$ rpki-client -vvf rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/D1B29B22765011F0BCBD414BC4F9AE02.roa File: D1B29B22765011F0BCBD414BC4F9AE02.roa (raw, json) Hash identifier: rD73HRKvU2FlfWvdjpnl3MFf2e/F+hooBlGpXdwQQK0= Subject key identifier: 12:EA:7E:DA:06:1E:CF:BE:61:7C:7A:CD:AE:A5:99:DB:C1:62:EE:47 Certificate issuer: /CN=A9117836/serialNumber=6F67581038534D4DBCE3C81B5F2D8861C536B67C Certificate serial: 0181 Authority key identifier: 6F:67:58:10:38:53:4D:4D:BC:E3:C8:1B:5F:2D:88:61:C5:36:B6:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2dYEDhTTU2848gbXy2IYcU2tnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/D1B29B22765011F0BCBD414BC4F9AE02.roa Signing time: Mon 11 Aug 2025 01:16:34 +0000 ROA not before: Mon 11 Aug 2025 01:16:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 64289 IP address blocks: 103.20.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/b2dYEDhTTU2848gbXy2IYcU2tnw.crl rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/b2dYEDhTTU2848gbXy2IYcU2tnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2dYEDhTTU2848gbXy2IYcU2tnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117836, serialNumber=6F67581038534D4DBCE3C81B5F2D8861C536B67C Validity Not Before: Aug 11 01:16:34 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68994471-aabe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a2:3a:0d:42:1c:06:7c:f8:07:25:34:58:0e: 00:43:06:6c:24:88:e6:a8:1b:51:35:25:2a:14:ce: da:30:19:0f:da:b4:13:8c:70:6f:e4:2b:da:c7:a3: af:9e:a7:ab:25:40:b2:12:80:77:dc:16:92:fd:4e: 24:ec:19:44:23:91:54:93:4e:76:f8:80:41:e4:ea: ed:58:b5:54:68:33:a3:2c:bc:a1:09:a3:52:82:1e: ef:9c:54:af:97:e3:9b:ca:ac:d1:bd:5a:d5:03:cb: 1e:ef:dd:49:01:04:ab:03:ba:b5:25:b4:54:20:a3: df:96:a5:5a:8d:67:1b:6a:d8:59:5a:08:2d:1b:86: 36:5a:19:04:eb:da:0e:88:92:ab:bf:5b:34:4c:c3: a0:91:68:22:3d:99:b6:88:42:5b:e3:4e:cd:7e:43: 53:55:43:3d:c1:e9:16:f5:f2:2f:63:08:32:31:48: 8e:c0:64:0e:06:4e:76:db:8d:0a:33:6f:0d:cd:77: 88:31:c5:48:12:e8:8c:01:d3:4e:40:36:15:02:b3: f2:34:70:63:63:e8:23:cc:76:72:7a:ae:a4:55:b0: 05:70:0d:d1:d4:c8:71:57:9e:bb:46:1e:05:67:e9: 77:16:82:49:aa:e4:a1:51:2a:39:60:a2:75:3d:d0: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EA:7E:DA:06:1E:CF:BE:61:7C:7A:CD:AE:A5:99:DB:C1:62:EE:47 X509v3 Authority Key Identifier: keyid:6F:67:58:10:38:53:4D:4D:BC:E3:C8:1B:5F:2D:88:61:C5:36:B6:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/b2dYEDhTTU2848gbXy2IYcU2tnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2dYEDhTTU2848gbXy2IYcU2tnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117836/FA25EDE2431D11EE868CA40FC4F9AE02/D1B29B22765011F0BCBD414BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.101.0/24 Signature Algorithm: sha256WithRSAEncryption ae:a1:d3:e5:50:ca:b0:e1:a2:32:25:3a:f6:a6:8a:00:8f:85: 33:ec:a7:09:03:a7:c1:e5:fc:a2:7c:30:43:f9:09:97:57:41: 01:46:f3:01:14:73:e8:fd:0b:6b:54:35:27:90:c4:31:a1:87: 30:bb:71:5c:da:5e:0f:18:f1:27:81:c2:f3:80:3c:e0:be:7b: a7:76:6a:1f:bd:27:03:46:23:a6:86:cd:24:25:3b:76:bb:c9: 1a:ab:fc:a8:70:cb:e3:f1:aa:73:b3:81:72:f2:4d:c1:75:bf: c1:d8:2f:97:95:b7:e0:08:e6:33:c3:04:a3:b5:6c:de:6c:70: a9:3c:f0:b9:14:e4:da:32:9e:14:2a:fc:44:b6:5b:43:31:fb: a8:20:8a:11:e5:2d:9e:ba:26:b1:c5:84:ea:ff:e6:1c:be:02: fa:85:70:2b:81:48:77:6b:d5:f3:3f:4f:bb:f9:d5:5a:c2:b5: 82:84:ec:da:26:f0:aa:78:d0:62:09:76:f4:82:71:c0:ae:3d: 41:ad:d9:a0:bf:41:ad:fb:e6:52:ef:33:b5:09:e0:21:c3:9d: 16:b5:bf:08:b4:8d:b2:06:1e:c1:54:30:97:6b:61:d3:f9:af: cf:8a:dd:10:74:df:6a:34:40:f5:33:e9:42:cd:77:dc:ca:50: 40:91:f3:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MzYxMTAvBgNVBAUTKDZGNjc1ODEwMzg1MzRENERCQ0UzQzgxQjVGMkQ4ODYx QzUzNkI2N0MwHhcNMjUwODExMDExNjM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5NDQ3MS1hYWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aI6DUIcBnz4ByU0WA4AQwZsJIjmqBtRNSUqFM7aMBkP2rQTjHBv5Cvax6Ov nqerJUCyEoB33BaS/U4k7BlEI5FUk052+IBB5OrtWLVUaDOjLLyhCaNSgh7vnFSv l+ObyqzRvVrVA8se791JAQSrA7q1JbRUIKPflqVajWcbathZWggtG4Y2WhkE69oO iJKrv1s0TMOgkWgiPZm2iEJb407NfkNTVUM9wekW9fIvYwgyMUiOwGQOBk52240K M28NzXeIMcVIEuiMAdNOQDYVArPyNHBjY+gjzHZyeq6kVbAFcA3R1MhxV567Rh4F Z+l3FoJJquShUSo5YKJ1PdBy5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBLqftoG Hs++YXx6za6lmdvBYu5HMB8GA1UdIwQYMBaAFG9nWBA4U01NvOPIG18tiGHFNrZ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgzNi9GQTI1RURFMjQz MUQxMUVFODY4Q0E0MEZDNEY5QUUwMi9iMmRZRURoVFRVMjg0OGdiWHkySVljVTJ0 bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyZFlFRGhUVFUyODQ4Z2JYeTJJWWNVMnRudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4MzYvRkEyNUVERTI0MzFEMTFFRTg2OENBNDBGQzRGOUFFMDIvRDFCMjlCMjI3 NjUwMTFGMEJDQkQ0MTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFGUwDQYJKoZIhvcNAQELBQADggEBAK6h0+VQyrDhojIl OvamigCPhTPspwkDp8Hl/KJ8MEP5CZdXQQFG8wEUc+j9C2tUNSeQxDGhhzC7cVza Xg8Y8SeBwvOAPOC+e6d2ah+9JwNGI6aGzSQlO3a7yRqr/Khwy+PxqnOzgXLyTcF1 v8HYL5eVt+AI5jPDBKO1bN5scKk88LkU5NoynhQq/ES2W0Mx+6ggihHlLZ66JrHF hOr/5hy+AvqFcCuBSHdr1fM/T7v51VrCtYKE7Nom8Kp40GIJdvSCccCuPUGt2aC/ Qa375lLvM7UJ4CHDnRa1vwi0jbIGHsFUMJdrYdP5r8+K3RB032o0QPUz6ULNd9zK UECR86w= -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:46 2025 by rpki-client