$ rpki-client -vvf rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/8E9B074050E311EF8624AC36C4F9AE02.roa File: 8E9B074050E311EF8624AC36C4F9AE02.roa (raw, json) Hash identifier: pSCYQ3uLsCLOJxTrAoE8Q2pLkXLNKvUAYP3brjTHhbs= Subject key identifier: 10:E7:C7:07:AF:32:D6:ED:F0:AE:9E:55:B4:D4:D7:10:9A:6A:A1:31 Certificate issuer: /CN=A911392E/serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Certificate serial: B6 Authority key identifier: 62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/8E9B074050E311EF8624AC36C4F9AE02.roa Signing time: Mon 07 Jul 2025 06:42:30 +0000 ROA not before: Mon 07 Jul 2025 06:42:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136920 IP address blocks: 103.99.26.0/24 maxlen: 24 103.176.215.0/24 maxlen: 24 2001:df0:f980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 06:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911392E, serialNumber=629B50963EBC6A022E27AECB613420E40E74DB4A Validity Not Before: Jul 7 06:42:30 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686b6c56-9610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:72:53:64:c5:2e:c8:24:cc:55:7e:ff:a2: 31:d7:48:78:83:04:5e:af:e6:05:f7:a2:a7:d0:30: 97:a9:45:0f:b4:2a:17:ff:99:d8:c0:ba:3f:a5:3a: 07:78:b2:3c:4c:96:9a:af:cf:3f:1b:b1:81:1a:5b: 5f:f2:24:69:d0:d6:bf:f4:9c:fa:86:cd:7f:d4:e0: 40:a7:a5:dc:be:01:cb:37:93:01:a4:81:e1:4c:42: 0e:df:3c:0a:08:4f:76:2a:55:a0:66:50:60:56:17: 65:bf:ab:69:fe:fe:97:57:77:f2:cc:d3:85:0d:50: aa:a7:a4:83:25:00:13:c8:84:1a:13:9c:53:7f:e0: 28:20:6c:b2:07:dc:36:d2:21:51:fe:6d:21:41:30: f5:25:13:22:e8:dc:c4:79:18:e6:a5:c6:62:2f:20: 00:88:99:b9:44:16:d9:2d:59:5e:c7:78:7f:4b:a4: de:37:c1:ae:61:cc:e3:01:36:91:83:d6:ea:e4:08: e1:29:d3:6b:fa:ed:da:3c:43:0c:28:ed:7e:0b:a2: 3f:8e:e2:68:f5:54:25:2b:0e:f3:1d:40:19:72:48: 00:b5:c5:88:e6:b2:13:ea:34:ab:03:18:f7:46:97: cd:8b:00:f7:a4:80:a4:15:ba:69:27:47:a7:1c:1e: 6c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E7:C7:07:AF:32:D6:ED:F0:AE:9E:55:B4:D4:D7:10:9A:6A:A1:31 X509v3 Authority Key Identifier: keyid:62:9B:50:96:3E:BC:6A:02:2E:27:AE:CB:61:34:20:E4:0E:74:DB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/YptQlj68agIuJ67LYTQg5A5020o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YptQlj68agIuJ67LYTQg5A5020o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911392E/32E1F35850E011EFA7094168C4F9AE02/8E9B074050E311EF8624AC36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.26.0/24 103.176.215.0/24 IPv6: 2001:df0:f980::/48 Signature Algorithm: sha256WithRSAEncryption 96:bf:1d:61:3d:fb:ca:9e:da:50:9c:26:1a:a6:e5:c7:29:ee: 43:bf:e7:60:19:14:d7:15:fb:40:81:81:93:44:b1:e9:66:a0: 9c:3b:52:90:42:a2:8a:44:9b:31:c2:bc:d7:27:6c:fc:11:33: ad:82:fd:e8:5a:0a:24:43:91:e1:fd:9a:cc:4d:68:41:ba:a1: 1d:d2:9b:02:75:50:e3:74:9b:c9:ab:8d:b5:3f:32:fa:c8:a3: aa:30:e0:33:b1:3c:6e:be:07:60:2e:00:a9:25:cb:c2:4c:b4: c3:2c:60:6f:e0:49:3c:12:f3:d5:9d:c0:07:55:c2:4d:6a:c0: 0c:8b:ef:60:25:48:ce:e6:d9:ba:e2:64:ce:4c:30:ef:45:66: 21:a4:e1:ed:0e:87:c1:a1:61:9d:da:b3:67:18:cb:40:28:84: 9a:4c:44:70:eb:2b:c9:96:b5:d9:08:18:48:c3:83:e8:fc:ae: e7:fd:49:b8:b9:1c:ce:d1:ad:32:2a:89:82:75:39:f2:4e:36: 0c:db:1d:aa:a4:bf:5b:dc:e0:a7:13:49:a6:cf:1f:e2:e7:44: 84:e2:39:bd:9d:35:cc:b1:6b:21:df:88:e6:ac:00:05:cb:e0: 71:6d:13:b2:4f:6e:51:3c:bb:36:64:88:71:41:59:59:da:67: eb:23:7f:f2 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5MkUxMTAvBgNVBAUTKDYyOUI1MDk2M0VCQzZBMDIyRTI3QUVDQjYxMzQyMEU0 MEU3NERCNEEwHhcNMjUwNzA3MDY0MjMwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiNmM1Ni05NjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OxyU2TFLsgkzFV+/6Ix10h4gwRer+YF96Kn0DCXqUUPtCoX/5nYwLo/pToH eLI8TJaar88/G7GBGltf8iRp0Na/9Jz6hs1/1OBAp6XcvgHLN5MBpIHhTEIO3zwK CE92KlWgZlBgVhdlv6tp/v6XV3fyzNOFDVCqp6SDJQATyIQaE5xTf+AoIGyyB9w2 0iFR/m0hQTD1JRMi6NzEeRjmpcZiLyAAiJm5RBbZLVlex3h/S6TeN8GuYczjATaR g9bq5AjhKdNr+u3aPEMMKO1+C6I/juJo9VQlKw7zHUAZckgAtcWI5rIT6jSrAxj3 RpfNiwD3pICkFbppJ0enHB5skwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBDnxwev Mtbt8K6eVbTU1xCaaqExMB8GA1UdIwQYMBaAFGKbUJY+vGoCLieuy2E0IOQOdNtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkyRS8zMkUxRjM1ODUw RTAxMUVGQTcwOTQxNjhDNEY5QUUwMi9ZcHRRbGo2OGFnSXVKNjdMWVRRZzVBNTAy MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lwdFFsajY4YWdJdUo2N0xZVFFnNUE1MDIwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM5MkUvMzJFMUYzNTg1MEUwMTFFRkE3MDk0MTY4QzRGOUFFMDIvOEU5QjA3NDA1 MEUzMTFFRjg2MjRBQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnYxoDBABnsNcwDwQCAAIwCQMHACABDfD5gDANBgkqhkiG 9w0BAQsFAAOCAQEAlr8dYT37yp7aUJwmGqblxynuQ7/nYBkU1xX7QIGBk0Sx6Wag nDtSkEKiikSbMcK81yds/BEzrYL96FoKJEOR4f2azE1oQbqhHdKbAnVQ43SbyauN tT8y+sijqjDgM7E8br4HYC4AqSXLwky0wyxgb+BJPBLz1Z3AB1XCTWrADIvvYCVI zubZuuJkzkww70VmIaTh7Q6HwaFhndqzZxjLQCiEmkxEcOsryZa12QgYSMOD6Pyu 5/1JuLkcztGtMiqJgnU58k42DNsdqqS/W9zgpxNJps8f4udEhOI5vZ01zLFrId+I 5qwABcvgcW0Tsk9uUTy7NmSIcUFZWdpn6yN/8g== -----END CERTIFICATE-----Generated at Wed Aug 13 15:48:11 2025 by rpki-client