$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa File: 668242F49C4511EDB73A4379C4F9AE02.roa (raw, json) Hash identifier: pYWe5nhEh7lryxcWey5nEqoA/9P5QKHAVOb9CwXBhN4= Subject key identifier: F4:1A:72:BE:69:EF:4F:5C:8B:E9:CE:33:49:BF:FD:C7:E0:01:9B:85 Certificate issuer: /CN=A9178C7A/serialNumber=40DBAE2C83198BC6FAD2582998823456A37763AB Certificate serial: 01C0 Authority key identifier: 40:DB:AE:2C:83:19:8B:C6:FA:D2:58:29:98:82:34:56:A3:77:63:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa Signing time: Thu 05 Jun 2025 02:29:52 +0000 ROA not before: Thu 05 Jun 2025 02:29:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133501 IP address blocks: 103.87.216.0/24 maxlen: 24 103.232.140.0/24 maxlen: 24 103.232.141.0/24 maxlen: 24 203.32.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.crl rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C7A, serialNumber=40DBAE2C83198BC6FAD2582998823456A37763AB Validity Not Before: Jun 5 02:29:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6841011f-b929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bf:f7:5b:67:be:fd:b6:b8:88:ea:41:e6:53: 91:b7:48:8b:cb:3a:85:db:77:64:ca:22:67:0d:2e: 3c:93:0d:63:fb:3b:07:3a:54:1c:de:be:68:8f:55: 0f:54:ad:83:66:dd:67:22:8c:33:e2:ac:aa:b6:cf: 28:a9:15:3b:be:69:b3:3c:e5:b2:81:5d:33:ae:91: b3:18:f4:7b:78:e6:07:0b:29:ad:6b:81:32:18:a4: 1b:d8:bd:85:43:34:7f:99:0e:89:47:bd:17:bc:f6: c4:b8:93:8a:36:56:e4:d9:56:3e:ae:98:7c:cb:2c: ab:6b:33:7a:7f:6e:ac:4f:c1:a6:4b:b4:09:86:8d: 40:b2:d9:9c:a1:a0:76:8b:6f:04:ac:66:f6:43:74: ce:5b:fd:a9:7b:67:86:d9:8a:7f:e7:ed:bf:66:b3: af:c5:61:d7:5d:9e:2a:94:cc:44:b4:35:6b:6a:c2: e0:89:17:37:0e:43:b8:58:cb:5c:dc:d8:35:84:b8: 7e:1f:0a:1d:3a:63:33:c7:1e:f5:ed:31:0a:12:90: 1a:78:1f:53:67:4e:e9:fc:ee:fe:8e:9a:49:10:76: 2b:84:c3:35:7c:31:d1:60:97:9c:05:d5:6f:36:77: d9:8a:f9:f9:40:d7:72:58:64:a8:e1:8f:87:29:93: 9e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1A:72:BE:69:EF:4F:5C:8B:E9:CE:33:49:BF:FD:C7:E0:01:9B:85 X509v3 Authority Key Identifier: keyid:40:DB:AE:2C:83:19:8B:C6:FA:D2:58:29:98:82:34:56:A3:77:63:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.216.0/24 103.232.140.0/23 203.32.33.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f7:f5:b4:45:36:0e:c3:00:f0:72:c2:d5:6a:cd:32:05:06: 5d:0b:fc:3a:b0:d2:33:57:06:88:84:c1:9d:1f:d5:74:51:bc: e9:d6:fd:ef:e9:83:e5:0e:2e:39:9e:a1:ba:51:7d:31:8c:1a: fd:8b:41:6e:00:61:62:06:ee:92:17:3e:5d:83:30:a6:b6:47: c8:e7:23:e4:2b:07:11:fc:fb:ab:18:52:ed:3a:16:3b:ca:70: d9:38:ae:52:c9:18:d3:6d:04:93:f1:80:e3:a8:95:61:23:69: d1:0c:86:eb:c6:97:30:b0:af:bf:97:a6:41:df:26:bf:33:58: 02:26:b3:7f:67:fd:1e:bb:e5:1f:da:81:94:7e:6a:a8:b3:04: 91:c0:6b:9c:f7:d9:00:fc:24:2c:6b:f5:26:52:a8:e7:14:40: b2:8a:c9:d3:50:33:fb:46:ee:ff:09:61:68:0a:dc:8f:9d:4e: ae:b6:2e:42:33:cf:d6:92:40:03:04:01:88:a9:b4:c7:c6:7d: ed:c7:82:10:98:7b:4b:66:21:e9:b2:ac:3a:75:cd:9c:89:22: 8b:44:41:6c:10:2c:b4:f5:b8:80:d0:bd:fa:82:f6:1a:d9:d8: d7:0d:2e:60:1d:f5:00:fe:5b:26:8d:c0:ae:ac:9f:ad:b0:e1: 0f:1b:a9:07 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDN0ExMTAvBgNVBAUTKDQwREJBRTJDODMxOThCQzZGQUQyNTgyOTk4ODIzNDU2 QTM3NzYzQUIwHhcNMjUwNjA1MDIyOTUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMDExZi1iOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5L/3W2e+/ba4iOpB5lORt0iLyzqF23dkyiJnDS48kw1j+zsHOlQc3r5oj1UP VK2DZt1nIowz4qyqts8oqRU7vmmzPOWygV0zrpGzGPR7eOYHCymta4EyGKQb2L2F QzR/mQ6JR70XvPbEuJOKNlbk2VY+rph8yyyrazN6f26sT8GmS7QJho1AstmcoaB2 i28ErGb2Q3TOW/2pe2eG2Yp/5+2/ZrOvxWHXXZ4qlMxEtDVrasLgiRc3DkO4WMtc 3Ng1hLh+HwodOmMzxx717TEKEpAaeB9TZ07p/O7+jppJEHYrhMM1fDHRYJecBdVv NnfZivn5QNdyWGSo4Y+HKZOeDwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPQacr5p 709ci+nOM0m//cfgAZuFMB8GA1UdIwQYMBaAFEDbriyDGYvG+tJYKZiCNFajd2Or MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEM3QS9BQzQ1OTYyRTlD NDAxMUVEOTcwMDg0NzBDNEY5QUUwMi9RTnV1TElNWmk4YjYwbGdwbUlJMFZxTjNZ NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdXVMSU1aaThiNjBsZ3BtSUkwVnFOM1k2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhDN0EvQUM0NTk2MkU5QzQwMTFFRDk3MDA4NDcwQzRGOUFFMDIvNjY4MjQyRjQ5 QzQ1MTFFREI3M0E0Mzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnV9gDBAFn6IwDBADLICEwDQYJKoZIhvcNAQELBQADggEB AFP39bRFNg7DAPBywtVqzTIFBl0L/Dqw0jNXBoiEwZ0f1XRRvOnW/e/pg+UOLjme obpRfTGMGv2LQW4AYWIG7pIXPl2DMKa2R8jnI+QrBxH8+6sYUu06FjvKcNk4rlLJ GNNtBJPxgOOolWEjadEMhuvGlzCwr7+XpkHfJr8zWAIms39n/R675R/agZR+aqiz BJHAa5z32QD8JCxr9SZSqOcUQLKKydNQM/tG7v8JYWgK3I+dTq62LkIzz9aSQAME AYiptMfGfe3HghCYe0tmIemyrDp1zZyJIotEQWwQLLT1uIDQvfqC9hrZ2NcNLmAd 9QD+WyaNwK6sn62w4Q8bqQc= -----END CERTIFICATE-----Generated at Sun Jun 15 10:14:54 2025 by rpki-client