$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/FD5158C044C511F0ABA4E977C4F9AE02.roa File: FD5158C044C511F0ABA4E977C4F9AE02.roa (raw, json) Hash identifier: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE= Subject key identifier: 3B:31:57:8D:49:B4:AF:E4:16:EF:A7:D3:59:48:83:79:D5:A7:C4:5C Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 116A Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/FD5158C044C511F0ABA4E977C4F9AE02.roa Signing time: Wed 20 Aug 2025 17:57:31 +0000 ROA not before: Wed 20 Aug 2025 17:57:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 216047 IP address blocks: 103.140.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4458 (0x116a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 20 17:57:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a60c8b-ef16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e5:9e:6f:d7:04:57:46:b5:cd:b5:c8:64:ac: 8c:7e:75:ec:be:00:7c:cb:db:ac:37:f1:88:29:cd: d9:e2:ce:fe:f6:01:2f:d1:6a:04:d5:71:75:2c:63: 5d:c0:17:5b:b3:ee:0c:1f:87:80:7d:b3:e2:3b:a4: c4:fb:4e:6e:eb:a1:91:eb:d5:c1:15:40:49:b8:26: 08:5d:fc:1e:72:8e:64:c7:32:45:84:ab:f4:ba:7c: 9a:7e:36:df:27:5e:4b:07:b4:d0:13:2a:8a:13:05: 0d:41:4e:f0:84:2e:b1:f4:f1:81:b1:1f:46:f1:fc: d1:f5:6a:97:1f:a1:d0:b8:69:12:84:7e:7b:1d:09: 92:b9:36:5e:e3:99:1b:d5:df:0a:06:12:05:74:a5: 6e:6f:11:5d:96:bc:e5:15:34:46:15:8d:b8:b6:36: f3:df:26:d0:b6:f8:63:67:56:e5:9e:33:2d:b6:5b: 68:e8:00:73:97:b1:42:e7:88:d5:e5:e4:a6:9b:d4: 23:cf:96:6a:7d:b6:69:72:bf:81:2c:02:87:a7:40: 98:49:47:98:3d:10:92:e5:76:dd:b5:e0:c0:30:b6: dd:62:eb:05:cc:fa:23:41:f9:a2:e4:4e:fc:fb:53: 0f:e0:38:87:83:dc:bd:88:1a:c0:61:df:67:21:36: 5c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:31:57:8D:49:B4:AF:E4:16:EF:A7:D3:59:48:83:79:D5:A7:C4:5C X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/FD5158C044C511F0ABA4E977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.9.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:0e:1c:e6:b4:72:c9:fb:89:c0:c6:73:9e:df:9b:d5:fc:0a: d0:10:fe:8f:e3:15:0f:39:5c:4f:c1:fb:40:eb:f9:7b:f9:10: 86:84:4b:c0:53:82:86:99:40:eb:04:aa:17:d9:4b:70:60:9a: bd:88:c6:76:36:9c:b4:5e:3c:6b:fb:41:5e:ff:b3:ac:39:cf: 7c:de:4b:12:a2:cc:9d:de:15:41:f2:de:73:14:80:87:d4:3c: 86:85:ef:5f:9f:fd:33:5c:05:07:c1:12:93:a6:a0:a2:df:f2: da:9c:15:15:bf:83:fd:e2:f4:64:bd:97:55:99:95:f5:61:9e: 02:19:a9:41:26:5e:16:a0:4b:72:81:e5:a5:16:59:24:24:b6: 22:72:5c:c2:a2:ed:c2:d5:ba:29:db:25:3c:de:81:d4:e4:3a: 20:32:a4:f2:c1:3f:27:4f:68:9d:56:f1:7a:5d:83:07:1e:d7: c6:8f:da:fc:0a:69:e6:2e:7c:87:1f:72:f3:b2:7f:03:91:85: 6c:44:82:4b:45:e9:3d:67:bf:09:55:c1:35:0c:4b:90:91:57: 7e:9b:5c:c8:c6:eb:14:00:f2:fc:52:2c:54:7e:74:cd:a1:b9: 53:25:15:6b:46:71:3d:18:cc:8b:51:06:1c:06:b1:48:64:09: f0:aa:2d:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIwMTc1NzMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2MGM4Yi1lZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+Web9cEV0a1zbXIZKyMfnXsvgB8y9usN/GIKc3Z4s7+9gEv0WoE1XF1LGNd wBdbs+4MH4eAfbPiO6TE+05u66GR69XBFUBJuCYIXfweco5kxzJFhKv0unyafjbf J15LB7TQEyqKEwUNQU7whC6x9PGBsR9G8fzR9WqXH6HQuGkShH57HQmSuTZe45kb 1d8KBhIFdKVubxFdlrzlFTRGFY24tjbz3ybQtvhjZ1blnjMttlto6ABzl7FC54jV 5eSmm9Qjz5ZqfbZpcr+BLAKHp0CYSUeYPRCS5XbdteDAMLbdYusFzPojQfmi5E78 +1MP4DiHg9y9iBrAYd9nITZcWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsxV41J tK/kFu+n01lIg3nVp8RcMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvRkQ1MTU4QzA0 NEM1MTFGMEFCQTRFOTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjAkwDQYJKoZIhvcNAQELBQADggEBAIsOHOa0csn7icDG c57fm9X8CtAQ/o/jFQ85XE/B+0Dr+Xv5EIaES8BTgoaZQOsEqhfZS3Bgmr2IxnY2 nLRePGv7QV7/s6w5z3zeSxKizJ3eFUHy3nMUgIfUPIaF71+f/TNcBQfBEpOmoKLf 8tqcFRW/g/3i9GS9l1WZlfVhngIZqUEmXhagS3KB5aUWWSQktiJyXMKi7cLVuinb JTzegdTkOiAypPLBPydPaJ1W8Xpdgwce18aP2vwKaeYufIcfcvOyfwORhWxEgktF 6T1nvwlVwTUMS5CRV36bXMjG6xQA8vxSLFR+dM2huVMlFWtGcT0YzItRBhwGsUhk CfCqLYg= -----END CERTIFICATE-----Generated at Sat Aug 23 06:59:34 2025 by rpki-client