$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/9D999E187CA811F0AE15ED6EC4F9AE02.roa File: 9D999E187CA811F0AE15ED6EC4F9AE02.roa (raw, json) Hash identifier: J/Y6p2/yKRXDBc4lXrVgkXTkn/NmrMfJzbfX/5O/hQo= Subject key identifier: 87:7A:9A:0C:0C:29:AB:5C:9E:FD:39:35:DD:F7:EC:C0:3C:DC:D3:8E Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B4F Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/9D999E187CA811F0AE15ED6EC4F9AE02.roa Signing time: Tue 19 Aug 2025 03:00:09 +0000 ROA not before: Tue 19 Aug 2025 03:00:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.246.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Aug 19 03:00:09 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68a3e8b9-15aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:82:da:90:cd:e8:1b:3a:d5:fe:ae:7a:3e:e0: 31:f7:b4:e6:db:dc:31:bb:18:37:8d:cc:30:fc:97: 4f:f7:30:a3:4a:35:ea:a6:05:98:e7:fd:76:6d:8d: 08:bf:0f:ae:6f:14:63:6a:07:fc:12:aa:fc:18:94: be:cd:cb:70:38:1d:aa:c9:2a:91:58:97:41:7f:cc: d4:b9:32:54:3e:ad:83:3e:ba:96:83:11:37:92:92: 50:c2:1a:24:6f:23:61:34:0f:c2:49:c1:36:dc:3c: 48:75:d5:27:ba:0d:a7:0c:55:f0:ba:77:24:cb:0d: 74:50:04:cf:2a:1c:6f:6a:0c:52:a9:80:a5:81:95: ff:32:6a:0d:da:df:60:98:9e:47:67:43:54:60:8f: f9:5c:cb:db:d6:50:06:22:af:6b:96:39:29:bc:92: 82:b6:0a:a6:9d:b2:74:a6:8a:e6:7f:1b:b8:fe:c8: ca:75:8f:b4:87:4a:82:34:a4:0e:a3:6d:8a:b9:1e: 84:68:8c:1e:ba:ab:53:e6:56:05:56:52:2f:7d:63: 31:69:c4:0d:ca:35:fc:70:f5:b5:59:d4:e2:ce:38: 84:4f:06:d9:70:c2:b4:a0:44:41:34:12:ab:4a:fd: 14:ed:a3:47:64:ce:d3:55:d2:89:48:a1:eb:cd:be: 7d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7A:9A:0C:0C:29:AB:5C:9E:FD:39:35:DD:F7:EC:C0:3C:DC:D3:8E X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/9D999E187CA811F0AE15ED6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.252.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:45:94:45:48:17:22:d3:c9:23:84:4b:42:d6:04:49:6d:98: 43:31:18:65:25:4e:15:ca:89:3c:42:8d:1f:81:ee:02:c4:64: 74:be:b2:a2:f5:b4:cc:a1:fa:ac:9f:09:45:bd:69:f8:b4:62: 1c:1f:42:c5:8d:fd:05:3e:ee:f7:59:8b:b7:1a:eb:b7:65:82: 20:02:d0:6e:d5:ae:4f:a7:1f:2a:e3:a2:2d:d2:e9:90:52:11: d7:3a:6c:4c:e2:ed:d3:25:da:06:92:01:08:f3:47:6c:fa:a2: a4:36:2d:ad:89:bc:f6:35:be:86:41:f7:1f:7f:0e:94:be:d2: 4f:0b:44:68:5a:67:9a:0f:90:bb:1a:ff:28:29:7c:a1:5c:19: 38:7a:9f:53:6b:33:41:fe:1c:3f:ac:a7:06:29:f0:61:5d:a6: 2e:30:42:8a:cf:8d:e4:85:9c:87:3c:6a:a7:2f:c7:45:87:0a: 58:9f:d8:fc:72:fd:5b:ae:18:61:98:86:83:3d:b9:c6:12:af: cd:d5:c8:2e:4a:2c:cd:58:e5:e6:26:d9:7e:7d:92:f2:ae:83: ae:8a:5f:0c:c3:48:b9:42:b8:d3:d6:61:7f:9d:a0:47:65:49: a5:81:cf:a9:f3:d7:6c:e9:5d:c6:98:d8:61:89:c6:c4:66:62: 77:77:4b:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwODE5MDMwMDA5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzZThiOS0xNWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoLakM3oGzrV/q56PuAx97Tm29wxuxg3jcww/JdP9zCjSjXqpgWY5/12bY0I vw+ubxRjagf8Eqr8GJS+zctwOB2qySqRWJdBf8zUuTJUPq2DPrqWgxE3kpJQwhok byNhNA/CScE23DxIddUnug2nDFXwunckyw10UATPKhxvagxSqYClgZX/MmoN2t9g mJ5HZ0NUYI/5XMvb1lAGIq9rljkpvJKCtgqmnbJ0pormfxu4/sjKdY+0h0qCNKQO o22KuR6EaIweuqtT5lYFVlIvfWMxacQNyjX8cPW1WdTizjiETwbZcMK0oERBNBKr Sv0U7aNHZM7TVdKJSKHrzb59rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFId6mgwM Katcnv05Nd337MA83NOOMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNDAvNjE3RjM1MzY0MEUxMTFFQUJDNjJEQjI2QzRGOUFFMDIvOUQ5OTlFMTg3 Q0E4MTFGMEFFMTVFRDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9vwwDQYJKoZIhvcNAQELBQADggEBABtFlEVIFyLTySOE S0LWBEltmEMxGGUlThXKiTxCjR+B7gLEZHS+sqL1tMyh+qyfCUW9afi0YhwfQsWN /QU+7vdZi7ca67dlgiAC0G7Vrk+nHyrjoi3S6ZBSEdc6bEzi7dMl2gaSAQjzR2z6 oqQ2La2JvPY1voZB9x9/DpS+0k8LRGhaZ5oPkLsa/ygpfKFcGTh6n1NrM0H+HD+s pwYp8GFdpi4wQorPjeSFnIc8aqcvx0WHClif2Pxy/VuuGGGYhoM9ucYSr83VyC5K LM1Y5eYm2X59kvKug66KXwzDSLlCuNPWYX+doEdlSaWBz6nz12zpXcaY2GGJxsRm Ynd3S3E= -----END CERTIFICATE-----Generated at Sun Aug 24 03:36:36 2025 by rpki-client