$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/BA310DEC23B611E98E5E6062C4F9AE02.roa File: BA310DEC23B611E98E5E6062C4F9AE02.roa (raw, json) Hash identifier: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk= Subject key identifier: E0:35:FB:15:4A:FA:5D:70:CE:3A:C0:6C:B7:53:44:9E:6E:BD:BF:04 Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 10C5 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/BA310DEC23B611E98E5E6062C4F9AE02.roa Signing time: Wed 30 Apr 2025 17:26:31 +0000 ROA not before: Wed 30 Apr 2025 17:26:31 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.132.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4293 (0x10c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Apr 30 17:26:31 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68125d47-37a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b6:72:0f:9a:7c:6a:cf:65:a8:9f:fb:7d:30: 14:5d:fa:b4:68:42:71:07:e4:8c:9a:73:2f:a0:8b: 04:6f:aa:54:50:d8:12:ab:b3:3e:80:cd:35:48:84: 4e:37:e2:01:de:a8:41:75:c9:6a:22:dd:b5:4b:d8: 31:70:38:b7:b4:b6:6c:2c:94:73:63:da:9d:da:b4: e6:6f:1a:96:45:9a:4f:b4:66:9e:8f:2a:38:5f:bd: 1e:7f:18:ae:c4:50:00:5c:e6:7e:f1:f8:f8:69:84: 3a:6d:c4:e3:cf:c6:cc:fb:d0:32:84:a2:ea:b0:15: 25:13:54:1b:4a:08:69:98:5d:d4:dd:54:35:1b:1c: b2:10:75:3f:98:3c:f1:af:38:86:b4:e4:f5:eb:3e: 6d:f8:31:fe:83:a1:15:e5:26:79:b0:0d:36:fc:43: ec:f0:ae:61:8f:e6:ca:30:6c:ca:89:ce:38:03:b9: e4:da:b4:2e:64:ae:32:3a:49:05:cb:e8:48:2a:19: 99:ca:36:52:13:cd:8f:34:42:22:20:ff:03:dd:a6: 72:f3:a1:68:2a:b4:43:0f:4f:7d:80:f8:97:d0:90: af:7e:a0:a1:94:7e:c3:9b:c2:56:93:09:7f:3c:93: 10:cf:2e:d8:4b:12:fe:a0:c5:ff:6a:0c:7a:bc:cd: cd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:35:FB:15:4A:FA:5D:70:CE:3A:C0:6C:B7:53:44:9E:6E:BD:BF:04 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/BA310DEC23B611E98E5E6062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:66:87:ac:a8:98:c1:c0:7c:05:9c:25:83:01:46:47:62:fc: a3:e4:ea:af:f9:b0:82:25:aa:94:ca:f2:aa:dd:9d:ab:7f:ad: 9c:ba:8b:6c:89:aa:01:09:7c:e1:aa:46:ad:e4:25:08:bb:c7: 87:cc:63:aa:a8:55:a4:09:f2:49:2e:5b:67:00:f4:01:ec:a5: e6:df:e0:21:d3:50:7c:fe:47:48:92:a9:27:e7:47:d5:9a:c0: e7:90:18:92:07:8d:38:6e:f8:b1:39:23:af:06:b9:7a:54:8d: 14:35:02:9f:b4:4a:67:51:b6:9c:9c:c4:6d:8c:73:60:b4:56: 4b:15:79:f7:96:31:92:80:f0:f2:78:11:c1:87:b0:a3:e7:0e: d1:08:fb:35:69:05:59:41:9d:4d:1a:9e:b3:6e:4b:87:32:c6: 69:c3:65:f2:d9:9d:29:61:34:3d:c2:82:ae:6a:e6:86:f8:d8: db:b9:05:f0:13:97:df:d8:30:4b:07:df:10:bc:9e:9c:6a:f3: 79:40:2e:66:7f:5a:5a:95:b3:9a:07:95:f2:78:a4:b6:ce:6f: 7a:e3:99:bc:0a:1a:dc:88:c6:ff:c1:39:c8:6c:06:cd:56:11: eb:5d:2c:bf:28:b7:20:52:6a:d4:a8:e5:b4:0e:31:0e:b7:44: 25:72:09:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNDMwMTcyNjMxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNWQ0Ny0zN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17ZyD5p8as9lqJ/7fTAUXfq0aEJxB+SMmnMvoIsEb6pUUNgSq7M+gM01SIRO N+IB3qhBdclqIt21S9gxcDi3tLZsLJRzY9qd2rTmbxqWRZpPtGaejyo4X70efxiu xFAAXOZ+8fj4aYQ6bcTjz8bM+9AyhKLqsBUlE1QbSghpmF3U3VQ1GxyyEHU/mDzx rziGtOT16z5t+DH+g6EV5SZ5sA02/EPs8K5hj+bKMGzKic44A7nk2rQuZK4yOkkF y+hIKhmZyjZSE82PNEIiIP8D3aZy86FoKrRDD099gPiX0JCvfqChlH7Dm8JWkwl/ PJMQzy7YSxL+oMX/agx6vM3NiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOA1+xVK +l1wzjrAbLdTRJ5uvb8EMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvQkEzMTBERUMy M0I2MTFFOThFNUU2MDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhNwwDQYJKoZIhvcNAQELBQADggEBAH1mh6yomMHAfAWc JYMBRkdi/KPk6q/5sIIlqpTK8qrdnat/rZy6i2yJqgEJfOGqRq3kJQi7x4fMY6qo VaQJ8kkuW2cA9AHspebf4CHTUHz+R0iSqSfnR9WawOeQGJIHjThu+LE5I68GuXpU jRQ1Ap+0SmdRtpycxG2Mc2C0VksVefeWMZKA8PJ4EcGHsKPnDtEI+zVpBVlBnU0a nrNuS4cyxmnDZfLZnSlhND3Cgq5q5ob42Nu5BfATl9/YMEsH3xC8npxq83lALmZ/ WlqVs5oHlfJ4pLbOb3rjmbwKGtyIxv/BOchsBs1WEetdLL8otyBSatSo5bQOMQ63 RCVyCSs= -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:11 2025 by rpki-client