$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/9CB879ECC7B511ED9411183FC4F9AE02.roa File: 9CB879ECC7B511ED9411183FC4F9AE02.roa (raw, json) Hash identifier: vTjIWL+7U0681ZWCBVmHMtqcTBbPy9kNb1m5t3OENUI= Subject key identifier: 6A:78:23:19:5B:89:77:26:0E:5E:60:FF:A2:AB:09:8E:BA:AB:9A:6F Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 01AF Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/9CB879ECC7B511ED9411183FC4F9AE02.roa Signing time: Fri 13 Jun 2025 02:29:50 +0000 ROA not before: Fri 13 Jun 2025 02:29:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134346 IP address blocks: 103.60.252.0/24 maxlen: 24 103.60.253.0/24 maxlen: 24 103.60.254.0/24 maxlen: 24 103.60.255.0/24 maxlen: 24 203.57.34.0/24 maxlen: 24 203.57.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Jun 13 02:29:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684b8d1e-982a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4a:1f:e4:d2:3f:e9:e1:98:2f:4e:01:c7:4e: fb:85:1c:40:77:73:03:f3:7c:f3:73:f5:89:af:53: 3f:92:9f:f2:fe:e8:f8:72:c6:fc:91:b8:62:25:0f: c7:53:26:8a:6b:e2:19:88:a2:87:64:f7:30:c9:54: 0f:27:ce:49:b8:e9:23:c4:2f:61:cd:29:3a:9a:97: a9:2c:c8:b5:d6:e7:34:bf:70:66:30:b3:3a:2b:1c: ff:73:49:2f:16:e5:e8:6d:c1:b8:ae:f6:09:3e:e6: 79:44:5a:41:ac:0f:74:c6:20:8e:fc:18:2a:a8:8a: b2:c9:86:27:94:4e:75:1f:13:09:0e:25:0c:c3:d9: 61:70:30:2c:e4:c6:4a:ca:9a:90:ec:6c:45:ac:5d: ff:c5:9d:7f:e2:ee:08:13:e2:37:d0:6c:63:fb:1c: eb:36:89:7d:17:2f:0e:93:67:c5:c4:e3:8a:ae:a3: d3:b1:3b:17:79:2e:4e:ba:d3:64:bd:19:02:50:7c: 01:cf:ce:b6:be:fd:eb:00:6d:fa:b2:3c:23:4e:04: e4:c3:76:4c:75:13:72:67:fc:2e:52:e1:64:e4:50: 53:26:80:7f:16:76:37:22:22:ce:54:e2:60:c1:b6: e4:f5:6e:43:47:51:09:bc:17:9d:b2:2e:1b:3a:f6: 3c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:78:23:19:5B:89:77:26:0E:5E:60:FF:A2:AB:09:8E:BA:AB:9A:6F X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/9CB879ECC7B511ED9411183FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.252.0/22 203.57.34.0/23 Signature Algorithm: sha256WithRSAEncryption 43:c4:1c:08:64:ce:07:11:d9:ec:c1:c6:69:ad:61:14:94:e1: 22:a5:47:d3:a7:22:8c:7d:cd:d5:ca:15:8a:52:11:0a:ac:5b: df:9f:6f:0e:7f:49:bd:71:f5:35:15:fa:c1:e5:21:88:07:7c: 2e:6b:5d:b8:8e:c0:82:97:60:91:df:50:3b:26:01:df:57:47: 3c:bd:4d:02:ab:4e:c9:a5:11:a6:95:89:17:a1:ab:fa:cf:37: 3f:f1:57:16:7f:0b:ff:62:7e:ee:7e:b7:06:ad:fb:b0:38:ef: 1c:53:28:bb:2d:46:15:cb:83:26:f8:65:ac:8e:c1:46:da:b8: 3e:5c:60:56:e1:9e:f0:25:3c:5c:5d:81:8b:1f:99:6e:8f:a2: e2:6d:e9:25:6b:9c:b2:c1:99:58:bb:f8:89:3e:cb:71:9b:e5: 68:c1:43:35:6e:25:37:e6:58:5d:66:7b:b8:7c:ab:df:34:52: d8:b2:57:0a:d2:25:76:64:64:39:db:4d:f0:19:89:ce:61:31: 7f:89:98:d4:f4:1e:6f:8e:25:9f:fd:68:0b:69:e3:c6:06:40: f7:9b:d2:b5:c9:25:83:3b:3e:74:29:ab:f0:82:34:ca:27:e8: d6:00:c8:30:f0:a5:23:84:44:17:c6:eb:da:f5:0c:7c:96:0e: 98:59:6d:9a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwNjEzMDIyOTUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiOGQxZS05ODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10of5NI/6eGYL04Bx077hRxAd3MD83zzc/WJr1M/kp/y/uj4csb8kbhiJQ/H UyaKa+IZiKKHZPcwyVQPJ85JuOkjxC9hzSk6mpepLMi11uc0v3BmMLM6Kxz/c0kv FuXobcG4rvYJPuZ5RFpBrA90xiCO/BgqqIqyyYYnlE51HxMJDiUMw9lhcDAs5MZK ypqQ7GxFrF3/xZ1/4u4IE+I30Gxj+xzrNol9Fy8Ok2fFxOOKrqPTsTsXeS5OutNk vRkCUHwBz862vv3rAG36sjwjTgTkw3ZMdRNyZ/wuUuFk5FBTJoB/FnY3IiLOVOJg wbbk9W5DR1EJvBedsi4bOvY8owIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGp4Ixlb iXcmDl5g/6KrCY66q5pvMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MzNkEvNDA5MzQyODBDN0IyMTFFRDkzNTdBMjNDQzRGOUFFMDIvOUNCODc5RUND N0I1MTFFRDk0MTExODNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnPPwDBAHLOSIwDQYJKoZIhvcNAQELBQADggEBAEPEHAhk zgcR2ezBxmmtYRSU4SKlR9OnIox9zdXKFYpSEQqsW9+fbw5/Sb1x9TUV+sHlIYgH fC5rXbiOwIKXYJHfUDsmAd9XRzy9TQKrTsmlEaaViRehq/rPNz/xVxZ/C/9ifu5+ twat+7A47xxTKLstRhXLgyb4ZayOwUbauD5cYFbhnvAlPFxdgYsfmW6PouJt6SVr nLLBmVi7+Ik+y3Gb5WjBQzVuJTfmWF1me7h8q980UtiyVwrSJXZkZDnbTfAZic5h MX+JmNT0Hm+OJZ/9aAtp48YGQPeb0rXJJYM7PnQpq/CCNMon6NYAyDDwpSOERBfG 69r1DHyWDphZbZo= -----END CERTIFICATE-----Generated at Thu Jun 19 02:44:28 2025 by rpki-client