$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa File: 688DF576450C11F0A7A54A80C4F9AE02.roa (raw, json) Hash identifier: 4F6WXMQnkc6O0hYawZzx3De82Qtz5srkx6WGHHAwdQk= Subject key identifier: 83:D4:60:78:FC:9D:C2:D3:4E:9F:3B:43:89:95:CE:D8:6A:AB:56:3B Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 0148 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa Signing time: Mon 09 Jun 2025 08:33:25 +0000 ROA not before: Mon 09 Jun 2025 08:33:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 401701 IP address blocks: 103.149.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Jun 9 08:33:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68469c54-670f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d5:83:64:c9:21:a7:af:61:74:c5:fe:3c:d6: 8c:49:61:3f:97:1a:cd:95:c0:eb:1f:0e:2e:26:63: 22:62:92:7f:32:d5:3e:c9:54:1f:32:bd:ce:f1:61: 72:2f:2c:51:c8:05:40:a8:48:32:22:ce:10:35:40: 87:7b:04:9f:fa:5d:42:66:92:f2:fe:56:df:af:b2: 75:f7:dc:db:03:1c:83:15:31:7b:cf:2c:f3:6c:51: e8:fa:80:12:e6:da:82:61:af:b6:d1:6b:50:b8:56: ac:21:88:48:5d:09:5c:f7:5e:7c:f0:66:e2:12:9c: 9e:07:3a:6e:8a:84:39:22:11:56:32:e4:3f:b7:3c: b5:28:20:a0:4c:56:68:1b:22:af:21:fd:62:d8:bb: 4f:e5:be:5f:62:fb:ea:26:95:9e:61:be:d5:f7:83: 09:85:82:7e:ec:06:7e:50:4d:aa:67:37:6d:5c:a4: be:7b:da:b7:52:a0:57:db:3e:01:4e:e7:2a:b6:d3: eb:25:01:dc:fb:0a:ab:6c:2e:f3:c6:98:da:ca:99: ca:b6:4d:c3:77:83:eb:77:4b:61:57:43:d8:b9:e4: 99:29:52:24:cf:59:27:49:d9:89:61:a9:87:b0:f2: 80:89:cc:c3:55:66:db:e4:8e:b4:9c:a8:e4:70:ca: 38:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D4:60:78:FC:9D:C2:D3:4E:9F:3B:43:89:95:CE:D8:6A:AB:56:3B X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.200.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:56:18:87:17:17:bc:aa:7f:6e:00:7f:25:97:59:79:f8:49: 55:a1:6a:6b:65:4a:2b:7c:1b:09:2f:2c:69:5c:99:05:f2:a0: e3:c2:e5:81:88:33:81:b7:fe:5f:45:aa:02:49:b1:1b:09:c2: b8:0b:00:c9:5a:a8:fc:79:3e:01:32:72:b3:28:22:9b:17:d7: 9c:d1:5f:c2:68:e4:e1:74:55:c9:36:f0:cc:b4:9b:72:84:85: 58:60:61:5f:6c:d6:28:1b:28:9e:a7:d9:37:8c:ee:80:84:25: c4:fb:64:87:a2:af:bb:fa:cb:b8:41:40:ec:d3:ec:99:03:1c: 48:1e:22:ca:3e:62:92:94:f7:df:f3:b6:6e:ad:a8:7a:f7:be: 50:79:88:db:d5:59:08:41:7e:6c:37:63:73:d4:2a:39:8c:07: c2:2e:9f:35:eb:e0:b2:45:d8:4c:a8:eb:52:07:1b:80:03:4d: 71:7a:66:4e:33:ea:5e:9c:48:8b:f3:52:b6:86:f1:df:43:1e: 65:00:9b:f2:b3:9c:ea:9b:58:4b:82:25:7e:fe:92:8f:c3:69: a2:8f:47:59:c8:b9:b9:42:11:da:8f:58:80:5d:4c:49:ce:57: 20:20:f0:fb:b7:63:fb:55:13:92:5b:89:20:f8:7d:29:5c:de: 6c:82:72:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUwNjA5MDgzMzI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2OWM1NC02NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9WDZMkhp69hdMX+PNaMSWE/lxrNlcDrHw4uJmMiYpJ/MtU+yVQfMr3O8WFy LyxRyAVAqEgyIs4QNUCHewSf+l1CZpLy/lbfr7J199zbAxyDFTF7zyzzbFHo+oAS 5tqCYa+20WtQuFasIYhIXQlc91588GbiEpyeBzpuioQ5IhFWMuQ/tzy1KCCgTFZo GyKvIf1i2LtP5b5fYvvqJpWeYb7V94MJhYJ+7AZ+UE2qZzdtXKS+e9q3UqBX2z4B TucqttPrJQHc+wqrbC7zxpjaypnKtk3Dd4Prd0thV0PYueSZKVIkz1knSdmJYamH sPKAiczDVWbb5I60nKjkcMo46wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIPUYHj8 ncLTTp87Q4mVzthqq1Y7MB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZDN0MvMkI1Q0FBRTg2OUU1MTFFRUJCNjY4MjQ2QzRGOUFFMDIvNjg4REY1NzY0 NTBDMTFGMEE3QTU0QTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlcgwDQYJKoZIhvcNAQELBQADggEBAI9WGIcXF7yqf24A fyWXWXn4SVWhamtlSit8GwkvLGlcmQXyoOPC5YGIM4G3/l9FqgJJsRsJwrgLAMla qPx5PgEycrMoIpsX15zRX8Jo5OF0Vck28My0m3KEhVhgYV9s1igbKJ6n2TeM7oCE JcT7ZIeir7v6y7hBQOzT7JkDHEgeIso+YpKU99/ztm6tqHr3vlB5iNvVWQhBfmw3 Y3PUKjmMB8IunzXr4LJF2Eyo61IHG4ADTXF6Zk4z6l6cSIvzUraG8d9DHmUAm/Kz nOqbWEuCJX7+ko/DaaKPR1nIublCEdqPWIBdTEnOVyAg8Pu3Y/tVE5JbiSD4fSlc 3myCcnU= -----END CERTIFICATE-----Generated at Thu Jun 19 08:41:47 2025 by rpki-client