$ rpki-client -vvf rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/BA6887DC396611F0A9E1DB44C4F9AE02.roa File: BA6887DC396611F0A9E1DB44C4F9AE02.roa (raw, json) Hash identifier: Q2OV3NsfBJcMxHBSs801cjjdjHl9svmtSMg1krMtAx0= Subject key identifier: E5:CE:60:D7:A1:5C:D9:8C:B7:49:55:64:72:9F:44:76:25:0D:2C:79 Certificate issuer: /CN=A9180E90/serialNumber=CF1E0E5BD77B1FFB5356781F6163158C2E2F7B6D Certificate serial: 09 Authority key identifier: CF:1E:0E:5B:D7:7B:1F:FB:53:56:78:1F:61:63:15:8C:2E:2F:7B:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zx4OW9d7H_tTVngfYWMVjC4ve20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/BA6887DC396611F0A9E1DB44C4F9AE02.roa Signing time: Tue 03 Jun 2025 08:18:20 +0000 ROA not before: Tue 03 Jun 2025 08:18:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151361 IP address blocks: 103.107.50.0/24 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/zx4OW9d7H_tTVngfYWMVjC4ve20.crl rsync://rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/zx4OW9d7H_tTVngfYWMVjC4ve20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zx4OW9d7H_tTVngfYWMVjC4ve20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 07:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180E90, serialNumber=CF1E0E5BD77B1FFB5356781F6163158C2E2F7B6D Validity Not Before: Jun 3 08:18:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683eafcb-75dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:51:b5:90:1b:7a:68:1b:9f:b6:8e:4c:1b: 58:bf:5f:d0:56:c8:db:7f:88:32:e3:8f:f1:28:a9: 72:09:be:e5:aa:fa:06:55:ca:17:78:67:fc:8b:2f: 8b:ed:23:bf:ee:22:db:1a:85:5b:3b:79:ee:26:89: 5b:5f:58:ec:38:90:dc:ee:05:0e:23:9f:59:7e:77: a4:fb:2b:23:bc:04:55:cc:38:1d:b5:52:6d:15:d5: 3b:5e:b7:6d:34:46:78:6e:c4:ea:45:0f:00:3d:fa: 2e:b9:1c:5a:17:7a:f8:e1:bf:ef:67:9c:b5:8c:f5: c8:41:af:4e:f7:a9:5f:f5:6e:c3:e0:bf:e7:10:a9: 53:61:dd:13:3d:23:03:5a:45:c7:a1:b8:c3:1f:07: f2:8a:83:b7:99:3d:71:bc:74:80:8d:a7:ef:9e:fd: f5:bf:f9:44:b0:94:2c:e2:46:a6:33:b6:bf:af:3e: b1:1c:9d:9c:da:c4:e7:bd:ec:57:5e:c7:d6:17:27: 53:30:bd:a4:5c:e3:6d:fd:a8:4c:b0:e6:56:f1:86: 47:40:8d:b9:b4:b4:fd:86:06:57:1f:3b:5c:33:c4: d8:ad:56:ca:00:81:33:a6:99:31:b2:b4:e0:fb:15: 07:fc:df:3c:72:81:5b:c7:b6:ce:73:b8:fe:23:41: 11:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CE:60:D7:A1:5C:D9:8C:B7:49:55:64:72:9F:44:76:25:0D:2C:79 X509v3 Authority Key Identifier: keyid:CF:1E:0E:5B:D7:7B:1F:FB:53:56:78:1F:61:63:15:8C:2E:2F:7B:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/zx4OW9d7H_tTVngfYWMVjC4ve20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zx4OW9d7H_tTVngfYWMVjC4ve20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180E90/BB6FB688396511F0A6A81B43C4F9AE02/BA6887DC396611F0A9E1DB44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.50.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:4f:9f:02:a7:98:b4:57:0a:63:f0:bf:80:f1:36:a0:ed:03: 26:bd:13:9a:ef:d1:1e:45:b9:8f:2e:48:3c:ff:a5:29:1b:d5: 09:f1:76:29:6e:29:65:4a:1f:ee:00:ef:b0:e8:ab:0a:bb:00: db:45:04:6f:bd:ac:c6:d4:e8:eb:d4:47:62:c6:9e:6e:45:cb: 73:06:83:04:82:3f:e6:18:15:97:0e:af:6c:9c:f9:a8:98:16: 7c:80:9c:a5:7c:6c:2f:12:5f:22:45:3e:5a:87:82:d2:cb:10: d4:20:a1:69:ac:91:b3:53:ff:f3:52:e4:57:f0:3e:33:e2:b0: e2:ea:a3:3a:56:55:e0:91:98:15:28:c6:ca:46:ac:d9:91:be: 72:a0:72:ac:6f:9f:bc:28:ad:e0:bc:be:4b:91:4e:58:3c:27: 22:2e:0e:39:d9:bb:3e:9f:49:76:86:5f:b7:8c:f7:59:c9:d7: 15:86:d7:3c:3a:36:28:96:1e:5b:a3:b8:dd:23:6b:9b:30:7a: c7:2a:c7:63:da:a0:9d:05:4c:ec:f0:cf:8c:90:52:14:3c:e3: 0d:87:f1:74:dd:29:64:26:7c:7f:d9:9a:60:13:c7:bc:d6:bb: 85:15:68:97:56:49:90:60:cd:ed:a1:e3:80:e3:89:12:15:d7: 61:52:0f:6a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MEU5MDExMC8GA1UEBRMoQ0YxRTBFNUJENzdCMUZGQjUzNTY3ODFGNjE2MzE1OEMy RTJGN0I2RDAeFw0yNTA2MDMwODE4MjBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2VhZmNiLTc1ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs21G1kBt6aBufto5MG1i/X9BWyNt/iDLjj/EoqXIJvuWq+gZVyhd4Z/yLL4vt I7/uItsahVs7ee4miVtfWOw4kNzuBQ4jn1l+d6T7KyO8BFXMOB21Um0V1Ttet200 RnhuxOpFDwA9+i65HFoXevjhv+9nnLWM9chBr073qV/1bsPgv+cQqVNh3RM9IwNa RcehuMMfB/KKg7eZPXG8dICNp++e/fW/+USwlCziRqYztr+vPrEcnZzaxOe97Fde x9YXJ1MwvaRc4239qEyw5lbxhkdAjbm0tP2GBlcfO1wzxNitVsoAgTOmmTGytOD7 FQf83zxygVvHts5zuP4jQREJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5c5g16Fc 2Yy3SVVkcp9EdiUNLHkwHwYDVR0jBBgwFoAUzx4OW9d7H/tTVngfYWMVjC4ve20w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwRTkwL0JCNkZCNjg4Mzk2 NTExRjBBNkE4MUI0M0M0RjlBRTAyL3p4NE9XOWQ3SF90VFZuZ2ZZV01WakM0dmUy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveng0T1c5ZDdIX3RUVm5nZllXTVZqQzR2ZTIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEU5MC9CQjZGQjY4ODM5NjUxMUYwQTZBODFCNDNDNEY5QUUwMi9CQTY4ODdEQzM5 NjYxMUYwQTlFMURCNDRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdrMjANBgkqhkiG9w0BAQsFAAOCAQEALk+fAqeYtFcKY/C/ gPE2oO0DJr0Tmu/RHkW5jy5IPP+lKRvVCfF2KW4pZUof7gDvsOirCrsA20UEb72s xtTo69RHYsaebkXLcwaDBII/5hgVlw6vbJz5qJgWfICcpXxsLxJfIkU+WoeC0ssQ 1CChaayRs1P/81LkV/A+M+Kw4uqjOlZV4JGYFSjGykas2ZG+cqByrG+fvCit4Ly+ S5FOWDwnIi4OOdm7Pp9JdoZft4z3WcnXFYbXPDo2KJYeW6O43SNrmzB6xyrHY9qg nQVM7PDPjJBSFDzjDYfxdN0pZCZ8f9maYBPHvNa7hRVol1ZJkGDN7aHjgOOJEhXX YVIPag== -----END CERTIFICATE-----Generated at Sun Jun 22 05:07:09 2025 by rpki-client