$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa File: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (raw, json) Hash identifier: ZlGg1d2CMvxXbe2cdJaMpBCrBVtHW8eJFry9EmWD8kk= Subject key identifier: B3:44:FD:64:A5:FC:24:EA:58:B0:15:9D:B4:10:9B:0F:6B:37:5A:7E Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Certificate serial: 05A5 Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa Signing time: Tue 29 Jul 2025 00:05:48 +0000 ROA not before: Tue 29 Jul 2025 00:05:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142557 IP address blocks: 103.169.94.0/24 maxlen: 24 103.169.95.0/24 maxlen: 24 2001:df6:f380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171C23, serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Validity Not Before: Jul 29 00:05:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6888105c-4cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:47:1c:1a:62:f1:14:1c:1d:7b:dc:5a:75: 5f:86:b7:67:71:d9:a4:10:0b:1b:64:7d:e3:3d:57: 24:cf:e6:37:17:b8:62:17:41:2d:5f:dc:91:a1:23: a2:73:89:f4:7a:fb:52:20:f4:da:d3:c7:1d:b4:54: fd:c1:db:68:ac:e0:01:ea:f8:b7:93:cc:f4:8a:d5: bf:7c:57:d2:4d:a1:e0:d7:3f:c9:58:c6:d8:de:5c: 65:57:f9:11:5b:e5:4b:85:54:6d:42:88:c6:47:67: dc:2b:96:fd:ae:42:3b:c1:a1:a5:de:23:72:83:73: 11:a4:9a:7b:e7:67:ea:94:09:b2:2b:16:31:41:2c: a3:ed:77:f1:e7:b6:a0:1d:58:09:e0:49:61:b5:5c: b4:5f:f9:60:e7:f1:4e:f5:66:fc:c6:3c:63:fe:b7: d1:e3:8a:93:45:05:31:65:bf:29:10:df:38:4b:38: a3:71:41:02:46:e4:57:38:d9:c9:69:be:e2:f2:30: 09:f2:f0:e1:a9:69:98:d1:a2:ba:93:40:c9:55:e5: 13:05:80:f0:0c:1a:ac:7b:da:dd:d4:6a:a8:cf:f1: 88:80:4e:fb:12:c7:96:30:b6:ea:53:cd:d3:5f:ee: 22:17:9e:d7:92:35:7a:0c:fe:dc:b6:45:e5:31:10: 0f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:44:FD:64:A5:FC:24:EA:58:B0:15:9D:B4:10:9B:0F:6B:37:5A:7E X509v3 Authority Key Identifier: keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.94.0/23 IPv6: 2001:df6:f380::/48 Signature Algorithm: sha256WithRSAEncryption b5:e7:8f:a3:05:e2:ae:f9:07:33:95:4a:50:10:8b:7f:f3:c8: ce:01:50:f8:84:00:1e:8a:60:8c:dc:11:d1:c2:01:9c:28:c0: f5:35:4f:1a:d6:52:79:a7:f8:88:ce:91:0f:7b:d1:a0:d9:15: 5e:b0:a6:22:ba:46:a8:1a:b9:d7:05:8e:33:e1:9e:04:26:7f: 75:0e:2b:87:55:e9:d1:04:a6:f9:aa:8a:98:45:48:8b:0e:59: 2b:8d:31:a6:20:94:aa:77:7d:34:f6:ff:d6:f2:00:98:c6:8e: c5:e2:e8:03:66:20:dc:4f:7d:5c:11:30:6d:f5:0a:2b:6c:3e: 43:33:0e:35:33:d2:6b:86:d3:9b:8f:7f:75:1b:62:67:df:74: 2c:ba:08:07:a0:41:5c:d9:d8:c6:b2:9b:f5:30:a5:d6:f9:2e: ff:c4:b1:0c:6e:79:fa:b3:66:9c:6e:a2:e6:c7:9d:5a:de:1e: 97:bf:9c:c1:e6:c4:9c:ab:01:a7:d4:3c:14:d4:ba:7e:f0:2b: 05:04:78:34:43:20:66:00:a1:7c:c5:7d:e3:e2:e1:88:9f:38: 1e:7c:ba:10:1c:a8:bf:d8:81:0e:65:48:5d:e9:88:df:b3:a4: bb:d7:20:5a:dd:a6:67:22:a3:db:6f:9b:a1:5e:69:0e:7b:a5: d1:97:06:c1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFDMjMxMTAvBgNVBAUTKDgyQTg1QUZERjMyOTI1NkY0N0UwQjcwMEIyRDE0NzU2 QTEwNEMxMTIwHhcNMjUwNzI5MDAwNTQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4MTA1Yy00Y2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxFHHBpi8RQcHXvcWnVfhrdncdmkEAsbZH3jPVckz+Y3F7hiF0EtX9yRoSOi c4n0evtSIPTa08cdtFT9wdtorOAB6vi3k8z0itW/fFfSTaHg1z/JWMbY3lxlV/kR W+VLhVRtQojGR2fcK5b9rkI7waGl3iNyg3MRpJp752fqlAmyKxYxQSyj7Xfx57ag HVgJ4ElhtVy0X/lg5/FO9Wb8xjxj/rfR44qTRQUxZb8pEN84SzijcUECRuRXONnJ ab7i8jAJ8vDhqWmY0aK6k0DJVeUTBYDwDBqse9rd1Gqoz/GIgE77EseWMLbqU83T X+4iF57XkjV6DP7ctkXlMRAPoQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLNE/WSl /CTqWLAVnbQQmw9rN1p+MB8GA1UdIwQYMBaAFIKoWv3zKSVvR+C3ALLRR1ahBMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUMyMy9DNkJEMUUyQ0RD MTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpXOUg0TGNBc3RGSFZxRUV3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxaGFfZk1wSlc5SDRMY0FzdEZIVnFFRXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFDMjMvQzZCRDFFMkNEQzEyMTFFQjhDMURBNjRBQzRGOUFFMDIvN0NDMTlGQkNE Q0FBMTFFQkI4N0RBRDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqV4wDwQCAAIwCQMHACABDfbzgDANBgkqhkiG9w0BAQsF AAOCAQEAteePowXirvkHM5VKUBCLf/PIzgFQ+IQAHopgjNwR0cIBnCjA9TVPGtZS eaf4iM6RD3vRoNkVXrCmIrpGqBq51wWOM+GeBCZ/dQ4rh1Xp0QSm+aqKmEVIiw5Z K40xpiCUqnd9NPb/1vIAmMaOxeLoA2Yg3E99XBEwbfUKK2w+QzMONTPSa4bTm49/ dRtiZ990LLoIB6BBXNnYxrKb9TCl1vku/8SxDG55+rNmnG6i5sedWt4el7+cwebE nKsBp9Q8FNS6fvArBQR4NEMgZgChfMV94+LhiJ84Hny6EByov9iBDmVIXemI37Ok u9cgWt2mZyKj22+boV5pDnul0ZcGwQ== -----END CERTIFICATE-----Generated at Fri Aug 8 20:44:54 2025 by rpki-client