$ rpki-client -vvf rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/1CE5552C6D3B11F0AA825533C4F9AE02.roa File: 1CE5552C6D3B11F0AA825533C4F9AE02.roa (raw, json) Hash identifier: jDQvCTpMcft9Y6vTZ/KCcWn5HK48OaJzX4vFOC3gRbU= Subject key identifier: D5:C8:4E:03:DA:C3:85:86:86:2C:0E:1B:CA:BB:BB:E9:5A:CA:2F:49 Certificate issuer: /CN=A9148BFA/serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Certificate serial: 056E Authority key identifier: 15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/1CE5552C6D3B11F0AA825533C4F9AE02.roa Signing time: Wed 30 Jul 2025 11:48:30 +0000 ROA not before: Wed 30 Jul 2025 11:48:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 212666 IP address blocks: 103.46.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148BFA, serialNumber=157B0BDE0E3CADB294839BC9815655644DB26E91 Validity Not Before: Jul 30 11:48:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=688a068e-45fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e7:3a:08:01:13:0e:2e:3f:96:63:03:f5:08: 3c:b9:f0:f7:9b:fc:f4:3e:30:9c:7b:3a:b8:cf:b9: 29:32:0f:b4:43:d3:4b:5b:ce:da:90:c5:33:aa:3c: 9d:e5:3f:e2:98:be:1b:c1:ab:e6:fa:9e:78:07:6d: ee:5c:bf:93:97:42:75:55:b1:ed:5e:19:eb:40:30: 66:54:68:36:ac:c7:2e:67:4d:2b:c2:88:ef:21:74: 33:f8:ee:d6:e5:77:a6:75:c6:eb:3c:53:06:6c:cf: 08:d0:d5:5d:c7:c0:3c:de:d6:f7:79:be:7d:db:49: 12:4e:54:1b:94:c8:ce:e8:33:61:6e:ae:62:bb:cb: 41:e5:21:6e:36:1f:2b:88:f2:59:2c:1c:8a:96:41: 8e:7b:24:cf:fe:09:33:ea:de:df:bc:8b:ca:78:28: 6c:42:2e:25:c4:3c:77:cf:18:d3:ec:57:7c:c4:36: 3c:d7:7b:11:00:23:f0:6d:93:da:9b:29:5b:ee:ae: a1:5e:8e:34:7f:77:ff:92:1c:21:9d:c6:4e:03:35: 30:c1:92:ed:8c:3f:eb:d9:cf:b6:17:be:1c:48:ff: d4:71:43:fa:f6:8a:16:8c:3c:87:fc:1a:b0:f0:cf: 27:d4:29:aa:6c:a7:85:41:4c:45:94:f2:f5:c9:b6: 69:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C8:4E:03:DA:C3:85:86:86:2C:0E:1B:CA:BB:BB:E9:5A:CA:2F:49 X509v3 Authority Key Identifier: keyid:15:7B:0B:DE:0E:3C:AD:B2:94:83:9B:C9:81:56:55:64:4D:B2:6E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/FXsL3g48rbKUg5vJgVZVZE2ybpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FXsL3g48rbKUg5vJgVZVZE2ybpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148BFA/04A24C34114311EC97369F73C4F9AE02/1CE5552C6D3B11F0AA825533C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.46.143.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:19:d9:0c:0c:b1:7c:e3:24:e5:c0:84:b5:c3:95:84:15:1f: c7:ee:05:d8:d5:d3:9e:8f:f5:bd:83:33:31:71:65:09:bb:fc: ca:b8:2a:06:70:47:53:15:af:01:bd:48:d2:e2:d2:f2:2b:fb: d6:92:d4:25:f0:99:f4:52:37:70:21:e0:75:4d:5a:48:41:7b: 6b:84:dd:e7:2e:1a:e3:20:c0:4d:9d:8a:b9:e5:3c:c4:d0:1c: 4e:7f:41:e7:e3:35:65:ad:63:d5:09:c2:1b:e1:6a:a1:e3:1e: d6:98:0b:6b:3c:a4:f2:dd:d0:ce:51:06:c1:15:72:53:50:1a: 30:4d:68:99:d4:6f:e3:72:91:78:ed:47:95:64:c5:b3:1e:ba: 93:86:23:71:bd:ab:5f:44:4d:42:d7:26:96:0d:fa:e8:96:8a: 9b:59:30:ae:49:d6:50:2b:f5:5f:ec:42:04:36:b1:60:f9:6c: 99:b5:05:f6:62:b3:ae:5f:3e:43:da:38:03:05:9e:df:35:4d: c7:70:27:4e:19:63:08:48:07:68:c5:80:59:48:32:5d:d0:35: 90:d3:bc:72:bd:de:9e:cd:11:35:0f:b3:d4:b1:4f:db:15:90: 74:5e:cc:8d:2f:44:66:1c:e7:00:bd:ac:18:ef:7d:0c:95:be: b3:03:12:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCRkExMTAvBgNVBAUTKDE1N0IwQkRFMEUzQ0FEQjI5NDgzOUJDOTgxNTY1NTY0 NERCMjZFOTEwHhcNMjUwNzMwMTE0ODMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhMDY4ZS00NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uc6CAETDi4/lmMD9Qg8ufD3m/z0PjCcezq4z7kpMg+0Q9NLW87akMUzqjyd 5T/imL4bwavm+p54B23uXL+Tl0J1VbHtXhnrQDBmVGg2rMcuZ00rwojvIXQz+O7W 5XemdcbrPFMGbM8I0NVdx8A83tb3eb5920kSTlQblMjO6DNhbq5iu8tB5SFuNh8r iPJZLByKlkGOeyTP/gkz6t7fvIvKeChsQi4lxDx3zxjT7Fd8xDY813sRACPwbZPa mylb7q6hXo40f3f/khwhncZOAzUwwZLtjD/r2c+2F74cSP/UcUP69ooWjDyH/Bqw 8M8n1CmqbKeFQUxFlPL1ybZpywIDAQABo4IClTCCApEwHQYDVR0OBBYEFNXITgPa w4WGhiwOG8q7u+layi9JMB8GA1UdIwQYMBaAFBV7C94OPK2ylIObyYFWVWRNsm6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEJGQS8wNEEyNEMzNDEx NDMxMUVDOTczNjlGNzNDNEY5QUUwMi9GWHNMM2c0OHJiS1VnNXZKZ1ZaVlpFMnli cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZYc0wzZzQ4cmJLVWc1dkpnVlpWWkUyeWJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCRkEvMDRBMjRDMzQxMTQzMTFFQzk3MzY5RjczQzRGOUFFMDIvMUNFNTU1MkM2 RDNCMTFGMEFBODI1NTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnLo8wDQYJKoZIhvcNAQELBQADggEBAB8Z2QwMsXzjJOXA hLXDlYQVH8fuBdjV056P9b2DMzFxZQm7/Mq4KgZwR1MVrwG9SNLi0vIr+9aS1CXw mfRSN3Ah4HVNWkhBe2uE3ecuGuMgwE2dirnlPMTQHE5/QefjNWWtY9UJwhvhaqHj HtaYC2s8pPLd0M5RBsEVclNQGjBNaJnUb+NykXjtR5VkxbMeupOGI3G9q19ETULX JpYN+uiWiptZMK5J1lAr9V/sQgQ2sWD5bJm1BfZis65fPkPaOAMFnt81TcdwJ04Z YwhIB2jFgFlIMl3QNZDTvHK93p7NETUPs9SxT9sVkHRezI0vRGYc5wC9rBjvfQyV vrMDEsA= -----END CERTIFICATE-----Generated at Sat Aug 9 23:19:59 2025 by rpki-client