$ rpki-client -vvf rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/65B35A86577011EC8F00A65AC4F9AE02.roa File: 65B35A86577011EC8F00A65AC4F9AE02.roa (raw, json) Hash identifier: 4ddMyzUmIiWucVfUmzZbGoeIuz/De3rIfnynVpK/dAw= Subject key identifier: FF:C8:12:F9:C3:53:E0:B6:F1:8F:EE:7F:90:06:26:83:45:95:47:14 Certificate issuer: /CN=A9146304/serialNumber=4614259427464874BE7DEB7BF421272CB23DA188 Certificate serial: 10E9 Authority key identifier: 46:14:25:94:27:46:48:74:BE:7D:EB:7B:F4:21:27:2C:B2:3D:A1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RhQllCdGSHS-fet79CEnLLI9oYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/65B35A86577011EC8F00A65AC4F9AE02.roa Signing time: Fri 08 Aug 2025 17:56:39 +0000 ROA not before: Fri 08 Aug 2025 17:56:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56311 IP address blocks: 103.168.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/RhQllCdGSHS-fet79CEnLLI9oYg.crl rsync://rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/RhQllCdGSHS-fet79CEnLLI9oYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RhQllCdGSHS-fet79CEnLLI9oYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4329 (0x10e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146304, serialNumber=4614259427464874BE7DEB7BF421272CB23DA188 Validity Not Before: Aug 8 17:56:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68963a57-9d26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:86:cb:2f:20:3b:e2:2f:e2:66:1e:5f:6e: 87:f7:18:a3:a7:6a:3b:4f:80:39:ce:fa:bf:40:ed: 75:43:53:6f:71:88:be:48:c8:a4:80:8f:91:fd:a8: 84:8e:7d:6a:ba:fc:64:bc:73:1a:cf:6f:2b:c5:f1: ca:b7:6e:e0:5a:2f:75:8a:69:17:40:08:93:17:e3: 90:0d:c1:3d:d7:95:af:0b:c3:59:b8:9b:5b:ab:3c: 13:81:c4:14:b0:c3:2b:dd:5f:10:26:1c:cb:18:9b: cb:ee:21:26:f5:39:9e:5e:4c:e9:4d:78:d0:98:06: 6a:d2:ff:22:03:85:09:72:32:d6:44:51:46:55:f0: 3b:87:76:18:be:56:ba:0d:9f:24:82:8c:4d:3f:ff: 1d:8a:d7:dc:d2:21:22:d1:89:cb:71:b2:0e:0d:85: 4f:cd:ad:a2:bf:5b:9e:0c:7c:ce:7b:51:c7:ad:6b: f6:c8:fb:ae:ea:71:4c:f9:5a:1b:88:86:68:a4:97: fb:aa:b6:72:36:b6:77:bf:40:33:a1:82:ef:81:9e: 10:6a:f5:12:62:57:bc:63:a6:f9:cb:d9:d1:82:8e: d8:a0:69:dd:44:d9:3a:50:43:89:21:7b:dd:6e:8b: 37:fb:98:3c:64:da:10:c9:7f:f8:e0:46:91:d1:f5: 1c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C8:12:F9:C3:53:E0:B6:F1:8F:EE:7F:90:06:26:83:45:95:47:14 X509v3 Authority Key Identifier: keyid:46:14:25:94:27:46:48:74:BE:7D:EB:7B:F4:21:27:2C:B2:3D:A1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/RhQllCdGSHS-fet79CEnLLI9oYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RhQllCdGSHS-fet79CEnLLI9oYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146304/E788C8A2258211E990B3783AC4F9AE02/65B35A86577011EC8F00A65AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.70.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d0:49:60:98:ae:bb:99:a8:ea:36:17:ed:af:66:8a:43:99: 8c:22:95:71:ad:f5:cc:4e:a6:f4:cb:53:a7:87:ba:45:05:a9: b2:30:eb:a1:fc:a3:40:aa:38:0d:30:39:85:93:6c:76:47:5c: 01:6b:56:05:36:b3:9e:38:30:cb:87:23:56:d0:b5:14:35:16: f1:92:03:19:48:8d:bf:bc:e6:4d:15:df:50:0e:f1:3f:5e:5e: 08:c0:3a:18:ac:84:a4:8c:c2:ce:57:d9:45:56:6d:81:76:6a: 5b:9f:4f:79:2a:57:cb:b7:b8:5e:b5:cd:89:5f:7a:ed:16:a0: d3:89:58:49:fb:61:50:ad:32:60:32:7b:16:87:6a:fe:24:4c: aa:b0:24:b2:21:97:5f:2e:2a:6b:e2:79:e0:60:ff:f1:c2:e3: c5:24:38:a5:98:95:a7:84:0b:38:2a:5a:cb:7f:2b:85:0e:29: b7:34:a6:f8:fe:56:3d:fb:f6:78:bc:18:34:d6:97:da:c2:f3: 00:fc:cb:6b:47:6e:17:53:f2:29:64:d6:a6:9a:2b:50:3b:9a: c7:e3:fa:b0:d2:3e:a2:44:c9:67:fb:ee:02:1e:ab:21:89:33: 25:ed:2a:52:7f:56:f2:b3:26:e1:ad:a0:d6:68:f7:02:43:9d: 2e:89:0e:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYzMDQxMTAvBgNVBAUTKDQ2MTQyNTk0Mjc0NjQ4NzRCRTdERUI3QkY0MjEyNzJD QjIzREExODgwHhcNMjUwODA4MTc1NjM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2M2E1Ny05ZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05yGyy8gO+Iv4mYeX26H9xijp2o7T4A5zvq/QO11Q1NvcYi+SMikgI+R/aiE jn1quvxkvHMaz28rxfHKt27gWi91imkXQAiTF+OQDcE915WvC8NZuJtbqzwTgcQU sMMr3V8QJhzLGJvL7iEm9TmeXkzpTXjQmAZq0v8iA4UJcjLWRFFGVfA7h3YYvla6 DZ8kgoxNP/8ditfc0iEi0YnLcbIODYVPza2iv1ueDHzOe1HHrWv2yPuu6nFM+Vob iIZopJf7qrZyNrZ3v0AzoYLvgZ4QavUSYle8Y6b5y9nRgo7YoGndRNk6UEOJIXvd bos3+5g8ZNoQyX/44EaR0fUc2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFP/IEvnD U+C28Y/uf5AGJoNFlUcUMB8GA1UdIwQYMBaAFEYUJZQnRkh0vn3re/QhJyyyPaGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjMwNC9FNzg4QzhBMjI1 ODIxMUU5OTBCMzc4M0FDNEY5QUUwMi9SaFFsbENkR1NIUy1mZXQ3OUNFbkxMSTlv WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JoUWxsQ2RHU0hTLWZldDc5Q0VuTExJOW9ZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYzMDQvRTc4OEM4QTIyNTgyMTFFOTkwQjM3ODNBQzRGOUFFMDIvNjVCMzVBODY1 NzcwMTFFQzhGMDBBNjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqEYwDQYJKoZIhvcNAQELBQADggEBAG3QSWCYrruZqOo2 F+2vZopDmYwilXGt9cxOpvTLU6eHukUFqbIw66H8o0CqOA0wOYWTbHZHXAFrVgU2 s544MMuHI1bQtRQ1FvGSAxlIjb+85k0V31AO8T9eXgjAOhishKSMws5X2UVWbYF2 alufT3kqV8u3uF61zYlfeu0WoNOJWEn7YVCtMmAyexaHav4kTKqwJLIhl18uKmvi eeBg//HC48UkOKWYlaeECzgqWst/K4UOKbc0pvj+Vj379ni8GDTWl9rC8wD8y2tH bhdT8ilk1qaaK1A7msfj+rDSPqJEyWf77gIeqyGJMyXtKlJ/VvKzJuGtoNZo9wJD nS6JDhs= -----END CERTIFICATE-----Generated at Wed Nov 5 00:22:52 2025 by rpki-client