$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa File: A4B0D326F0A311ED99A1471CC4F9AE02.roa (raw, json) Hash identifier: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE= Subject key identifier: 9A:5B:AA:C2:8E:4D:C3:4A:FE:B3:DB:5D:F5:9C:51:4C:99:14:BB:74 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0190 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa Signing time: Thu 19 Jun 2025 03:21:07 +0000 ROA not before: Thu 19 Jun 2025 03:21:07 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142409 IP address blocks: 103.167.230.0/23 maxlen: 23 2407:77c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Jun 19 03:21:07 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68538222-a3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:49:49:a0:7f:2c:7a:6f:c2:6c:50:cb:f0:ef: a5:6c:d5:b7:47:1c:d6:ba:94:ab:8b:af:30:2c:d5: 2e:ea:b1:a2:10:ae:ea:9d:da:35:19:70:bc:af:ff: ce:5f:65:5c:d9:fe:77:d5:6b:5a:e7:50:dd:fe:9f: 93:ea:f8:40:dc:fb:87:a9:d2:2b:c0:fa:24:c1:9d: dc:62:9a:fa:5b:69:04:7a:49:52:c3:9f:c7:e0:46: 4e:2c:61:8f:58:1d:6b:fc:3c:b6:05:93:91:a1:e6: 56:a0:31:09:eb:6b:6b:04:9b:53:5e:0c:64:0d:09: 47:07:8b:5d:fe:99:49:a5:eb:a4:6f:6d:fb:ae:09: e6:dc:70:7f:85:4c:9f:76:25:6e:5c:8d:9f:4c:54: ba:69:5a:ef:dd:59:dd:f2:69:97:31:af:f8:90:36: 95:09:8e:e7:56:40:d9:ae:ae:3b:66:82:c9:4f:5e: b9:40:55:8b:0f:f4:d5:ed:1a:23:7f:4e:65:5a:57: 7d:04:48:11:d3:2c:66:ef:2a:8a:2b:05:4d:cb:fc: 18:6c:fe:f1:69:23:42:58:33:50:91:e9:f8:18:b7: 85:6b:fd:b1:a6:8b:28:a3:56:5e:e9:57:f0:df:75: 3f:9c:28:fe:e4:4c:74:3d:80:f0:3c:c4:9a:cf:3f: 1b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5B:AA:C2:8E:4D:C3:4A:FE:B3:DB:5D:F5:9C:51:4C:99:14:BB:74 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.230.0/23 IPv6: 2407:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 31:a3:6b:40:0a:c5:f5:9b:6f:de:10:e6:41:bc:f4:3c:f9:cc: a8:b5:7d:ff:35:a2:b9:17:d2:17:45:99:74:e5:fa:05:82:88: d8:30:99:e0:a8:5d:00:0d:f7:8c:91:b7:78:bf:9b:82:f1:08: 2d:c4:47:d1:85:c1:58:f4:f1:a4:a0:5a:08:be:54:d9:f6:3c: d7:ea:22:50:73:cf:f2:d9:a9:f2:d2:78:d8:f3:f3:53:1c:95: dc:e8:5b:ba:e7:fe:67:fb:1b:ff:3d:38:6e:a7:e0:73:d6:01: 5b:94:23:3c:45:75:48:45:d8:95:18:7b:8d:5d:c6:52:9f:94: fb:af:d3:9a:5e:70:3a:98:47:a7:bb:fc:f8:4d:02:b2:f4:42: ea:a8:f4:05:90:80:79:68:bf:4c:1c:63:62:93:3e:a1:98:64: 1f:97:66:23:e6:d1:67:18:8f:76:a7:31:6a:f6:a2:6d:95:a8: ee:8c:39:6a:9e:cf:5c:4b:42:3e:2f:93:eb:9a:de:29:8d:a1: 05:e6:fd:a8:1f:2e:76:60:76:3f:9a:90:33:ce:cc:e3:64:67: f2:3f:33:23:9b:54:5e:d9:04:9e:6a:4d:92:e1:81:21:97:fb: 27:77:e3:9c:6a:3f:5e:67:88:ec:07:cf:5a:ba:b6:ca:da:bf: 9f:05:07:ec -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwNjE5MDMyMTA3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzODIyMi1hM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UlJoH8sem/CbFDL8O+lbNW3RxzWupSri68wLNUu6rGiEK7qndo1GXC8r//O X2Vc2f531Wta51Dd/p+T6vhA3PuHqdIrwPokwZ3cYpr6W2kEeklSw5/H4EZOLGGP WB1r/Dy2BZORoeZWoDEJ62trBJtTXgxkDQlHB4td/plJpeukb237rgnm3HB/hUyf diVuXI2fTFS6aVrv3Vnd8mmXMa/4kDaVCY7nVkDZrq47ZoLJT165QFWLD/TV7Roj f05lWld9BEgR0yxm7yqKKwVNy/wYbP7xaSNCWDNQken4GLeFa/2xposoo1Ze6Vfw 33U/nCj+5Ex0PYDwPMSazz8bCQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJpbqsKO TcNK/rPbXfWcUUyZFLt0MB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVCNUYvOEU0MTgwMjBGMDlCMTFFREE2MDZCRDYyQzRGOUFFMDIvQTRCMEQzMjZG MEEzMTFFRDk5QTE0NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnp+YwDQQCAAIwBwMFACQHd8AwDQYJKoZIhvcNAQELBQAD ggEBADGja0AKxfWbb94Q5kG89Dz5zKi1ff81orkX0hdFmXTl+gWCiNgwmeCoXQAN 94yRt3i/m4LxCC3ER9GFwVj08aSgWgi+VNn2PNfqIlBzz/LZqfLSeNjz81Mcldzo W7rn/mf7G/89OG6n4HPWAVuUIzxFdUhF2JUYe41dxlKflPuv05pecDqYR6e7/PhN ArL0Quqo9AWQgHlov0wcY2KTPqGYZB+XZiPm0WcYj3anMWr2om2VqO6MOWqez1xL Qj4vk+ua3imNoQXm/agfLnZgdj+akDPOzONkZ/I/MyObVF7ZBJ5qTZLhgSGX+yd3 45xqP15niOwHz1q6tsrav58FB+w= -----END CERTIFICATE-----Generated at Fri Jun 20 19:44:08 2025 by rpki-client