$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa File: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (raw, json) Hash identifier: AAv9iRZkCrIdjmlojo08VQ3Lr0iHsrSZtwCxTUl/qrA= Subject key identifier: FD:FF:99:DA:DB:43:7C:FA:92:FE:CE:E9:CE:21:A5:9B:AB:4C:52:3B Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 04F8 Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa Signing time: Thu 21 Aug 2025 00:05:58 +0000 ROA not before: Thu 21 Aug 2025 00:05:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138968 IP address blocks: 103.67.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Aug 21 00:05:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a662e6-1216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:62:9d:4c:e2:cb:0a:e0:36:4d:ec:24:8d:40: b3:68:1b:c0:96:e2:c8:90:0e:3a:c0:4e:af:6b:37: a8:c3:96:76:bd:38:f0:66:66:ac:7e:80:fc:43:2f: 06:ec:56:76:25:e3:af:74:04:4c:10:77:f6:8e:a3: 49:ba:0e:fe:a1:dd:27:dc:f9:36:f4:a6:7f:42:fa: 8e:dd:dc:27:85:2b:ef:79:a2:39:c6:9c:fb:b1:ea: 29:11:34:05:d7:68:0e:1b:42:49:78:8c:b5:4f:09: 75:13:a1:e1:22:60:bc:35:a6:76:4e:b8:58:28:55: eb:6f:c4:ca:29:db:70:3d:0b:21:e1:55:a1:6b:68: 81:fe:80:6b:e6:e7:37:11:a3:9f:64:a9:92:a0:89: b7:a5:0b:35:24:ae:d7:22:3f:c5:37:19:f7:da:ec: 6e:a9:6a:f0:1f:88:45:44:6e:9f:0d:29:4e:e5:ba: 77:e5:82:aa:5f:f9:8f:8d:ea:56:bb:62:59:f2:22: 87:93:d9:d9:a7:b9:ec:53:c8:da:82:49:5f:90:92: 46:0d:dd:ed:ee:45:fb:4d:9a:a8:80:61:1b:a8:1a: d5:f3:7e:2b:73:6b:24:4e:0d:f4:66:e2:58:c5:24: 9b:96:2f:26:e3:1c:93:54:cd:f9:fe:93:57:89:e0: 12:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FF:99:DA:DB:43:7C:FA:92:FE:CE:E9:CE:21:A5:9B:AB:4C:52:3B X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.252.0/22 Signature Algorithm: sha256WithRSAEncryption 27:18:99:d4:5b:b3:d9:1f:77:02:e0:b9:ef:df:eb:0b:cb:0a: 65:0d:5b:37:1d:61:c2:7d:e8:be:bf:e3:ce:34:e4:45:f9:40: 44:84:be:ba:35:33:fa:f4:7f:92:c0:e1:61:43:d9:51:b5:e3: 47:46:c2:54:0a:0a:61:20:28:19:1d:db:76:72:a9:17:32:c7: 17:d2:38:5f:42:52:36:b0:ed:e4:1c:9b:9b:ad:82:c5:65:b9: f3:0c:af:87:f4:52:f8:23:b0:f8:b2:cc:5b:c8:dc:3f:ad:77: 42:79:1b:2b:f4:5f:43:f1:83:fc:cc:12:d7:8d:3b:ec:2f:d2: 96:8a:2f:24:a6:45:db:49:ec:71:e0:42:c2:ab:1a:9a:a1:b2: e1:60:8e:46:87:0f:a2:20:3c:ba:5b:78:27:3d:d8:f1:b0:a0: 6a:ba:11:be:80:65:a6:58:ed:fc:eb:a1:e8:03:2f:94:b4:8d: 03:65:93:a4:49:8e:ca:7f:68:7f:3a:2e:5f:90:39:64:c4:58: bf:7e:02:1b:f9:da:e2:79:6a:91:51:ec:f8:77:0c:70:5e:c4: f8:0f:d7:10:51:23:a3:0a:00:0d:d1:47:e3:99:82:2b:74:5e: ff:04:27:99:77:98:cf:62:03:67:7d:b9:7c:a9:ca:8a:79:80: 74:81:8b:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUwODIxMDAwNTU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2NjJlNi0xMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02KdTOLLCuA2TewkjUCzaBvAluLIkA46wE6vazeow5Z2vTjwZmasfoD8Qy8G 7FZ2JeOvdARMEHf2jqNJug7+od0n3Pk29KZ/QvqO3dwnhSvveaI5xpz7seopETQF 12gOG0JJeIy1Twl1E6HhImC8NaZ2TrhYKFXrb8TKKdtwPQsh4VWha2iB/oBr5uc3 EaOfZKmSoIm3pQs1JK7XIj/FNxn32uxuqWrwH4hFRG6fDSlO5bp35YKqX/mPjepW u2JZ8iKHk9nZp7nsU8jagklfkJJGDd3t7kX7TZqogGEbqBrV834rc2skTg30ZuJY xSSbli8m4xyTVM35/pNXieASZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP3/mdrb Q3z6kv7O6c4hpZurTFI7MB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNCRUYvOEFBRkUyOEMyNUNGMTFFQzhCNEE5OTJFQzRGOUFFMDIvOEExOTBBQjY2 RDEwMTFFRkExM0Q2RTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnQ/wwDQYJKoZIhvcNAQELBQADggEBACcYmdRbs9kfdwLg ue/f6wvLCmUNWzcdYcJ96L6/48405EX5QESEvro1M/r0f5LA4WFD2VG140dGwlQK CmEgKBkd23ZyqRcyxxfSOF9CUjaw7eQcm5utgsVlufMMr4f0UvgjsPiyzFvI3D+t d0J5Gyv0X0Pxg/zMEteNO+wv0paKLySmRdtJ7HHgQsKrGpqhsuFgjkaHD6IgPLpb eCc92PGwoGq6Eb6AZaZY7fzroegDL5S0jQNlk6RJjsp/aH86Ll+QOWTEWL9+Ahv5 2uJ5apFR7Ph3DHBexPgP1xBRI6MKAA3RR+OZgit0Xv8EJ5l3mM9iA2d9uXypyop5 gHSBi+s= -----END CERTIFICATE-----Generated at Sat Aug 23 22:37:19 2025 by rpki-client