$ rpki-client -vvf rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/F0400AE677BA11F0B8C59215C4F9AE02.roa File: F0400AE677BA11F0B8C59215C4F9AE02.roa (raw, json) Hash identifier: dpKOmpNNILgFxV88y1JxyCTLjh/E5htc0CYw1a3XSOc= Subject key identifier: 87:87:F4:EB:DB:C7:9E:02:9C:1B:71:BB:EB:EA:74:37:6D:AB:90:6D Certificate issuer: /CN=A9161DF8/serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Certificate serial: 0278 Authority key identifier: 3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/F0400AE677BA11F0B8C59215C4F9AE02.roa Signing time: Tue 12 Aug 2025 20:29:36 +0000 ROA not before: Tue 12 Aug 2025 20:29:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139820 IP address blocks: 103.250.28.0/24 maxlen: 24 103.250.29.0/24 maxlen: 24 2001:df1:4540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161DF8, serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Validity Not Before: Aug 12 20:29:36 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=689ba42f-97db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:dd:6f:76:34:9a:ab:ef:20:f8:81:78:5c: 5d:3a:69:33:57:63:50:d1:fa:ce:66:5a:8d:23:ed: 66:d1:2c:0f:4c:1f:7e:e9:79:d0:04:ab:ab:0c:f2: 5f:39:4a:b5:8c:ba:4c:8d:c6:0f:7d:9b:69:ff:02: 4a:e3:7a:09:0a:12:98:1b:70:d3:f3:35:be:37:2e: 27:11:e5:bd:3c:22:fc:81:21:98:cd:56:27:9d:32: 38:eb:d6:3a:92:8d:a7:98:6b:6c:e1:07:d9:ee:c9: 10:d5:7e:16:b1:b2:17:e5:6c:d7:66:1c:6f:2e:5b: 0c:c9:5c:00:75:f5:de:bd:76:58:66:d6:ad:26:57: 28:30:96:4e:9c:de:f3:a3:b0:aa:be:e5:3a:3f:41: 2e:67:ea:bf:ba:22:c1:9d:73:c4:7b:53:24:f5:55: d1:55:35:db:e8:e2:95:53:87:0f:c7:64:6a:c5:6d: bd:69:55:06:8b:a5:28:a6:0c:ae:bd:f8:05:42:72: a6:0a:b2:22:a1:6c:28:8b:5d:7d:b5:f8:ea:f1:2b: 61:69:c7:53:7b:44:24:e2:4f:0a:1c:53:4a:2e:bf: 0a:2f:20:73:ae:fa:28:c9:e7:d7:74:72:a7:68:50: 37:c7:a8:db:84:4f:de:9e:80:83:76:65:a5:29:0f: cd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:87:F4:EB:DB:C7:9E:02:9C:1B:71:BB:EB:EA:74:37:6D:AB:90:6D X509v3 Authority Key Identifier: keyid:3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/F0400AE677BA11F0B8C59215C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.28.0/23 IPv6: 2001:df1:4540::/48 Signature Algorithm: sha256WithRSAEncryption 2f:18:a0:fc:3c:bd:6d:18:3f:86:4b:27:62:8f:c2:e5:80:7e: 9d:f7:74:ce:ec:56:42:0e:09:d6:38:b7:d3:95:6f:8c:ba:b6: 8f:a0:cd:b6:f5:6c:53:ff:74:73:1a:35:e5:25:2f:15:ed:83: 40:ec:b3:73:eb:da:bc:08:f8:cd:da:3e:fa:d8:da:dd:6a:3f: 89:00:71:f3:b0:d0:26:df:3c:91:18:90:93:fd:dc:ea:71:59: 2f:eb:5b:0e:27:7f:24:28:7d:b5:77:70:45:c4:7e:93:b5:cc: 34:39:3f:f6:71:67:9b:c8:21:98:19:2a:37:e9:20:37:ca:33: 99:18:23:fc:ea:45:95:ac:d1:01:e2:d3:b9:73:f8:f8:88:ce: fe:d7:fe:2f:3b:33:d8:28:94:8b:4b:06:45:3c:68:ed:70:68: d0:e4:d9:93:3f:fa:5c:67:ce:fe:73:cd:ad:19:2f:b0:08:63: 31:51:9a:a8:e7:2a:ac:a7:3b:83:12:7e:0c:bc:a3:c6:30:67: 31:87:1d:77:04:70:88:a2:9b:1a:e2:65:11:91:a4:42:15:f7: 1d:0a:0e:2a:13:3e:b8:86:03:c8:d4:3b:96:d2:56:b6:6d:72: 53:04:f9:bb:e7:77:38:7b:5c:cf:db:5f:9f:a8:e4:72:46:ae: 16:98:d0:02 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFERjgxMTAvBgNVBAUTKDNGQkMzQUY0MzEwMkNFREE0RkEwRjdGQTlCRDkxQjJE NjUzNDZENkUwHhcNMjUwODEyMjAyOTM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliYTQyZi05N2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkzdb3Y0mqvvIPiBeFxdOmkzV2NQ0frOZlqNI+1m0SwPTB9+6XnQBKurDPJf OUq1jLpMjcYPfZtp/wJK43oJChKYG3DT8zW+Ny4nEeW9PCL8gSGYzVYnnTI469Y6 ko2nmGts4QfZ7skQ1X4WsbIX5WzXZhxvLlsMyVwAdfXevXZYZtatJlcoMJZOnN7z o7CqvuU6P0EuZ+q/uiLBnXPEe1Mk9VXRVTXb6OKVU4cPx2RqxW29aVUGi6Uopgyu vfgFQnKmCrIioWwoi119tfjq8SthacdTe0Qk4k8KHFNKLr8KLyBzrvooyefXdHKn aFA3x6jbhE/enoCDdmWlKQ/N2wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIeH9Ovb x54CnBtxu+vqdDdtq5BtMB8GA1UdIwQYMBaAFD+8OvQxAs7aT6D3+pvZGy1lNG1u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MURGOC8yNkU1MzExNDU1 MDYxMUVEOTUwNkMwNDVDNEY5QUUwMi9QN3c2OURFQ3p0cFBvUGY2bTlrYkxXVTBi VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3dzY5REVDenRwUG9QZjZtOWtiTFdVMGJXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFERjgvMjZFNTMxMTQ1NTA2MTFFRDk1MDZDMDQ1QzRGOUFFMDIvRjA0MDBBRTY3 N0JBMTFGMEI4QzU5MjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn+hwwDwQCAAIwCQMHACABDfFFQDANBgkqhkiG9w0BAQsF AAOCAQEALxig/Dy9bRg/hksnYo/C5YB+nfd0zuxWQg4J1ji305VvjLq2j6DNtvVs U/90cxo15SUvFe2DQOyzc+vavAj4zdo++tja3Wo/iQBx87DQJt88kRiQk/3c6nFZ L+tbDid/JCh9tXdwRcR+k7XMNDk/9nFnm8ghmBkqN+kgN8ozmRgj/OpFlazRAeLT uXP4+IjO/tf+Lzsz2CiUi0sGRTxo7XBo0OTZkz/6XGfO/nPNrRkvsAhjMVGaqOcq rKc7gxJ+DLyjxjBnMYcddwRwiKKbGuJlEZGkQhX3HQoOKhM+uIYDyNQ7ltJWtm1y UwT5u+d3OHtcz9tfn6jkckauFpjQAg== -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:38 2025 by rpki-client