$ rpki-client -vvf rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/287F42E4018011EF92ADDC7FC4F9AE02.roa File: 287F42E4018011EF92ADDC7FC4F9AE02.roa (raw, json) Hash identifier: 7M2chMpcVVj4sQX6rJTcJqzZcUzfUszkZnNqnDdp46Q= Subject key identifier: 79:CB:68:72:EC:BF:84:70:8F:92:EB:BB:74:15:3C:74:41:E6:24:98 Certificate issuer: /CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Certificate serial: 0948 Authority key identifier: 9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/287F42E4018011EF92ADDC7FC4F9AE02.roa Signing time: Fri 22 Aug 2025 21:31:27 +0000 ROA not before: Fri 22 Aug 2025 21:31:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4755 IP address blocks: 103.225.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2376 (0x948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918404E, serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162 Validity Not Before: Aug 22 21:31:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8e1af-4aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7e:57:d2:51:9e:61:f2:18:a1:f9:05:c8:58: 3b:c9:06:6f:cd:b2:ac:31:49:97:93:0c:0e:17:da: 35:55:16:5e:2d:6e:bb:a5:62:5e:c0:35:13:9b:82: 1c:b3:26:fc:d8:df:2f:0f:c8:7d:29:53:b3:df:05: 21:3f:5e:9f:c3:ec:95:c0:03:43:4b:58:21:05:1b: bb:c0:e9:18:94:9e:74:4a:88:0b:33:80:cd:9f:f6: 95:37:fa:a7:6a:4b:bb:03:65:11:47:bd:fc:c9:dd: f0:64:04:e6:79:e0:29:5e:f7:8f:dd:ac:d7:b6:27: 21:ad:e6:64:61:85:41:f8:6b:03:29:cd:64:75:a1: 5a:eb:d6:21:d8:36:c8:66:6d:6d:47:fd:2a:7b:fe: 2b:f9:aa:0a:e7:41:e6:94:20:c5:2d:07:3f:34:bc: 31:f5:f9:8d:2b:a7:ae:85:c3:a9:9d:e9:ab:f2:39: 99:ab:54:2c:9c:b6:29:bd:51:9b:3f:4b:85:9a:5a: 17:20:ad:81:66:83:f8:74:8c:ec:c6:d8:a4:26:80: 82:94:a8:84:12:ec:da:be:4c:a4:6c:ef:71:10:f0: 7f:36:8d:68:a7:a9:ad:03:f9:6e:17:25:49:c7:c6: b0:72:cb:0e:ad:b8:95:6e:fe:6a:38:c1:b5:2b:78: 76:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CB:68:72:EC:BF:84:70:8F:92:EB:BB:74:15:3C:74:41:E6:24:98 X509v3 Authority Key Identifier: keyid:9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/287F42E4018011EF92ADDC7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.176.0/24 Signature Algorithm: sha256WithRSAEncryption 54:19:e3:d6:ef:7b:9c:34:be:ac:f0:a6:a8:a9:76:25:7c:3e: 6a:bb:70:3d:7b:64:1e:f1:e7:bd:81:6e:a3:17:5d:2e:9b:70: 62:5d:35:53:82:5e:bb:91:0b:f6:82:f4:e9:1d:c8:f3:76:61: f6:0f:9f:cf:e7:52:d7:3a:b2:54:c7:01:21:50:e1:a4:18:13: f2:73:0c:49:0f:80:b4:3d:0a:6c:14:b6:94:f7:c1:c0:b8:18: 73:85:02:79:a2:d7:18:b8:c8:39:e4:56:01:51:9e:f1:b3:d5: 6e:43:cd:2f:04:33:0a:30:21:c7:70:05:94:d8:17:cf:da:1d: 88:0f:8f:12:62:53:af:bf:98:f2:24:1e:3f:9b:70:46:bd:49: 34:cd:01:dc:d6:e0:c9:37:ce:7a:c0:2c:75:67:62:68:82:31: 90:d0:b0:75:2c:47:0d:84:44:d2:36:71:7f:ac:67:93:53:6a: 7a:1e:71:e9:95:d1:b2:f1:1e:cc:fb:12:a0:38:26:57:0d:71: 2d:c1:b4:50:c3:97:54:67:2a:0a:eb:45:7a:4a:27:27:a1:bc: 76:9b:8b:b4:4a:83:12:1a:83:27:e2:47:9f:0c:ca:24:af:14: 00:b6:af:6d:ff:52:aa:4d:18:5a:97:43:ce:bc:7f:fd:39:1c: f1:a0:c1:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwNEUxMTAvBgNVBAUTKDlDN0M3NzZGNkJGNjAwMzI4M0YwQ0FCNDNFMkRDNjE0 OTQ5OTcxNjIwHhcNMjUwODIyMjEzMTI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ZTFhZi00YWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6X5X0lGeYfIYofkFyFg7yQZvzbKsMUmXkwwOF9o1VRZeLW67pWJewDUTm4Ic syb82N8vD8h9KVOz3wUhP16fw+yVwANDS1ghBRu7wOkYlJ50SogLM4DNn/aVN/qn aku7A2URR738yd3wZATmeeApXveP3azXtichreZkYYVB+GsDKc1kdaFa69Yh2DbI Zm1tR/0qe/4r+aoK50HmlCDFLQc/NLwx9fmNK6euhcOpnemr8jmZq1QsnLYpvVGb P0uFmloXIK2BZoP4dIzsxtikJoCClKiEEuzavkykbO9xEPB/No1op6mtA/luFyVJ x8awcssOrbiVbv5qOMG1K3h2OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHnLaHLs v4Rwj5Lru3QVPHRB5iSYMB8GA1UdIwQYMBaAFJx8d29r9gAyg/DKtD4txhSUmXFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDA0RS9CQzAzMEM3NkYx REExMUVBQUZDNkM3MEFDNEY5QUUwMi9uSHgzYjJ2MkFES0Q4TXEwUGkzR0ZKU1pj V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25IeDNiMnYyQURLRDhNcTBQaTNHRkpTWmNXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwNEUvQkMwMzBDNzZGMURBMTFFQUFGQzZDNzBBQzRGOUFFMDIvMjg3RjQyRTQw MTgwMTFFRjkyQUREQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4bAwDQYJKoZIhvcNAQELBQADggEBAFQZ49bve5w0vqzw pqipdiV8Pmq7cD17ZB7x572BbqMXXS6bcGJdNVOCXruRC/aC9OkdyPN2YfYPn8/n Utc6slTHASFQ4aQYE/JzDEkPgLQ9CmwUtpT3wcC4GHOFAnmi1xi4yDnkVgFRnvGz 1W5DzS8EMwowIcdwBZTYF8/aHYgPjxJiU6+/mPIkHj+bcEa9STTNAdzW4Mk3znrA LHVnYmiCMZDQsHUsRw2ERNI2cX+sZ5NTanoecemV0bLxHsz7EqA4JlcNcS3BtFDD l1RnKgrrRXpKJyehvHabi7RKgxIagyfiR58MyiSvFAC2r23/UqpNGFqXQ868f/05 HPGgwTY= -----END CERTIFICATE-----Generated at Sat Aug 23 22:15:37 2025 by rpki-client