$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa File: 9AD04EAAD58A11EE9992494AC4F9AE02.roa (raw, json) Hash identifier: R++b1RX/a7NEbUz016JCFWbEE+Lh/qyAEqbc/YB/qKw= Subject key identifier: 38:CA:E8:17:22:10:F2:19:F3:9A:E4:FD:A7:26:8E:26:04:38:7A:A4 Certificate issuer: /CN=A9129AD6/serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Certificate serial: 2BC0 Authority key identifier: A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa Signing time: Wed 18 Jun 2025 15:32:55 +0000 ROA not before: Wed 18 Jun 2025 15:32:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59365 IP address blocks: 103.231.228.0/24 maxlen: 24 103.231.229.0/24 maxlen: 24 103.231.230.0/24 maxlen: 24 103.231.231.0/24 maxlen: 24 157.119.48.0/22 maxlen: 24 2404:4b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11200 (0x2bc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129AD6, serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Validity Not Before: Jun 18 15:32:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6852dc27-5caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b1:81:f2:04:45:77:52:f2:24:06:a7:d5:48: 18:d8:12:a2:9a:53:e8:8b:90:09:66:77:c3:82:b6: 8c:08:11:6b:32:b9:bc:a4:bb:1c:69:7f:a0:b0:45: 06:a1:2d:82:2a:80:c8:5b:02:ee:8b:8d:e5:e3:dd: 65:0d:ed:e9:61:16:17:79:b2:fa:cb:87:f5:6b:fd: ce:25:3e:57:ef:28:bc:d8:5e:0e:48:bb:95:68:2f: d8:1b:f9:f9:6b:4d:6a:f8:ea:70:53:8d:bd:56:b2: fc:60:41:81:7a:0f:e7:36:ae:02:2c:11:78:e7:3f: 5f:33:02:e4:7a:9e:15:7d:e1:55:bb:97:e8:bd:32: 18:49:94:83:96:2c:59:9f:ca:b3:d3:76:2e:b4:f7: f3:8b:00:cd:3b:bc:b8:bc:04:2e:a7:57:bf:9d:30: 9a:58:19:f0:26:11:37:dd:58:10:ae:a9:07:45:ad: ea:10:9a:4f:bb:ca:62:72:43:75:d2:4a:d0:76:90: 40:3e:91:78:af:86:3a:7c:0b:38:9e:c4:2e:5a:e1: f5:18:ae:8f:c7:2a:47:ce:85:01:5f:60:a0:41:c6: b9:81:dd:ab:34:c1:41:31:88:cc:93:ae:1a:ab:98: f9:a6:f6:0a:ba:02:0d:7a:76:c2:7e:b9:1c:05:91: 36:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CA:E8:17:22:10:F2:19:F3:9A:E4:FD:A7:26:8E:26:04:38:7A:A4 X509v3 Authority Key Identifier: keyid:A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.228.0/22 157.119.48.0/22 IPv6: 2404:4b80::/32 Signature Algorithm: sha256WithRSAEncryption 06:a1:65:dd:6e:d5:14:22:66:e2:02:89:ee:b9:c7:a5:36:a4: bc:8c:8f:1d:3c:b5:ad:6c:31:a0:fc:25:1a:99:a5:f7:4f:71: 3c:16:8b:b3:1b:01:9a:36:e1:4d:fa:d0:89:1a:b3:99:32:24: 53:da:36:15:78:ec:e4:10:87:be:95:da:aa:67:b5:1d:13:a3: ea:1b:88:62:87:43:ea:f9:90:49:f8:c3:d5:15:2d:41:f7:c7: a9:72:a8:59:81:9d:1d:51:13:1d:36:d4:1e:cb:f7:aa:ad:d6: d1:b2:a5:45:a4:f0:ca:51:71:ef:7b:37:9e:b3:cb:8b:d8:84: 82:88:4f:80:40:57:03:55:40:0f:71:09:d3:ab:46:01:2e:35: 04:1c:d1:1f:9c:81:9a:90:6a:62:02:b0:fb:2e:44:dc:d2:96: 29:bc:c4:81:5f:c3:5f:54:38:71:6d:55:08:af:f6:52:f3:32: e9:a6:bd:02:3e:9e:a2:4c:d9:cf:db:0f:d4:3a:99:ff:b3:94: ea:84:16:8e:c7:39:95:42:9e:c8:06:aa:eb:c1:78:f3:53:25: ac:a5:09:5e:b6:e3:b0:5c:36:21:83:20:b8:0a:df:33:59:1f: d4:89:c9:e1:9a:55:d2:9d:3a:29:5d:ef:3c:ed:16:e1:8a:84: 1c:c1:76:60 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICK8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlBRDYxMTAvBgNVBAUTKEE1QTZBOUVBQzFBQ0Y3NkU1NTJDNzhCREQ3OEJBNzRG RURERDNGRjkwHhcNMjUwNjE4MTUzMjU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyZGMyNy01Y2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47GB8gRFd1LyJAan1UgY2BKimlPoi5AJZnfDgraMCBFrMrm8pLscaX+gsEUG oS2CKoDIWwLui43l491lDe3pYRYXebL6y4f1a/3OJT5X7yi82F4OSLuVaC/YG/n5 a01q+OpwU429VrL8YEGBeg/nNq4CLBF45z9fMwLkep4VfeFVu5fovTIYSZSDlixZ n8qz03YutPfziwDNO7y4vAQup1e/nTCaWBnwJhE33VgQrqkHRa3qEJpPu8pickN1 0krQdpBAPpF4r4Y6fAs4nsQuWuH1GK6PxypHzoUBX2CgQca5gd2rNMFBMYjMk64a q5j5pvYKugINenbCfrkcBZE26wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDjK6Bci EPIZ85rk/acmjiYEOHqkMB8GA1UdIwQYMBaAFKWmqerBrPduVSx4vdeLp0/t3T/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUFENi9ENjc3REM5NERG RDAxMUUzOTNEQjc5NUY1OTExRUEzMi9wYWFwNnNHczkyNVZMSGk5MTR1blQtM2RQ X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BhYXA2c0dzOTI1VkxIaTkxNHVuVC0zZFBfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlBRDYvRDY3N0RDOTRERkQwMTFFMzkzREI3OTVGNTkxMUVBMzIvOUFEMDRFQUFE NThBMTFFRTk5OTI0OTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn5+QDBAKddzAwDQQCAAIwBwMFACQES4AwDQYJKoZIhvcN AQELBQADggEBAAahZd1u1RQiZuICie65x6U2pLyMjx08ta1sMaD8JRqZpfdPcTwW i7MbAZo24U360Ikas5kyJFPaNhV47OQQh76V2qpntR0To+obiGKHQ+r5kEn4w9UV LUH3x6lyqFmBnR1REx021B7L96qt1tGypUWk8MpRce97N56zy4vYhIKIT4BAVwNV QA9xCdOrRgEuNQQc0R+cgZqQamICsPsuRNzSlim8xIFfw19UOHFtVQiv9lLzMumm vQI+nqJM2c/bD9Q6mf+zlOqEFo7HOZVCnsgGquvBePNTJaylCV6247BcNiGDILgK 3zNZH9SJyeGaVdKdOild7zztFuGKhBzBdmA= -----END CERTIFICATE-----Generated at Fri Jun 20 11:24:37 2025 by rpki-client