$ rpki-client -vvf rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa File: 8E49B7320E8C11EDAB2A8680C4F9AE02.roa (raw, json) Hash identifier: qMnYxH9H3pL9n756pHXCuN9WSK+5mrvP8fQTGswN9Aw= Subject key identifier: DC:F5:AB:6A:1A:20:79:5A:91:30:74:1C:F0:2D:68:D8:BC:16:9D:4F Certificate issuer: /CN=A9166638/serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Certificate serial: 0B0C Authority key identifier: 5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa Signing time: Thu 31 Jul 2025 20:30:15 +0000 ROA not before: Thu 31 Jul 2025 20:30:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140540 IP address blocks: 103.148.32.0/24 maxlen: 24 103.148.32.0/25 maxlen: 25 103.148.32.128/27 maxlen: 27 103.148.32.160/27 maxlen: 27 103.148.32.192/27 maxlen: 27 103.148.32.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166638, serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Validity Not Before: Jul 31 20:30:15 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688bd257-880a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:a4:3c:6c:e4:db:40:49:de:64:cb:e9:6b: 8b:07:19:0c:a8:e7:cb:d8:c6:37:55:d1:5f:ee:e6: 59:4f:99:ae:5a:c5:6b:32:66:ca:3c:bf:54:ed:16: 50:8c:a7:73:82:bb:e4:5f:bd:77:86:6a:28:d4:20: 98:20:f7:ec:35:0f:7b:42:6b:2f:ad:d6:45:69:b0: 31:0f:3d:ae:84:ed:eb:0b:35:8e:5a:35:22:ff:ae: c6:e0:5f:4a:31:81:c0:35:21:e9:f4:fa:0f:f4:0c: 64:82:cd:56:42:1d:1e:7e:31:27:10:c5:e0:20:0d: b0:c2:e8:4e:c5:65:bd:47:28:2e:9c:1e:2f:dc:9f: 9e:27:74:e9:d5:72:e0:33:df:ee:72:4b:90:f9:31: 51:df:6f:b2:f0:7f:39:64:a2:dc:05:aa:67:0f:25: 94:d7:fb:3f:0e:7b:41:94:af:74:84:13:5d:44:7d: a5:e2:e9:7e:f4:05:07:61:87:63:11:84:f1:c0:47: 89:ff:7f:74:d8:37:99:8a:6d:bb:f4:fe:65:d9:d8: 9e:c1:2b:b1:77:8c:46:08:e6:db:bf:38:bd:dd:dd: 30:b3:60:37:02:50:e8:f7:bd:9f:71:cf:46:0f:69: 50:6b:a3:8c:51:fa:91:97:81:0f:17:b2:07:94:2c: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F5:AB:6A:1A:20:79:5A:91:30:74:1C:F0:2D:68:D8:BC:16:9D:4F X509v3 Authority Key Identifier: keyid:5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.32.0/24 Signature Algorithm: sha256WithRSAEncryption 10:38:4d:58:e1:26:34:7d:19:ab:3b:6f:43:18:d1:88:85:fc: cd:99:7e:5b:9c:6d:09:4f:24:81:a9:c7:73:49:2d:de:47:61: 44:a7:4e:b5:89:ed:90:7d:57:77:17:3f:f7:e2:40:9d:d7:d0: db:01:3c:f3:b6:2e:91:57:bd:a9:99:23:cc:76:23:5a:f7:f6: 70:9e:1c:91:4d:18:c5:ea:c6:38:47:0a:54:67:57:ae:94:e7: 77:45:ea:eb:fa:fe:1d:dd:50:7b:d0:20:6d:86:03:b0:14:52: c9:b8:ee:35:5a:d4:96:b2:a0:a4:5e:b8:73:be:c2:aa:75:d5: da:32:e8:a4:da:9e:2f:a5:2a:ef:0f:46:ac:cd:e7:17:e2:de: 45:e5:6b:77:8b:e7:dc:71:cb:05:3a:21:cb:c7:c8:44:46:3e: 2b:12:3a:fa:4f:4b:c2:32:d1:4d:35:b0:11:28:cd:8d:55:a9: 8c:e2:8b:d2:0d:21:a0:95:4f:be:d1:c2:11:38:11:e8:4c:94: 9d:ec:10:42:08:fa:1e:cf:b7:9c:04:6e:2b:ce:ab:4b:6d:a8: 67:7a:05:10:05:b0:02:66:4f:6d:ac:ce:aa:14:d1:27:a5:ea: 14:8b:5e:db:4c:be:7c:52:12:8e:0f:bf:97:dd:79:4d:98:66: 2c:5c:f2:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2MzgxMTAvBgNVBAUTKDVBNkNBODZFNDBGQjZDMjY4RThGRTY1MUZGMzJFQ0U0 NEQ4NTdEMDMwHhcNMjUwNzMxMjAzMDE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZDI1Ny04ODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy52kPGzk20BJ3mTL6WuLBxkMqOfL2MY3VdFf7uZZT5muWsVrMmbKPL9U7RZQ jKdzgrvkX713hmoo1CCYIPfsNQ97QmsvrdZFabAxDz2uhO3rCzWOWjUi/67G4F9K MYHANSHp9PoP9Axkgs1WQh0efjEnEMXgIA2wwuhOxWW9RygunB4v3J+eJ3Tp1XLg M9/uckuQ+TFR32+y8H85ZKLcBapnDyWU1/s/DntBlK90hBNdRH2l4ul+9AUHYYdj EYTxwEeJ/3902DeZim279P5l2diewSuxd4xGCObbvzi93d0ws2A3AlDo972fcc9G D2lQa6OMUfqRl4EPF7IHlCwRFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNz1q2oa IHlakTB0HPAtaNi8Fp1PMB8GA1UdIwQYMBaAFFpsqG5A+2wmjo/mUf8y7ORNhX0D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjYzOC80MUVGQzUxRTQ4 Q0ExMUVBQTIxNEFGNENDNEY5QUUwMi9XbXlvYmtEN2JDYU9qLVpSX3pMczVFMkZm UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dteW9ia0Q3YkNhT2otWlJfekxzNUUyRmZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY2MzgvNDFFRkM1MUU0OENBMTFFQUEyMTRBRjRDQzRGOUFFMDIvOEU0OUI3MzIw RThDMTFFREFCMkE4NjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlCAwDQYJKoZIhvcNAQELBQADggEBABA4TVjhJjR9Gas7 b0MY0YiF/M2ZflucbQlPJIGpx3NJLd5HYUSnTrWJ7ZB9V3cXP/fiQJ3X0NsBPPO2 LpFXvamZI8x2I1r39nCeHJFNGMXqxjhHClRnV66U53dF6uv6/h3dUHvQIG2GA7AU Usm47jVa1JayoKReuHO+wqp11doy6KTani+lKu8PRqzN5xfi3kXla3eL59xxywU6 IcvHyERGPisSOvpPS8Iy0U01sBEozY1VqYzii9INIaCVT77RwhE4EehMlJ3sEEII +h7Pt5wEbivOq0ttqGd6BRAFsAJmT22szqoU0Sel6hSLXttMvnxSEo4Pv5fdeU2Y Zixc8hY= -----END CERTIFICATE-----Generated at Sun Aug 24 08:51:34 2025 by rpki-client