$ rpki-client -vvf rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/228CC738816611EFA8852945C4F9AE02.roa File: 228CC738816611EFA8852945C4F9AE02.roa (raw, json) Hash identifier: lUgXyzv98aIYZZo+UF95hDGgwVOo27vHGN5bli84jD4= Subject key identifier: DE:AE:52:B1:82:FA:AC:61:9D:6A:E8:89:9F:AE:98:76:8C:D1:73:66 Certificate issuer: /CN=A9177A7E/serialNumber=49E684D50D8BD78C181E07418C6D12023293E994 Certificate serial: 98 Authority key identifier: 49:E6:84:D5:0D:8B:D7:8C:18:1E:07:41:8C:6D:12:02:32:93:E9:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/228CC738816611EFA8852945C4F9AE02.roa Signing time: Fri 13 Jun 2025 05:57:47 +0000 ROA not before: Fri 13 Jun 2025 05:57:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38534 IP address blocks: 103.166.130.0/24 maxlen: 24 103.166.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.crl rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 05:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177A7E, serialNumber=49E684D50D8BD78C181E07418C6D12023293E994 Validity Not Before: Jun 13 05:57:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684bbddb-41aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ec:f9:74:f0:20:d6:e6:58:f6:35:36:37:d1: 49:c2:58:97:43:5c:f7:37:a4:45:dc:b6:78:01:fc: f3:46:cb:4d:c4:85:d7:7c:df:92:fb:74:e6:c3:95: 84:32:37:73:a7:a0:fa:d8:83:0d:11:95:4a:98:69: a5:f8:61:26:a2:16:da:f3:71:f0:6b:74:2a:b5:1c: 7d:c8:a8:16:ea:e3:18:33:07:e3:19:a1:6c:2f:a0: ba:14:81:fe:f8:85:2c:9d:87:99:73:35:4b:86:f7: b3:e2:d8:7d:32:4b:de:bc:8b:d5:0f:fe:c1:89:64: 94:8d:7b:26:c2:d5:95:8b:3b:54:12:d1:9e:8f:b2: 41:5e:b7:f8:46:bd:e8:ab:c8:4f:b5:3f:ac:7d:50: 58:81:0a:27:3c:c1:ca:d6:9f:8b:08:e4:7b:fb:4a: 67:e8:02:8a:7d:9c:71:66:ad:6f:64:37:95:df:32: 07:ad:62:bf:3a:a4:a5:7e:2f:ba:f6:2c:58:f0:c9: 16:eb:f4:92:32:f5:e8:5b:7d:4a:ee:f6:d1:73:e2: 6f:df:c7:2d:04:3c:38:39:c4:42:a9:5e:75:5e:49: 09:f1:6b:68:fa:94:d1:c5:c9:db:a1:9d:1e:36:b3: 44:90:eb:e5:d9:b1:3c:60:5e:93:16:6a:cd:25:3d: 82:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AE:52:B1:82:FA:AC:61:9D:6A:E8:89:9F:AE:98:76:8C:D1:73:66 X509v3 Authority Key Identifier: keyid:49:E6:84:D5:0D:8B:D7:8C:18:1E:07:41:8C:6D:12:02:32:93:E9:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SeaE1Q2L14wYHgdBjG0SAjKT6ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177A7E/30353B8A6A6F11EFBF3F1136C4F9AE02/228CC738816611EFA8852945C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.130.0/23 Signature Algorithm: sha256WithRSAEncryption 80:53:64:1b:92:eb:01:e5:5b:ff:23:53:48:89:67:06:c6:90: 9f:3d:b3:bb:dd:c3:7a:f4:d1:b3:24:c8:27:5c:f1:ef:2b:9d: 02:93:1e:af:ea:d2:49:0e:ee:ee:38:d7:c1:eb:a1:fa:32:12: bc:b9:39:bf:16:0c:94:d0:08:92:6e:31:d6:b1:3f:50:84:30: 35:ea:76:17:45:43:87:f1:67:d8:0f:5d:78:8a:19:0e:74:17: 55:ac:c9:f6:59:d7:31:af:58:51:65:d2:05:3b:49:f1:7f:2b: 05:d6:a8:39:4c:e6:b7:92:23:2b:66:28:79:bc:4b:31:0d:38: 86:0e:00:b0:69:e7:0c:71:02:98:c7:f0:89:6b:86:1a:b2:ba: dd:e8:f6:7d:e5:87:c7:77:3b:fc:62:85:b6:8f:1b:45:5f:90: f2:c4:17:6f:8f:bc:16:5f:bc:0e:19:f4:b2:23:66:ff:4e:10: 65:e2:a2:be:cb:fd:34:5a:a6:9f:2c:71:0d:71:d1:3b:ae:f0: 6f:13:33:08:74:76:bd:5c:12:25:73:c2:15:e7:e5:99:a6:90: e6:6b:27:f3:eb:c0:f2:95:22:41:38:ca:13:ea:23:bc:fa:37: 81:4f:4a:b9:05:f8:70:41:59:35:b4:ab:58:b7:8b:04:02:84: 46:49:aa:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdBN0UxMTAvBgNVBAUTKDQ5RTY4NEQ1MEQ4QkQ3OEMxODFFMDc0MThDNkQxMjAy MzI5M0U5OTQwHhcNMjUwNjEzMDU1NzQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiYmRkYi00MWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+z5dPAg1uZY9jU2N9FJwliXQ1z3N6RF3LZ4AfzzRstNxIXXfN+S+3Tmw5WE Mjdzp6D62IMNEZVKmGml+GEmohba83Hwa3QqtRx9yKgW6uMYMwfjGaFsL6C6FIH+ +IUsnYeZczVLhvez4th9MkvevIvVD/7BiWSUjXsmwtWViztUEtGej7JBXrf4Rr3o q8hPtT+sfVBYgQonPMHK1p+LCOR7+0pn6AKKfZxxZq1vZDeV3zIHrWK/OqSlfi+6 9ixY8MkW6/SSMvXoW31K7vbRc+Jv38ctBDw4OcRCqV51XkkJ8Wto+pTRxcnboZ0e NrNEkOvl2bE8YF6TFmrNJT2CrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN6uUrGC +qxhnWroiZ+umHaM0XNmMB8GA1UdIwQYMBaAFEnmhNUNi9eMGB4HQYxtEgIyk+mU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0E3RS8zMDM1M0I4QTZB NkYxMUVGQkYzRjExMzZDNEY5QUUwMi9TZWFFMVEyTDE0d1lIZ2RCakcwU0FqS1Q2 WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NlYUUxUTJMMTR3WUhnZEJqRzBTQWpLVDZaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzdBN0UvMzAzNTNCOEE2QTZGMTFFRkJGM0YxMTM2QzRGOUFFMDIvMjI4Q0M3Mzg4 MTY2MTFFRkE4ODUyOTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpoIwDQYJKoZIhvcNAQELBQADggEBAIBTZBuS6wHlW/8j U0iJZwbGkJ89s7vdw3r00bMkyCdc8e8rnQKTHq/q0kkO7u4418HrofoyEry5Ob8W DJTQCJJuMdaxP1CEMDXqdhdFQ4fxZ9gPXXiKGQ50F1WsyfZZ1zGvWFFl0gU7SfF/ KwXWqDlM5reSIytmKHm8SzENOIYOALBp5wxxApjH8Ilrhhqyut3o9n3lh8d3O/xi hbaPG0VfkPLEF2+PvBZfvA4Z9LIjZv9OEGXior7L/TRapp8scQ1x0Tuu8G8TMwh0 dr1cEiVzwhXn5ZmmkOZrJ/PrwPKVIkE4yhPqI7z6N4FPSrkF+HBBWTW0q1i3iwQC hEZJqkQ= -----END CERTIFICATE-----Generated at Sun Jun 22 04:45:22 2025 by rpki-client