$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa File: B8587822CBF611EFAE14812EC4F9AE02.roa (raw, json) Hash identifier: lDKeRG9eEL+s1K16vRs3ICLsEsEkHJhrK4mCAHxbCQs= Subject key identifier: 69:6D:8F:84:98:57:33:B3:00:A6:40:D2:CE:5C:CF:E7:79:98:ED:7C Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: 4E Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa Signing time: Sat 31 May 2025 06:59:40 +0000 ROA not before: Sat 31 May 2025 06:59:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 395793 IP address blocks: 103.56.128.0/24 maxlen: 24 103.56.129.0/24 maxlen: 24 103.56.130.0/24 maxlen: 24 103.56.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43, serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Validity Not Before: May 31 06:59:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683aa8dc-d0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9d:21:a1:c0:ef:7b:31:70:b2:30:dd:f3:a1: f5:3e:97:8e:70:4a:e6:55:a1:9f:48:51:23:07:29: 6f:eb:b5:69:e1:97:d6:f8:e0:c2:a4:21:31:b4:51: 3e:45:f6:d0:06:96:1b:ae:f4:f3:32:ce:03:5c:b9: 41:7e:af:79:67:61:37:83:f6:cf:a1:12:b7:c5:cf: 2a:bb:bc:88:39:5a:4e:9b:22:15:b9:2f:d5:2c:ae: 27:2d:b6:e1:ba:9d:96:49:c8:04:d3:5c:9b:ba:2f: 07:23:19:31:69:30:55:da:8e:98:13:eb:95:23:30: e4:9d:84:4a:8a:e7:3f:2b:b8:a0:da:ba:f9:8a:5d: eb:4d:ca:60:46:ad:fe:f1:31:e3:c6:1d:64:e9:a8: 45:b8:5a:1c:d9:ba:b0:eb:dd:b5:ae:e6:8e:6a:bb: ee:be:15:ff:bc:f8:16:f2:d4:2f:00:37:b2:46:db: 29:cb:d8:d5:4d:e7:19:49:c7:48:d9:07:48:6a:7b: b6:23:ba:a7:95:55:80:6f:a4:c8:bc:83:0d:a1:6a: b0:f3:2d:bb:2e:8b:7f:7a:cd:f9:cc:57:dd:7b:d2: 3e:d2:35:83:f9:1b:3e:79:27:23:20:80:3f:8c:0f: 68:31:91:01:b2:d2:80:e8:c9:bf:c1:a9:b4:c7:4f: aa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6D:8F:84:98:57:33:B3:00:A6:40:D2:CE:5C:CF:E7:79:98:ED:7C X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.56.128.0/22 Signature Algorithm: sha256WithRSAEncryption 08:ab:79:47:20:ce:8c:b0:29:e1:13:68:db:df:ec:43:e8:2d: 2d:1d:e4:74:cc:94:6d:30:47:24:fe:fc:cc:c0:32:a0:c9:8f: 63:1a:f8:0f:57:4e:8b:a0:40:c8:38:70:fd:3b:b6:a6:6c:0c: d7:b4:2f:31:77:b4:3c:61:ee:b1:21:f1:6f:4f:99:fd:3f:b2: a5:8d:74:d6:01:66:c5:a4:dc:72:35:ff:1f:e9:90:4f:48:03: 5e:12:2f:28:d9:74:3a:e4:b8:61:11:0f:ec:cb:ad:cc:c6:d1: a7:eb:c0:1e:2f:41:86:c4:7d:d2:1e:3b:1f:38:b2:27:b6:60: cd:4f:1b:d5:10:52:f6:e7:17:3e:b1:3d:46:6a:e4:c4:ac:b8: bd:03:39:cb:d3:b6:f5:3b:f2:4b:29:6d:86:e9:ad:09:23:37: 70:10:ee:2c:f6:a0:c1:ec:26:3c:0c:76:de:e0:aa:fe:f0:30: f3:47:24:64:ef:20:7a:62:bc:bf:24:72:25:a9:66:ea:bd:7a: 90:00:7e:88:59:8c:17:4b:a1:4c:18:ff:bc:45:59:cf:10:17: a0:52:f9:9d:92:93:2f:6a:62:57:96:92:a1:96:19:ae:2f:0e: 44:2e:eb:95:c9:58:59:d9:41:d1:2b:7c:89:d9:07:72:81:8f: c3:39:4c:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUY0MzExMC8GA1UEBRMoNjRDRjUzMkM4RTIwQjE5NkQyNUJDN0NDN0U1OTMyNEY5 MzgxMzI3NTAeFw0yNTA1MzEwNjU5NDBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhOGRjLWQwZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDonSGhwO97MXCyMN3zofU+l45wSuZVoZ9IUSMHKW/rtWnhl9b44MKkITG0UT5F 9tAGlhuu9PMyzgNcuUF+r3lnYTeD9s+hErfFzyq7vIg5Wk6bIhW5L9UsricttuG6 nZZJyATTXJu6LwcjGTFpMFXajpgT65UjMOSdhEqK5z8ruKDauvmKXetNymBGrf7x MePGHWTpqEW4WhzZurDr3bWu5o5qu+6+Ff+8+Bby1C8AN7JG2ynL2NVN5xlJx0jZ B0hqe7YjuqeVVYBvpMi8gw2harDzLbsui396zfnMV9170j7SNYP5Gz55JyMggD+M D2gxkQGy0oDoyb/BqbTHT6rJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaW2PhJhX M7MApkDSzlzP53mY7XwwHwYDVR0jBBgwFoAUZM9TLI4gsZbSW8fMflkyT5OBMnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1RjQzLzU5OUZFQjQ0Q0JG NjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1u VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk05VExJNGdzWmJTVzhmTWZsa3lUNU9CTW5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUY0My81OTlGRUI0NENCRjYxMUVGOUY1N0U5MkRDNEY5QUUwMi9CODU4NzgyMkNC RjYxMUVGQUUxNDgxMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmc4gDANBgkqhkiG9w0BAQsFAAOCAQEACKt5RyDOjLAp4RNo 29/sQ+gtLR3kdMyUbTBHJP78zMAyoMmPYxr4D1dOi6BAyDhw/Tu2pmwM17QvMXe0 PGHusSHxb0+Z/T+ypY101gFmxaTccjX/H+mQT0gDXhIvKNl0OuS4YREP7MutzMbR p+vAHi9BhsR90h47HziyJ7ZgzU8b1RBS9ucXPrE9RmrkxKy4vQM5y9O29TvySylt humtCSM3cBDuLPagwewmPAx23uCq/vAw80ckZO8gemK8vyRyJalm6r16kAB+iFmM F0uhTBj/vEVZzxAXoFL5nZKTL2piV5aSoZYZri8ORC7rlclYWdlB0St8idkHcoGP wzlMtQ== -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:44 2025 by rpki-client