$ rpki-client -vvf rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa File: 4F038F1007C511EFB3AD2E14C4F9AE02.roa (raw, json) Hash identifier: uG56xTy1rWS0BULY/7uSQn3T7UadwVmMs3Ye+KVukjA= Subject key identifier: 4D:DA:37:DD:1A:94:34:41:38:23:B0:99:DB:FE:13:9F:F8:36:48:40 Certificate issuer: /CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Certificate serial: 0111 Authority key identifier: EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa Signing time: Fri 03 Oct 2025 05:32:00 +0000 ROA not before: Fri 03 Oct 2025 05:32:00 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134185 IP address blocks: 103.157.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165772, serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Validity Not Before: Oct 3 05:32:00 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df5fcf-8470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:fe:b1:8e:4e:53:7b:dc:26:27:67:f3:e7: a0:2d:6d:73:70:53:c5:00:03:41:ee:81:d5:ff:c9: 92:8b:e5:ac:8e:69:3c:06:0e:d3:24:0b:07:7c:25: 46:d7:4f:b2:c3:6a:bf:fc:a3:e7:9f:37:05:13:77: 30:ca:e9:b9:3e:d8:63:b1:65:1a:21:85:d5:f7:77: e4:0f:de:89:ff:39:cb:8a:f6:b2:43:22:b2:19:f6: 1e:70:6c:b3:cf:07:9a:5f:8b:7a:48:d3:c1:87:97: 75:75:a3:97:23:1e:75:b4:7d:41:e1:b1:14:da:c6: cd:da:f4:b6:03:79:3b:d0:6e:e1:66:5d:bf:ef:97: 6a:cb:36:91:b0:79:3f:14:10:dc:2b:a8:24:f9:c0: 9d:e4:8f:2c:e1:52:1a:2b:8a:44:55:dc:20:70:67: bf:b5:0d:60:44:08:df:44:ac:89:21:68:68:77:e4: c5:c3:a7:8c:ce:fa:73:29:43:70:b0:e5:8a:68:48: 39:40:0b:b6:b4:88:1e:2e:5f:8b:b5:d3:fc:8d:3a: fe:1f:4f:f5:61:10:59:4a:89:d3:47:be:7d:8b:c5: c4:4e:cd:73:01:e7:62:ac:a9:d3:69:07:f0:01:dd: 5d:f1:21:f8:50:f7:5a:4e:a1:de:1d:07:2a:a5:87: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DA:37:DD:1A:94:34:41:38:23:B0:99:DB:FE:13:9F:F8:36:48:40 X509v3 Authority Key Identifier: keyid:EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.56.0/24 Signature Algorithm: sha256WithRSAEncryption 58:c3:69:2d:9c:33:89:87:4e:c9:e2:84:c8:ac:d1:54:75:68: 2c:dd:fc:49:3b:46:93:f1:e3:19:bb:1d:5e:07:62:e0:42:d2: 3c:84:87:07:a4:b0:a5:e5:db:01:2e:03:35:90:9a:38:9b:53: a4:54:87:67:63:5d:c9:20:17:63:bc:f3:17:b5:19:f3:ef:d4: d8:fb:02:57:a5:a7:df:dd:4b:b1:72:2a:54:99:61:a9:ac:d0: 73:70:eb:8a:03:75:97:cd:29:05:f4:20:69:86:d0:23:bd:9d: 1a:66:17:8e:ee:5d:14:38:0f:bd:4e:dc:3f:ff:d3:be:b0:2a: 56:f7:00:68:2b:6d:53:c8:63:02:5f:f1:3e:f3:29:46:50:9f: 04:73:1d:03:ac:fa:de:bc:fe:e4:67:f7:d1:28:d8:eb:9e:e2: 9e:1d:ce:61:12:a0:db:c2:14:56:07:4f:cc:39:9b:93:a3:97: 1f:e0:31:4f:17:48:ec:87:c0:6d:c1:2a:27:9b:15:4d:3a:ee: b9:18:92:cd:0d:c7:17:f1:0d:d8:ac:f1:f6:b8:1d:31:8a:9c: fc:2f:c2:a9:8a:1c:e7:59:69:02:e3:a3:6c:2e:3e:64:50:9a: 36:cd:ee:74:f1:0e:02:5d:fb:c5:39:0a:bf:8c:28:b0:47:3f: e6:0f:6f:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3NzIxMTAvBgNVBAUTKEVBOEIwNDNFODY4Rjc1NTczQkNDNDU0MEFENDk1NDEw MkRDOTIyQjgwHhcNMjUxMDAzMDUzMjAwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmNWZjZi04NDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGb+sY5OU3vcJidn8+egLW1zcFPFAANB7oHV/8mSi+Wsjmk8Bg7TJAsHfCVG 10+yw2q//KPnnzcFE3cwyum5PthjsWUaIYXV93fkD96J/znLivayQyKyGfYecGyz zweaX4t6SNPBh5d1daOXIx51tH1B4bEU2sbN2vS2A3k70G7hZl2/75dqyzaRsHk/ FBDcK6gk+cCd5I8s4VIaK4pEVdwgcGe/tQ1gRAjfRKyJIWhod+TFw6eMzvpzKUNw sOWKaEg5QAu2tIgeLl+LtdP8jTr+H0/1YRBZSonTR759i8XETs1zAedirKnTaQfw Ad1d8SH4UPdaTqHeHQcqpYdsewIDAQABo4IClTCCApEwHQYDVR0OBBYEFE3aN90a lDRBOCOwmdv+E5/4NkhAMB8GA1UdIwQYMBaAFOqLBD6Gj3VXO8xFQK1JVBAtySK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTc3Mi8wNEJEMUE2QzA3 QzQxMUVGODUyRENDN0RDNEY5QUUwMi82b3NFUG9hUGRWYzd6RVZBclVsVUVDM0pJ cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvc0VQb2FQZFZjN3pFVkFyVWxVRUMzSklyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU3NzIvMDRCRDFBNkMwN0M0MTFFRjg1MkRDQzdEQzRGOUFFMDIvNEYwMzhGMTAw N0M1MTFFRkIzQUQyRTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnTgwDQYJKoZIhvcNAQELBQADggEBAFjDaS2cM4mHTsni hMis0VR1aCzd/Ek7RpPx4xm7HV4HYuBC0jyEhweksKXl2wEuAzWQmjibU6RUh2dj XckgF2O88xe1GfPv1Nj7Alelp9/dS7FyKlSZYams0HNw64oDdZfNKQX0IGmG0CO9 nRpmF47uXRQ4D71O3D//076wKlb3AGgrbVPIYwJf8T7zKUZQnwRzHQOs+t68/uRn 99Eo2Oue4p4dzmESoNvCFFYHT8w5m5Ojlx/gMU8XSOyHwG3BKiebFU067rkYks0N xxfxDdis8fa4HTGKnPwvwqmKHOdZaQLjo2wuPmRQmjbN7nTxDgJd+8U5Cr+MKLBH P+YPb6M= -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:03 2025 by rpki-client