$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa File: 97A9C872450611F093EC3A65C4F9AE02.roa (raw, json) Hash identifier: qHB1qFpvB/X4qPBj+yXYeUW8QRac4CCty8+o9xHqsdY= Subject key identifier: F5:B8:0D:CD:96:F9:4B:9A:9B:1D:93:6F:43:41:1D:24:45:C8:45:E8 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 1423 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa Signing time: Mon 09 Jun 2025 07:51:47 +0000 ROA not before: Mon 09 Jun 2025 07:51:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 401696 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5155 (0x1423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jun 9 07:51:47 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68469292-862e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:c8:6e:6c:6c:2c:c6:0c:5c:62:da:fd:c0:03: e5:c5:96:7f:39:ee:5c:4c:fd:fb:5f:8e:82:08:46: 36:49:dd:4f:1f:a9:33:75:c6:bf:7e:12:8a:19:03: b9:aa:f2:33:e1:66:4a:4c:a6:b6:5d:f7:dc:c3:24: cd:8e:e7:d8:59:39:68:fe:8c:4a:49:6f:b4:cb:08: f1:b7:f6:5c:65:98:8f:02:94:46:23:d3:c8:5d:81: c7:a7:9b:72:e7:7e:16:a3:f8:2c:c8:36:79:a9:16: c4:d1:e1:72:04:e8:1f:55:6b:f6:71:37:66:6c:96: 3c:57:09:ad:3f:b4:41:06:da:5a:04:d5:92:b2:a6: b0:e9:f9:50:ba:dd:4c:25:51:4e:55:ff:61:62:3d: 69:c7:f4:7b:e7:16:1b:a1:d1:c5:56:8d:73:2d:dc: 45:13:03:27:dc:a6:cc:ad:42:aa:7e:bf:03:9b:50: ed:fe:62:40:f4:83:7e:8f:ec:ad:ed:66:3f:25:38: 37:94:c1:eb:48:56:58:24:66:6e:e2:b6:82:31:13: c5:ec:c5:3d:f3:9a:ba:76:6d:63:7c:26:62:24:e3: 4a:66:44:20:2f:5a:d5:98:25:e9:ca:ce:c3:b5:b6: af:0d:5d:5f:29:1d:c5:38:de:b1:f8:f5:76:74:d7: c5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B8:0D:CD:96:F9:4B:9A:9B:1D:93:6F:43:41:1D:24:45:C8:45:E8 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/97A9C872450611F093EC3A65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 Signature Algorithm: sha256WithRSAEncryption 36:53:0c:57:8c:83:ed:24:6c:0d:cd:26:d9:f7:e0:27:ff:83: 10:77:90:8a:1f:d3:f1:de:0e:0f:83:a3:8d:91:3e:af:d9:86: 01:0f:c0:ed:58:33:58:72:85:3c:d2:1b:c6:91:42:86:9b:c1: 30:cb:67:47:96:bf:e1:ba:43:7c:62:1d:15:43:eb:2d:d3:42: 9e:35:c3:79:58:1c:84:f9:3c:55:48:54:5c:62:cc:c7:55:78: 60:df:2b:95:86:e3:5d:b4:76:e9:db:bb:39:46:30:80:d6:96: ff:a6:9a:18:a5:ed:a3:06:a8:1b:d1:87:10:74:4b:3b:cf:ac: 37:9d:b0:19:1c:5d:82:80:21:03:b0:5b:6f:3a:50:88:93:79: cd:8d:58:a4:ab:12:a2:e7:e2:22:18:1e:20:18:49:4a:12:77: 80:04:46:bf:e3:3b:ac:44:68:5a:98:67:9e:f1:16:87:4c:b6: 53:8b:ad:d4:5d:de:01:c7:ea:21:ee:92:b8:b6:b2:08:87:99: 2d:1a:c3:88:00:11:d7:c4:70:4c:83:d8:81:65:a5:70:c4:d5: 65:99:0f:c3:71:f2:89:8e:1e:f8:3b:9b:95:22:08:3d:65:ca: 8d:47:9b:a4:cf:67:19:eb:cb:78:01:f0:ae:b4:f3:0f:7a:75: 87:4c:96:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwNjA5MDc1MTQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2OTI5Mi04NjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/shubGwsxgxcYtr9wAPlxZZ/Oe5cTP37X46CCEY2Sd1PH6kzdca/fhKKGQO5 qvIz4WZKTKa2XffcwyTNjufYWTlo/oxKSW+0ywjxt/ZcZZiPApRGI9PIXYHHp5ty 534Wo/gsyDZ5qRbE0eFyBOgfVWv2cTdmbJY8VwmtP7RBBtpaBNWSsqaw6flQut1M JVFOVf9hYj1px/R75xYbodHFVo1zLdxFEwMn3KbMrUKqfr8Dm1Dt/mJA9IN+j+yt 7WY/JTg3lMHrSFZYJGZu4raCMRPF7MU985q6dm1jfCZiJONKZkQgL1rVmCXpys7D tbavDV1fKR3FON6x+PV2dNfFJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPW4Dc2W +Uuamx2Tb0NBHSRFyEXoMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvOTdBOUM4NzI0 NTA2MTFGMDkzRUMzQTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnarwDBAJndPQwDQYJKoZIhvcNAQELBQADggEBADZTDFeM g+0kbA3NJtn34Cf/gxB3kIof0/HeDg+Do42RPq/ZhgEPwO1YM1hyhTzSG8aRQoab wTDLZ0eWv+G6Q3xiHRVD6y3TQp41w3lYHIT5PFVIVFxizMdVeGDfK5WG4120dunb uzlGMIDWlv+mmhil7aMGqBvRhxB0SzvPrDedsBkcXYKAIQOwW286UIiTec2NWKSr EqLn4iIYHiAYSUoSd4AERr/jO6xEaFqYZ57xFodMtlOLrdRd3gHH6iHukri2sgiH mS0aw4gAEdfEcEyD2IFlpXDE1WWZD8Nx8omOHvg7m5UiCD1lyo1Hm6TPZxnry3gB 8K608w96dYdMlmo= -----END CERTIFICATE-----Generated at Thu Jun 19 14:07:48 2025 by rpki-client