$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa File: 300438B6C03511EFA42E9085C4F9AE02.roa (raw, json) Hash identifier: oBJXc8GYCJgJm/47m5fsAm6DbvpC1fTX4mDB8Bng8Io= Subject key identifier: 7B:36:60:E6:14:6F:09:17:AD:D6:57:A0:59:A0:76:A2:31:C4:BF:3C Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 0130 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa Signing time: Wed 18 Jun 2025 09:29:22 +0000 ROA not before: Wed 18 Jun 2025 09:29:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152114 IP address blocks: 180.94.24.0/23 maxlen: 23 180.94.24.0/24 maxlen: 24 180.94.25.0/24 maxlen: 24 2001:df3:2dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 03:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Jun 18 09:29:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685286f2-9cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7e:ed:46:0c:0a:79:a3:c1:9d:d3:e2:25:81: 05:11:d0:8c:03:a9:91:f1:70:e1:fb:29:5b:9e:07: 93:2f:93:e5:58:4f:5d:ae:e2:69:58:59:50:c3:14: e9:95:99:ff:ee:81:0c:09:0c:6d:d4:39:fb:03:14: 75:05:a4:29:ef:8c:93:53:4b:d4:9f:96:d8:ee:23: 6c:5e:bf:b6:57:2c:4b:ac:17:16:3b:23:d0:47:af: d6:60:33:9b:ad:e8:86:de:1f:04:b5:b9:d4:9e:e8: ff:fd:04:16:8d:01:92:fc:aa:ec:cc:95:94:56:98: eb:9e:7f:19:0b:7b:b7:12:84:32:8f:49:4f:5d:da: 56:95:66:90:ce:24:5b:e7:9d:e2:42:d5:94:bf:95: dc:46:40:24:bc:f5:4d:b1:01:c0:d5:eb:a8:87:6c: cc:b2:43:7a:30:e8:83:ca:43:0c:f2:39:90:13:ee: ab:69:bc:d9:aa:12:7d:d3:e9:db:33:ad:7b:3f:ff: c0:68:35:c0:a1:c2:7f:8e:56:f8:05:d4:2b:2f:53: df:ca:8b:79:99:9d:31:e7:5f:13:4f:90:ce:dc:5c: 75:6e:00:e9:11:c9:8a:87:d6:08:60:7f:03:de:6e: 90:27:e9:08:62:9d:91:57:a5:20:82:ad:1a:47:34: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:36:60:E6:14:6F:09:17:AD:D6:57:A0:59:A0:76:A2:31:C4:BF:3C X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.24.0/23 IPv6: 2001:df3:2dc0::/48 Signature Algorithm: sha256WithRSAEncryption 26:32:9a:a6:da:0d:fe:07:78:9a:ef:48:82:f7:83:b4:02:be: 7e:62:2d:e7:00:fc:17:77:da:40:d0:37:26:69:35:f1:78:73: 69:6b:9f:43:14:67:80:3c:1a:f7:86:ab:b7:29:6f:00:c1:ea: bc:12:7e:ad:98:bd:71:84:b4:9d:af:d9:79:b6:ae:61:ea:9d: 2a:5b:3e:be:6c:21:1d:2b:26:63:c9:80:70:9c:95:c7:e8:48: 1f:0d:49:4b:59:91:d5:92:76:25:cd:c2:2c:2b:2c:05:c7:67: bd:21:77:dc:53:91:93:4e:75:22:4d:dc:0e:e9:2c:24:ac:9b: 71:56:09:d5:7a:00:3d:e6:ee:13:e6:0d:7d:2b:d0:12:6f:c6: 13:15:87:d8:3f:9f:cc:75:b2:c7:3c:3e:79:45:18:5d:7d:82: 3a:9e:c5:08:ad:33:80:42:f9:45:07:48:aa:f0:8e:9c:69:6f: 2c:dc:91:d3:45:15:b1:cb:63:3f:e2:c3:71:2c:aa:f3:52:3f: f3:7d:cb:bb:4e:ce:42:43:cc:02:f5:0f:52:47:fc:31:b3:41: 3e:f0:82:ee:88:21:4b:4c:be:47:6c:3d:31:3f:e4:2b:44:a2: 97:71:a2:62:1d:14:45:e1:f5:bb:e7:37:c2:5c:45:e3:8b:cd: fc:f2:c9:df -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUwNjE4MDkyOTIyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyODZmMi05Y2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3n7tRgwKeaPBndPiJYEFEdCMA6mR8XDh+ylbngeTL5PlWE9druJpWFlQwxTp lZn/7oEMCQxt1Dn7AxR1BaQp74yTU0vUn5bY7iNsXr+2VyxLrBcWOyPQR6/WYDOb reiG3h8EtbnUnuj//QQWjQGS/KrszJWUVpjrnn8ZC3u3EoQyj0lPXdpWlWaQziRb 553iQtWUv5XcRkAkvPVNsQHA1euoh2zMskN6MOiDykMM8jmQE+6rabzZqhJ90+nb M617P//AaDXAocJ/jlb4BdQrL1Pfyot5mZ0x518TT5DO3Fx1bgDpEcmKh9YIYH8D 3m6QJ+kIYp2RV6Uggq0aRzRZXQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHs2YOYU bwkXrdZXoFmgdqIxxL88MB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNDQTQvQjc1MTZCMTA4OUI2MTFFRTk5NTEyQTZEQzRGOUFFMDIvMzAwNDM4QjZD MDM1MTFFRkE0MkU5MDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAG0XhgwDwQCAAIwCQMHACABDfMtwDANBgkqhkiG9w0BAQsF AAOCAQEAJjKaptoN/gd4mu9IgveDtAK+fmIt5wD8F3faQNA3Jmk18XhzaWufQxRn gDwa94artylvAMHqvBJ+rZi9cYS0na/ZebauYeqdKls+vmwhHSsmY8mAcJyVx+hI Hw1JS1mR1ZJ2Jc3CLCssBcdnvSF33FORk051Ik3cDuksJKybcVYJ1XoAPebuE+YN fSvQEm/GExWH2D+fzHWyxzw+eUUYXX2COp7FCK0zgEL5RQdIqvCOnGlvLNyR00UV sctjP+LDcSyq81I/833Lu07OQkPMAvUPUkf8MbNBPvCC7oghS0y+R2w9MT/kK0Si l3GiYh0UReH1u+c3wlxF44vN/PLJ3w== -----END CERTIFICATE-----Generated at Sun Jun 22 07:33:21 2025 by rpki-client