$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa File: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (raw, json) Hash identifier: fSlcIZdpNT8EGzQOFMuevlDD2po6QEISgofqICdF3UI= Subject key identifier: 14:38:4C:47:3A:F7:F0:93:02:9A:72:AB:8F:A9:6C:BF:F3:AC:81:CF Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 3B Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa Signing time: Wed 03 Sep 2025 08:37:40 +0000 ROA not before: Wed 03 Sep 2025 08:37:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141011 IP address blocks: 103.17.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: Sep 3 08:37:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7fe53-6b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5c:54:55:b2:b6:06:f9:17:3b:1a:56:4f:bd: 1b:9e:b7:52:55:21:42:7c:29:24:0d:f5:d5:ad:a7: 0e:16:14:6c:dc:f6:2d:86:25:4e:96:e5:d1:80:a1: f3:f4:26:72:87:f4:e2:dc:35:f8:ad:eb:e6:af:bd: f2:8a:94:cd:4c:53:d4:19:f7:47:d9:0e:95:76:76: e1:49:63:7c:ff:79:dd:d5:dc:6c:04:77:66:fd:18: de:76:f5:83:ba:73:eb:92:5a:d3:7c:1e:89:2d:69: 6c:06:8e:22:a3:bc:cf:a2:66:fe:bf:3b:cf:da:d5: 30:2b:5c:84:18:c6:b1:03:27:3c:6e:79:fc:03:7c: e6:0b:4e:84:5a:d2:13:aa:05:fa:11:6b:9b:f6:d2: fd:ed:8a:01:0d:72:0d:f4:ce:2c:72:f0:53:d1:fb: c7:97:b0:ea:81:f3:2d:ee:b0:34:8a:94:7c:06:b5: 18:be:b6:69:6b:d6:3e:37:7f:8b:59:84:75:ec:ee: 56:73:5d:3c:dd:d4:9b:e2:6f:8e:32:ab:11:6c:23: a0:a7:fa:67:cb:2a:f2:89:d5:17:70:cc:69:af:e3: 04:4c:d4:0d:55:e2:64:ec:1c:9f:15:3e:32:60:63: f4:ed:4e:52:09:d0:71:aa:99:6d:83:3b:7d:19:af: 6f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:38:4C:47:3A:F7:F0:93:02:9A:72:AB:8F:A9:6C:BF:F3:AC:81:CF X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.19.0/24 Signature Algorithm: sha256WithRSAEncryption 78:f1:bd:48:31:48:a6:e8:a1:c0:4b:8c:aa:d6:fa:1d:26:48: 10:28:06:e7:db:d2:3c:63:12:58:0c:ab:47:a4:38:0f:8b:11: 25:8a:a1:06:85:74:c7:ba:ac:33:cb:c5:b3:ff:79:6a:03:40: b9:ec:66:db:f1:f2:e8:2d:33:a9:f9:20:34:c0:1a:9c:f2:63: 85:ad:46:2b:8c:5b:34:fb:39:ff:f7:c9:c3:72:e9:52:5c:20: be:c6:b5:78:9a:d3:7d:5c:98:b8:5a:06:2c:46:67:cd:d0:14: b9:cb:0e:db:a3:df:7e:a7:14:b1:b5:12:61:1f:5f:20:3e:57: cc:c8:3f:eb:8a:42:a4:6e:39:98:3a:76:79:30:62:86:10:5b: 31:27:23:51:36:f8:2b:98:e5:c0:80:1c:fa:56:73:f0:44:6f: e3:fa:42:b7:64:6f:fb:5e:3e:0a:59:d2:b3:a7:64:7f:69:db: a5:72:38:81:f1:ff:3a:40:0f:f5:a7:97:fb:42:f8:4f:d6:de: 3e:7a:39:9b:a2:f9:38:7f:00:3d:a9:ab:16:d7:3c:38:9b:27: 85:cb:8e:ef:0a:42:13:21:1f:3c:7f:45:86:b1:20:5d:7f:95: 8d:96:0d:02:e2:46:50:7c:91:33:85:c8:36:d5:18:16:45:61: aa:89:9b:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoQkY4ODYwQjJDMDM3N0JCNUVGRURCRTNBRDQwRjFDRjE4 OUYyQUNCMjAeFw0yNTA5MDMwODM3NDBaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjdmZTUzLTZiMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZXFRVsrYG+Rc7GlZPvRuet1JVIUJ8KSQN9dWtpw4WFGzc9i2GJU6W5dGAofP0 JnKH9OLcNfit6+avvfKKlM1MU9QZ90fZDpV2duFJY3z/ed3V3GwEd2b9GN529YO6 c+uSWtN8HoktaWwGjiKjvM+iZv6/O8/a1TArXIQYxrEDJzxuefwDfOYLToRa0hOq BfoRa5v20v3tigENcg30zixy8FPR+8eXsOqB8y3usDSKlHwGtRi+tmlr1j43f4tZ hHXs7lZzXTzd1Jvib44yqxFsI6Cn+mfLKvKJ1RdwzGmv4wRM1A1V4mTsHJ8VPjJg Y/TtTlIJ0HGqmW2DO30Zr2+rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFDhMRzr3 8JMCmnKrj6lsv/Osgc8wHwYDVR0jBBgwFoAUv4hgssA3e7Xv7b461A8c8YnyrLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0NFMDA0MjVBMzZC QzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjRoZ3NzQTNlN1h2N2I0NjFBOGM4WW55ckxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3NC9DRTAwNDI1QTM2QkMxMUYwODFENTVGMTdDNEY5QUUwMi8wNzRBN0ExNDM2 QzUxMUYwQTRFNUM1MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcREzANBgkqhkiG9w0BAQsFAAOCAQEAePG9SDFIpuihwEuM qtb6HSZIECgG59vSPGMSWAyrR6Q4D4sRJYqhBoV0x7qsM8vFs/95agNAuexm2/Hy 6C0zqfkgNMAanPJjha1GK4xbNPs5//fJw3LpUlwgvsa1eJrTfVyYuFoGLEZnzdAU ucsO26PffqcUsbUSYR9fID5XzMg/64pCpG45mDp2eTBihhBbMScjUTb4K5jlwIAc +lZz8ERv4/pCt2Rv+14+ClnSs6dkf2nbpXI4gfH/OkAP9aeX+0L4T9bePno5m6L5 OH8APamrFtc8OJsnhcuO7wpCEyEfPH9FhrEgXX+VjZYNAuJGUHyRM4XINtUYFkVh qombYQ== -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:19 2025 by rpki-client