$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa File: FD9E07EAAB1111EF89574855C4F9AE02.roa (raw, json) Hash identifier: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ= Subject key identifier: 84:D9:05:34:A4:BF:F1:C1:EB:83:B4:B3:07:94:C2:7C:9E:6F:20:53 Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C85 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa Signing time: Tue 17 Jun 2025 14:17:27 +0000 ROA not before: Tue 17 Jun 2025 14:17:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138501 IP address blocks: 103.127.56.0/22 maxlen: 22 103.127.56.0/24 maxlen: 24 103.127.57.0/24 maxlen: 24 103.127.58.0/24 maxlen: 24 103.127.59.0/24 maxlen: 24 2405:9a40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3205 (0xc85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Jun 17 14:17:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=685178f7-9222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:70:e8:4a:7a:a6:9b:71:47:7c:f1:3f:fc:d5: b8:6a:3e:1b:26:dc:59:ee:13:fd:e2:75:8d:c5:c8: d1:18:85:43:e5:63:e3:22:ba:51:d2:33:f5:2d:37: 40:08:b7:34:db:98:d3:a3:b2:3e:00:01:2b:36:ee: 66:b4:ac:2a:ce:c3:53:54:af:ec:fb:ed:ca:2e:3b: 3c:df:49:58:3a:51:ba:50:6c:62:07:9b:d7:ab:90: 5b:5d:25:8f:ce:88:ef:5f:7d:d5:bf:c2:f2:20:da: 68:e7:f7:84:6d:e1:f2:0a:5b:9a:6c:eb:da:51:6f: a7:42:dc:8d:51:26:62:02:87:20:15:e4:9e:7f:b9: 01:a0:6a:53:36:97:72:ff:d6:bb:e3:fe:cd:97:ad: 23:30:76:e3:73:f9:5b:87:42:a6:9d:f1:1d:da:ca: 7c:ac:10:03:16:dd:57:a4:91:5e:fb:8b:67:f0:1a: 7c:15:8d:51:cd:b6:89:5f:15:40:ea:89:d7:4c:f1: 4c:6a:e7:a8:ff:e1:d8:1f:28:57:e2:b6:32:4f:7b: 32:1a:38:60:0e:ed:6e:60:9e:4f:6f:05:00:00:92: 4e:50:d7:d4:ac:38:93:0d:4a:ad:b5:a6:91:8c:13: 81:83:64:d0:df:20:37:31:e9:3f:87:d4:af:ca:08: e5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D9:05:34:A4:BF:F1:C1:EB:83:B4:B3:07:94:C2:7C:9E:6F:20:53 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.56.0/22 IPv6: 2405:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 22:0b:8e:71:81:ff:96:c2:0e:33:69:79:b3:27:6e:ec:4a:d9: 7c:f8:e1:83:dc:cb:a2:62:68:fb:f1:98:31:4b:e3:a1:7b:90: 15:65:3d:02:fc:68:89:16:3b:be:99:e5:90:d8:49:37:06:fb: 54:a8:25:5f:af:f8:e3:b6:97:56:23:e8:79:03:aa:8e:53:9b: 18:17:b5:d4:ee:2a:44:d1:a3:bb:f9:13:3c:98:da:b4:e1:71: f2:87:55:ac:3e:da:0d:d2:75:35:1a:a7:0d:ce:9c:4c:ed:c1: 83:b8:17:88:53:68:d4:dc:38:21:c9:39:55:ef:32:f1:ab:73: fd:17:01:f5:47:2b:a8:74:93:61:ed:71:e6:cd:e7:23:14:29: 5a:4d:bf:a3:a8:8a:0b:10:29:68:82:63:ee:42:bc:c0:d5:6c: 02:33:b4:c5:c1:5a:15:ca:4f:8d:11:ca:2b:a9:36:5a:8e:3d: a6:85:7d:0f:34:3a:ae:bd:64:b7:ce:53:de:76:67:a6:3e:6d: c7:a5:6e:e9:1d:18:f3:11:e9:e3:b0:4c:c2:26:79:fe:54:8e: 8f:d8:e2:00:c6:ef:1b:74:0d:1b:f6:f1:f9:69:cd:a3:5f:33: aa:de:52:1c:05:17:da:f3:c0:dd:bc:b3:80:49:a2:d6:95:89: 81:1d:ca:8d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNjE3MTQxNzI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUxNzhmNy05MjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13DoSnqmm3FHfPE//NW4aj4bJtxZ7hP94nWNxcjRGIVD5WPjIrpR0jP1LTdA CLc025jTo7I+AAErNu5mtKwqzsNTVK/s++3KLjs830lYOlG6UGxiB5vXq5BbXSWP zojvX33Vv8LyINpo5/eEbeHyCluabOvaUW+nQtyNUSZiAocgFeSef7kBoGpTNpdy /9a74/7Nl60jMHbjc/lbh0KmnfEd2sp8rBADFt1XpJFe+4tn8Bp8FY1RzbaJXxVA 6onXTPFMaueo/+HYHyhX4rYyT3syGjhgDu1uYJ5PbwUAAJJOUNfUrDiTDUqttaaR jBOBg2TQ3yA3Mek/h9Svygjl2QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFITZBTSk v/HB64O0sweUwnyebyBTMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVDNjQvNDI1QjQyM0NGRkEzMTFFOTg3MzVBNjg1QzRGOUFFMDIvRkQ5RTA3RUFB QjExMTFFRjg5NTc0ODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfzgwDQQCAAIwBwMFACQFmkAwDQYJKoZIhvcNAQELBQAD ggEBACILjnGB/5bCDjNpebMnbuxK2Xz44YPcy6JiaPvxmDFL46F7kBVlPQL8aIkW O76Z5ZDYSTcG+1SoJV+v+OO2l1Yj6HkDqo5TmxgXtdTuKkTRo7v5EzyY2rThcfKH Vaw+2g3SdTUapw3OnEztwYO4F4hTaNTcOCHJOVXvMvGrc/0XAfVHK6h0k2HtcebN 5yMUKVpNv6OoigsQKWiCY+5CvMDVbAIztMXBWhXKT40RyiupNlqOPaaFfQ80Oq69 ZLfOU952Z6Y+bcelbukdGPMR6eOwTMImef5Ujo/Y4gDG7xt0DRv28flpzaNfM6re UhwFF9rzwN28s4BJotaViYEdyo0= -----END CERTIFICATE-----Generated at Fri Jun 20 19:52:12 2025 by rpki-client