$ rpki-client -vvf rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa File: 7C2C8232C5BF11E9B616CF1FC4F9AE02.roa (raw, json) Hash identifier: 7fP+JRoC8BLIz3dypzljentRpLc6i2GDCzDHkh90QUY= Subject key identifier: CE:07:1E:70:3A:9A:22:0B:46:4D:A3:E9:67:3F:5D:CA:A2:56:D4:67 Certificate issuer: /CN=A9199E9B/serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Certificate serial: 0DC2 Authority key identifier: C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:47 +0000 ROA not before: Thu 28 Aug 2025 18:08:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139595 IP address blocks: 103.142.39.0/24 maxlen: 24 103.171.14.0/24 maxlen: 24 2001:df7:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199E9B, serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Validity Not Before: Aug 28 18:08:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b09b2e-fa17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:36:3f:4a:b0:14:a6:7b:59:1b:4a:3b:98:70: 10:8f:49:f6:b7:95:fc:25:5d:86:a5:3b:97:b1:2d: 26:21:c2:15:99:ab:e2:0c:31:b4:6d:77:83:e4:08: 14:21:c1:d4:d9:2a:d4:2b:b0:47:8d:c1:b4:8b:3e: 88:a1:56:42:80:73:45:79:d0:2f:08:0d:a1:0a:f4: 24:a6:23:c1:fe:b9:b2:23:13:11:5a:24:70:fb:75: 34:83:bf:6e:55:71:97:bd:2e:bf:f8:12:50:a1:d6: 4a:2b:cc:f2:32:33:1b:e5:eb:fc:84:fb:f2:94:17: 33:e4:6b:a4:b8:57:32:4c:57:1d:b6:6d:bf:22:0b: 3b:d9:8a:63:6f:6b:d4:a5:81:40:90:82:03:e6:52: 1f:79:89:5d:ef:4b:d2:33:a4:74:b6:f3:ba:12:b4: d7:c4:38:05:b4:da:5f:c8:21:d7:7a:58:b5:f9:91: 39:de:3c:66:11:f1:0e:ba:06:1a:26:1d:9e:b9:ea: ac:ef:49:66:39:9b:a9:51:df:8e:a9:70:c9:36:67: 6f:0f:cd:c3:c4:41:4d:05:18:4a:c3:ad:b8:98:16: 98:0b:b6:21:ab:47:1f:18:bc:7e:8f:ea:ee:90:41: 02:a1:9d:18:28:5b:bb:f3:48:1f:7f:60:de:9e:95: 12:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:07:1E:70:3A:9A:22:0B:46:4D:A3:E9:67:3F:5D:CA:A2:56:D4:67 X509v3 Authority Key Identifier: keyid:C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.39.0/24 103.171.14.0/24 IPv6: 2001:df7:3080::/48 Signature Algorithm: sha256WithRSAEncryption a9:d7:bf:e2:3e:7b:a3:f3:eb:14:ac:4c:fe:8d:22:af:b8:57: 1c:7d:1b:ac:f9:f5:ab:8a:6f:f8:ee:ce:5b:e1:e1:47:ff:2a: 96:75:4e:93:de:28:f3:9e:dd:81:d0:59:3d:5b:0c:c8:98:68: f5:ae:32:c6:79:2d:25:c3:30:d7:da:80:53:85:8b:b1:a9:73: 12:9d:2e:4f:93:ed:4f:76:d5:94:31:ba:e7:85:ec:0f:ad:cf: e3:c0:9d:34:7c:cb:30:4c:b6:7b:e3:20:40:24:55:c5:83:8e: cc:6d:c7:a3:61:6c:c9:5b:e4:42:3d:4a:e1:b3:2d:32:52:b1: b0:3b:72:b0:ed:5e:06:32:39:12:b7:a1:04:88:de:b1:c8:12: 74:4f:2f:8a:ff:b5:1c:c7:8a:09:61:92:d8:34:5b:27:d0:a6: b8:6b:e3:11:36:62:61:0f:7b:f1:64:40:47:49:92:5b:10:09: 6c:6f:73:44:63:10:6d:1e:71:13:ab:03:7f:f8:4b:bd:32:4c: ae:1e:64:ff:2b:6c:12:d2:9b:01:9e:45:02:7b:14:15:b1:04: cb:28:2d:6f:36:b0:3c:3b:71:a2:24:56:9e:4c:69:f6:f0:f7: 6f:25:87:bb:10:37:ce:6e:6a:70:17:77:c3:e2:5a:06:f8:73: 64:2d:60:b2 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlFOUIxMTAvBgNVBAUTKEMxNkVFQzA3N0QzMzhDNDIzQUFGMURFQjc5NzY0MDY3 MUI3RkM5QkUwHhcNMjUwODI4MTgwODQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIyZS1mYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTY/SrAUpntZG0o7mHAQj0n2t5X8JV2GpTuXsS0mIcIVmaviDDG0bXeD5AgU IcHU2SrUK7BHjcG0iz6IoVZCgHNFedAvCA2hCvQkpiPB/rmyIxMRWiRw+3U0g79u VXGXvS6/+BJQodZKK8zyMjMb5ev8hPvylBcz5GukuFcyTFcdtm2/Igs72Ypjb2vU pYFAkIID5lIfeYld70vSM6R0tvO6ErTXxDgFtNpfyCHXeli1+ZE53jxmEfEOugYa Jh2eueqs70lmOZupUd+OqXDJNmdvD83DxEFNBRhKw624mBaYC7Yhq0cfGLx+j+ru kEECoZ0YKFu780gff2DenpUSCQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFM4HHnA6 miILRk2j6Wc/XcqiVtRnMB8GA1UdIwQYMBaAFMFu7Ad9M4xCOq8d63l2QGcbf8m+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUU5Qi9CMDdFNEIyNkM1 QkQxMUU5QjE5MTNDMUNDNEY5QUUwMi93VzdzQjMwempFSTZyeDNyZVhaQVp4dF95 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dXN3NCMzB6akVJNnJ4M3JlWFpBWnh0X3liNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlFOUIvQjA3RTRCMjZDNUJEMTFFOUIxOTEzQzFDQzRGOUFFMDIvN0MyQzgyMzJD NUJGMTFFOUI2MTZDRjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjicDBABnqw4wDwQCAAIwCQMHACABDfcwgDANBgkqhkiG 9w0BAQsFAAOCAQEAqde/4j57o/PrFKxM/o0ir7hXHH0brPn1q4pv+O7OW+HhR/8q lnVOk94o857dgdBZPVsMyJho9a4yxnktJcMw19qAU4WLsalzEp0uT5PtT3bVlDG6 54XsD63P48CdNHzLMEy2e+MgQCRVxYOOzG3Ho2FsyVvkQj1K4bMtMlKxsDtysO1e BjI5ErehBIjescgSdE8viv+1HMeKCWGS2DRbJ9CmuGvjETZiYQ978WRAR0mSWxAJ bG9zRGMQbR5xE6sDf/hLvTJMrh5k/ytsEtKbAZ5FAnsUFbEEyygtbzawPDtxoiRW nkxp9vD3byWHuxA3zm5qcBd3w+JaBvhzZC1gsg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:58:42 2025 by rpki-client