$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa File: 652283665B1A11EFA78B847EC4F9AE02.roa (raw, json) Hash identifier: cRgznzypgNObdJ5+nUBdFPZbJ/XSHjedbIfP0KuyG4Y= Subject key identifier: C9:4D:C5:08:9F:F0:A9:5F:5E:AC:88:C7:A5:E2:F3:90:07:08:5A:81 Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: B9 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa Signing time: Fri 25 Jul 2025 06:44:22 +0000 ROA not before: Fri 25 Jul 2025 06:44:22 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 2042 IP address blocks: 103.235.172.0/22 maxlen: 22 150.242.216.0/22 maxlen: 22 150.242.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Jul 25 06:44:22 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688327c6-ddda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:16:f5:89:4c:db:e9:7a:d1:ac:37:3b:ea:7c: b2:2f:3b:ee:8e:28:c2:94:7d:b6:17:f7:67:3a:82: aa:8a:65:df:59:cd:c2:23:31:8e:02:e2:4b:eb:23: 09:f9:18:d2:3c:89:b2:7e:ee:05:36:06:67:09:8a: 16:6e:35:cd:14:7e:96:f2:a0:bc:1e:f2:6f:65:74: 22:eb:8b:0a:45:cb:2d:f2:9e:a6:49:ea:fd:77:eb: 45:92:50:ae:70:00:57:21:19:d1:29:f2:38:13:45: 6f:fc:5b:26:2a:4b:64:31:ae:88:3e:40:3d:66:70: 73:6b:5d:79:73:78:3c:8b:ad:88:5b:48:9f:5f:4e: ce:44:0d:69:c2:e7:1d:e8:91:9a:2f:1d:5a:4c:b1: fa:12:cd:6b:46:24:9c:91:78:a5:e1:8d:f4:42:fc: fa:cb:b6:2e:4c:78:36:8b:93:a0:94:0c:c3:1a:38: ef:6c:8c:2f:20:97:86:e2:23:e0:2b:5f:b2:c0:f5: b8:fc:17:61:d1:fc:80:e6:8e:89:cd:e6:50:47:4a: 31:c7:9a:4b:ac:a7:29:3c:76:c3:dd:e4:57:02:af: 08:ce:7b:39:62:62:3e:8d:20:0a:b9:21:23:49:cb: 2e:d5:26:c6:9e:8c:21:47:e9:17:32:a9:34:fc:d4: fc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4D:C5:08:9F:F0:A9:5F:5E:AC:88:C7:A5:E2:F3:90:07:08:5A:81 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.172.0/22 150.242.216.0/22 Signature Algorithm: sha256WithRSAEncryption 80:f1:4f:07:25:8f:ec:f4:35:ae:68:0c:df:28:bc:71:7b:66: ec:9b:3d:59:a3:a9:22:38:b1:97:56:77:11:ac:08:76:24:ad: 90:1e:6f:5f:ba:b0:a9:ad:d1:83:ee:72:dc:90:bb:df:2f:75: 06:6f:42:ff:c4:1d:3b:31:51:a8:4d:23:69:26:5d:0a:3a:fe: c3:02:a2:de:24:4e:a5:9d:0d:0b:69:90:a5:e4:7f:83:e5:bd: eb:24:ef:72:e0:6d:70:64:d7:3b:a7:32:81:ef:03:35:b1:15: 5b:cf:f6:d4:be:9e:3e:69:1a:86:d4:17:73:cf:0e:0d:b9:02: 81:93:8e:a0:99:57:49:fc:05:fa:58:11:f0:b0:3d:2f:65:91: 85:2d:90:07:c6:bb:8e:47:36:fc:cd:43:20:3d:80:f0:51:43: 09:20:5e:73:c2:a9:82:ad:25:a5:3f:7e:c4:81:c4:8a:f6:b0: 40:af:45:98:ab:7e:eb:f7:43:d3:b8:bb:6a:2f:75:c9:47:8e: 7a:aa:aa:c5:d5:9e:ca:11:07:ce:ed:f7:8a:dd:7b:f5:e2:f7: 6c:63:0f:d4:fb:e6:01:9c:67:b1:cc:ce:a7:f8:67:7d:c7:83: 3a:49:fd:66:e0:3a:72:3e:ea:72:34:90:f8:df:6b:af:b9:cc: fc:d4:ea:b8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwNzI1MDY0NDIyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgzMjdjNi1kZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xb1iUzb6XrRrDc76nyyLzvujijClH22F/dnOoKqimXfWc3CIzGOAuJL6yMJ +RjSPImyfu4FNgZnCYoWbjXNFH6W8qC8HvJvZXQi64sKRcst8p6mSer9d+tFklCu cABXIRnRKfI4E0Vv/FsmKktkMa6IPkA9ZnBza115c3g8i62IW0ifX07ORA1pwucd 6JGaLx1aTLH6Es1rRiSckXil4Y30Qvz6y7YuTHg2i5OglAzDGjjvbIwvIJeG4iPg K1+ywPW4/Bdh0fyA5o6JzeZQR0oxx5pLrKcpPHbD3eRXAq8Izns5YmI+jSAKuSEj Scsu1SbGnowhR+kXMqk0/NT8xQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMlNxQif 8KlfXqyIx6Xi85AHCFqBMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUREMDgvOUE1RkJCNjI1QjE5MTFFRkJFRDBDNDdBQzRGOUFFMDIvNjUyMjgzNjY1 QjFBMTFFRkE3OEI4NDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn66wDBAKW8tgwDQYJKoZIhvcNAQELBQADggEBAIDxTwcl j+z0Na5oDN8ovHF7ZuybPVmjqSI4sZdWdxGsCHYkrZAeb1+6sKmt0YPuctyQu98v dQZvQv/EHTsxUahNI2kmXQo6/sMCot4kTqWdDQtpkKXkf4Plvesk73LgbXBk1zun MoHvAzWxFVvP9tS+nj5pGobUF3PPDg25AoGTjqCZV0n8BfpYEfCwPS9lkYUtkAfG u45HNvzNQyA9gPBRQwkgXnPCqYKtJaU/fsSBxIr2sECvRZirfuv3Q9O4u2ovdclH jnqqqsXVnsoRB87t94rde/Xi92xjD9T75gGcZ7HMzqf4Z33HgzpJ/WbgOnI+6nI0 kPjfa6+5zPzU6rg= -----END CERTIFICATE-----Generated at Wed Aug 13 05:35:59 2025 by rpki-client