$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa File: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (raw, json) Hash identifier: kfnndHzaWyTnp8z7+y1i5jZZ9EYcGBwsAArn1r5+vLU= Subject key identifier: 7A:8B:1E:E5:2E:D1:1D:24:85:0A:14:15:B8:CD:41:96:4C:E6:AD:3A Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0D4C Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa Signing time: Mon 26 May 2025 18:30:15 +0000 ROA not before: Mon 26 May 2025 18:30:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137566 IP address blocks: 103.113.176.0/22 maxlen: 24 2402:cec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3404 (0xd4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2, serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: May 26 18:30:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6834b337-3bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4f:8b:79:c2:48:46:70:2b:05:2b:d4:78:22: 2d:1f:58:51:86:67:dc:ca:79:11:1f:d2:10:9b:ed: 33:16:3b:b5:43:a1:01:33:af:d0:91:51:8e:0d:53: 31:a6:4b:24:a8:a6:89:18:7b:e6:ff:8b:48:a5:0f: 54:6d:99:ae:e2:b1:23:92:44:ca:30:a4:54:af:ce: 41:ab:99:17:cd:5a:0c:12:53:6f:00:c1:07:22:a0: 55:5b:81:f0:38:51:06:14:4b:6d:55:b6:f4:13:53: da:d2:4d:8a:ef:13:00:ce:01:b4:92:89:65:d5:cc: a3:84:6a:77:ae:1d:0f:d5:0d:55:af:55:c1:99:f5: 26:50:4a:b8:21:c4:5f:c3:f2:36:58:77:20:64:8b: f5:82:d4:f7:54:10:8c:f3:72:5d:a8:9f:03:ac:6d: 06:f2:b9:db:88:cf:49:c9:fa:9e:20:a3:70:49:6f: 8e:29:b7:76:8e:42:f2:d4:2e:2b:26:5a:ae:4d:02: cb:10:70:82:d1:fb:6f:ee:77:3c:bf:b7:9a:96:9b: 6d:56:af:62:a4:b5:44:b0:19:c0:92:32:c8:20:a3: e5:a6:2d:37:6d:b2:5d:4b:e7:af:e8:56:c5:0a:11: 76:0a:54:05:6e:cf:12:ad:f3:73:10:21:d2:e4:36: 2a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8B:1E:E5:2E:D1:1D:24:85:0A:14:15:B8:CD:41:96:4C:E6:AD:3A X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.176.0/22 IPv6: 2402:cec0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:67:fe:61:4d:fc:ae:c8:1e:72:f6:10:f9:ad:34:97:e7:b3: 9a:61:10:57:3e:60:bc:b0:e3:6a:77:fd:e7:2a:1d:ae:d9:b9: a4:0f:54:a3:66:df:03:75:c9:54:68:77:86:50:80:47:e5:85: 31:b7:c1:2a:fd:33:1d:e8:4d:46:e0:b4:19:d1:c8:0f:b9:56: 44:06:1d:14:b9:ba:dc:01:a1:af:4e:8c:b9:63:19:73:e2:67: e8:f3:3a:dc:bc:42:11:56:68:0b:61:2d:be:50:40:bc:bd:b6: c3:43:14:3b:6c:43:a4:85:21:ce:e7:e7:15:95:f3:74:fc:8f: 8e:14:2b:8b:1c:28:94:23:b5:4f:6e:ab:3a:44:60:96:6c:6b: f4:15:5c:65:e0:8b:ec:de:e7:ce:a0:3d:a7:2d:4d:3e:aa:bd: 89:6b:56:e7:37:72:07:61:3e:2b:9c:00:22:b3:2e:45:6e:2d: 81:44:cd:6e:f0:da:95:ea:0a:d0:4c:5e:41:70:d0:cf:55:b2: fe:63:85:bf:6b:73:63:2d:1b:c7:f9:e5:ef:f5:85:bb:7a:af: c7:65:9d:6c:f1:82:50:fa:36:df:98:d8:05:8f:b4:58:e4:d3: d5:a5:d8:d9:85:a4:5d:97:c5:16:8f:27:d2:94:34:1e:bb:65: 0d:48:56:08 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjUwNTI2MTgzMDE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YjMzNy0zYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7k+LecJIRnArBSvUeCItH1hRhmfcynkRH9IQm+0zFju1Q6EBM6/QkVGODVMx pkskqKaJGHvm/4tIpQ9UbZmu4rEjkkTKMKRUr85Bq5kXzVoMElNvAMEHIqBVW4Hw OFEGFEttVbb0E1Pa0k2K7xMAzgG0koll1cyjhGp3rh0P1Q1Vr1XBmfUmUEq4IcRf w/I2WHcgZIv1gtT3VBCM83JdqJ8DrG0G8rnbiM9JyfqeIKNwSW+OKbd2jkLy1C4r JlquTQLLEHCC0ftv7nc8v7ealpttVq9ipLVEsBnAkjLIIKPlpi03bbJdS+ev6FbF ChF2ClQFbs8SrfNzECHS5DYqlQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHqLHuUu 0R0khQoUFbjNQZZM5q06MB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFRjIvQjY0NDFFQjZEMkJEMTFFOTlBMUQ0QjFEQzRGOUFFMDIvMTIxNEVFNDBE MkJGMTFFOUE3RjRFRjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncbAwDQQCAAIwBwMFACQCzsAwDQYJKoZIhvcNAQELBQAD ggEBAGtn/mFN/K7IHnL2EPmtNJfns5phEFc+YLyw42p3/ecqHa7ZuaQPVKNm3wN1 yVRod4ZQgEflhTG3wSr9Mx3oTUbgtBnRyA+5VkQGHRS5utwBoa9OjLljGXPiZ+jz Oty8QhFWaAthLb5QQLy9tsNDFDtsQ6SFIc7n5xWV83T8j44UK4scKJQjtU9uqzpE YJZsa/QVXGXgi+ze586gPactTT6qvYlrVuc3cgdhPiucACKzLkVuLYFEzW7w2pXq CtBMXkFw0M9Vsv5jhb9rc2MtG8f55e/1hbt6r8dlnWzxglD6Nt+Y2AWPtFjk09Wl 2NmFpF2XxRaPJ9KUNB67ZQ1IVgg= -----END CERTIFICATE-----Generated at Sat Jun 21 04:36:57 2025 by rpki-client