$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa File: 694FA6C678B511F0B9F98C80C4F9AE02.roa (raw, json) Hash identifier: 01wLk9RHRk483aM+7518CMU3cV26N05+ze+yCvqPXlA= Subject key identifier: 9F:86:88:A2:AE:56:86:7B:2C:B7:40:60:8F:34:A2:79:60:10:E6:34 Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 26E3 Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa Signing time: Thu 14 Aug 2025 02:21:40 +0000 ROA not before: Thu 14 Aug 2025 02:21:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 64005 IP address blocks: 103.139.235.0/24 maxlen: 24 2001:df4:3800::/48 maxlen: 48 2400:eb80::/32 maxlen: 32 2400:eb80::/48 maxlen: 48 2400:eb80:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9955 (0x26e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0, serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Aug 14 02:21:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=689d4834-a7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d8:27:50:df:ad:91:af:60:77:aa:63:4d:d6: 92:3e:a3:96:9d:15:1e:88:13:28:2d:fc:ba:56:b0: d6:6f:15:52:23:ae:3d:3e:28:06:79:e3:27:6d:73: b6:65:92:b3:9f:5d:34:99:aa:e8:6c:d9:f4:4c:3a: db:3a:11:dc:37:5f:a5:db:80:57:a8:86:82:90:cd: b7:1b:4a:0c:2d:ca:56:93:00:c9:ac:c1:94:2e:49: 59:83:5f:44:00:dd:15:04:fb:a9:66:36:fe:0f:70: b5:82:23:3a:c7:4b:13:bc:d4:3e:fc:8e:b6:c4:39: 1f:1a:64:86:f4:1b:42:91:3d:0f:43:b4:9f:b8:f1: 97:7f:21:d4:ec:93:88:9d:b2:70:a5:77:02:04:35: 0b:68:98:f0:fb:96:36:6f:40:fb:4f:44:a1:54:d0: 84:60:96:db:22:fd:9b:ea:80:03:d2:05:54:bb:31: 71:7d:81:d5:ee:dd:69:c5:60:e5:eb:cb:24:6a:48: fd:7e:6a:7e:72:aa:97:08:13:88:3f:eb:11:62:3c: 93:70:80:97:85:25:3b:ac:98:41:57:c4:86:c5:15: be:1d:77:db:f1:fd:33:66:e4:8b:7c:3f:17:80:6b: a6:01:67:27:a3:53:76:e5:53:e8:88:68:44:4c:2a: 31:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:86:88:A2:AE:56:86:7B:2C:B7:40:60:8F:34:A2:79:60:10:E6:34 X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.235.0/24 IPv6: 2001:df4:3800::/48 2400:eb80::/32 Signature Algorithm: sha256WithRSAEncryption 54:36:4e:7c:f8:4a:a3:62:34:9a:fe:d9:85:7a:63:8a:ac:d4: bc:d9:b0:b0:14:ba:25:83:1c:a3:6c:73:4f:50:c6:75:86:f6: 07:51:79:49:5e:d2:31:85:e0:bb:72:8c:e9:88:94:da:44:f4: b9:07:e1:14:dc:33:a0:9c:a2:03:79:17:37:83:8e:8a:c2:38: f1:f1:dc:2d:0f:ae:3d:7d:3f:db:f9:9e:79:19:e8:49:64:62: b8:1e:e3:33:6a:9d:f3:f9:7b:4c:c2:ea:ca:df:c2:cf:18:78: e2:12:a1:8d:91:9e:9a:9d:a0:92:89:ec:cb:a6:0c:f1:02:7a: 0c:6e:d7:33:16:16:df:6d:13:64:85:14:ed:74:f1:60:65:65: 84:d4:e9:5a:c5:54:84:79:db:9b:7a:d3:b5:5a:44:bb:4c:cf: 86:73:a9:0b:e3:32:f0:46:74:11:1d:8e:b3:b0:b4:92:e4:6a: e3:58:6d:48:67:de:07:6f:ae:14:28:5b:50:2d:9b:b3:57:9e: 48:98:80:dd:3c:ea:e0:ea:f8:32:1c:49:ed:b3:6f:95:31:b3: 3e:ac:e6:58:32:bb:c3:0b:b3:e6:79:5a:e8:d4:b8:07:87:7a: cd:23:02:37:13:7a:c2:1b:b8:e1:76:b2:f8:85:84:4a:6a:c4: eb:63:81:ca -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICJuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjUwODE0MDIyMTQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODlkNDgzNC1hN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytgnUN+tka9gd6pjTdaSPqOWnRUeiBMoLfy6VrDWbxVSI649PigGeeMnbXO2 ZZKzn100marobNn0TDrbOhHcN1+l24BXqIaCkM23G0oMLcpWkwDJrMGULklZg19E AN0VBPupZjb+D3C1giM6x0sTvNQ+/I62xDkfGmSG9BtCkT0PQ7SfuPGXfyHU7JOI nbJwpXcCBDULaJjw+5Y2b0D7T0ShVNCEYJbbIv2b6oAD0gVUuzFxfYHV7t1pxWDl 68skakj9fmp+cqqXCBOIP+sRYjyTcICXhSU7rJhBV8SGxRW+HXfb8f0zZuSLfD8X gGumAWcno1N25VPoiGhETCoxVQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJ+GiKKu VoZ7LLdAYI80onlgEOY0MB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvNjk0RkE2QzY3 OEI1MTFGMEI5Rjk4QzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBABni+swFgQCAAIwEAMHACABDfQ4AAMFACQA64AwDQYJKoZI hvcNAQELBQADggEBAFQ2Tnz4SqNiNJr+2YV6Y4qs1LzZsLAUuiWDHKNsc09QxnWG 9gdReUle0jGF4LtyjOmIlNpE9LkH4RTcM6CcogN5FzeDjorCOPHx3C0Prj19P9v5 nnkZ6ElkYrge4zNqnfP5e0zC6srfws8YeOISoY2RnpqdoJKJ7MumDPECegxu1zMW Ft9tE2SFFO108WBlZYTU6VrFVIR525t607VaRLtMz4ZzqQvjMvBGdBEdjrOwtJLk auNYbUhn3gdvrhQoW1Atm7NXnkiYgN086uDq+DIcSe2zb5Uxsz6s5lgyu8MLs+Z5 WujUuAeHes0jAjcTesIbuOF2sviFhEpqxOtjgco= -----END CERTIFICATE-----Generated at Sat Aug 23 21:18:32 2025 by rpki-client