$ rpki-client -vvf rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/BFD5DDF0D95311EF9B045445C4F9AE02.roa File: BFD5DDF0D95311EF9B045445C4F9AE02.roa (raw, json) Hash identifier: yTT1wU+7SDiGP1yf/wpGgeLBeSp2dcgSEJuvKyJu/s4= Subject key identifier: 63:9C:8F:4A:7A:1B:CE:B8:CA:0A:13:FE:A1:74:CD:76:A4:B7:53:9C Certificate issuer: /CN=A9127898/serialNumber=95655EE72E177A02096C0CB60676AA1E669AE7E0 Certificate serial: 0184 Authority key identifier: 95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWVe5y4XegIJbAy2BnaqHmaa5-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/BFD5DDF0D95311EF9B045445C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:45 +0000 ROA not before: Sun 03 Aug 2025 00:06:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137059 IP address blocks: 103.171.142.0/23 maxlen: 23 103.171.142.0/24 maxlen: 24 103.171.143.0/24 maxlen: 24 2001:df7:4a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.crl rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWVe5y4XegIJbAy2BnaqHmaa5-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127898, serialNumber=95655EE72E177A02096C0CB60676AA1E669AE7E0 Validity Not Before: Aug 3 00:06:45 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688ea814-d688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d4:60:49:6b:07:a3:26:52:0f:0d:64:13:93: a3:76:40:c3:ad:ad:12:c9:06:0e:ef:67:31:8f:a5: 3b:98:bf:31:a2:08:1b:50:a5:a3:dc:14:39:ed:47: 4f:13:5d:86:76:77:d5:5c:54:90:f8:b1:85:cb:5c: 6d:ce:07:61:7d:0a:7f:a0:5d:02:5f:87:af:93:45: 6c:79:83:db:b5:47:ba:f7:ed:b2:75:bb:fb:4a:4d: a0:06:91:ee:17:27:36:49:fd:fe:87:8b:9b:0f:56: 21:12:38:8e:7d:12:d5:67:6e:86:5a:11:23:fc:24: 23:81:57:cd:1d:26:e5:65:a8:f6:99:66:e2:e6:4c: 10:76:84:70:79:0f:54:c7:e6:44:ba:f0:0a:35:92: 10:74:1a:ff:cd:e0:00:40:68:04:1c:c3:5e:76:c5: ec:9a:7e:8c:2c:30:31:e6:fd:8a:36:7b:ea:99:4d: ea:0e:7b:97:b4:cf:ed:16:8c:67:0d:22:31:d6:90: e4:7c:34:ae:cc:3b:71:4d:9f:e5:b8:8e:ca:e0:0c: aa:de:69:10:1f:38:bc:39:52:c9:84:3a:44:eb:ab: cc:92:03:4d:5e:eb:d8:2e:62:ec:8f:a8:14:da:e7: 54:d0:90:48:ee:5d:33:0f:e9:cb:12:62:5e:0c:db: d6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9C:8F:4A:7A:1B:CE:B8:CA:0A:13:FE:A1:74:CD:76:A4:B7:53:9C X509v3 Authority Key Identifier: keyid:95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWVe5y4XegIJbAy2BnaqHmaa5-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/BFD5DDF0D95311EF9B045445C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.142.0/23 IPv6: 2001:df7:4a80::/48 Signature Algorithm: sha256WithRSAEncryption 2a:f6:90:20:a3:14:75:84:0b:c2:b7:a2:3b:b4:3e:78:f3:4d: fe:2e:ec:ef:c2:d3:87:7d:08:43:18:b2:96:bc:48:83:86:15: 65:ab:db:f8:3d:0d:8b:4d:55:55:a1:46:c7:92:82:2f:e6:40: 17:2d:21:1d:2d:99:7f:d0:ca:74:b9:44:16:dd:ab:53:97:34: dc:aa:dd:2f:1d:1c:d0:6b:f6:6d:bf:c0:15:14:68:d5:f8:fe: cd:48:de:09:0f:8a:07:bb:13:47:88:4c:96:a3:d2:f3:7c:ae: b9:bd:94:7c:58:60:7f:39:c9:f4:19:5d:6e:2d:9c:5e:c0:b1: c2:53:ce:d9:89:90:ec:48:49:77:6f:b7:1f:c8:c8:9c:78:99: aa:1e:2e:26:da:0d:4e:44:42:94:01:c9:82:39:c7:53:dd:9c: 2e:2b:e1:92:4f:2c:ad:60:3f:4f:cc:ff:19:e5:7a:ee:2c:cb: 37:b7:4f:60:04:47:82:39:4e:db:6c:70:88:16:e2:c4:1c:23: 8c:3a:32:fb:32:93:9a:d9:41:63:d3:c3:53:6b:70:34:32:75: 04:22:6e:22:7a:54:e1:2a:d7:64:44:aa:07:7b:3d:c0:96:65: 18:73:c6:9a:cd:3f:d9:7e:83:d9:f7:37:a9:f2:88:40:91:82: c0:10:a1:57 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4OTgxMTAvBgNVBAUTKDk1NjU1RUU3MkUxNzdBMDIwOTZDMENCNjA2NzZBQTFF NjY5QUU3RTAwHhcNMjUwODAzMDAwNjQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTgxNC1kNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9RgSWsHoyZSDw1kE5OjdkDDra0SyQYO72cxj6U7mL8xoggbUKWj3BQ57UdP E12GdnfVXFSQ+LGFy1xtzgdhfQp/oF0CX4evk0VseYPbtUe69+2ydbv7Sk2gBpHu Fyc2Sf3+h4ubD1YhEjiOfRLVZ26GWhEj/CQjgVfNHSblZaj2mWbi5kwQdoRweQ9U x+ZEuvAKNZIQdBr/zeAAQGgEHMNedsXsmn6MLDAx5v2KNnvqmU3qDnuXtM/tFoxn DSIx1pDkfDSuzDtxTZ/luI7K4Ayq3mkQHzi8OVLJhDpE66vMkgNNXuvYLmLsj6gU 2udU0JBI7l0zD+nLEmJeDNvWswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGOcj0p6 G864ygoT/qF0zXakt1OcMB8GA1UdIwQYMBaAFJVlXucuF3oCCWwMtgZ2qh5mmufg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzg5OC8yMDY5RjVGQ0ZD MEQxMUVCQUU5NTE0N0JDNEY5QUUwMi9sV1ZlNXk0WGVnSUpiQXkyQm5hcUhtYWE1 LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xXVmU1eTRYZWdJSmJBeTJCbmFxSG1hYTUtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4OTgvMjA2OUY1RkNGQzBEMTFFQkFFOTUxNDdCQzRGOUFFMDIvQkZENURERjBE OTUzMTFFRjlCMDQ1NDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnq44wDwQCAAIwCQMHACABDfdKgDANBgkqhkiG9w0BAQsF AAOCAQEAKvaQIKMUdYQLwreiO7Q+ePNN/i7s78LTh30IQxiylrxIg4YVZavb+D0N i01VVaFGx5KCL+ZAFy0hHS2Zf9DKdLlEFt2rU5c03KrdLx0c0Gv2bb/AFRRo1fj+ zUjeCQ+KB7sTR4hMlqPS83yuub2UfFhgfznJ9Bldbi2cXsCxwlPO2YmQ7EhJd2+3 H8jInHiZqh4uJtoNTkRClAHJgjnHU92cLivhkk8srWA/T8z/GeV67izLN7dPYARH gjlO22xwiBbixBwjjDoy+zKTmtlBY9PDU2twNDJ1BCJuInpU4SrXZESqB3s9wJZl GHPGms0/2X6D2fc3qfKIQJGCwBChVw== -----END CERTIFICATE-----Generated at Sun Aug 10 04:49:51 2025 by rpki-client