$ rpki-client -vvf rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa File: 2FD106D2B92711E99D48BA23C4F9AE02.roa (raw, json) Hash identifier: cYdmS5wLlGFfq5Y1sGvt09KmgEcXdc6nHMkHCfvEFrc= Subject key identifier: 9D:8A:E7:0B:7D:C1:56:5B:53:A8:07:36:E2:0F:C4:C0:66:F5:E6:5A Certificate issuer: /CN=A912A9B1/serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965 Certificate serial: 0DEB Authority key identifier: 25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa Signing time: Mon 04 Aug 2025 18:27:48 +0000 ROA not before: Mon 04 Aug 2025 18:27:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133936 IP address blocks: 103.140.138.0/24 maxlen: 24 103.140.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.crl rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3563 (0xdeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A9B1, serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965 Validity Not Before: Aug 4 18:27:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890fba3-eb3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:1b:e1:07:91:99:64:dc:96:1b:ef:c7:e5: e5:3e:89:e9:dd:ec:29:9a:0e:9e:f2:f5:d9:45:17: 04:49:14:4b:d9:0e:7b:92:a9:58:1c:32:2f:d5:17: 3e:53:dc:cc:5b:23:02:f9:8a:1c:45:46:5d:e6:19: e6:75:ab:75:c9:6f:f8:b2:09:d4:b6:c3:be:46:d5: 31:7a:49:c9:f0:c9:8c:e4:c8:91:c2:d6:c9:91:4a: 7d:ed:03:79:76:77:6d:c9:b8:a9:1b:d0:82:df:ba: 85:cf:65:0c:46:36:97:c4:40:50:8a:9b:26:2e:48: c6:5f:96:df:8f:82:bb:9b:3c:98:c2:ac:1a:b5:d5: c6:f5:fa:a9:50:da:15:53:bc:0a:82:5c:15:63:11: f3:06:42:50:41:e9:17:46:05:9c:d8:16:c4:c0:17: 46:f1:e3:2a:37:62:d1:e5:19:7e:a3:2e:e5:9d:70: 48:24:4d:9e:8e:00:24:7d:c1:73:80:90:ff:8f:9c: 02:30:3d:49:22:a5:44:ac:6b:53:6e:67:97:97:89: 63:02:fb:82:ae:b3:1b:6f:34:cc:be:ad:e9:af:a2: d7:67:c5:10:62:9e:0a:a2:96:4d:3c:17:79:4b:d2: a0:b4:65:d9:52:f0:e0:0d:12:e7:3e:49:18:4d:e7: c2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8A:E7:0B:7D:C1:56:5B:53:A8:07:36:E2:0F:C4:C0:66:F5:E6:5A X509v3 Authority Key Identifier: keyid:25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.138.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:3a:ec:93:ff:c5:cb:f4:df:56:81:0c:f2:38:64:73:76:9c: b9:86:98:4e:66:ca:4d:76:3d:dd:86:93:70:ff:c0:7e:13:ae: 62:3f:26:8c:09:e1:9b:c9:6d:1f:b2:f0:85:5c:4f:d1:86:75: f7:b0:f4:9f:b4:91:61:d8:13:91:09:45:e5:dd:39:a3:76:36: 89:b7:89:a0:90:b4:d2:05:98:61:8d:46:0c:d2:4d:15:7e:27: 36:31:d6:41:af:3a:76:9d:a5:5b:eb:8e:34:34:3a:e5:aa:e3: 3d:ea:47:d9:92:9e:ef:dc:89:a1:21:fb:1f:43:de:a7:6a:4b: 89:93:20:df:6d:61:90:fd:5c:28:fd:4e:23:dc:9a:4c:e0:8c: 4f:6e:4c:d2:01:7d:03:3a:51:1d:da:4b:77:03:07:8c:c0:c4: ce:21:d7:fc:59:9f:a7:4b:32:63:58:f2:70:49:0a:2c:72:aa: 1c:2f:a9:a1:77:b8:d5:76:01:ba:33:c7:84:60:23:e5:61:bf: 61:a3:51:98:b1:13:b2:ce:d4:4d:95:fd:0c:04:fb:42:6a:0c: e9:39:e0:c6:6a:d0:50:13:66:85:ec:49:19:e8:26:85:72:3d: e6:b3:32:2f:dd:71:a2:35:f9:ec:37:f2:65:bd:d4:7e:03:02: 79:d1:4e:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE5QjExMTAvBgNVBAUTKDI1MjNBQ0UxNkZFRkRFNjIzOUUyNjhDNEUwNDZCNkM4 QzVGNjE5NjUwHhcNMjUwODA0MTgyNzQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZmJhMy1lYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/Qb4QeRmWTclhvvx+XlPonp3ewpmg6e8vXZRRcESRRL2Q57kqlYHDIv1Rc+ U9zMWyMC+YocRUZd5hnmdat1yW/4sgnUtsO+RtUxeknJ8MmM5MiRwtbJkUp97QN5 dndtybipG9CC37qFz2UMRjaXxEBQipsmLkjGX5bfj4K7mzyYwqwatdXG9fqpUNoV U7wKglwVYxHzBkJQQekXRgWc2BbEwBdG8eMqN2LR5Rl+oy7lnXBIJE2ejgAkfcFz gJD/j5wCMD1JIqVErGtTbmeXl4ljAvuCrrMbbzTMvq3pr6LXZ8UQYp4KopZNPBd5 S9KgtGXZUvDgDRLnPkkYTefCyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ2K5wt9 wVZbU6gHNuIPxMBm9eZaMB8GA1UdIwQYMBaAFCUjrOFv795iOeJoxOBGtsjF9hll MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTlCMS81Q0FDRjZBOEI5 MjYxMUU5OTc1Mjg5MjJDNEY5QUUwMi9KU09zNFdfdjNtSTU0bWpFNEVhMnlNWDJH V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTT3M0V192M21JNTRtakU0RWEyeU1YMkdXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE5QjEvNUNBQ0Y2QThCOTI2MTFFOTk3NTI4OTIyQzRGOUFFMDIvMkZEMTA2RDJC OTI3MTFFOTlENDhCQTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjIowDQYJKoZIhvcNAQELBQADggEBABo67JP/xcv031aB DPI4ZHN2nLmGmE5myk12Pd2Gk3D/wH4TrmI/JowJ4ZvJbR+y8IVcT9GGdfew9J+0 kWHYE5EJReXdOaN2Nom3iaCQtNIFmGGNRgzSTRV+JzYx1kGvOnadpVvrjjQ0OuWq 4z3qR9mSnu/ciaEh+x9D3qdqS4mTIN9tYZD9XCj9TiPcmkzgjE9uTNIBfQM6UR3a S3cDB4zAxM4h1/xZn6dLMmNY8nBJCixyqhwvqaF3uNV2Abozx4RgI+Vhv2GjUZix E7LO1E2V/QwE+0JqDOk54MZq0FATZoXsSRnoJoVyPeazMi/dcaI1+ew38mW91H4D AnnRTig= -----END CERTIFICATE-----Generated at Mon Aug 11 07:27:07 2025 by rpki-client