$ rpki-client -vvf rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/1E809CD0845111EAA961467EC4F9AE02.roa File: 1E809CD0845111EAA961467EC4F9AE02.roa (raw, json) Hash identifier: daFA8yMRnffIfjJ7fLZ41ES4LLpPtN0oWTU77ItHPkU= Subject key identifier: 88:B1:1A:C6:94:78:A3:54:6A:FA:FD:1A:AE:51:76:9B:2A:24:FE:64 Certificate issuer: /CN=A9111ED2/serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Certificate serial: 09D5 Authority key identifier: 40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/1E809CD0845111EAA961467EC4F9AE02.roa Signing time: Wed 16 Jul 2025 20:30:56 +0000 ROA not before: Wed 16 Jul 2025 20:30:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131287 IP address blocks: 103.68.197.0/24 maxlen: 24 103.150.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111ED2, serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Validity Not Before: Jul 16 20:30:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68780bff-058f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:4f:ec:d8:89:e5:df:e7:75:b8:f2:af:b4: ba:13:17:94:49:f3:5f:29:f5:7a:b1:c9:47:73:fe: df:e2:aa:ff:ba:6d:e1:af:57:06:71:64:05:e6:9c: cb:d3:3e:26:1a:2b:87:2f:d0:b3:55:ee:e1:41:94: 65:36:54:2f:9e:fb:85:74:44:a8:50:79:32:91:c1: cc:b9:ff:58:01:8d:80:79:78:95:18:9f:dd:64:cf: e7:9f:ac:84:65:e5:12:b3:e2:57:6c:35:87:6e:ba: c1:d6:d0:d5:91:4f:95:95:b1:1e:1d:d8:9a:ed:e8: e8:9b:e6:69:24:33:63:19:c3:89:6a:e8:d3:8f:8b: f2:49:37:ca:a3:85:be:a1:fb:3a:e7:0f:4d:a0:18: da:8e:21:fb:02:a7:fb:13:fe:13:18:1c:ad:72:b1: d4:2a:28:5b:94:47:32:64:5c:50:da:97:02:3d:12: 71:c8:d5:0d:7a:e9:e7:a9:e9:cc:e0:25:32:e2:dd: 3e:21:11:88:a6:49:c0:cf:35:48:35:33:8a:4f:b6: ee:41:f2:cb:40:cb:42:c5:a9:cd:18:22:a9:92:5d: 5f:91:b6:15:5e:92:4a:7f:aa:be:45:f0:70:c9:13: df:78:f1:c7:4e:8b:9f:c8:70:db:9f:4d:a2:10:15: 4b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B1:1A:C6:94:78:A3:54:6A:FA:FD:1A:AE:51:76:9B:2A:24:FE:64 X509v3 Authority Key Identifier: keyid:40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/1E809CD0845111EAA961467EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.197.0/24 103.150.170.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:de:57:10:9f:16:c8:07:d5:c7:4c:77:78:d8:bb:72:89:7d: 36:f1:45:e6:a3:84:9c:dd:c3:df:b4:84:fe:2f:10:ca:f7:57: f0:c9:7c:ac:9d:4b:5a:1b:01:42:38:be:89:0c:fb:de:6d:34: c0:70:2b:cb:c5:23:12:3d:7c:05:fe:e1:a7:7a:bc:ea:d7:29: 1e:b2:04:6b:1a:d5:ab:55:6d:46:8a:4b:a3:a9:94:c0:a2:5f: 8d:a5:f1:ce:ea:b9:5b:17:e0:75:d3:bf:79:91:c1:57:77:99: 80:cb:cb:7e:1c:8b:35:e2:3f:aa:1e:0f:4f:c6:ee:3e:52:b8: 1a:b8:eb:4f:f2:6f:84:52:7d:55:98:c3:8d:66:be:38:84:2b: 82:d2:d9:e4:9d:e5:ec:bc:35:8c:56:95:68:69:c2:3c:56:d7: 31:fd:60:c6:98:37:24:e1:2c:70:02:68:85:7e:03:63:f8:53: b5:31:96:f8:8a:59:25:f5:90:53:c1:27:32:67:18:91:3c:b9: b6:9a:98:6b:02:e4:80:0d:cc:22:57:f9:7a:e7:0d:4c:71:4e: c2:30:25:cd:88:28:6d:ac:bc:7d:70:ad:eb:14:f7:68:82:cf: bb:dd:2a:0f:f8:83:b3:45:84:78:4a:1d:88:ef:90:71:45:d8: 2d:ef:9f:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRDIxMTAvBgNVBAUTKDQwQzA5MDUxM0YyNDAxODkyMEIxNTFEQUE1NTQ0OUMx NURDODRCRUIwHhcNMjUwNzE2MjAzMDU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4MGJmZi0wNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurtP7NiJ5d/ndbjyr7S6ExeUSfNfKfV6sclHc/7f4qr/um3hr1cGcWQF5pzL 0z4mGiuHL9CzVe7hQZRlNlQvnvuFdESoUHkykcHMuf9YAY2AeXiVGJ/dZM/nn6yE ZeUSs+JXbDWHbrrB1tDVkU+VlbEeHdia7ejom+ZpJDNjGcOJaujTj4vySTfKo4W+ ofs65w9NoBjajiH7Aqf7E/4TGBytcrHUKihblEcyZFxQ2pcCPRJxyNUNeunnqenM 4CUy4t0+IRGIpknAzzVINTOKT7buQfLLQMtCxanNGCKpkl1fkbYVXpJKf6q+RfBw yRPfePHHToufyHDbn02iEBVLCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIixGsaU eKNUavr9Gq5RdpsqJP5kMB8GA1UdIwQYMBaAFEDAkFE/JAGJILFR2qVUScFdyEvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVEMi82MjFFODYxMDg0 NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZa2dzVkhhcFZSSndWM0lT LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNQ1FVVDhrQVlrZ3NWSGFwVlJKd1YzSVMtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFFRDIvNjIxRTg2MTA4NDUwMTFFQTgwNDdDRTdEQzRGOUFFMDIvMUU4MDlDRDA4 NDUxMTFFQUE5NjE0NjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnRMUDBABnlqowDQYJKoZIhvcNAQELBQADggEBAE3eVxCf FsgH1cdMd3jYu3KJfTbxReajhJzdw9+0hP4vEMr3V/DJfKydS1obAUI4vokM+95t NMBwK8vFIxI9fAX+4ad6vOrXKR6yBGsa1atVbUaKS6OplMCiX42l8c7quVsX4HXT v3mRwVd3mYDLy34cizXiP6oeD0/G7j5SuBq460/yb4RSfVWYw41mvjiEK4LS2eSd 5ey8NYxWlWhpwjxW1zH9YMaYNyThLHACaIV+A2P4U7UxlviKWSX1kFPBJzJnGJE8 ubaamGsC5IANzCJX+XrnDUxxTsIwJc2IKG2svH1wresU92iCz7vdKg/4g7NFhHhK HYjvkHFF2C3vn00= -----END CERTIFICATE-----Generated at Wed Aug 13 04:26:09 2025 by rpki-client