$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa File: A6556900C0DF11EE9BA7B27AC4F9AE02.roa (raw, json) Hash identifier: 7GVgrXEYxEaDjdpBVuH7XCTs4tFbULYhuD4DnoFUT20= Subject key identifier: F7:A9:F4:0E:30:DE:6E:02:0D:7F:55:2B:FF:D7:60:C1:4E:4F:A0:45 Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 0671 Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa Signing time: Sat 14 Jun 2025 22:41:24 +0000 ROA not before: Sat 14 Jun 2025 22:41:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139325 IP address blocks: 103.164.255.0/24 maxlen: 24 2001:df6:5480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: Jun 14 22:41:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684dfa94-320f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:21:65:19:99:07:7d:14:e1:5b:24:27:4f: a6:c4:e5:45:b9:aa:dd:b7:80:ba:9c:f1:cb:4e:3f: 04:b0:cc:fc:4f:66:52:20:07:de:2a:49:5f:4a:98: 97:39:5e:42:c4:b9:af:e9:9e:94:fa:d3:16:f7:09: 7b:90:c4:81:70:01:38:bc:1b:16:90:40:05:b5:da: 17:8f:90:7c:4a:92:9c:ef:91:6b:c8:5e:5d:1f:47: d7:94:85:c2:05:44:29:10:b9:cf:6e:c6:c6:12:fc: ab:9e:a8:f6:f5:17:32:9e:bf:9f:dc:54:d7:5e:12: 61:01:33:4f:04:f8:32:25:c4:90:a7:a2:0d:1f:3d: 30:96:26:5d:5c:3a:de:c5:b2:ce:4e:b9:41:7a:57: 11:6d:50:08:d8:15:6a:d8:b2:f1:cb:ed:ce:6d:d3: ec:29:d3:51:83:77:46:55:d5:8a:d5:14:97:30:1c: 34:c5:e7:4c:fa:6e:92:61:6e:fa:89:e0:a8:0b:70: 61:3f:45:3b:64:1a:bb:95:43:d5:15:53:cc:89:80: b2:6c:e9:a0:f5:cf:50:46:00:20:d8:37:c2:e6:ae: 3f:a2:f8:32:7c:ad:ea:06:20:d4:5b:6b:ce:c3:f0: 59:01:db:2a:97:af:73:c4:89:7f:d8:3e:b1:0a:07: f4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A9:F4:0E:30:DE:6E:02:0D:7F:55:2B:FF:D7:60:C1:4E:4F:A0:45 X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.255.0/24 IPv6: 2001:df6:5480::/48 Signature Algorithm: sha256WithRSAEncryption 50:87:ef:5b:22:b2:87:bb:36:ff:47:90:c0:28:a7:b9:0a:4d: a8:a0:7f:a3:29:ac:fb:3d:c3:2c:5f:62:df:8f:c4:a5:0e:50: 93:79:8a:fb:ba:5b:05:fd:08:3a:3c:c6:97:b5:73:27:6f:77: ff:c6:23:47:f9:15:fd:9f:a9:79:c5:fb:7f:2c:5d:88:9b:ca: bc:15:c2:88:d3:83:fb:42:a8:ce:08:ef:d2:f1:32:1e:2b:fe: 05:f2:52:73:f8:32:37:61:2b:b3:ec:eb:5c:35:e5:01:69:37: dd:53:46:44:99:11:03:b1:03:94:dc:10:01:0d:f7:f3:28:63: ca:70:44:24:a3:50:e1:59:1c:4c:6a:d1:8e:c9:f6:88:85:c4: 9f:8f:cc:db:6c:b9:ed:e5:1d:db:31:54:ee:54:a7:41:fa:61: 7e:13:06:84:5a:7f:0d:fc:2d:56:4c:68:99:bc:27:78:52:71: 1c:13:47:c3:12:e5:61:ca:a5:52:59:36:a6:83:2e:86:19:49: de:0d:cd:9b:3a:f5:da:d3:d0:b9:37:c4:4a:3d:7c:47:ba:6b: 24:e3:3a:61:c5:d9:ed:ad:60:1d:0a:38:8b:6d:4c:0c:fe:35: 51:47:90:7d:9f:02:77:8c:3a:13:b9:a1:bd:1a:c7:1a:4d:8d: 71:2b:07:5f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjUwNjE0MjI0MTI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkZmE5NC0zMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLAhZRmZB30U4VskJ0+mxOVFuardt4C6nPHLTj8EsMz8T2ZSIAfeKklfSpiX OV5CxLmv6Z6U+tMW9wl7kMSBcAE4vBsWkEAFtdoXj5B8SpKc75FryF5dH0fXlIXC BUQpELnPbsbGEvyrnqj29Rcynr+f3FTXXhJhATNPBPgyJcSQp6INHz0wliZdXDre xbLOTrlBelcRbVAI2BVq2LLxy+3ObdPsKdNRg3dGVdWK1RSXMBw0xedM+m6SYW76 ieCoC3BhP0U7ZBq7lUPVFVPMiYCybOmg9c9QRgAg2DfC5q4/ovgyfK3qBiDUW2vO w/BZAdsql69zxIl/2D6xCgf0VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPep9A4w 3m4CDX9VK//XYMFOT6BFMB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEQjUvMEM5OTlFQzA4RkExMTFFQkEyMjA2NjFFQzRGOUFFMDIvQTY1NTY5MDBD MERGMTFFRTlCQTdCMjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnpP8wDwQCAAIwCQMHACABDfZUgDANBgkqhkiG9w0BAQsF AAOCAQEAUIfvWyKyh7s2/0eQwCinuQpNqKB/oyms+z3DLF9i34/EpQ5Qk3mK+7pb Bf0IOjzGl7VzJ293/8YjR/kV/Z+pecX7fyxdiJvKvBXCiNOD+0Kozgjv0vEyHiv+ BfJSc/gyN2Ers+zrXDXlAWk33VNGRJkRA7EDlNwQAQ338yhjynBEJKNQ4VkcTGrR jsn2iIXEn4/M22y57eUd2zFU7lSnQfphfhMGhFp/DfwtVkxombwneFJxHBNHwxLl YcqlUlk2poMuhhlJ3g3Nmzr12tPQuTfESj18R7prJOM6YcXZ7a1gHQo4i21MDP41 UUeQfZ8Cd4w6E7mhvRrHGk2NcSsHXw== -----END CERTIFICATE-----Generated at Tue Jun 17 19:54:05 2025 by rpki-client