$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa File: CD57B28C814211EA94DD3E2DC4F9AE02.roa (raw, json) Hash identifier: ClQj70D4QsMeSPs5XhoDWoqTMjGb5jdaAiwIUHB/7eM= Subject key identifier: D2:34:40:63:C7:45:81:C5:AB:6B:F4:1D:D3:B4:85:D0:CF:F1:58:B3 Certificate issuer: /CN=A9147B3A/serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Certificate serial: 09F5 Authority key identifier: 31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa Signing time: Wed 20 Aug 2025 20:00:37 +0000 ROA not before: Wed 20 Aug 2025 20:00:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132270 IP address blocks: 103.71.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2549 (0x9f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B3A, serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Validity Not Before: Aug 20 20:00:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a62964-033a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3a:54:6e:6f:7c:e2:5e:df:e2:26:1d:a1:b4: 9c:ad:1e:ee:61:7d:51:d3:97:b4:c7:24:d2:58:20: 2e:b6:ff:54:28:a5:52:96:01:d2:ef:34:ca:d0:a4: df:a9:e2:4c:3b:6f:dd:c8:bc:fe:0e:99:e1:59:97: e2:c2:54:18:e2:6c:bd:e1:c8:7f:95:38:ff:f4:3a: 7a:2f:f6:19:96:23:67:67:cf:96:81:7e:da:ac:00: 37:68:84:43:63:ec:de:d3:d9:2e:b0:8c:9c:c1:e5: d8:0f:5e:35:78:e6:fb:5d:36:eb:b2:06:74:7d:50: 12:5f:ff:c2:20:2e:83:b1:f8:e7:bc:cd:33:2e:38: 4e:e5:85:cd:16:f4:e6:29:b3:e6:c9:f0:b4:10:dc: d0:21:78:5c:3d:51:50:a5:f1:93:b4:7e:22:80:8d: d7:58:e2:2a:2b:43:36:a6:7b:d6:c1:cd:7e:c5:7e: 21:65:8d:07:36:31:bf:e8:c7:1f:6a:3f:c8:21:c7: ad:e6:b8:8e:6b:9d:d9:2d:b4:3b:5a:ab:b8:06:e3: 42:c5:f5:1d:d7:eb:96:7f:2f:0a:b0:0f:53:a0:fc: d9:a3:fa:e5:44:8a:74:3a:03:e2:28:02:de:13:1f: ca:be:f0:e9:1d:c7:12:e5:3a:fd:69:3c:41:30:6c: a5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:34:40:63:C7:45:81:C5:AB:6B:F4:1D:D3:B4:85:D0:CF:F1:58:B3 X509v3 Authority Key Identifier: keyid:31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.242.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:07:41:f5:26:ce:ee:97:29:f7:35:1a:a4:e5:0f:80:94:6f: e6:99:f7:41:b1:ba:41:88:6e:e6:db:49:89:81:60:36:c8:07: ed:e3:e5:86:e4:01:cf:af:e4:a3:44:6e:de:0d:e9:6a:f2:2c: cf:56:78:42:6c:ff:83:49:3d:e6:90:83:62:50:a0:4e:1d:eb: 41:7d:92:63:b2:47:4d:55:0a:ae:6b:fe:01:dc:52:ea:e3:7d: 68:9a:2c:93:a6:6e:35:4b:ab:91:39:2c:46:d6:f2:0d:a1:2d: ed:83:0d:51:b1:45:08:65:84:dc:f2:10:7d:1e:f1:02:3f:64: 9a:ae:e3:68:4f:b9:72:e5:26:8c:13:f3:6b:73:e0:bc:dc:a2: f5:58:38:93:55:b4:22:5c:e8:cb:db:61:47:71:16:bc:e7:2f: 43:cc:1d:29:c1:c8:06:ba:c0:4d:b9:4c:99:65:80:77:f6:21: e1:97:e4:af:e0:2f:58:1d:8b:d2:39:2e:b1:a4:a1:87:30:6e: 5c:57:b0:ac:3b:b9:8a:27:71:4e:8c:2c:98:2d:5a:fa:8a:13: e9:d7:f2:b0:e3:c1:a2:db:71:8d:cf:57:03:55:32:23:5b:ed: 24:0e:8e:c0:77:6d:55:b6:9e:3c:a9:fa:00:0f:12:b6:a8:27: c3:64:6f:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCM0ExMTAvBgNVBAUTKDMxMURGRDlERTQwNUUwNzFEODMxMjFGQjkwMjVGQjRG MjAyNDAzMkMwHhcNMjUwODIwMjAwMDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2Mjk2NC0wMzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDpUbm984l7f4iYdobScrR7uYX1R05e0xyTSWCAutv9UKKVSlgHS7zTK0KTf qeJMO2/dyLz+DpnhWZfiwlQY4my94ch/lTj/9Dp6L/YZliNnZ8+WgX7arAA3aIRD Y+ze09kusIycweXYD141eOb7XTbrsgZ0fVASX//CIC6DsfjnvM0zLjhO5YXNFvTm KbPmyfC0ENzQIXhcPVFQpfGTtH4igI3XWOIqK0M2pnvWwc1+xX4hZY0HNjG/6Mcf aj/IIcet5riOa53ZLbQ7Wqu4BuNCxfUd1+uWfy8KsA9ToPzZo/rlRIp0OgPiKALe Ex/KvvDpHccS5Tr9aTxBMGylNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNI0QGPH RYHFq2v0HdO0hdDP8VizMB8GA1UdIwQYMBaAFDEd/Z3kBeBx2DEh+5Al+08gJAMs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0IzQS81NTFCRjJCQzgx NDAxMUVBQkIwRDcyMjhDNEY5QUUwMi9NUjM5bmVRRjRISFlNU0g3a0NYN1R5QWtB eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SMzluZVFGNEhIWU1TSDdrQ1g3VHlBa0F5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdCM0EvNTUxQkYyQkM4MTQwMTFFQUJCMEQ3MjI4QzRGOUFFMDIvQ0Q1N0IyOEM4 MTQyMTFFQTk0REQzRTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnR/IwDQYJKoZIhvcNAQELBQADggEBADoHQfUmzu6XKfc1 GqTlD4CUb+aZ90GxukGIbubbSYmBYDbIB+3j5YbkAc+v5KNEbt4N6WryLM9WeEJs /4NJPeaQg2JQoE4d60F9kmOyR01VCq5r/gHcUurjfWiaLJOmbjVLq5E5LEbW8g2h Le2DDVGxRQhlhNzyEH0e8QI/ZJqu42hPuXLlJowT82tz4LzcovVYOJNVtCJc6Mvb YUdxFrznL0PMHSnByAa6wE25TJllgHf2IeGX5K/gL1gdi9I5LrGkoYcwblxXsKw7 uYoncU6MLJgtWvqKE+nX8rDjwaLbcY3PVwNVMiNb7SQOjsB3bVW2njyp+gAPErao J8Nkbwc= -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:35 2025 by rpki-client