$ rpki-client -vvf rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa File: FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa (raw, json) Hash identifier: 4/foFK8tZB3JJrlnSk1OY4/oa9HYbVImNjArg3Qtuzo= Subject key identifier: 10:CF:17:0A:BC:71:76:C6:81:C0:7E:BC:35:A7:EF:EB:D3:7B:C9:3B Certificate issuer: /CN=A9118CA7/serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Certificate serial: 0970 Authority key identifier: F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa Signing time: Thu 31 Jul 2025 21:31:09 +0000 ROA not before: Thu 31 Jul 2025 21:31:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139053 IP address blocks: 103.151.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118CA7, serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Validity Not Before: Jul 31 21:31:09 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688be09c-bfbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:eb:0f:9a:82:7f:5c:64:ba:35:4d:28:aa: ff:cf:13:b5:aa:7b:9e:5d:a8:f5:d4:43:30:9d:ab: 4a:d4:4d:9d:f6:dc:d0:d9:d0:c5:d7:d5:39:92:df: ab:27:b8:20:fc:be:1c:7d:5e:da:6c:07:eb:b5:54: b1:e6:59:b4:df:df:46:cc:52:11:f6:f0:19:47:50: 05:62:00:2a:21:56:6c:72:76:cc:ec:8f:8e:ee:07: f8:45:03:20:9a:fb:6c:5b:4f:be:63:49:20:be:95: 54:3e:8e:d9:25:89:5b:a9:4d:e7:65:33:b3:9d:18: e9:59:10:87:a1:a9:7c:5e:be:7a:df:30:89:0d:4d: f4:49:16:aa:d5:70:dc:5c:e5:6c:18:82:39:17:47: 4d:33:b6:57:6b:e9:9a:b5:b7:cc:77:77:90:ae:69: 12:d2:b3:cc:74:6c:47:a5:a6:48:30:b4:14:1c:48: 9b:c1:58:bc:59:b5:a3:e5:ee:84:fa:03:2d:fb:ae: e9:9a:20:34:66:d5:c7:de:d1:9a:35:69:80:b0:bd: cb:c1:22:d7:dc:4d:59:2c:27:dd:f0:a7:6a:ac:8a: 26:42:2d:40:d1:3d:b7:56:28:34:c6:1d:6a:dd:49: 80:dc:69:19:54:4f:3f:7d:ab:55:53:c2:3b:09:2e: a4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CF:17:0A:BC:71:76:C6:81:C0:7E:BC:35:A7:EF:EB:D3:7B:C9:3B X509v3 Authority Key Identifier: keyid:F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.170.0/24 Signature Algorithm: sha256WithRSAEncryption 34:8a:fd:2b:7d:62:0d:bd:fe:c9:0b:a6:7c:7b:03:2d:0a:47: cc:a5:dd:cc:a2:68:b3:66:5c:0e:65:59:da:8b:60:f4:58:d3: f6:1d:94:74:f8:be:44:2c:8d:a8:86:1d:b1:db:66:ac:3d:a7: 92:fe:56:bd:d6:f8:72:75:75:30:22:f2:43:92:f2:ea:e0:e0: d2:25:20:58:70:7c:8f:7c:e3:3c:0e:88:9e:bf:59:26:76:f9: f1:22:58:33:f3:47:4d:0a:5b:0f:ae:9c:ea:5b:65:87:08:f6: 77:dc:a0:f0:dd:43:73:ff:d7:4a:b9:87:db:b8:d5:48:2c:5c: 9d:8b:f1:81:b7:11:5c:6e:f8:f3:ff:e0:a9:15:92:56:94:c1: b9:f3:51:63:7f:9f:c8:2b:88:07:f9:fc:3d:71:ba:ed:9d:3f: 19:ad:dd:17:15:d0:18:be:60:ab:5c:d6:95:01:33:2c:a1:e7: cb:e0:c1:e5:8d:e8:3f:01:47:5b:09:58:43:ef:cc:df:ec:74: df:7d:4f:8e:ef:f8:07:d0:c3:fa:0d:31:8d:2c:97:8a:fa:78: 45:98:3f:45:7d:49:fd:9a:08:89:aa:ba:ed:ab:9e:5a:af:7d: b3:15:f6:b5:1c:6a:df:50:0a:4c:8f:b4:34:e6:25:df:96:10: 88:72:e3:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThDQTcxMTAvBgNVBAUTKEYxOTk4QTQ3NUU5MkRFOEE2QzdENDA5NDU1NkEwREE2 N0Q1RDREMEUwHhcNMjUwNzMxMjEzMTA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZTA5Yy1iZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlrrD5qCf1xkujVNKKr/zxO1qnueXaj11EMwnatK1E2d9tzQ2dDF19U5kt+r J7gg/L4cfV7abAfrtVSx5lm0399GzFIR9vAZR1AFYgAqIVZscnbM7I+O7gf4RQMg mvtsW0++Y0kgvpVUPo7ZJYlbqU3nZTOznRjpWRCHoal8Xr563zCJDU30SRaq1XDc XOVsGII5F0dNM7ZXa+matbfMd3eQrmkS0rPMdGxHpaZIMLQUHEibwVi8WbWj5e6E +gMt+67pmiA0ZtXH3tGaNWmAsL3LwSLX3E1ZLCfd8KdqrIomQi1A0T23Vig0xh1q 3UmA3GkZVE8/fatVU8I7CS6kzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBDPFwq8 cXbGgcB+vDWn7+vTe8k7MB8GA1UdIwQYMBaAFPGZikdekt6KbH1AlFVqDaZ9XU0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOENBNy8yRkM3MEEyNEEw RDUxMUVBQTdGRkRGMjlDNEY5QUUwMi84Wm1LUjE2UzNvcHNmVUNVVldvTnBuMWRU UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhabUtSMTZTM29wc2ZVQ1VWV29OcG4xZFRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThDQTcvMkZDNzBBMjRBMEQ1MTFFQUE3RkZERjI5QzRGOUFFMDIvRkZGRTU2REVE RUYxMTFFRjhFRTRBRTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnl6owDQYJKoZIhvcNAQELBQADggEBADSK/St9Yg29/skL pnx7Ay0KR8yl3cyiaLNmXA5lWdqLYPRY0/YdlHT4vkQsjaiGHbHbZqw9p5L+Vr3W +HJ1dTAi8kOS8urg4NIlIFhwfI984zwOiJ6/WSZ2+fEiWDPzR00KWw+unOpbZYcI 9nfcoPDdQ3P/10q5h9u41UgsXJ2L8YG3EVxu+PP/4KkVklaUwbnzUWN/n8griAf5 /D1xuu2dPxmt3RcV0Bi+YKtc1pUBMyyh58vgweWN6D8BR1sJWEPvzN/sdN99T47v +AfQw/oNMY0sl4r6eEWYP0V9Sf2aCImquu2rnlqvfbMV9rUcat9QCkyPtDTmJd+W EIhy490= -----END CERTIFICATE-----Generated at Sun Aug 10 05:34:48 2025 by rpki-client