$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa File: 5DE13E6AAF1211EB8138312CC4F9AE02.roa (raw, json) Hash identifier: T0wdRehMbf/c1n+Lvi9w5jCq5pwGOxzzrXN8PvqF9IU= Subject key identifier: 0A:5F:EE:F1:0E:35:41:BD:B2:7B:89:06:C7:22:7D:28:57:B6:EF:73 Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 0630 Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa Signing time: Fri 18 Jul 2025 23:35:23 +0000 ROA not before: Fri 18 Jul 2025 23:35:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138029 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 103.119.106.0/24 maxlen: 24 103.119.107.0/24 maxlen: 24 2403:4240::/32 maxlen: 32 2403:4240:a000::/36 maxlen: 36 2403:4240:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50, serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 18 23:35:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687ada3b-1e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ab:9f:50:c4:e3:b6:62:e8:a1:f0:69:d9:24: 17:23:64:16:6f:34:02:ff:85:0a:96:76:95:6f:59: 0f:2b:50:5f:09:ef:63:79:38:f6:e3:16:08:4f:c8: 55:69:40:06:eb:1a:f7:91:b9:74:0a:32:11:61:e5: 20:a8:e7:30:15:c2:4f:3c:4b:0a:83:7d:fb:6f:68: ba:2c:1b:b4:f6:89:f0:6e:51:f3:0a:8a:be:a0:fe: cf:39:ad:15:3c:33:aa:71:39:26:24:f0:fa:fe:5b: 76:e1:53:aa:c9:c5:22:40:9d:b9:c2:df:58:c6:9e: ea:5b:a6:01:c1:fb:d0:a6:e5:ae:e4:3d:fe:37:82: 3d:b8:85:b3:53:a3:7f:a2:8d:40:0e:37:ab:27:d0: 03:73:76:a8:d6:9c:fb:9b:87:70:66:42:bf:17:a4: 50:e8:42:88:d9:b8:e0:d8:d6:56:f1:1b:66:c4:d4: 40:7f:a7:07:da:31:3e:31:e0:af:eb:77:28:30:1e: 71:35:2b:0e:dd:22:4d:02:24:a7:fb:5d:fb:da:e8: 3c:01:f1:6e:cd:4f:2d:a6:f7:e1:a4:97:9b:2c:c0: 6c:ec:c5:39:69:d0:de:71:9f:2d:81:ea:9f:01:fd: 60:31:b1:74:f5:a1:20:a7:ef:cf:c5:d3:4e:a7:a5: c8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5F:EE:F1:0E:35:41:BD:B2:7B:89:06:C7:22:7D:28:57:B6:EF:73 X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption 59:f0:60:2a:26:e6:12:8c:a6:7d:51:2c:bf:d6:35:11:63:21: 25:8c:42:01:56:5b:a4:55:47:8a:5b:25:5e:4c:77:32:ad:01: 80:b9:bf:ae:e9:df:44:56:35:1a:81:d1:79:41:f4:85:3d:13: fc:be:ad:3e:f8:4c:a1:31:b5:18:c9:30:ff:c7:3d:00:ce:6a: 5b:2d:0b:c7:85:83:73:51:7e:a6:df:1c:8a:bb:4f:a1:60:1c: 18:08:36:aa:c2:bd:09:0c:40:51:97:ea:8a:e4:f1:bf:7d:4c: 64:3d:ce:44:a0:0c:2d:2c:10:2f:e4:4e:a1:82:22:ca:8e:1a: 93:67:07:0f:8e:6a:18:bf:4f:87:18:6f:aa:30:7f:6c:23:60: f6:c7:9b:5e:90:8c:5d:cd:04:78:0e:28:f8:97:58:82:e0:f9: 38:93:d0:db:15:55:1c:fd:0c:42:ea:86:d3:49:f5:95:43:3c: e0:3e:12:0b:ec:08:2b:0b:18:f3:44:79:5b:aa:ff:26:c8:de: a7:1a:c3:7b:99:44:66:5d:ff:b1:3d:d8:9e:9b:18:d2:07:39: 9f:ec:39:b1:18:57:a1:29:5f:ac:ed:de:fe:4c:c2:40:0c:f1: ac:82:47:83:f2:55:b5:33:ed:4c:e8:c5:b7:5a:89:00:72:df: e8:43:c7:38 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjUwNzE4MjMzNTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZGEzYi0xZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKufUMTjtmLoofBp2SQXI2QWbzQC/4UKlnaVb1kPK1BfCe9jeTj24xYIT8hV aUAG6xr3kbl0CjIRYeUgqOcwFcJPPEsKg337b2i6LBu09onwblHzCoq+oP7POa0V PDOqcTkmJPD6/lt24VOqycUiQJ25wt9Yxp7qW6YBwfvQpuWu5D3+N4I9uIWzU6N/ oo1ADjerJ9ADc3ao1pz7m4dwZkK/F6RQ6EKI2bjg2NZW8RtmxNRAf6cH2jE+MeCv 63coMB5xNSsO3SJNAiSn+1372ug8AfFuzU8tpvfhpJebLMBs7MU5adDecZ8tgeqf Af1gMbF09aEgp+/PxdNOp6XIwwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFApf7vEO NUG9snuJBscifShXtu9zMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvNURFMTNFNkFB RjEyMTFFQjgxMzgzMTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnd2gwDQQCAAIwBwMFACQDQkAwDQYJKoZIhvcNAQELBQAD ggEBAFnwYCom5hKMpn1RLL/WNRFjISWMQgFWW6RVR4pbJV5MdzKtAYC5v67p30RW NRqB0XlB9IU9E/y+rT74TKExtRjJMP/HPQDOalstC8eFg3NRfqbfHIq7T6FgHBgI NqrCvQkMQFGX6ork8b99TGQ9zkSgDC0sEC/kTqGCIsqOGpNnBw+Oahi/T4cYb6ow f2wjYPbHm16QjF3NBHgOKPiXWILg+TiT0NsVVRz9DELqhtNJ9ZVDPOA+EgvsCCsL GPNEeVuq/ybI3qcaw3uZRGZd/7E92J6bGNIHOZ/sObEYV6EpX6zt3v5MwkAM8ayC R4PyVbUz7UzoxbdaiQBy3+hDxzg= -----END CERTIFICATE-----Generated at Fri Aug 8 20:53:32 2025 by rpki-client