$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa File: C0A21C70A4A711EA835CCA70C4F9AE02.roa (raw, json) Hash identifier: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc= Subject key identifier: 57:66:2F:D7:34:45:9F:66:BF:08:66:1D:EB:33:C6:0C:9B:86:E1:3C Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 0904 Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa Signing time: Sat 26 Apr 2025 20:30:01 +0000 ROA not before: Sat 26 Apr 2025 20:30:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9381 IP address blocks: 103.234.220.0/24 maxlen: 24 150.129.34.0/24 maxlen: 24 150.129.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Apr 26 20:30:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680d4248-7652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e0:7c:c4:b2:de:9f:b7:04:30:aa:17:64:a7: 86:15:a7:4d:54:b1:e6:d1:c5:f0:f3:94:5b:8d:62: 9f:0d:6c:ac:5b:18:96:cc:2c:f8:46:4a:39:92:91: cb:08:32:88:0f:45:c0:40:0f:3f:89:ed:d6:74:c6: 5e:c0:5c:04:1f:21:bd:fe:a3:35:86:ab:78:53:5d: af:7a:fb:94:77:05:65:1e:60:fc:d8:25:ac:54:99: 9e:26:e6:21:7c:e7:23:3d:4e:f9:3c:0d:1e:1f:72: a7:7d:d4:54:87:f1:8d:38:54:49:37:db:1f:a8:0c: 39:c6:db:8b:c1:26:57:5e:b4:36:c1:cd:c5:43:6e: 63:68:d6:85:cf:1b:4e:cf:15:f0:f1:1e:53:5f:dc: 75:bc:c6:ac:21:e3:a3:48:35:bd:4c:71:b3:67:28: 05:c7:25:c1:5b:3f:fc:90:ce:e1:27:d6:4b:6d:3f: ec:94:cc:45:a5:a6:7c:8b:47:32:57:cf:b2:59:44: 18:e3:00:57:4b:a9:0a:0e:96:02:a3:d3:79:8c:eb: 7f:3e:0c:16:bc:3b:d1:08:8c:05:8f:8d:64:77:17: 1c:97:17:4b:48:fe:f7:1e:e0:a1:51:e4:12:41:59: 3a:82:c4:5c:7c:06:90:66:14:a2:63:ab:0a:20:e4: cf:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:66:2F:D7:34:45:9F:66:BF:08:66:1D:EB:33:C6:0C:9B:86:E1:3C X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.220.0/24 150.129.34.0/23 Signature Algorithm: sha256WithRSAEncryption aa:d3:85:bb:e1:a2:ef:da:47:0f:db:3a:0b:1a:0e:27:97:73: 47:1c:14:d3:d8:f4:b7:3c:4f:07:06:cf:88:46:f9:a3:18:48: f4:dd:3a:d4:e8:d7:8f:37:a7:51:85:e4:9f:4f:4f:b6:e9:b7: c5:00:a7:5f:76:77:bc:ef:c4:4e:89:e5:ca:ac:4b:7f:99:ce: f0:0f:f0:ef:ce:00:4c:1b:73:14:4b:e2:79:2f:10:21:7d:31: ef:39:d6:48:b0:19:eb:89:d1:ac:75:bc:d5:71:f6:2b:b5:2f: c9:d5:98:63:09:a4:90:83:90:ce:98:43:6e:d3:58:c1:51:24: 8a:3b:71:a4:24:89:55:ce:d4:e5:1a:15:17:cc:fd:8f:3d:af: 12:42:6c:49:74:da:0a:3b:51:a2:73:3c:e5:a5:f5:7b:e1:00: 9b:20:5b:f2:91:77:68:b2:d2:aa:a2:a9:77:ee:68:23:9f:d8: ea:0f:d5:61:3f:ee:42:62:42:85:90:07:4e:f1:69:34:2c:58: d0:2c:c9:51:a8:3e:85:61:8f:d5:c3:2b:27:6a:08:10:3e:ed: 6f:27:9d:a0:29:c6:db:1b:4e:47:33:8e:e6:1a:6a:43:37:a5: 33:b1:3e:3b:25:c2:58:e9:2d:07:c9:4f:06:60:ee:b6:ac:61: d6:c0:4c:ef -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUwNDI2MjAzMDAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkNDI0OC03NjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+B8xLLen7cEMKoXZKeGFadNVLHm0cXw85RbjWKfDWysWxiWzCz4Rko5kpHL CDKID0XAQA8/ie3WdMZewFwEHyG9/qM1hqt4U12vevuUdwVlHmD82CWsVJmeJuYh fOcjPU75PA0eH3KnfdRUh/GNOFRJN9sfqAw5xtuLwSZXXrQ2wc3FQ25jaNaFzxtO zxXw8R5TX9x1vMasIeOjSDW9THGzZygFxyXBWz/8kM7hJ9ZLbT/slMxFpaZ8i0cy V8+yWUQY4wBXS6kKDpYCo9N5jOt/PgwWvDvRCIwFj41kdxcclxdLSP73HuChUeQS QVk6gsRcfAaQZhSiY6sKIOTPjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFdmL9c0 RZ9mvwhmHeszxgybhuE8MB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU2MDQvQkNFQzZDNUVBNEEwMTFFQThGQkFCNDVEQzRGOUFFMDIvQzBBMjFDNzBB NEE3MTFFQTgzNUNDQTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn6twDBAGWgSIwDQYJKoZIhvcNAQELBQADggEBAKrThbvh ou/aRw/bOgsaDieXc0ccFNPY9Lc8TwcGz4hG+aMYSPTdOtTo1483p1GF5J9PT7bp t8UAp192d7zvxE6J5cqsS3+ZzvAP8O/OAEwbcxRL4nkvECF9Me851kiwGeuJ0ax1 vNVx9iu1L8nVmGMJpJCDkM6YQ27TWMFRJIo7caQkiVXO1OUaFRfM/Y89rxJCbEl0 2go7UaJzPOWl9XvhAJsgW/KRd2iy0qqiqXfuaCOf2OoP1WE/7kJiQoWQB07xaTQs WNAsyVGoPoVhj9XDKydqCBA+7W8nnaApxtsbTkczjuYaakM3pTOxPjslwljpLQfJ TwZg7rasYdbATO8= -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:35 2025 by rpki-client