$ rpki-client -vvf rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa File: 8789C45E384311EAAA40EE51C4F9AE02.roa (raw, json) Hash identifier: MAWDNXgpu9PgJn7Gnnkwa2ICesKD1B+IPcDJf1k8UoI= Subject key identifier: 8D:75:BA:F7:F7:52:19:B8:47:F8:29:BB:BF:D4:1B:D8:B3:A0:A1:B4 Certificate issuer: /CN=A9154534/serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Certificate serial: 0B4D Authority key identifier: 55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa Signing time: Thu 12 Jun 2025 19:34:26 +0000 ROA not before: Thu 12 Jun 2025 19:34:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137510 IP address blocks: 103.220.4.0/22 maxlen: 24 2405:7f80::/32 maxlen: 32 2405:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154534, serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Validity Not Before: Jun 12 19:34:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684b2bc2-0803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:4a:20:d6:72:a0:9c:4a:ef:e1:5d:3c:20: 0f:46:85:2a:f7:e0:ed:7b:cb:78:4c:38:52:b0:d9: 71:9e:ff:71:69:fb:db:27:d8:03:af:18:c1:4a:e9: 14:f9:77:de:e4:e3:71:af:63:49:2e:cd:bc:8a:fc: 82:57:de:b9:96:84:15:b9:65:5c:f2:62:57:fd:01: 4c:92:a0:a3:de:88:58:f1:ac:45:e3:42:a0:78:be: 46:c1:48:dc:8e:04:e3:80:87:f1:bd:7b:8c:31:ae: 29:e6:af:81:82:a6:9f:1c:65:e9:d8:02:23:90:b4: fa:34:24:89:2f:4d:b8:df:ed:57:af:45:b5:59:c4: 77:42:e4:e4:5f:cd:47:fc:bf:98:cd:f1:75:24:9a: 32:36:06:f1:0c:26:82:f9:d9:f9:1f:7a:70:3d:66: 1e:01:01:80:cb:1b:f3:2c:9f:78:13:5a:78:74:af: 72:e6:0e:a5:01:05:ab:15:3b:3b:db:c2:2f:aa:a9: 05:cd:a9:01:14:85:9a:46:e1:60:09:c2:77:72:89: ab:e9:73:b0:ce:a3:f1:1f:dd:be:24:5a:7e:ef:75: 35:83:2f:7f:f3:81:07:b2:99:fd:71:38:6c:58:9a: fd:42:11:0b:a9:28:24:e4:35:15:5a:c4:37:9f:8e: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:75:BA:F7:F7:52:19:B8:47:F8:29:BB:BF:D4:1B:D8:B3:A0:A1:B4 X509v3 Authority Key Identifier: keyid:55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.220.4.0/22 IPv6: 2405:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 98:5f:3c:25:64:a7:44:9b:19:22:23:36:07:80:28:37:0a:0e: 36:9e:11:12:b5:c2:41:d8:af:76:62:10:d8:29:4d:40:a7:3f: 64:c1:51:d8:76:e9:22:c3:ee:8c:14:b2:41:88:59:5f:9c:d9: 45:17:9d:a9:d4:b4:b9:20:5b:49:03:83:b9:b8:1f:ac:96:f0: b6:b8:92:cc:1a:54:f6:9f:ea:ca:35:5f:c3:3b:64:f8:1d:2f: c8:df:7e:06:fd:8a:10:3d:be:8d:a3:b7:21:06:0e:f7:2c:e6: 5d:db:ee:c8:29:34:4a:37:54:68:f3:84:11:13:d8:87:3d:98: 05:b2:4f:8b:6d:f6:fd:7c:14:21:74:da:75:45:fb:30:00:cc: 82:86:47:a2:bc:97:89:af:35:92:e7:85:b8:a5:8b:15:83:c0: 07:e3:a3:8d:9a:2b:eb:8b:44:59:80:79:9a:c4:1b:71:47:37: f9:c8:23:08:63:a4:76:17:76:67:77:b5:e7:fa:51:28:ff:0d: 4e:85:57:1f:b8:62:e2:40:18:26:cd:7a:a4:35:59:e3:6a:29: f6:43:c0:d0:bb:05:bd:aa:c8:ec:eb:50:4b:bf:73:87:7b:06: c3:77:bf:d4:27:9e:59:79:0c:00:45:e4:bd:c6:62:12:46:6d: b0:35:4d:25 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MzQxMTAvBgNVBAUTKDU1QzQ2ODU1Q0M5MUFDNTRBQzA3NUMyOTdCNzUzMUZB ODhBNzM1RDkwHhcNMjUwNjEyMTkzNDI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiMmJjMi0wODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPhKINZyoJxK7+FdPCAPRoUq9+Dte8t4TDhSsNlxnv9xafvbJ9gDrxjBSukU +Xfe5ONxr2NJLs28ivyCV965loQVuWVc8mJX/QFMkqCj3ohY8axF40KgeL5GwUjc jgTjgIfxvXuMMa4p5q+BgqafHGXp2AIjkLT6NCSJL0243+1Xr0W1WcR3QuTkX81H /L+YzfF1JJoyNgbxDCaC+dn5H3pwPWYeAQGAyxvzLJ94E1p4dK9y5g6lAQWrFTs7 28IvqqkFzakBFIWaRuFgCcJ3comr6XOwzqPxH92+JFp+73U1gy9/84EHspn9cThs WJr9QhELqSgk5DUVWsQ3n45ZXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI11uvf3 Uhm4R/gpu7/UG9izoKG0MB8GA1UdIwQYMBaAFFXEaFXMkaxUrAdcKXt1MfqIpzXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUzNC9CRDI2OTA5RTM4 NDExMUVBOUZFRDVENEZDNEY5QUUwMi9WY1JvVmN5UnJGU3NCMXdwZTNVeC1vaW5O ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZjUm9WY3lSckZTc0Ixd3BlM1V4LW9pbk5kay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ1MzQvQkQyNjkwOUUzODQxMTFFQTlGRUQ1RDRGQzRGOUFFMDIvODc4OUM0NUUz ODQzMTFFQUFBNDBFRTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn3AQwDQQCAAIwBwMFACQFf4AwDQYJKoZIhvcNAQELBQAD ggEBAJhfPCVkp0SbGSIjNgeAKDcKDjaeERK1wkHYr3ZiENgpTUCnP2TBUdh26SLD 7owUskGIWV+c2UUXnanUtLkgW0kDg7m4H6yW8La4kswaVPaf6so1X8M7ZPgdL8jf fgb9ihA9vo2jtyEGDvcs5l3b7sgpNEo3VGjzhBET2Ic9mAWyT4tt9v18FCF02nVF +zAAzIKGR6K8l4mvNZLnhbilixWDwAfjo42aK+uLRFmAeZrEG3FHN/nIIwhjpHYX dmd3tef6USj/DU6FVx+4YuJAGCbNeqQ1WeNqKfZDwNC7Bb2qyOzrUEu/c4d7BsN3 v9Qnnll5DABF5L3GYhJGbbA1TSU= -----END CERTIFICATE-----Generated at Thu Jun 19 12:17:50 2025 by rpki-client