$ rpki-client -vvf rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa File: A8A940C6429811EDBB392C35C4F9AE02.roa (raw, json) Hash identifier: L4gwhY7icNtGh4Pw0dLfgymKZ1S0Ut+p6qHkiovinK4= Subject key identifier: EA:8A:38:5C:B7:86:F7:51:A1:E2:CA:25:F6:9B:E5:A2:32:92:00:FD Certificate issuer: /CN=A9194715/serialNumber=BCB16A8873B1BE1326EB5CDB90B186115DA74D67 Certificate serial: 0229 Authority key identifier: BC:B1:6A:88:73:B1:BE:13:26:EB:5C:DB:90:B1:86:11:5D:A7:4D:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa Signing time: Tue 09 Sep 2025 02:08:55 +0000 ROA not before: Tue 09 Sep 2025 02:08:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136797 IP address blocks: 103.96.110.0/24 maxlen: 24 103.141.226.0/24 maxlen: 24 2001:df1:d900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.crl rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194715, serialNumber=BCB16A8873B1BE1326EB5CDB90B186115DA74D67 Validity Not Before: Sep 9 02:08:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf8c37-8bdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cc:bb:89:4b:c4:21:93:1e:ae:5b:b7:1b:4d: 71:e7:65:6e:07:69:6c:35:7d:5e:30:df:96:e8:42: 55:40:52:b0:80:dd:2b:74:2e:8f:2a:6e:be:41:5c: 8d:f9:9a:84:96:15:7e:7f:a1:c1:0d:83:76:16:a2: 23:dd:b0:cf:54:30:ec:87:00:46:cd:b7:63:4e:86: 16:ae:cd:b8:36:3f:ff:ac:7f:03:43:bf:a7:34:d3: 94:08:29:c4:ae:24:95:06:02:9f:76:66:4e:e1:ba: 91:01:8f:34:df:42:cc:9d:fc:01:65:e0:15:1d:22: 4d:f9:10:6e:20:ed:ac:0d:42:af:f8:76:ce:49:c1: ec:ac:a3:b5:4c:1f:43:be:2e:84:8a:07:e5:21:5d: 84:03:73:13:c3:ad:11:54:65:d7:2f:38:5d:02:5f: 0b:03:d2:52:31:23:71:aa:bf:d1:f0:94:1f:04:ea: f0:11:94:5d:22:17:09:cf:af:7b:38:04:33:70:8e: 58:c1:40:27:28:d2:44:1b:16:45:27:2f:aa:0a:5e: 69:7c:89:15:4d:6a:12:68:88:1c:d0:fe:e9:ae:8b: a0:ce:a9:6f:60:e5:60:69:ce:c2:f8:5e:b0:17:1e: e0:da:98:93:81:36:13:bc:7b:17:8b:1a:74:2c:a0: c9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8A:38:5C:B7:86:F7:51:A1:E2:CA:25:F6:9B:E5:A2:32:92:00:FD X509v3 Authority Key Identifier: keyid:BC:B1:6A:88:73:B1:BE:13:26:EB:5C:DB:90:B1:86:11:5D:A7:4D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/vLFqiHOxvhMm61zbkLGGEV2nTWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLFqiHOxvhMm61zbkLGGEV2nTWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194715/698B963A429511EDBDD97881C4F9AE02/A8A940C6429811EDBB392C35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.110.0/24 103.141.226.0/24 IPv6: 2001:df1:d900::/48 Signature Algorithm: sha256WithRSAEncryption 83:4e:fc:19:1e:f6:9c:49:7b:18:11:3a:fe:c3:d1:33:99:cd: 29:37:47:c6:e2:1c:9f:6b:9b:6c:39:2c:b1:f9:2b:1a:5c:3d: 88:0d:89:b9:7c:da:3b:d3:05:36:30:89:bb:e2:df:f6:d9:cc: 29:f7:15:14:50:60:5a:d1:dd:b7:b1:83:50:85:b3:8b:44:28: 66:e8:5e:31:fc:e4:bf:00:ea:f8:50:2c:66:c6:8d:b6:a8:db: e2:b4:0d:5e:2b:02:fe:54:3c:98:33:ea:c5:0b:21:e1:11:4c: db:d3:76:7c:21:8e:9d:c5:05:e9:18:a1:93:2e:7c:d8:d1:6f: a3:fe:29:eb:72:35:50:23:b9:e1:67:c1:33:43:6d:45:ae:1b: 30:7d:50:ec:6e:a7:9d:11:26:5d:65:df:66:6c:db:5c:09:53: 65:c5:7e:6c:fc:ec:d2:57:ec:99:43:c3:55:59:a9:8e:c2:ea: e0:21:54:50:d0:09:65:1a:14:cb:d7:73:b0:e0:7d:e7:85:59: 56:55:26:fd:b5:fd:f6:28:b8:ea:8e:08:e0:e9:e7:6e:56:43: 62:a9:4a:64:a6:ec:9a:de:a6:90:c8:85:81:dc:f1:ef:e6:08: 12:c3:2c:8e:de:45:90:38:7a:91:4f:a0:c1:71:b6:9f:be:9a: 73:51:0e:6c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3MTUxMTAvBgNVBAUTKEJDQjE2QTg4NzNCMUJFMTMyNkVCNUNEQjkwQjE4NjEx NURBNzRENjcwHhcNMjUwOTA5MDIwODU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmOGMzNy04YmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sy7iUvEIZMerlu3G01x52VuB2lsNX1eMN+W6EJVQFKwgN0rdC6PKm6+QVyN +ZqElhV+f6HBDYN2FqIj3bDPVDDshwBGzbdjToYWrs24Nj//rH8DQ7+nNNOUCCnE riSVBgKfdmZO4bqRAY8030LMnfwBZeAVHSJN+RBuIO2sDUKv+HbOScHsrKO1TB9D vi6EigflIV2EA3MTw60RVGXXLzhdAl8LA9JSMSNxqr/R8JQfBOrwEZRdIhcJz697 OAQzcI5YwUAnKNJEGxZFJy+qCl5pfIkVTWoSaIgc0P7prougzqlvYOVgac7C+F6w Fx7g2piTgTYTvHsXixp0LKDJFQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOqKOFy3 hvdRoeLKJfab5aIykgD9MB8GA1UdIwQYMBaAFLyxaohzsb4TJutc25CxhhFdp01n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDcxNS82OThCOTYzQTQy OTUxMUVEQkREOTc4ODFDNEY5QUUwMi92TEZxaUhPeHZoTW02MXpia0xHR0VWMm5U V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMRnFpSE94dmhNbTYxemJrTEdHRVYyblRXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ3MTUvNjk4Qjk2M0E0Mjk1MTFFREJERDk3ODgxQzRGOUFFMDIvQThBOTQwQzY0 Mjk4MTFFREJCMzkyQzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnYG4DBABnjeIwDwQCAAIwCQMHACABDfHZADANBgkqhkiG 9w0BAQsFAAOCAQEAg078GR72nEl7GBE6/sPRM5nNKTdHxuIcn2ubbDkssfkrGlw9 iA2JuXzaO9MFNjCJu+Lf9tnMKfcVFFBgWtHdt7GDUIWzi0QoZuheMfzkvwDq+FAs ZsaNtqjb4rQNXisC/lQ8mDPqxQsh4RFM29N2fCGOncUF6Rihky582NFvo/4p63I1 UCO54WfBM0NtRa4bMH1Q7G6nnREmXWXfZmzbXAlTZcV+bPzs0lfsmUPDVVmpjsLq 4CFUUNAJZRoUy9dzsOB954VZVlUm/bX99ii46o4I4OnnblZDYqlKZKbsmt6mkMiF gdzx7+YIEsMsjt5FkDh6kU+gwXG2n76ac1EObA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:43:59 2025 by rpki-client