$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/AB3040224C0211EF84B00D1EC4F9AE02.roa File: AB3040224C0211EF84B00D1EC4F9AE02.roa (raw, json) Hash identifier: B2tDIxeYNCo5gTNbHXofF/quSOaekq5ljkbk6cQhp5U= Subject key identifier: AC:3F:85:2A:08:D3:35:5F:BE:8B:1D:6B:71:AE:6F:D4:0C:2C:63:1C Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 07C2 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/AB3040224C0211EF84B00D1EC4F9AE02.roa Signing time: Mon 04 Aug 2025 10:59:59 +0000 ROA not before: Mon 04 Aug 2025 10:59:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136815 IP address blocks: 103.97.160.0/23 maxlen: 23 103.97.160.0/24 maxlen: 24 103.97.161.0/24 maxlen: 24 103.97.162.0/24 maxlen: 24 103.97.163.0/24 maxlen: 24 2401:91c0::/32 maxlen: 32 2401:91c0::/33 maxlen: 33 2401:91c0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1986 (0x7c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804, serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Aug 4 10:59:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689092af-a94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:94:98:15:ff:10:a9:9b:75:4d:f3:d1:14: f8:78:ec:6b:4b:f5:c9:6a:21:ed:9a:48:ff:7c:1d: ef:5d:ab:a2:b8:65:47:13:5e:aa:6e:ba:21:11:54: 1c:66:00:5d:d4:89:62:aa:9f:99:dd:75:f8:dc:66: 9b:89:cf:53:47:57:a9:24:ca:3d:ce:20:ad:0f:e6: 6b:68:3b:4c:70:48:2d:57:4a:7d:ea:11:a7:af:c4: f9:40:f2:45:e5:1a:13:dc:1b:8d:5e:16:31:19:6c: 83:db:ee:b9:38:b9:99:2a:cc:f4:7a:78:72:20:40: ae:3a:d8:b0:c2:99:46:d5:21:af:2f:9c:12:23:7d: cc:09:36:82:68:bf:50:58:71:a6:9c:70:3e:98:5a: 58:5b:ee:33:6b:3e:26:ee:ff:51:cc:54:30:29:b5: 9d:34:11:ef:8e:7b:48:14:9b:8f:56:95:27:e1:14: ce:cb:8f:f3:a0:01:48:60:f6:02:1c:c1:99:d8:28: 35:c6:08:4e:8e:ae:33:e3:06:b3:de:3f:a7:7f:6d: 1d:77:ca:2f:43:db:54:9c:45:d3:60:c8:fa:b6:01: 89:8c:19:ad:a1:5f:e8:a5:9d:66:c1:33:8a:ce:44: 9a:5d:ad:46:d3:0f:73:45:77:0d:a6:43:5d:12:8f: 8a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3F:85:2A:08:D3:35:5F:BE:8B:1D:6B:71:AE:6F:D4:0C:2C:63:1C X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/AB3040224C0211EF84B00D1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.160.0/22 IPv6: 2401:91c0::/32 Signature Algorithm: sha256WithRSAEncryption 24:84:19:12:19:72:fd:54:07:14:d5:2d:00:2d:14:6e:88:14: 38:6a:7c:2c:fc:09:fc:45:45:0e:bd:7f:1b:73:e8:eb:4b:3a: 4d:4c:d6:25:11:2d:34:61:01:c4:06:d5:81:56:ee:83:c9:88: 4c:e8:c7:35:70:29:21:e9:e2:f5:a2:61:86:01:94:6e:2a:9e: 21:38:31:d9:15:3b:20:70:35:77:1c:bc:4f:93:18:f2:bc:c2: c8:62:6b:48:90:7b:97:cf:af:78:6a:65:38:cc:45:93:f1:3a: a0:c6:cc:1a:e9:0b:5c:d5:4a:c6:ee:cf:53:40:6a:52:84:df: d5:82:c0:dc:f9:4a:3d:ba:df:c0:34:cf:da:de:66:53:9d:3b: 3d:d6:36:95:e5:29:a3:5e:28:76:78:95:84:d4:5f:87:cc:46: 4a:fa:a6:f8:b4:88:86:d3:86:95:21:fa:32:5c:7d:78:9d:de: 45:1d:6a:36:a5:4f:1c:0e:06:76:74:75:c6:36:3d:42:cf:d3: 7a:fe:c9:61:3b:49:8c:c0:0a:34:01:72:6e:20:88:00:51:4b: fa:0e:55:2b:b7:fe:37:e7:c3:a1:cc:d6:4f:3a:71:88:c9:3b: 0e:40:b5:af:22:5a:c5:c5:7e:c9:f3:c8:f9:9d:c5:e7:85:f2: d9:f0:fd:49 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjUwODA0MTA1OTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwOTJhZi1hOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDyUmBX/EKmbdU3z0RT4eOxrS/XJaiHtmkj/fB3vXauiuGVHE16qbrohEVQc ZgBd1Iliqp+Z3XX43Gabic9TR1epJMo9ziCtD+ZraDtMcEgtV0p96hGnr8T5QPJF 5RoT3BuNXhYxGWyD2+65OLmZKsz0enhyIECuOtiwwplG1SGvL5wSI33MCTaCaL9Q WHGmnHA+mFpYW+4zaz4m7v9RzFQwKbWdNBHvjntIFJuPVpUn4RTOy4/zoAFIYPYC HMGZ2Cg1xghOjq4z4waz3j+nf20dd8ovQ9tUnEXTYMj6tgGJjBmtoV/opZ1mwTOK zkSaXa1G0w9zRXcNpkNdEo+KDwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKw/hSoI 0zVfvosda3Gub9QMLGMcMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4MDQvMzZFQ0RBNTRGNEZBMTFFOTk5MTg0MzNEQzRGOUFFMDIvQUIzMDQwMjI0 QzAyMTFFRjg0QjAwRDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnYaAwDQQCAAIwBwMFACQBkcAwDQYJKoZIhvcNAQELBQAD ggEBACSEGRIZcv1UBxTVLQAtFG6IFDhqfCz8CfxFRQ69fxtz6OtLOk1M1iURLTRh AcQG1YFW7oPJiEzoxzVwKSHp4vWiYYYBlG4qniE4MdkVOyBwNXccvE+TGPK8wshi a0iQe5fPr3hqZTjMRZPxOqDGzBrpC1zVSsbuz1NAalKE39WCwNz5Sj2638A0z9re ZlOdOz3WNpXlKaNeKHZ4lYTUX4fMRkr6pvi0iIbThpUh+jJcfXid3kUdajalTxwO BnZ0dcY2PULP03r+yWE7SYzACjQBcm4giABRS/oOVSu3/jfnw6HM1k86cYjJOw5A ta8iWsXFfsnzyPmdxeeF8tnw/Uk= -----END CERTIFICATE-----Generated at Wed Aug 13 08:52:45 2025 by rpki-client