$ rpki-client -vvf rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa File: BF195C829CD211EBA0E3CB58C4F9AE02.roa (raw, json) Hash identifier: vieZUpQmzzJOorTO/HBg3bT9si532rk94383Z2tZWNU= Subject key identifier: A6:73:23:E7:C0:3E:E1:12:1D:FB:FD:89:72:27:7B:31:62:A5:0C:B3 Certificate issuer: /CN=A913C437/serialNumber=79DF10253535F0D67FA11DB68A4C7634AA6A447C Certificate serial: 0631 Authority key identifier: 79:DF:10:25:35:35:F0:D6:7F:A1:1D:B6:8A:4C:76:34:AA:6A:44:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa Signing time: Tue 10 Jun 2025 22:52:01 +0000 ROA not before: Tue 10 Jun 2025 22:52:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142054 IP address blocks: 103.166.24.0/23 maxlen: 24 2001:df6:7a80::/48 maxlen: 48 2001:df6:7a80::/50 maxlen: 50 2001:df6:7a80:4000::/50 maxlen: 50 2001:df6:7a80:8000::/50 maxlen: 50 2001:df6:7a80:c000::/50 maxlen: 50 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.crl rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C437, serialNumber=79DF10253535F0D67FA11DB68A4C7634AA6A447C Validity Not Before: Jun 10 22:52:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6848b711-05d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2f:3c:d8:d5:9b:fa:2d:b3:4c:63:90:66:6a: f2:96:f0:2c:2b:f1:e6:19:8a:1c:77:e4:91:29:59: 57:d5:76:c2:c9:1f:14:64:ed:f8:36:c2:2b:19:a1: b4:7a:7e:f1:87:de:42:1a:8c:5b:29:55:63:60:eb: 80:78:7c:2d:e6:cc:c6:3b:a2:5c:7a:48:f6:ee:e7: ab:22:a1:b1:a7:2f:5a:20:55:e5:6e:69:5e:34:06: c3:93:eb:0b:42:0b:b0:fe:92:0b:56:6d:c6:28:99: 15:b9:c6:59:a9:6d:bb:4e:0d:6b:c2:4b:88:a5:d9: ed:16:b7:28:4b:4c:d8:0a:ee:72:07:fb:a4:5d:74: 97:b1:ef:b2:a4:b9:08:77:97:bf:88:aa:25:9d:f6: fd:fb:a1:53:fc:9e:1a:c1:a9:d2:0b:e1:09:aa:65: 86:e2:10:c1:54:6c:df:b3:ee:74:9b:07:5a:73:98: 97:69:3f:68:48:bf:20:1f:ab:16:4f:70:47:cb:46: 61:9e:e4:ac:f9:bf:34:99:4a:ff:28:77:7f:8d:b1: 51:4d:f0:39:6e:3f:f3:2a:2d:e1:36:f6:fc:2e:3c: 21:4b:a6:03:ac:68:7d:41:75:76:d5:92:e6:aa:03: 94:e2:23:4a:84:41:af:3e:28:9d:d4:82:e9:17:8b: fd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:73:23:E7:C0:3E:E1:12:1D:FB:FD:89:72:27:7B:31:62:A5:0C:B3 X509v3 Authority Key Identifier: keyid:79:DF:10:25:35:35:F0:D6:7F:A1:1D:B6:8A:4C:76:34:AA:6A:44:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.24.0/23 IPv6: 2001:df6:7a80::/48 Signature Algorithm: sha256WithRSAEncryption 21:4a:89:28:34:6f:52:8e:dd:37:62:e1:af:90:62:4c:f1:c8: 15:d6:09:65:37:84:0f:56:80:54:34:b0:56:82:85:0e:e0:aa: 20:39:52:dc:6a:7e:89:2b:f2:89:26:e3:23:bf:aa:f6:75:96: a8:40:d2:81:56:77:05:05:ae:3b:3c:ff:41:1a:9a:7e:99:b5: fc:3c:6c:8f:65:e8:13:98:88:de:f6:f5:62:2a:9a:11:37:a6: 1e:82:5c:ee:bf:1c:c2:57:6f:8e:6a:29:3f:4b:86:65:98:83: 0e:8e:b9:27:95:d8:8e:04:ac:9f:fc:ce:5c:95:cd:57:9a:9e: f7:9c:ca:a1:af:1c:8f:d8:b1:62:fd:05:f8:d0:24:d8:29:8e: 8c:94:af:91:df:00:5a:54:9f:96:6f:6e:c9:b4:2d:ac:ef:10: 7c:50:14:a2:76:34:f4:f7:be:e9:33:72:7d:7d:c8:cd:42:10: 88:dc:a0:b6:bb:7e:27:66:b8:fa:13:fc:d4:cc:e7:f4:c3:2e: d8:cf:4b:3a:dc:d1:89:ec:b9:7e:9a:19:a5:54:a1:fe:bd:29: 23:ef:a0:e3:53:76:7d:93:fb:7f:f8:85:a9:f5:51:3b:40:04: 19:36:a4:3d:36:eb:ca:6e:a4:52:40:9c:18:3d:7a:03:3d:15: 33:6a:7f:97 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzcxMTAvBgNVBAUTKDc5REYxMDI1MzUzNUYwRDY3RkExMURCNjhBNEM3NjM0 QUE2QTQ0N0MwHhcNMjUwNjEwMjI1MjAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YjcxMS0wNWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmy882NWb+i2zTGOQZmrylvAsK/HmGYocd+SRKVlX1XbCyR8UZO34NsIrGaG0 en7xh95CGoxbKVVjYOuAeHwt5szGO6Jcekj27uerIqGxpy9aIFXlbmleNAbDk+sL Qguw/pILVm3GKJkVucZZqW27Tg1rwkuIpdntFrcoS0zYCu5yB/ukXXSXse+ypLkI d5e/iKolnfb9+6FT/J4awanSC+EJqmWG4hDBVGzfs+50mwdac5iXaT9oSL8gH6sW T3BHy0ZhnuSs+b80mUr/KHd/jbFRTfA5bj/zKi3hNvb8LjwhS6YDrGh9QXV21ZLm qgOU4iNKhEGvPiid1ILpF4v9TwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKZzI+fA PuESHfv9iXInezFipQyzMB8GA1UdIwQYMBaAFHnfECU1NfDWf6EdtopMdjSqakR8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzNy82NjNEMTgzRTlD RDExMUVCQThEMEJCNTdDNEY5QUUwMi9lZDhRSlRVMThOWl9vUjIyaWt4Mk5LcHFS SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkOFFKVFUxOE5aX29SMjJpa3gyTktwcVJIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzcvNjYzRDE4M0U5Q0QxMTFFQkE4RDBCQjU3QzRGOUFFMDIvQkYxOTVDODI5 Q0QyMTFFQkEwRTNDQjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnphgwDwQCAAIwCQMHACABDfZ6gDANBgkqhkiG9w0BAQsF AAOCAQEAIUqJKDRvUo7dN2Lhr5BiTPHIFdYJZTeED1aAVDSwVoKFDuCqIDlS3Gp+ iSvyiSbjI7+q9nWWqEDSgVZ3BQWuOzz/QRqafpm1/Dxsj2XoE5iI3vb1YiqaETem HoJc7r8cwldvjmopP0uGZZiDDo65J5XYjgSsn/zOXJXNV5qe95zKoa8cj9ixYv0F +NAk2CmOjJSvkd8AWlSflm9uybQtrO8QfFAUonY09Pe+6TNyfX3IzUIQiNygtrt+ J2a4+hP81Mzn9MMu2M9LOtzRiey5fpoZpVSh/r0pI++g41N2fZP7f/iFqfVRO0AE GTakPTbrym6kUkCcGD16Az0VM2p/lw== -----END CERTIFICATE-----Generated at Thu Jun 19 05:20:15 2025 by rpki-client