$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa File: F23B6474DCCB11EFA04C156DC4F9AE02.roa (raw, json) Hash identifier: g65ejbm+l69Ptue1On4uxEa8cqbfVm8kgqBG4BRL7rA= Subject key identifier: EA:23:79:57:B9:C5:6A:38:82:5F:AE:C8:95:DE:E1:AD:D8:0A:C1:05 Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: 71 Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa Signing time: Tue 03 Jun 2025 01:14:12 +0000 ROA not before: Tue 03 Jun 2025 01:14:12 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 137964 IP address blocks: 103.183.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 00:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70, serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: Jun 3 01:14:12 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683e4c64-fa6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:44:30:d0:2f:c8:e1:7d:7e:f9:a6:98:07:d1: ee:5b:96:d7:c4:9d:cf:d0:ed:11:e4:83:84:d2:d1: af:9f:a6:59:4e:4e:2d:83:e7:99:2c:c7:a5:b5:9e: f3:13:57:8d:a4:2f:cb:97:af:64:69:03:c6:84:9a: c5:fb:a5:38:c2:3a:21:cb:9a:89:5b:5a:f3:a6:af: 48:ab:62:de:2a:48:32:ed:df:9e:c6:d5:fc:13:43: dc:84:b2:ef:c1:f3:e2:ec:00:ba:1f:58:b8:01:9c: 04:6e:1b:2d:a3:14:f1:66:e2:9a:00:3b:40:27:02: 5b:e9:18:9d:ce:d7:8e:49:b6:16:e6:e5:fc:71:13: d0:58:56:35:5b:94:ca:b1:65:42:57:6d:8a:c0:46: 34:cb:14:9d:46:25:a8:45:4d:af:94:72:18:4f:b7: aa:1d:d6:f5:9b:d5:dd:a8:a2:bb:76:fd:2f:d5:c2: 89:60:5b:3f:a8:7a:5d:df:c3:94:1b:54:ea:12:46: cf:71:b0:eb:c9:88:55:87:2f:61:8b:23:f5:c9:ea: 64:8c:e3:76:2b:59:de:56:e2:c2:12:4d:f6:fc:7b: c5:98:29:94:c2:9e:02:58:fb:a1:87:3c:1b:6c:d5: dd:66:4f:7d:69:16:68:da:db:23:30:c9:6f:2c:75: 1b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:23:79:57:B9:C5:6A:38:82:5F:AE:C8:95:DE:E1:AD:D8:0A:C1:05 X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.117.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:32:42:d5:ba:e0:f2:8d:f3:77:a3:ee:e2:6d:76:f3:d8:05: 95:31:a7:22:00:59:c8:38:21:c6:20:f5:2b:89:db:99:06:68: ca:9d:6b:a0:3a:ec:7e:c6:6f:0f:05:90:84:76:ec:de:e1:dd: d3:1d:c8:2d:bc:a5:55:e0:94:48:05:47:4e:46:e6:4d:8a:a8: 06:9f:d5:a9:49:24:fa:e0:9e:12:29:f9:a6:32:8a:f1:a0:83: ce:76:1e:a3:b5:86:2d:1c:f4:00:39:b7:1e:1d:db:9c:00:99: c6:5e:36:73:f9:9b:0f:c1:f7:1a:c2:86:0a:70:7a:e2:20:49: 37:e9:f7:70:a1:91:dd:a7:70:a8:ea:bf:3d:0e:32:18:d0:2e: e0:6f:7c:e0:d1:a4:75:01:e7:81:5e:9d:84:9e:92:53:e0:1d: 2c:bf:4f:d4:a7:71:45:19:ee:49:47:08:e1:4f:d9:05:78:c8: e7:8d:d4:a2:b4:73:84:a8:37:20:af:ea:da:db:e0:08:3e:f8: 68:e0:88:2f:f2:ca:44:09:fa:b0:25:71:2c:a3:8f:05:43:47: ed:6a:77:16:da:8d:36:7f:19:0d:e2:0b:8d:c9:c0:d7:fa:a0: 29:60:a6:bd:5a:38:78:6e:6a:67:09:45:21:49:2f:af:96:a8: 6e:e5:18:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEM3MDExMC8GA1UEBRMoMDI4OUUxRTA4MkI2REExQUJBNTU1Mjg0MEMwQ0FCMDJD MkEzQjc0RTAeFw0yNTA2MDMwMTE0MTJaFw0yNTEwMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2U0YzY0LWZhNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkRDDQL8jhfX75ppgH0e5bltfEnc/Q7RHkg4TS0a+fpllOTi2D55ksx6W1nvMT V42kL8uXr2RpA8aEmsX7pTjCOiHLmolbWvOmr0irYt4qSDLt357G1fwTQ9yEsu/B 8+LsALofWLgBnARuGy2jFPFm4poAO0AnAlvpGJ3O145Jthbm5fxxE9BYVjVblMqx ZUJXbYrARjTLFJ1GJahFTa+UchhPt6od1vWb1d2oort2/S/VwolgWz+oel3fw5Qb VOoSRs9xsOvJiFWHL2GLI/XJ6mSM43YrWd5W4sISTfb8e8WYKZTCngJY+6GHPBts 1d1mT31pFmja2yMwyW8sdRs9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6iN5V7nF ajiCX67Ild7hrdgKwQUwHwYDVR0jBBgwFoAUAonh4IK22hq6VVKEDAyrAsKjt04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0QzcwLzgyQkM4NEVFQUM2 NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQW9uaDRJSzIyaHE2VlZLRURBeXJBc0tqdDA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEM3MC84MkJDODRFRUFDNjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9GMjNCNjQ3NERD Q0IxMUVGQTA0QzE1NkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe3dTANBgkqhkiG9w0BAQsFAAOCAQEAXTJC1brg8o3zd6Pu 4m1289gFlTGnIgBZyDghxiD1K4nbmQZoyp1roDrsfsZvDwWQhHbs3uHd0x3ILbyl VeCUSAVHTkbmTYqoBp/VqUkk+uCeEin5pjKK8aCDznYeo7WGLRz0ADm3Hh3bnACZ xl42c/mbD8H3GsKGCnB64iBJN+n3cKGR3adwqOq/PQ4yGNAu4G984NGkdQHngV6d hJ6SU+AdLL9P1KdxRRnuSUcI4U/ZBXjI543UorRzhKg3IK/q2tvgCD74aOCIL/LK RAn6sCVxLKOPBUNH7Wp3FtqNNn8ZDeILjcnA1/qgKWCmvVo4eG5qZwlFIUkvr5ao buUYnA== -----END CERTIFICATE-----Generated at Wed Jun 18 06:41:50 2025 by rpki-client