$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A9545AE6D1011EFA13D6E2BC4F9AE02.roa File: 8A9545AE6D1011EFA13D6E2BC4F9AE02.roa (raw, json) Hash identifier: RwcRY83ScxlbqM04nHpwXB0Y4y38xjFyFzwqEWYpGkc= Subject key identifier: 0C:33:F2:92:B3:49:A0:C6:BD:84:62:77:96:EC:DA:89:E0:C4:74:6D Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 04F9 Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A9545AE6D1011EFA13D6E2BC4F9AE02.roa Signing time: Thu 21 Aug 2025 00:05:59 +0000 ROA not before: Thu 21 Aug 2025 00:05:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55933 IP address blocks: 103.67.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Aug 21 00:05:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a662e7-90e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:5c:77:41:bc:13:b6:50:0a:61:42:d4:b1: d7:aa:e7:38:0a:8d:7c:cf:4c:4a:46:47:b5:1c:a4: cd:dd:fd:ef:8c:6d:a2:cc:96:73:87:77:c3:fb:b3: c2:08:6a:9c:09:5f:b1:4f:36:a7:bb:81:40:85:be: 43:cb:c4:b8:2e:11:8a:48:da:18:17:35:50:46:9e: be:9b:6c:7d:fb:12:48:7d:08:01:75:14:d2:ce:22: 8b:5b:57:4c:fa:7d:94:5e:31:01:28:d8:5f:9e:93: 55:2f:01:2f:da:74:95:c1:18:c0:66:06:b2:e5:88: e8:c2:24:5a:88:47:99:8d:f2:34:d6:fb:b1:22:e5: 92:d2:f2:03:57:f7:b7:db:36:6a:f4:3c:bd:61:59: 98:2e:5b:f6:7f:8f:8a:6e:1a:28:51:a8:d3:2d:15: c9:24:86:bf:49:a9:7c:0f:3b:ba:4b:7d:61:86:62: 2b:b8:f2:f3:01:5a:88:30:65:de:3e:32:2e:e2:79: 1a:f6:ab:6b:97:96:cb:52:3c:00:be:a5:2c:c6:32: ae:01:c3:66:39:cf:a4:ae:db:a8:8a:d2:3b:64:29: c9:31:3b:5f:e3:f3:cb:b7:fa:32:00:e8:f5:dc:d0: 4f:07:ac:fa:9c:ba:c1:7a:38:1d:a8:21:ac:78:13: 75:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:33:F2:92:B3:49:A0:C6:BD:84:62:77:96:EC:DA:89:E0:C4:74:6D X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A9545AE6D1011EFA13D6E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:ae:da:1b:5d:6c:3e:51:64:f9:4a:d6:74:a2:cd:7b:f6:9b: 1f:b1:90:61:3d:00:be:d4:d5:82:c1:ac:bd:be:b6:18:80:a2: 3d:b3:5b:23:72:94:ff:ee:ca:e4:7c:5f:77:65:3a:1f:04:b1: 52:61:dc:f2:35:07:13:39:a5:07:b5:ea:52:30:af:e2:b7:f8: 2d:e7:cf:46:a5:1c:40:b1:86:e0:f4:d1:47:21:7f:24:60:18: 15:ab:25:bf:ae:d4:d3:8c:b2:fa:40:56:c2:48:3f:d1:67:aa: 57:fe:c1:74:45:f9:3c:d7:b2:f8:2b:0c:bc:ca:ac:18:e9:d9: 99:5e:10:1b:7c:32:58:63:20:69:20:e5:e7:bc:d2:81:c2:70: 16:f6:70:f1:bf:af:47:64:16:63:d9:c0:30:27:bd:93:be:81: c6:0d:ae:d2:e9:83:ca:f8:6a:7d:a1:61:e0:a0:54:12:40:08: d9:cb:34:2d:40:f0:20:28:69:f0:67:5c:d8:23:f9:b8:14:27: c4:61:bf:44:bf:da:7d:50:64:09:0a:20:16:9b:a4:d9:ca:0b: 23:48:cf:78:87:30:0f:e6:f0:7d:5a:fc:78:f5:58:f5:51:e9: 9c:2a:33:3b:aa:03:53:56:fb:9b:40:56:00:af:ca:ad:76:95: b2:a1:30:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUwODIxMDAwNTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2NjJlNy05MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuulcd0G8E7ZQCmFC1LHXquc4Co18z0xKRke1HKTN3f3vjG2izJZzh3fD+7PC CGqcCV+xTzanu4FAhb5Dy8S4LhGKSNoYFzVQRp6+m2x9+xJIfQgBdRTSziKLW1dM +n2UXjEBKNhfnpNVLwEv2nSVwRjAZgay5YjowiRaiEeZjfI01vuxIuWS0vIDV/e3 2zZq9Dy9YVmYLlv2f4+KbhooUajTLRXJJIa/Sal8Dzu6S31hhmIruPLzAVqIMGXe PjIu4nka9qtrl5bLUjwAvqUsxjKuAcNmOc+krtuoitI7ZCnJMTtf4/PLt/oyAOj1 3NBPB6z6nLrBejgdqCGseBN12wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAwz8pKz SaDGvYRid5bs2ongxHRtMB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNCRUYvOEFBRkUyOEMyNUNGMTFFQzhCNEE5OTJFQzRGOUFFMDIvOEE5NTQ1QUU2 RDEwMTFFRkExM0Q2RTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnQ/wwDQYJKoZIhvcNAQELBQADggEBAAyu2htdbD5RZPlK 1nSizXv2mx+xkGE9AL7U1YLBrL2+thiAoj2zWyNylP/uyuR8X3dlOh8EsVJh3PI1 BxM5pQe16lIwr+K3+C3nz0alHECxhuD00UchfyRgGBWrJb+u1NOMsvpAVsJIP9Fn qlf+wXRF+TzXsvgrDLzKrBjp2ZleEBt8MlhjIGkg5ee80oHCcBb2cPG/r0dkFmPZ wDAnvZO+gcYNrtLpg8r4an2hYeCgVBJACNnLNC1A8CAoafBnXNgj+bgUJ8Rhv0S/ 2n1QZAkKIBabpNnKCyNIz3iHMA/m8H1a/Hj1WPVR6ZwqMzuqA1NW+5tAVgCvyq12 lbKhMO8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:10 2025 by rpki-client