$ rpki-client -vvf rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa File: AA2DE134C48A11E9804AA581C4F9AE02.roa (raw, json) Hash identifier: nnMRznD8HI2Yb7yh15XfK/3vrMLq6BY/UPlfXXuokSI= Subject key identifier: 66:5C:3E:FE:7F:F4:EA:AC:78:6F:1A:38:98:EA:56:D7:5F:D8:FB:DB Certificate issuer: /CN=A9184BE6/serialNumber=C51F7BFD945D007779B7F1FF425DBF27B9C2982E Certificate serial: 0DB1 Authority key identifier: C5:1F:7B:FD:94:5D:00:77:79:B7:F1:FF:42:5D:BF:27:B9:C2:98:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa Signing time: Wed 30 Jul 2025 18:27:55 +0000 ROA not before: Wed 30 Jul 2025 18:27:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138907 IP address blocks: 103.136.254.0/24 maxlen: 24 103.142.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.crl rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3505 (0xdb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184BE6, serialNumber=C51F7BFD945D007779B7F1FF425DBF27B9C2982E Validity Not Before: Jul 30 18:27:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=688a642b-c9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:7c:af:9c:4b:fe:e7:ea:2a:66:53:62:97: f2:7e:a5:74:22:0e:f0:89:3c:75:3a:2c:a8:ed:ce: f8:38:52:50:09:56:1d:6a:c7:df:02:2d:d4:6a:df: 11:74:12:46:55:48:82:3b:84:74:5c:3c:b6:18:b9: a0:37:97:16:63:d1:3b:7a:89:8c:d8:77:4a:fa:84: 7f:97:80:ad:57:8d:b3:c7:cb:8a:25:1b:9c:3c:d8: 06:f3:f4:17:71:75:fa:62:76:de:a8:50:88:ad:92: 46:3b:65:70:34:dd:78:11:89:d1:71:08:57:c4:39: 74:36:e8:6c:cc:c1:6a:81:b0:ca:00:9b:45:ba:78: ec:2e:1f:64:2f:f1:76:99:8e:42:47:97:39:3b:70: 15:b8:60:83:0d:4e:21:f8:46:b0:21:a9:26:64:97: 03:7d:ae:d2:fa:c6:fa:94:1c:88:a3:1f:78:57:94: 63:1a:a3:d9:07:50:eb:b4:4a:99:33:8f:5c:23:32: af:e2:3d:0d:80:69:61:45:fc:01:61:73:19:d2:c1: 16:6e:f3:f9:23:83:79:f1:ae:8e:6e:a3:4c:03:6d: 35:83:2a:04:d0:bc:40:ae:3e:26:bf:99:55:83:7d: 19:20:a3:fc:ba:12:48:6b:c9:d3:c9:d8:28:68:a7: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:5C:3E:FE:7F:F4:EA:AC:78:6F:1A:38:98:EA:56:D7:5F:D8:FB:DB X509v3 Authority Key Identifier: keyid:C5:1F:7B:FD:94:5D:00:77:79:B7:F1:FF:42:5D:BF:27:B9:C2:98:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.254.0/24 103.142.76.0/24 Signature Algorithm: sha256WithRSAEncryption c7:2b:e0:fd:96:e8:6e:d6:16:c3:ce:46:d1:32:2c:2a:70:c5: df:7b:b3:91:30:f5:ff:18:3d:2e:6d:05:15:08:0d:20:3d:bb: ef:bd:d5:38:56:af:b0:f9:cd:db:59:17:b8:fd:aa:9c:0c:79: d4:7c:3c:66:86:83:42:59:3a:af:ca:d2:45:49:dd:6e:98:f4: 80:4f:e5:37:61:a7:74:c2:99:d2:82:6f:30:0f:3f:d5:86:79: f6:f4:34:14:23:6b:f5:73:8b:a6:38:fb:32:1b:de:ea:e5:4a: d6:b3:21:ea:f6:ac:48:64:5b:7a:2d:35:ab:69:ee:43:97:c2: 44:70:73:68:d2:c6:94:04:db:18:ce:a7:db:4b:f7:c7:48:9a: 39:76:d7:18:2e:84:81:a6:2a:f8:1a:a5:4c:72:e0:f6:1a:8f: 2b:97:21:5b:39:6c:5d:dd:42:25:e3:d3:67:3d:97:a7:40:1c: 1d:31:b9:0d:26:ed:87:9a:8b:42:34:0e:3b:ac:0e:63:fd:af: 8f:ca:9f:26:2b:e9:d4:9b:2b:b8:a3:18:96:2f:ef:e5:46:dc: 46:e2:ae:e4:3d:eb:ab:72:da:28:12:a8:8d:bd:a0:64:92:76: 8c:d8:12:11:23:67:2a:42:ea:02:55:5c:de:f5:f5:6b:89:4e: 2c:ae:4d:5d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRCRTYxMTAvBgNVBAUTKEM1MUY3QkZEOTQ1RDAwNzc3OUI3RjFGRjQyNURCRjI3 QjlDMjk4MkUwHhcNMjUwNzMwMTgyNzU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhNjQyYi1jOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj58r5xL/ufqKmZTYpfyfqV0Ig7wiTx1Oiyo7c74OFJQCVYdasffAi3Uat8R dBJGVUiCO4R0XDy2GLmgN5cWY9E7eomM2HdK+oR/l4CtV42zx8uKJRucPNgG8/QX cXX6YnbeqFCIrZJGO2VwNN14EYnRcQhXxDl0NuhszMFqgbDKAJtFunjsLh9kL/F2 mY5CR5c5O3AVuGCDDU4h+EawIakmZJcDfa7S+sb6lByIox94V5RjGqPZB1DrtEqZ M49cIzKv4j0NgGlhRfwBYXMZ0sEWbvP5I4N58a6ObqNMA201gyoE0LxArj4mv5lV g30ZIKP8uhJIa8nTydgoaKcNVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGZcPv5/ 9OqseG8aOJjqVtdf2PvbMB8GA1UdIwQYMBaAFMUfe/2UXQB3ebfx/0Jdvye5wpgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEJFNi9FRThCQ0FBNEM0 ODkxMUU5QkI4QTk1ODBDNEY5QUUwMi94Ujk3X1pSZEFIZDV0X0hfUWwyX0o3bkNt QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hSOTdfWlJkQUhkNXRfSF9RbDJfSjduQ21DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODRCRTYvRUU4QkNBQTRDNDg5MTFFOUJCOEE5NTgwQzRGOUFFMDIvQUEyREUxMzRD NDhBMTFFOTgwNEFBNTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABniP4DBABnjkwwDQYJKoZIhvcNAQELBQADggEBAMcr4P2W 6G7WFsPORtEyLCpwxd97s5Ew9f8YPS5tBRUIDSA9u++91ThWr7D5zdtZF7j9qpwM edR8PGaGg0JZOq/K0kVJ3W6Y9IBP5Tdhp3TCmdKCbzAPP9WGefb0NBQja/Vzi6Y4 +zIb3urlStazIer2rEhkW3otNatp7kOXwkRwc2jSxpQE2xjOp9tL98dImjl21xgu hIGmKvgapUxy4PYajyuXIVs5bF3dQiXj02c9l6dAHB0xuQ0m7Yeai0I0DjusDmP9 r4/KnyYr6dSbK7ijGJYv7+VG3EbiruQ966ty2igSqI29oGSSdozYEhEjZypC6gJV XN719WuJTiyuTV0= -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:01 2025 by rpki-client