d:20:68:ba:d4:e8:0d:e5:27:ff:3c:a6:2f:e8: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:53:A7:AD:68:84:37:D0:A1:FD:A5:4E:C1:55:5D:6A:CF:B1:C3:6A X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1CC78D4651B911F097C15C49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.129.0/24 Signature Algorithm: sha256WithRSAEncryption 85:f7:0d:75:db:28:ba:44:3e:3c:79:4b:63:e8:3e:1c:ed:28: 0f:01:3e:23:d1:9a:cf:e3:f3:02:a6:06:be:1e:cf:26:db:7f: 88:dd:79:03:cf:d0:96:32:2d:9b:67:c9:0f:01:06:c7:5d:7d: bf:38:d7:c0:0c:0b:48:ff:9e:7b:df:c7:85:d5:fe:e3:a1:d6: 5e:fc:fe:1a:60:8e:76:66:83:68:03:cb:08:39:74:5f:5e:47: 65:d4:8d:39:49:45:76:be:32:8b:a4:90:e2:bc:bf:25:da:5e: 55:9a:d3:1d:84:64:d1:e0:4e:0c:42:60:54:9c:de:e8:85:36: 67:e7:8e:5e:dc:a7:22:f0:37:9e:cf:68:c8:18:06:e1:a1:b5: b7:55:f1:00:62:44:93:34:46:e4:ab:d8:cb:7d:61:b9:54:76: e8:0a:fc:7a:2b:5a:ff:9a:a3:31:a2:cb:47:16:41:ae:84:fa: df:ce:aa:cc:cc:31:a9:28:fe:95:9e:d9:0f:86:77:19:7c:66: 2f:67:d0:63:69:f4:68:5a:92:ce:a6:c5:16:d3:a6:c7:e3:d9: f2:8f:5d:b9:ef:33:74:a3:ea:6e:44:34:0b:66:6c:6b:d6:8e: 40:68:88:d7:37:d2:bd:1d:93:2b:01:f5:7c:5c:8e:79:d0:f9: ee:f2:d3:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjUwNjI1MTEzOTU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViZTAwYS02MjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GjwVn0NC5Jon8wfegiT7BiopbA+TJDabxctS2z5T6yfgc+kenKpjEiQGseI Sp9itGYVd5eZIwQUmFq1YGaoxEGEmSLMkPJko5Ca+NT7DhUIvsYxqPceyB6sHPcR OBEFFLFh3rlYUEqghFuRckuabp0JJbYnD5htne7K/YG2A+ho0ZlUoYeMv4zALEux Oc0W6/EigbU9oOuhJyyVFmIRcposiSFgfN5hMCpG4Wh+PyG9SxTOoQ5jC5LCvQeA 9ixi5bYDF5aIvzdoomTvXZDOO7s2KLJ7+Can9ut6Zc4TV33YzxJdgenlh5ED+nS1 10tdfSBoutToDeUn/zymL+jBxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMpTp61o hDfQof2lTsFVXWrPscNqMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvMUNDNzhENDY1 MUI5MTFGMDk3QzE1QzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIEwDQYJKoZIhvcNAQELBQADggEBAIX3DXXbKLpEPjx5 S2PoPhztKA8BPiPRms/j8wKmBr4ezybbf4jdeQPP0JYyLZtnyQ8BBsddfb8418AM C0j/nnvfx4XV/uOh1l78/hpgjnZmg2gDywg5dF9eR2XUjTlJRXa+MoukkOK8vyXa XlWa0x2EZNHgTgxCYFSc3uiFNmfnjl7cpyLwN57PaMgYBuGhtbdV8QBiRJM0RuSr 2Mt9YblUdugK/HorWv+aozGiy0cWQa6E+t/OqszMMako/pWe2Q+Gdxl8Zi9n0GNp 9Ghaks6mxRbTpsfj2fKPXbnvM3Sj6m5ENAtmbGvWjkBoiNc30r0dkysB9XxcjnnQ +e7y03M= -----END CERTIFICATE-----Generated at Fri Jul 4 11:41:58 2025 by rpki-client