$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/3E9B5E9C791511F09DD1364EC4F9AE02.roa File: 3E9B5E9C791511F09DD1364EC4F9AE02.roa (raw, json) Hash identifier: Ut0wAe6zBRN5XqjP4QwqBdmfAff9ffXm1MBpJVMD0gQ= Subject key identifier: FE:86:DD:C1:AD:7B:76:2A:B8:1B:A4:8C:45:17:8C:79:61:99:30:9E Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: 19 Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/3E9B5E9C791511F09DD1364EC4F9AE02.roa Signing time: Thu 14 Aug 2025 13:58:08 +0000 ROA not before: Thu 14 Aug 2025 13:58:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4755 IP address blocks: 203.105.176.0/23 maxlen: 23 203.105.176.0/24 maxlen: 24 203.105.177.0/24 maxlen: 24 203.105.178.0/23 maxlen: 23 203.105.178.0/24 maxlen: 24 203.105.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Aug 14 13:58:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=689deb70-54c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8e:0a:cc:84:7e:df:fa:97:ae:0c:06:00:58: e5:e8:f4:db:a5:5b:2a:93:42:76:9f:db:18:31:41: 03:3a:ae:08:9f:00:a3:07:ed:e1:07:62:fb:43:42: 1c:f7:aa:c6:b8:02:37:4f:4a:ae:19:26:32:f1:19: ff:66:7b:bf:df:a5:cb:78:0e:29:da:be:ff:64:a8: 1e:50:73:80:5c:52:3a:53:79:3f:eb:99:06:0d:a7: e7:2a:cc:ce:a4:e7:20:c4:76:a0:09:50:f5:47:79: 1a:6b:82:28:41:a9:65:96:ca:73:2a:54:53:54:19: 8c:4a:20:55:a0:88:4d:d9:43:5c:ca:7f:d4:17:49: d5:9f:f1:3d:d4:63:f9:82:4f:ee:90:c3:49:53:24: f5:97:84:85:d9:1d:3d:e2:66:53:8f:ba:eb:7b:65: 55:6d:5a:0b:8b:1b:aa:32:4a:33:6d:f1:68:e6:36: d1:f3:80:8d:de:6c:be:03:ab:7b:19:b9:56:0d:f1: d6:e6:34:b6:d2:54:3e:af:8e:9e:f9:0a:39:c7:aa: 37:33:b3:44:74:66:44:c7:4b:1e:cc:ab:56:33:2d: a0:d8:15:56:ee:5a:3e:1e:e8:12:d0:88:4b:22:cd: b6:22:7c:97:d9:a0:40:19:f1:7a:cb:18:68:9a:ac: a5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:86:DD:C1:AD:7B:76:2A:B8:1B:A4:8C:45:17:8C:79:61:99:30:9E X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/3E9B5E9C791511F09DD1364EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.105.176.0/22 Signature Algorithm: sha256WithRSAEncryption 24:7d:8e:ff:9f:d1:5a:0d:1a:97:d4:93:84:8b:16:31:8e:07: 11:82:b6:58:b6:9a:05:23:b2:92:37:e2:00:55:cb:96:60:b3: 30:3b:67:dc:eb:da:f7:1e:bb:e5:6e:dc:47:ea:90:37:37:b2: 93:2b:7b:52:11:59:e7:ea:5c:06:d5:ca:c6:25:f0:09:48:1e: a6:70:63:7e:4c:6a:15:fd:18:9e:2c:6d:0f:01:74:7a:f1:6b: 47:1f:3c:c8:83:5d:42:23:25:e0:06:af:db:1b:b8:2c:23:47: a1:b5:42:8c:9c:20:3f:37:3e:91:c0:95:53:db:e3:b5:63:f0: c5:b0:fc:e7:fa:65:f0:9e:d1:9b:89:43:ec:6e:0a:a5:45:d9: 2e:3c:fc:85:d2:6c:21:03:19:d9:df:36:5c:49:f6:06:d6:64: f8:65:5d:38:5d:bb:89:e9:7f:a6:27:a8:f0:91:b8:1c:ca:ab: ef:1e:b1:93:79:29:07:bf:4d:66:5a:91:5a:02:a4:db:b5:34: 73:0f:72:98:1a:82:21:6f:34:93:64:39:2d:d1:80:ec:ca:d7: 3e:63:48:c1:66:19:9b:a4:ed:b0:5c:80:c6:cd:45:83:74:7d: 91:be:d9:27:d7:ff:5b:85:86:22:94:7e:48:04:1a:52:81:4e: d1:8e:dc:c1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjExNjExMC8GA1UEBRMoREIyREQ0RkVGRjM3MDkxMjU3RjYwMTlENTBBMjM5MzBF QzQ2RTFGQjAeFw0yNTA4MTQxMzU4MDhaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OWRlYjcwLTU0YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgjgrMhH7f+peuDAYAWOXo9NulWyqTQnaf2xgxQQM6rgifAKMH7eEHYvtDQhz3 qsa4AjdPSq4ZJjLxGf9me7/fpct4Dinavv9kqB5Qc4BcUjpTeT/rmQYNp+cqzM6k 5yDEdqAJUPVHeRprgihBqWWWynMqVFNUGYxKIFWgiE3ZQ1zKf9QXSdWf8T3UY/mC T+6Qw0lTJPWXhIXZHT3iZlOPuut7ZVVtWguLG6oySjNt8WjmNtHzgI3ebL4Dq3sZ uVYN8dbmNLbSVD6vjp75CjnHqjczs0R0ZkTHSx7Mq1YzLaDYFVbuWj4e6BLQiEsi zbYifJfZoEAZ8XrLGGiarKX9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/obdwa17 diq4G6SMRReMeWGZMJ4wHwYDVR0jBBgwFoAU2y3U/v83CRJX9gGdUKI5MOxG4fsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMTE2LzhCQ0ZGRjA2NkVE RTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRm cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnkzVV92ODNDUkpYOWdHZFVLSTVNT3hHNGZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjExNi84QkNGRkYwNjZFREUxMUYwOTFFMDJBMjFDNEY5QUUwMi8zRTlCNUU5Qzc5 MTUxMUYwOUREMTM2NEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAstpsDANBgkqhkiG9w0BAQsFAAOCAQEAJH2O/5/RWg0al9ST hIsWMY4HEYK2WLaaBSOykjfiAFXLlmCzMDtn3Ova9x675W7cR+qQNzeykyt7UhFZ 5+pcBtXKxiXwCUgepnBjfkxqFf0YnixtDwF0evFrRx88yINdQiMl4Aav2xu4LCNH obVCjJwgPzc+kcCVU9vjtWPwxbD85/pl8J7Rm4lD7G4KpUXZLjz8hdJsIQMZ2d82 XEn2BtZk+GVdOF27iel/pieo8JG4HMqr7x6xk3kpB79NZlqRWgKk27U0cw9ymBqC IW80k2Q5LdGA7MrXPmNIwWYZm6TtsFyAxs1Fg3R9kb7ZJ9f/W4WGIpR+SAQaUoFO 0Y7cwQ== -----END CERTIFICATE-----Generated at Sun Aug 24 04:51:58 2025 by rpki-client