$ rpki-client -vvf rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa File: C4D5BB009B5411EFBBEFF384C4F9AE02.roa (raw, json) Hash identifier: QDeaqdoBnFXV+JmRiyCNSIMZmZka/hyC5/9UzKXY3ZA= Subject key identifier: 4E:27:1A:7B:31:38:37:4E:36:76:D2:6D:6E:89:7B:6F:4B:E0:F8:BF Certificate issuer: /CN=A9185673/serialNumber=ACB2C54EF0B64DC2100A486A7B8F59324BAD7B49 Certificate serial: 0168 Authority key identifier: AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa Signing time: Wed 11 Jun 2025 03:42:06 +0000 ROA not before: Wed 11 Jun 2025 03:42:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24413 IP address blocks: 103.166.174.0/24 maxlen: 24 103.166.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.crl rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 03:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185673, serialNumber=ACB2C54EF0B64DC2100A486A7B8F59324BAD7B49 Validity Not Before: Jun 11 03:42:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6848fb0e-61f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:55:af:6b:84:b2:ee:5f:07:24:85:eb:43:2a: 93:c1:ac:81:e7:37:57:64:c9:30:3d:91:ce:0a:1e: 5f:25:4e:27:28:ce:29:a7:48:fd:65:b7:07:c1:08: 33:47:13:83:17:e9:cd:a8:7b:36:a1:ae:d7:57:5f: 9e:b6:5b:9b:2b:f8:cb:76:c8:1f:48:31:2a:cc:4c: 13:e5:91:65:da:df:f0:de:16:c5:e9:2e:00:37:42: a6:11:e1:21:3f:3d:1a:cd:56:b6:15:3c:9a:d5:ec: c0:ba:b9:30:0a:fa:9a:4f:f2:2e:d6:04:b4:68:c1: 03:d8:f5:4d:da:6d:3e:be:f4:55:0a:74:c0:e1:db: 47:d5:6f:de:a4:8c:2a:b9:47:4a:1e:a7:65:37:82: 4a:d9:c7:4a:8d:0c:10:2a:b0:07:44:36:09:5d:49: 3e:53:b4:dd:db:85:ec:91:aa:46:69:ef:ef:b6:3b: 9b:ac:bf:56:ce:6c:80:fb:8b:b1:a3:11:6e:c9:2b: ea:d5:93:ac:f1:81:52:18:93:b2:59:30:f2:ee:86: 4e:95:69:c5:9f:dd:db:30:78:b4:47:33:2d:22:a6: a6:e5:96:05:10:6f:80:2b:35:e2:0b:1a:a3:44:f1: fc:6a:ff:60:80:18:f6:f9:2c:2c:a8:de:63:ee:c3: a6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:27:1A:7B:31:38:37:4E:36:76:D2:6D:6E:89:7B:6F:4B:E0:F8:BF X509v3 Authority Key Identifier: keyid:AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.174.0/23 Signature Algorithm: sha256WithRSAEncryption 40:a4:54:cd:df:5f:27:fb:0f:ba:4a:d7:a6:ab:62:ce:aa:6f: 84:10:38:42:a7:c8:ac:63:5d:0f:89:5f:09:63:57:3f:f0:4a: 80:88:b4:8b:8a:42:f8:00:7d:f2:49:08:ec:6c:e3:2d:9d:31: c6:49:b6:0d:4c:48:d4:37:a4:61:54:dd:21:cb:53:40:5e:96: 0e:8f:27:2b:45:25:05:ee:38:04:8d:b9:72:6e:11:e7:ad:64: 8f:e0:28:55:df:bc:bf:a5:f5:9d:e8:34:21:c2:37:03:09:65: 45:a6:f3:f8:22:76:ee:6e:95:76:d3:dc:a5:49:cb:c6:83:3a: c4:90:3d:77:88:d3:82:e5:27:f7:a3:86:84:7e:cf:13:45:06: 2c:e2:f3:e1:0f:c4:a8:84:34:bd:d8:9b:2d:46:30:5f:0a:b6: ca:cc:7d:06:cf:7f:b7:9d:cb:6c:2c:aa:65:36:79:dc:3c:07: af:20:23:66:36:4e:d8:fb:1f:a0:df:f8:03:be:b9:c2:cf:1f: 9f:f7:7b:58:7c:f4:99:86:7e:65:ab:dd:dd:4f:78:9b:a1:5f: 78:b8:c7:a0:09:1d:bc:d3:59:a3:48:24:2f:83:7f:5b:c1:c3: 61:d9:eb:a1:a5:58:9a:e8:6e:fa:69:a7:92:6e:1a:3f:30:fe: 31:f2:a6:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2NzMxMTAvBgNVBAUTKEFDQjJDNTRFRjBCNjREQzIxMDBBNDg2QTdCOEY1OTMy NEJBRDdCNDkwHhcNMjUwNjExMDM0MjA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4ZmIwZS02MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlWva4Sy7l8HJIXrQyqTwayB5zdXZMkwPZHOCh5fJU4nKM4pp0j9ZbcHwQgz RxODF+nNqHs2oa7XV1+etlubK/jLdsgfSDEqzEwT5ZFl2t/w3hbF6S4AN0KmEeEh Pz0azVa2FTya1ezAurkwCvqaT/Iu1gS0aMED2PVN2m0+vvRVCnTA4dtH1W/epIwq uUdKHqdlN4JK2cdKjQwQKrAHRDYJXUk+U7Td24XskapGae/vtjubrL9WzmyA+4ux oxFuySvq1ZOs8YFSGJOyWTDy7oZOlWnFn93bMHi0RzMtIqam5ZYFEG+AKzXiCxqj RPH8av9ggBj2+SwsqN5j7sOm5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFE4nGnsx ODdONnbSbW6Je29L4Pi/MB8GA1UdIwQYMBaAFKyyxU7wtk3CEApIanuPWTJLrXtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTY3My84MDNBQ0QyQzMy OTIxMUVFOTg2RjE0MUZDNEY5QUUwMi9yTExGVHZDMlRjSVFDa2hxZTQ5Wk1rdXRl MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JMTEZUdkMyVGNJUUNraHFlNDlaTWt1dGUway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2NzMvODAzQUNEMkMzMjkyMTFFRTk4NkYxNDFGQzRGOUFFMDIvQzRENUJCMDA5 QjU0MTFFRkJCRUZGMzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpq4wDQYJKoZIhvcNAQELBQADggEBAECkVM3fXyf7D7pK 16arYs6qb4QQOEKnyKxjXQ+JXwljVz/wSoCItIuKQvgAffJJCOxs4y2dMcZJtg1M SNQ3pGFU3SHLU0Belg6PJytFJQXuOASNuXJuEeetZI/gKFXfvL+l9Z3oNCHCNwMJ ZUWm8/gidu5ulXbT3KVJy8aDOsSQPXeI04LlJ/ejhoR+zxNFBizi8+EPxKiENL3Y my1GMF8KtsrMfQbPf7edy2wsqmU2edw8B68gI2Y2Ttj7H6Df+AO+ucLPH5/3e1h8 9JmGfmWr3d1PeJuhX3i4x6AJHbzTWaNIJC+Df1vBw2HZ66GlWJrobvppp5JuGj8w /jHypuo= -----END CERTIFICATE-----Generated at Sat Jun 21 16:04:42 2025 by rpki-client