$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/5B0A7AFCF3F611EB8DD81585C4F9AE02.roa File: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (raw, json) Hash identifier: R8hfJ5cUDeHXSHt31Yaxeq/Vdh/2fKfS7Ifq3y/hy0s= Subject key identifier: 81:1F:00:54:D9:22:70:B4:57:74:6A:15:F4:30:17:46:AA:28:29:78 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 0548 Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/5B0A7AFCF3F611EB8DD81585C4F9AE02.roa Signing time: Sat 07 Jun 2025 00:15:11 +0000 ROA not before: Sat 07 Jun 2025 00:15:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7600 IP address blocks: 103.27.174.0/24 maxlen: 24 103.92.140.0/23 maxlen: 23 103.92.142.0/24 maxlen: 24 123.253.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 23:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Jun 7 00:15:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843848f-6d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:01:7a:ce:e7:33:8e:da:5a:77:28:07:a7:61: 93:ee:cb:23:0b:3a:a7:c4:d4:8e:d5:6b:40:46:1f: 15:6f:64:d4:05:4c:7b:66:cb:4a:6c:e2:db:63:f2: 30:71:88:82:c5:b8:63:1d:c3:d8:f3:aa:83:c1:10: f6:c5:4b:f7:0e:3a:18:a6:bb:26:4e:cd:be:a6:72: 48:87:91:94:7a:2d:ed:cb:2d:fa:c9:d4:f5:dd:26: 52:c0:92:ab:c0:54:16:44:ac:79:9a:6d:43:d5:31: a3:9b:5d:28:15:4a:ba:93:77:de:76:13:48:8f:82: ef:75:fe:39:1b:9b:9d:d1:85:a8:68:df:50:3d:6c: 40:0b:aa:07:ba:c3:25:17:24:76:c6:ad:1e:35:09: 0e:25:51:9d:24:12:82:ff:31:84:81:8f:f2:e7:a4: b4:e0:17:6a:b3:20:40:3e:ac:1b:dc:87:3a:57:17: 9a:45:eb:ce:ee:41:f3:ba:54:78:bb:ca:23:68:eb: 44:39:b9:d8:f8:2c:83:99:3d:60:8e:9b:e8:9c:91: 58:64:8e:ce:e4:75:e3:87:ac:79:1f:8b:7a:19:77: 33:4f:cf:68:3f:18:39:87:f6:8a:f7:41:94:f0:0a: 38:de:55:85:4c:db:41:99:e2:7b:3c:e6:3e:85:45: 4f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1F:00:54:D9:22:70:B4:57:74:6A:15:F4:30:17:46:AA:28:29:78 X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/5B0A7AFCF3F611EB8DD81585C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.174.0/24 103.92.140.0-103.92.142.255 123.253.84.0/22 Signature Algorithm: sha256WithRSAEncryption b5:9a:09:aa:1f:b5:e9:1a:db:b4:aa:e4:18:ba:4f:6b:18:51: 72:44:4b:51:82:8b:a2:02:34:b3:a9:b4:04:85:67:19:ef:f8: 96:a7:b2:8c:47:1e:81:18:4c:d8:3f:52:fa:b7:82:b2:c6:2e: 3c:b0:63:ea:37:4f:0a:bd:94:c7:66:d3:42:a5:1a:8b:2e:6f: 4d:4d:37:47:b3:66:32:ec:1f:cc:70:32:9d:a6:c5:16:00:db: 8a:99:20:c9:dc:28:ab:91:9c:f6:28:99:86:5f:c9:6a:be:49: 2a:9b:53:12:59:ea:43:6d:0a:e2:6f:8e:71:4c:48:d8:0d:23: d1:18:3f:12:a7:3b:b0:f6:87:97:18:d4:a3:18:ff:69:7f:cc: f9:f3:07:76:fc:a2:52:23:ec:fc:bb:d6:84:de:73:bb:c2:d1: e1:68:b5:4b:7a:8a:87:ce:c8:9f:09:08:3c:dd:31:16:20:ef: 7a:b9:f8:27:84:43:4b:e7:f8:73:7a:f8:cf:67:cc:96:ae:42: 5b:20:23:e3:bc:6b:ef:31:e3:6e:2b:dc:04:90:52:68:c7:81: 14:76:8f:a4:d6:0a:a2:64:db:0d:5d:ed:2d:70:34:4c:e0:0c: cb:78:c1:cb:f1:cf:fb:ad:1c:31:d9:76:79:06:e6:4c:67:4c: c7:39:be:ee -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjUwNjA3MDAxNTExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzODQ4Zi02ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AF6zuczjtpadygHp2GT7ssjCzqnxNSO1WtARh8Vb2TUBUx7ZstKbOLbY/Iw cYiCxbhjHcPY86qDwRD2xUv3DjoYprsmTs2+pnJIh5GUei3tyy36ydT13SZSwJKr wFQWRKx5mm1D1TGjm10oFUq6k3fedhNIj4Lvdf45G5ud0YWoaN9QPWxAC6oHusMl FyR2xq0eNQkOJVGdJBKC/zGEgY/y56S04BdqsyBAPqwb3Ic6VxeaRevO7kHzulR4 u8ojaOtEObnY+CyDmT1gjpvonJFYZI7O5HXjh6x5H4t6GXczT89oPxg5h/aK90GU 8Ao43lWFTNtBmeJ7POY+hUVPawIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFIEfAFTZ InC0V3RqFfQwF0aqKCl4MB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZENDAvM0M2MzMzQzZGM0YzMTFFQkEyOTJFNTgwQzRGOUFFMDIvNUIwQTdBRkNG M0Y2MTFFQjhERDgxNTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnG64wDAMEAmdcjAMEAGdcjgMEAnv9VDANBgkqhkiG9w0B AQsFAAOCAQEAtZoJqh+16RrbtKrkGLpPaxhRckRLUYKLogI0s6m0BIVnGe/4lqey jEcegRhM2D9S+reCssYuPLBj6jdPCr2Ux2bTQqUaiy5vTU03R7NmMuwfzHAynabF FgDbipkgydwoq5Gc9iiZhl/Jar5JKptTElnqQ20K4m+OcUxI2A0j0Rg/Eqc7sPaH lxjUoxj/aX/M+fMHdvyiUiPs/LvWhN5zu8LR4Wi1S3qKh87InwkIPN0xFiDvern4 J4RDS+f4c3r4z2fMlq5CWyAj47xr7zHjbivcBJBSaMeBFHaPpNYKomTbDV3tLXA0 TOAMy3jBy/HP+60cMdl2eQbmTGdMxzm+7g== -----END CERTIFICATE-----Generated at Sat Jun 21 16:10:13 2025 by rpki-client