$ rpki-client -vvf rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/C4D7F9DA584111EE85E40820C4F9AE02.roa File: C4D7F9DA584111EE85E40820C4F9AE02.roa (raw, json) Hash identifier: iwHI+lWhCkdLiN75C3FH0nP3GqiBf7AEpFh/Xx5uzNo= Subject key identifier: 68:DD:82:9B:21:8B:B6:1E:0F:98:CF:FE:20:C4:2B:8A:89:92:17:EC Certificate issuer: /CN=A9170829/serialNumber=F897422E501006D2601D85A501795326BAFE7388 Certificate serial: 0171 Authority key identifier: F8:97:42:2E:50:10:06:D2:60:1D:85:A5:01:79:53:26:BA:FE:73:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JdCLlAQBtJgHYWlAXlTJrr-c4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/C4D7F9DA584111EE85E40820C4F9AE02.roa Signing time: Thu 31 Jul 2025 01:06:32 +0000 ROA not before: Thu 31 Jul 2025 01:06:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137427 IP address blocks: 103.151.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/-JdCLlAQBtJgHYWlAXlTJrr-c4g.crl rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/-JdCLlAQBtJgHYWlAXlTJrr-c4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JdCLlAQBtJgHYWlAXlTJrr-c4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170829, serialNumber=F897422E501006D2601D85A501795326BAFE7388 Validity Not Before: Jul 31 01:06:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688ac198-58d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:8b:b7:01:cc:31:9b:29:e5:04:68:7a:62: c2:1e:80:5d:cf:52:7d:e7:a8:1d:7a:fb:51:8b:bb: cf:8c:9c:4c:3a:b7:d6:3d:63:7a:95:e0:02:df:18: ea:7c:42:43:fb:16:27:63:bb:47:b4:94:f5:67:cb: e0:c8:93:e6:c2:fb:25:38:3b:41:c2:12:67:1e:f7: 75:be:91:b5:dc:d0:63:d3:88:60:13:9e:49:2c:8a: b8:80:e8:b5:38:58:64:25:cd:e4:6f:9a:5e:73:da: ee:0b:25:bd:71:9f:f8:14:12:9b:cf:50:88:62:6a: 75:2c:66:27:5e:46:b5:4b:78:2b:46:1a:38:79:bc: 3a:dc:7a:38:41:d3:34:f6:48:cb:ea:53:af:9d:00: 76:31:23:ca:4b:5b:53:b7:8d:e3:a0:3d:64:c3:a5: 6e:f0:0b:b9:3b:c4:d9:0a:9e:fb:69:20:0e:1d:fe: ad:7a:72:02:a7:17:a2:d5:4d:56:1f:11:a1:2a:d6: ca:08:d2:25:63:1f:00:86:18:90:8b:75:08:af:0b: e7:15:e9:6b:06:8a:4f:6c:42:1f:0c:fd:22:4a:f4: c2:6e:54:b8:c1:0b:38:22:27:65:79:d6:39:a8:4b: 1e:0a:33:f4:e8:61:2c:d8:5f:53:ca:e3:ec:68:f2: 7b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DD:82:9B:21:8B:B6:1E:0F:98:CF:FE:20:C4:2B:8A:89:92:17:EC X509v3 Authority Key Identifier: keyid:F8:97:42:2E:50:10:06:D2:60:1D:85:A5:01:79:53:26:BA:FE:73:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/-JdCLlAQBtJgHYWlAXlTJrr-c4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JdCLlAQBtJgHYWlAXlTJrr-c4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170829/7667BED063A011ECAD82991CC4F9AE02/C4D7F9DA584111EE85E40820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.173.0/24 Signature Algorithm: sha256WithRSAEncryption 67:b1:9d:23:f0:10:d1:f2:da:9d:e7:49:67:ea:d5:14:9a:72: 79:c4:d7:9b:5f:fd:61:02:83:5b:40:c4:64:dd:8d:9a:e4:00: 48:c5:80:37:59:88:c0:cf:70:c9:f8:61:c7:14:6b:b1:89:7f: 5e:f0:3d:0e:c6:7a:36:a9:4c:70:3e:c0:f3:8f:44:a6:54:89: db:ac:0b:0a:39:ec:3b:26:26:9f:09:ae:38:6c:a3:63:a6:b8: dd:18:40:16:22:45:ea:fe:fe:18:f3:36:dc:a6:8a:86:f4:11: 8d:39:40:24:b4:82:77:79:75:32:3c:ee:65:0d:5b:c7:2e:b0: 41:27:03:67:2d:88:55:33:74:9b:bd:22:ab:54:dd:23:c2:c3: 03:2a:23:83:76:7b:12:2f:87:34:ba:48:c3:cd:4b:ff:1f:c0: 09:b0:2d:90:76:90:44:91:de:90:e8:df:75:b9:f7:a1:63:85: b0:27:c8:71:a6:4d:97:5b:e8:32:60:4c:c6:52:96:f3:87:09: d2:fe:2d:5d:ff:f7:76:48:d8:1d:a9:14:87:31:dd:6d:17:02: e8:a5:69:49:a4:b7:bd:24:be:1c:37:82:a1:5e:48:a6:59:0e: 1d:d4:14:00:0c:f7:26:4d:77:1c:c3:5b:aa:81:d1:da:2b:66: f3:c1:bf:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA4MjkxMTAvBgNVBAUTKEY4OTc0MjJFNTAxMDA2RDI2MDFEODVBNTAxNzk1MzI2 QkFGRTczODgwHhcNMjUwNzMxMDEwNjMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhYzE5OC01OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmiLtwHMMZsp5QRoemLCHoBdz1J956gdevtRi7vPjJxMOrfWPWN6leAC3xjq fEJD+xYnY7tHtJT1Z8vgyJPmwvslODtBwhJnHvd1vpG13NBj04hgE55JLIq4gOi1 OFhkJc3kb5pec9ruCyW9cZ/4FBKbz1CIYmp1LGYnXka1S3grRho4ebw63Ho4QdM0 9kjL6lOvnQB2MSPKS1tTt43joD1kw6Vu8Au5O8TZCp77aSAOHf6tenICpxei1U1W HxGhKtbKCNIlYx8AhhiQi3UIrwvnFelrBopPbEIfDP0iSvTCblS4wQs4IidledY5 qEseCjP06GEs2F9TyuPsaPJ7wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGjdgpsh i7YeD5jP/iDEK4qJkhfsMB8GA1UdIwQYMBaAFPiXQi5QEAbSYB2FpQF5Uya6/nOI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDgyOS83NjY3QkVEMDYz QTAxMUVDQUQ4Mjk5MUNDNEY5QUUwMi8tSmRDTGxBUUJ0SmdIWVdsQVhsVEpyci1j NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KZENMbEFRQnRKZ0hZV2xBWGxUSnJyLWM0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA4MjkvNzY2N0JFRDA2M0EwMTFFQ0FEODI5OTFDQzRGOUFFMDIvQzREN0Y5REE1 ODQxMTFFRTg1RTQwODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnl60wDQYJKoZIhvcNAQELBQADggEBAGexnSPwENHy2p3n SWfq1RSacnnE15tf/WECg1tAxGTdjZrkAEjFgDdZiMDPcMn4YccUa7GJf17wPQ7G ejapTHA+wPOPRKZUidusCwo57DsmJp8Jrjhso2OmuN0YQBYiRer+/hjzNtymiob0 EY05QCS0gnd5dTI87mUNW8cusEEnA2ctiFUzdJu9IqtU3SPCwwMqI4N2exIvhzS6 SMPNS/8fwAmwLZB2kESR3pDo33W596FjhbAnyHGmTZdb6DJgTMZSlvOHCdL+LV3/ 93ZI2B2pFIcx3W0XAuilaUmkt70kvhw3gqFeSKZZDh3UFAAM9yZNdxzDW6qB0dor ZvPBv3s= -----END CERTIFICATE-----Generated at Mon Aug 11 10:09:14 2025 by rpki-client