$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5BE6333E736411F09E462F7FC4F9AE02.roa File: 5BE6333E736411F09E462F7FC4F9AE02.roa (raw, json) Hash identifier: k5DUo0GtA+W5TKOD4gTgzrZyYGUJYVm+Yz6KHtleKcM= Subject key identifier: 1A:0A:2F:39:16:3C:99:72:EE:24:6A:0E:F2:EF:62:BA:B2:32:D1:2F Certificate issuer: /CN=A9127EEB/serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Certificate serial: 7A Authority key identifier: DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5BE6333E736411F09E462F7FC4F9AE02.roa Signing time: Thu 07 Aug 2025 07:58:53 +0000 ROA not before: Thu 07 Aug 2025 07:58:53 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 206150 IP address blocks: 103.49.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB, serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Validity Not Before: Aug 7 07:58:53 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68945cbc-fb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ef:a5:b3:f9:04:ca:09:63:6f:be:ea:d5:be: ae:bc:09:c4:b4:c1:ad:17:61:9d:b6:d5:a0:ad:c8: 59:eb:94:52:72:64:0f:e6:8c:f1:dd:27:5d:2c:d8: d8:38:f0:5e:65:1a:27:1f:42:eb:e5:81:1a:37:ce: 6f:f2:d7:00:ef:f4:d0:11:a1:41:a2:47:d6:17:6f: 72:40:d9:f3:6b:c5:4f:73:f5:65:e9:59:47:7d:ba: f5:62:7e:ef:f0:a2:a0:90:da:02:a4:3a:68:68:42: 49:48:45:3c:ee:f1:42:6b:83:40:57:e3:bf:6b:de: d7:2e:7e:62:41:ce:db:87:a9:57:8a:86:25:ad:9e: cf:84:fc:d0:fd:a4:8a:97:e9:3e:39:19:8a:54:c0: 13:2f:d9:d5:43:e2:37:04:fb:98:b6:54:47:e1:a4: 2a:9e:cf:53:cd:e5:06:3b:6d:57:ce:5b:ff:63:96: 68:34:e2:41:6a:7d:0a:61:8f:8f:3b:e6:15:17:c1: db:9c:a9:1d:7a:4b:43:8d:ff:5d:d7:55:60:00:8b: 30:29:40:ec:07:b6:7e:9a:93:a2:fd:9e:c1:54:b1: 51:54:b7:ba:7c:0a:a8:0d:51:6b:93:dc:6a:57:5d: fc:66:35:9f:11:f6:3d:a5:56:ed:1d:30:c6:d7:54: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0A:2F:39:16:3C:99:72:EE:24:6A:0E:F2:EF:62:BA:B2:32:D1:2F X509v3 Authority Key Identifier: keyid:DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5BE6333E736411F09E462F7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.41.0/24 Signature Algorithm: sha256WithRSAEncryption 73:70:c9:de:01:43:dd:95:53:9b:df:32:6a:80:5b:63:44:84: 1c:48:23:ba:cf:0a:f4:8d:d6:f6:bd:b9:1d:8f:bc:ab:f9:dc: 49:6b:dd:ab:b1:b0:63:07:d5:c3:c5:ee:f4:4f:dd:fd:b2:61: a0:23:a2:10:de:a1:06:ea:66:1f:a4:bb:2e:35:2b:98:6b:a3: 15:65:92:3d:85:a4:cd:ef:1c:32:c0:2f:af:dc:5e:3d:22:b3: 32:1e:28:ab:2e:ec:83:a9:23:b9:95:df:a1:cb:0e:41:32:30: 54:aa:b3:26:bb:cf:39:f5:15:50:cc:f8:d8:3d:9d:56:65:da: 24:20:1b:b2:56:39:f1:54:9c:4a:4d:76:84:51:32:0e:06:b8: 6d:5f:53:1c:e3:93:e6:e0:04:1a:a7:95:03:03:35:df:c8:be: ab:79:56:13:d4:75:46:c5:99:f2:57:e8:7b:be:ea:f6:61:90: 8d:4e:b4:d3:b5:5a:77:16:25:88:4c:78:44:62:6e:e2:13:1b: 11:cb:98:78:06:d1:98:74:40:d9:9d:0b:cb:ec:3f:f4:77:00: f9:99:c2:ed:b9:56:3e:08:72:fe:08:fd:ac:f8:cb:04:83:d5: c6:15:bf:50:36:17:18:7e:b6:c0:cb:1a:22:a0:79:27:ba:67: 71:a0:ca:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0VFQjExMC8GA1UEBRMoREVGMzMxN0NCRDE0RDdEQkFBMjdCRkZFM0ZFNUE3QjhB NkVEQ0ZCOTAeFw0yNTA4MDcwNzU4NTNaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTQ1Y2JjLWZiNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg76Wz+QTKCWNvvurVvq68CcS0wa0XYZ221aCtyFnrlFJyZA/mjPHdJ10s2Ng4 8F5lGicfQuvlgRo3zm/y1wDv9NARoUGiR9YXb3JA2fNrxU9z9WXpWUd9uvVifu/w oqCQ2gKkOmhoQklIRTzu8UJrg0BX479r3tcufmJBztuHqVeKhiWtns+E/ND9pIqX 6T45GYpUwBMv2dVD4jcE+5i2VEfhpCqez1PN5QY7bVfOW/9jlmg04kFqfQphj487 5hUXwducqR16S0ON/13XVWAAizApQOwHtn6ak6L9nsFUsVFUt7p8CqgNUWuT3GpX XfxmNZ8R9j2lVu0dMMbXVJf7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGgovORY8 mXLuJGoO8u9iurIy0S8wHwYDVR0jBBgwFoAU3vMxfL0U19uqJ7/+P+WnuKbtz7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RUVCL0Y1N0M5NEIwRDNC QTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1cUo3Xy1QLVdudUtidHo3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3ZNeGZMMFUxOXVxSjdfLVAtV251S2J0ejdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VFQi9GNTdDOTRCMEQzQkExMUVGOTQ3QjA1ODBDNEY5QUUwMi81QkU2MzMzRTcz NjQxMUYwOUU0NjJGN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcxKTANBgkqhkiG9w0BAQsFAAOCAQEAc3DJ3gFD3ZVTm98y aoBbY0SEHEgjus8K9I3W9r25HY+8q/ncSWvdq7GwYwfVw8Xu9E/d/bJhoCOiEN6h BupmH6S7LjUrmGujFWWSPYWkze8cMsAvr9xePSKzMh4oqy7sg6kjuZXfocsOQTIw VKqzJrvPOfUVUMz42D2dVmXaJCAbslY58VScSk12hFEyDga4bV9THOOT5uAEGqeV AwM138i+q3lWE9R1RsWZ8lfoe77q9mGQjU6007VadxYliEx4RGJu4hMbEcuYeAbR mHRA2Z0Ly+w/9HcA+ZnC7blWPghy/gj9rPjLBIPVxhW/UDYXGH62wMsaIqB5J7pn caDK1w== -----END CERTIFICATE-----Generated at Wed Aug 13 02:17:28 2025 by rpki-client