$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa File: FE96F04256EE11F09D243832C4F9AE02.roa (raw, json) Hash identifier: i7V57Dro1PeoCEaseJh0ivldyfQ81BauNS5GWJcFu1M= Subject key identifier: DA:34:53:98:C3:B1:FB:5A:41:2F:BF:65:38:9B:1C:91:00:D2:C6:1D Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 3458 Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa Signing time: Wed 02 Jul 2025 02:48:27 +0000 ROA not before: Wed 02 Jul 2025 02:48:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56284 IP address blocks: 103.29.52.0/22 maxlen: 22 119.2.56.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13400 (0x3458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Jul 2 02:48:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68649dfb-5131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6e:83:54:4b:6d:a4:61:39:96:f3:a8:08:65: cc:89:13:bc:b7:08:48:dc:8d:ca:fc:29:71:a4:ad: 17:da:17:fd:98:33:03:97:5a:48:29:92:55:f0:45: 30:0b:62:6c:ce:a2:f7:5b:f7:ab:58:b9:de:87:17: a4:81:90:a7:ea:60:0a:89:2c:41:86:41:e2:2f:b3: fd:cc:bd:a1:77:8b:cf:7e:c4:02:35:50:0e:bb:60: 56:6a:a0:6f:7d:4d:2d:5c:4d:37:fc:29:95:c9:88: e4:f0:76:38:00:b1:7e:f7:04:e2:33:08:a4:d6:57: 88:6e:de:9b:d9:31:2c:02:0a:f6:d5:cb:44:66:f0: 66:9f:03:e5:99:f8:b2:1e:f6:d6:28:7a:17:80:70: 8f:3a:38:6a:8c:fd:9b:b7:1e:cf:7a:60:84:b7:60: 48:a6:68:0c:9a:3f:48:a9:a5:a0:7b:24:7a:ec:0a: 0e:26:b9:5b:96:33:c9:a2:c1:9e:16:43:96:a7:2a: 75:76:f6:eb:ce:99:68:db:89:38:5c:06:f6:40:42: d0:e3:53:6a:cc:c1:b0:48:d9:2c:1e:cf:2b:9e:25: 31:ad:b8:e5:7c:d9:50:e2:84:eb:87:95:86:1e:90: 77:23:17:03:f8:d7:ec:4c:f1:15:35:cd:e7:72:62: 4f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:34:53:98:C3:B1:FB:5A:41:2F:BF:65:38:9B:1C:91:00:D2:C6:1D X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/FE96F04256EE11F09D243832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.52.0/22 119.2.56.0/21 Signature Algorithm: sha256WithRSAEncryption d0:60:19:f3:97:c5:ff:68:43:f0:4c:f7:43:64:1e:d6:d3:99: 24:0a:64:65:33:e9:68:4f:bf:91:4b:8b:e2:ea:76:c1:29:a7: 0a:64:0d:f4:3e:dc:ed:f6:1a:1b:c7:90:3c:aa:80:55:ba:d0: c5:79:db:38:b8:7f:35:57:53:42:c0:02:d4:1a:66:58:37:ac: e1:4b:06:33:b9:3c:52:51:94:2d:f8:33:a0:10:67:68:1b:46: dc:99:72:03:84:80:db:b8:86:7f:f8:4e:92:d7:a2:84:27:14: 91:0d:ab:a9:5f:65:22:e4:46:a5:65:6b:a1:fd:b9:6c:a1:f7: ea:1b:ca:d4:92:e0:4f:f7:50:62:5f:34:60:55:d9:49:6b:f9: c8:1f:d4:56:11:98:2a:ec:3e:3f:5f:54:52:3f:12:27:57:70: 3c:93:aa:86:42:b1:97:ea:63:c9:b3:bb:c0:33:c7:15:b8:cc: 6e:a9:24:16:f9:d2:09:85:28:63:b9:e3:cb:2e:3a:a3:ef:76: 7d:b6:5e:d1:bc:bd:3a:de:d0:47:42:84:ba:30:f6:09:4a:6b: 32:b4:f0:36:d7:66:67:80:83:37:7b:fa:13:06:9b:85:75:4b: ef:a8:34:bb:72:0c:1c:5d:a0:0c:a2:da:ee:e1:27:a2:36:9b: ba:d4:ff:42 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUwNzAyMDI0ODI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY0OWRmYi01MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm6DVEttpGE5lvOoCGXMiRO8twhI3I3K/ClxpK0X2hf9mDMDl1pIKZJV8EUw C2JszqL3W/erWLnehxekgZCn6mAKiSxBhkHiL7P9zL2hd4vPfsQCNVAOu2BWaqBv fU0tXE03/CmVyYjk8HY4ALF+9wTiMwik1leIbt6b2TEsAgr21ctEZvBmnwPlmfiy HvbWKHoXgHCPOjhqjP2btx7PemCEt2BIpmgMmj9IqaWgeyR67AoOJrlbljPJosGe FkOWpyp1dvbrzplo24k4XAb2QELQ41NqzMGwSNksHs8rniUxrbjlfNlQ4oTrh5WG HpB3IxcD+NfsTPEVNc3ncmJPWQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNo0U5jD sftaQS+/ZTibHJEA0sYdMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNGQzQvQjE2NUEzQTgyOTU4MTFFMkIzOEQ1OEZCMDhCMDJDRDIvRkU5NkYwNDI1 NkVFMTFGMDlEMjQzODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnHTQDBAN3AjgwDQYJKoZIhvcNAQELBQADggEBANBgGfOX xf9oQ/BM90NkHtbTmSQKZGUz6WhPv5FLi+LqdsEppwpkDfQ+3O32GhvHkDyqgFW6 0MV52zi4fzVXU0LAAtQaZlg3rOFLBjO5PFJRlC34M6AQZ2gbRtyZcgOEgNu4hn/4 TpLXooQnFJENq6lfZSLkRqVla6H9uWyh9+obytSS4E/3UGJfNGBV2Ulr+cgf1FYR mCrsPj9fVFI/EidXcDyTqoZCsZfqY8mzu8AzxxW4zG6pJBb50gmFKGO548suOqPv dn22XtG8vTre0EdChLow9glKazK08DbXZmeAgzd7+hMGm4V1S++oNLtyDBxdoAyi 2u7hJ6I2m7rU/0I= -----END CERTIFICATE-----Generated at Thu Jul 3 16:45:58 2025 by rpki-client