$ rpki-client -vvf rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/A6DC22C63C7D11ECB08DFD13C4F9AE02.roa File: A6DC22C63C7D11ECB08DFD13C4F9AE02.roa (raw, json) Hash identifier: OgxkGLoBh6HGvCB/fRUVvIfnQUfu5bCnmyvUAGDoCoM= Subject key identifier: 1C:60:11:23:E1:EA:68:FB:06:11:22:08:54:FC:F6:24:9D:76:C3:64 Certificate issuer: /CN=A9184017/serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Certificate serial: 04E4 Authority key identifier: 1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/A6DC22C63C7D11ECB08DFD13C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:36:49 +0000 ROA not before: Sun 03 Aug 2025 00:36:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9744 IP address blocks: 103.70.76.0/23 maxlen: 24 103.71.252.0/23 maxlen: 24 103.194.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184017, serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Validity Not Before: Aug 3 00:36:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688eaf21-a88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:50:01:ed:24:31:f0:c6:df:86:44:f0:17:7b: a2:c7:b0:5c:be:3b:88:d8:64:13:ad:3b:a7:75:cb: 2a:31:b0:58:69:72:35:9c:ac:31:27:f9:fb:f9:64: ef:2a:d1:73:93:51:f5:49:70:cd:97:3b:61:8c:b7: 55:ab:7d:b4:a1:a6:15:62:2d:7c:27:45:5a:eb:3f: c7:03:fe:87:78:45:ad:d0:b7:23:ed:c8:21:22:df: 6d:f5:30:e3:78:71:51:56:53:da:35:b5:4a:66:46: c3:e7:78:f0:eb:a6:8e:fe:76:9a:8e:d8:70:68:7c: f5:f0:5e:e5:c3:7e:d9:a8:95:86:a7:02:bf:73:d8: f1:f7:fc:89:fb:50:2f:25:a1:6a:a2:05:63:7e:4d: 5f:77:d5:5a:c2:c7:b9:b0:e7:7a:6e:10:f4:ae:10: 76:9c:3c:18:de:ad:35:86:cb:5a:85:c8:c4:33:54: a1:7d:1b:57:51:18:e5:19:7d:2f:92:e0:7e:66:50: 53:7c:42:39:06:6b:8d:9d:23:fb:00:ed:ce:51:ba: fc:c7:8d:ea:5d:5e:ba:9b:97:68:8c:f4:a3:f5:39: c5:57:21:41:58:b2:a5:41:66:91:4d:83:67:a5:f8: 34:66:6b:40:26:27:71:fa:57:93:ee:62:a5:9e:74: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:60:11:23:E1:EA:68:FB:06:11:22:08:54:FC:F6:24:9D:76:C3:64 X509v3 Authority Key Identifier: keyid:1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/A6DC22C63C7D11ECB08DFD13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.76.0/23 103.71.252.0/23 103.194.184.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:b5:b6:da:4c:df:c4:84:35:28:a4:aa:13:14:38:8f:4f:04: 99:c6:24:c6:51:c6:01:d4:bc:ca:47:94:d0:10:ee:3d:df:14: b7:9c:34:a6:c0:89:2f:06:cb:7d:84:e9:32:0f:d9:a3:6f:1f: aa:4d:cf:33:0f:c6:94:9b:15:74:b6:60:84:65:39:71:71:e3: 0b:69:d6:61:a7:d5:80:c7:8f:78:da:7a:8f:3e:cf:f1:37:81: cf:89:ba:ac:21:01:fd:b4:c1:5d:34:85:fd:64:6b:bd:d7:b4: 00:2c:6f:a8:31:5a:bf:06:90:9c:b7:61:1d:4f:48:e9:30:27: e8:38:0d:b3:45:a0:e1:38:4e:5d:70:d6:fe:17:87:e4:28:82: e1:61:3d:e6:44:31:11:1a:8e:3b:5f:6a:fe:72:23:f0:89:f4: ac:b5:f1:bb:f6:b7:f3:a2:8d:c5:a4:08:d6:64:83:c9:b4:56: f4:bc:ec:0b:1e:e1:aa:3a:ea:c9:99:4d:7e:aa:bf:23:3b:72: 51:cb:a4:aa:54:7b:c2:53:41:00:89:a9:f4:0a:7b:7d:e7:29: 8c:19:5f:22:e1:f4:68:61:d3:e4:3f:8c:40:bb:03:0d:57:49: 40:67:5d:08:9d:fa:ea:41:e1:64:01:54:88:5a:8a:0f:e1:c5: 4f:ed:06:87 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwMTcxMTAvBgNVBAUTKDFBOUYyQkJFQTUyMkYxRUUyNTkyMzU5QjRCNTJGQTJC NDFBM0NEQzQwHhcNMjUwODAzMDAzNjQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYWYyMS1hODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VAB7SQx8MbfhkTwF3uix7BcvjuI2GQTrTundcsqMbBYaXI1nKwxJ/n7+WTv KtFzk1H1SXDNlzthjLdVq320oaYVYi18J0Va6z/HA/6HeEWt0Lcj7cghIt9t9TDj eHFRVlPaNbVKZkbD53jw66aO/naajthwaHz18F7lw37ZqJWGpwK/c9jx9/yJ+1Av JaFqogVjfk1fd9Vawse5sOd6bhD0rhB2nDwY3q01hstahcjEM1ShfRtXURjlGX0v kuB+ZlBTfEI5BmuNnSP7AO3OUbr8x43qXV66m5dojPSj9TnFVyFBWLKlQWaRTYNn pfg0ZmtAJidx+leT7mKlnnTzkwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBxgESPh 6mj7BhEiCFT89iSddsNkMB8GA1UdIwQYMBaAFBqfK76lIvHuJZI1m0tS+itBo83E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDAxNy83RjEyMjgxQzJE NjQxMUVDODVENjhCODBDNEY5QUUwMi9HcDhydnFVaThlNGxraldiUzFMNkswR2p6 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwOHJ2cVVpOGU0bGtqV2JTMUw2SzBHanpjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwMTcvN0YxMjI4MUMyRDY0MTFFQzg1RDY4QjgwQzRGOUFFMDIvQTZEQzIyQzYz QzdEMTFFQ0IwOERGRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnRkwDBAFnR/wDBAJnwrgwDQYJKoZIhvcNAQELBQADggEB AG61ttpM38SENSikqhMUOI9PBJnGJMZRxgHUvMpHlNAQ7j3fFLecNKbAiS8Gy32E 6TIP2aNvH6pNzzMPxpSbFXS2YIRlOXFx4wtp1mGn1YDHj3jaeo8+z/E3gc+Juqwh Af20wV00hf1ka73XtAAsb6gxWr8GkJy3YR1PSOkwJ+g4DbNFoOE4Tl1w1v4Xh+Qo guFhPeZEMREajjtfav5yI/CJ9Ky18bv2t/OijcWkCNZkg8m0VvS87Ase4ao66smZ TX6qvyM7clHLpKpUe8JTQQCJqfQKe33nKYwZXyLh9Ghh0+Q/jEC7Aw1XSUBnXQid +upB4WQBVIhaig/hxU/tBoc= -----END CERTIFICATE-----Generated at Thu Aug 7 03:50:14 2025 by rpki-client