$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BCE8827C4EB011ECA708A867C4F9AE02.roa File: BCE8827C4EB011ECA708A867C4F9AE02.roa (raw, json) Hash identifier: 6UFCXsHGkBs9mNJ/P0P2x3t8KMswz8UkcFEG5pRtYR0= Subject key identifier: 47:99:C5:E6:8A:30:A7:66:A1:C2:AE:8A:4C:4C:8D:B1:E1:F2:6C:0C Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0540 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BCE8827C4EB011ECA708A867C4F9AE02.roa Signing time: Fri 13 Jun 2025 14:10:45 +0000 ROA not before: Fri 13 Jun 2025 14:10:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 209242 IP address blocks: 103.135.208.0/22 maxlen: 22 103.172.110.0/23 maxlen: 23 103.204.13.0/24 maxlen: 24 203.168.128.0/22 maxlen: 22 2001:df7:6e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jun 13 14:10:45 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=684c3165-ed9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bc:82:a4:57:ff:89:90:0e:2f:a4:67:07:e9: c1:c6:67:c9:ab:74:a5:75:fb:09:4b:cb:80:da:7f: d3:27:99:83:68:15:6c:a9:30:f6:57:8a:11:04:67: b1:95:6e:2f:43:6d:84:3f:fe:6d:6c:a3:06:11:0c: 57:45:00:b9:28:04:66:7e:6b:ca:2d:10:a2:c6:34: 06:2a:c1:49:28:8b:ba:bf:41:46:fc:2f:b7:93:89: 94:a8:fe:ac:48:33:59:61:6e:91:c9:a1:e4:38:43: c0:67:d7:da:ea:c1:7a:08:6a:00:70:f4:9f:4c:cc: 11:18:57:33:13:c5:f9:15:cb:d3:0e:35:66:c3:dc: 13:9c:30:72:ce:ea:cc:c3:e3:05:a5:cd:c6:5c:ce: db:ce:24:90:f5:1b:3a:7f:e7:6a:ae:42:15:be:ed: db:64:a2:1b:7f:05:33:e5:63:31:f4:5b:3c:3b:26: 7b:14:fa:79:76:db:29:8d:43:19:f3:f0:16:96:a4: a4:4f:bb:35:bf:9d:db:75:ef:35:5a:0a:ea:4f:f5: 28:e6:fc:db:d5:e2:6d:59:69:ea:bd:2b:10:ca:9f: 24:ac:80:76:73:fc:18:91:6c:c6:6f:59:72:d2:8f: cd:14:d3:53:ae:aa:29:19:95:32:46:0e:91:0f:68: f7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:99:C5:E6:8A:30:A7:66:A1:C2:AE:8A:4C:4C:8D:B1:E1:F2:6C:0C X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BCE8827C4EB011ECA708A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 103.172.110.0/23 103.204.13.0/24 203.168.128.0/22 IPv6: 2001:df7:6e80::/48 Signature Algorithm: sha256WithRSAEncryption 08:03:ec:1a:f2:ef:b7:43:d5:4e:90:73:76:f3:65:23:11:14: c0:6f:54:5b:2e:28:6f:6a:f8:eb:59:b9:a4:fd:cf:bd:b2:29: a9:ce:68:ed:e4:8d:a8:56:2c:de:73:dc:9b:f9:2b:12:58:56: bf:89:df:5e:f0:00:a0:f9:01:95:1b:07:b1:73:cf:3a:4e:78: 8e:ae:e8:39:51:42:d6:de:17:05:d4:9a:49:87:f6:11:47:39: 42:d2:04:3f:99:f1:14:d9:b6:35:59:06:e5:1a:a7:93:32:18: 3a:95:00:f5:c9:5c:5b:1a:1a:25:49:46:5a:04:aa:b5:1f:d2: 4f:ab:cc:34:c9:70:49:d2:75:4e:25:d3:e5:29:b5:4f:7c:b4: 3a:8f:00:2a:ab:a7:d2:d0:1b:05:45:31:93:cd:6c:fc:97:11: 50:91:da:29:fb:f4:2d:a4:67:96:6f:1a:bf:99:2e:af:a4:e3: f3:b7:97:af:48:bc:ac:e5:ed:55:3f:8c:dc:51:b5:11:e3:b7: 85:bd:17:42:c8:16:42:aa:92:68:94:1d:be:03:38:9a:0c:49: 06:ac:db:9f:a9:64:46:e3:86:b0:f9:7f:2a:25:a7:4a:57:cf: bf:84:92:bd:4d:e9:29:e4:14:b5:4f:6d:d4:a7:f3:4c:0e:1a: 8b:54:bf:0b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwNjEzMTQxMDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRjMzE2NS1lZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7yCpFf/iZAOL6RnB+nBxmfJq3SldfsJS8uA2n/TJ5mDaBVsqTD2V4oRBGex lW4vQ22EP/5tbKMGEQxXRQC5KARmfmvKLRCixjQGKsFJKIu6v0FG/C+3k4mUqP6s SDNZYW6RyaHkOEPAZ9fa6sF6CGoAcPSfTMwRGFczE8X5FcvTDjVmw9wTnDByzurM w+MFpc3GXM7bziSQ9Rs6f+dqrkIVvu3bZKIbfwUz5WMx9Fs8OyZ7FPp5dtspjUMZ 8/AWlqSkT7s1v53bde81WgrqT/Uo5vzb1eJtWWnqvSsQyp8krIB2c/wYkWzGb1ly 0o/NFNNTrqopGZUyRg6RD2j3vwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFEeZxeaK MKdmocKuikxMjbHh8mwMMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQkNFODgyN0M0 RUIwMTFFQ0E3MDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAJnh9ADBAFnrG4DBABnzA0DBALLqIAwDwQCAAIwCQMHACAB DfdugDANBgkqhkiG9w0BAQsFAAOCAQEACAPsGvLvt0PVTpBzdvNlIxEUwG9UWy4o b2r461m5pP3PvbIpqc5o7eSNqFYs3nPcm/krElhWv4nfXvAAoPkBlRsHsXPPOk54 jq7oOVFC1t4XBdSaSYf2EUc5QtIEP5nxFNm2NVkG5RqnkzIYOpUA9clcWxoaJUlG WgSqtR/ST6vMNMlwSdJ1TiXT5Sm1T3y0Oo8AKqun0tAbBUUxk81s/JcRUJHaKfv0 LaRnlm8av5kur6Tj87eXr0i8rOXtVT+M3FG1EeO3hb0XQsgWQqqSaJQdvgM4mgxJ Bqzbn6lkRuOGsPl/KiWnSlfPv4SSvU3pKeQUtU9t1KfzTA4ai1S/Cw== -----END CERTIFICATE-----Generated at Wed Jun 18 06:43:20 2025 by rpki-client