$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa File: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (raw, json) Hash identifier: lsDHgOBln7+ddbbNwOz6PGFl2yY518xAw7ctm0LLOvg= Subject key identifier: 04:A4:46:BF:A8:39:B7:2A:B0:46:7C:F9:40:14:78:06:95:C1:90:0B Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E1D Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa Signing time: Thu 31 Jul 2025 18:27:44 +0000 ROA not before: Thu 31 Jul 2025 18:27:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24550 IP address blocks: 103.94.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Jul 31 18:27:44 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688bb5a0-3784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:9f:86:00:15:0a:87:ef:53:76:c1:38:38: f5:e5:7b:e0:01:8a:3f:2f:37:c6:bf:21:89:2e:d1: 20:d0:75:c2:51:19:e6:97:ad:c1:f4:2a:ee:dd:b6: 18:de:c6:04:5f:f2:33:e3:dc:d1:93:90:ab:25:7f: f6:7c:a8:74:0a:23:73:fd:02:41:8c:89:6c:83:89: 02:a2:92:3e:04:f4:0f:96:91:76:0a:da:37:c4:36: 5c:19:89:ad:a4:5e:49:20:67:92:5d:3e:bd:61:58: 52:6d:66:5c:8d:43:f8:c0:e1:95:66:41:f0:7f:7b: e7:be:47:f1:d3:3e:9f:f0:91:b6:0c:ae:67:33:eb: 88:45:5e:09:fa:ac:d0:5a:d6:80:9d:3e:61:af:e7: 3f:8f:4b:a2:a9:8e:c8:8d:04:b4:99:92:c2:f8:68: a0:5d:ba:eb:40:d0:80:24:76:17:e9:0c:bd:c9:12: 6c:f1:16:7a:8e:cd:46:ad:25:4d:53:0e:13:b8:29: ed:9c:11:84:2d:f5:88:86:eb:0d:93:86:37:b9:bb: 49:6b:80:f0:ed:aa:6e:84:02:1c:0b:33:99:76:9b: 71:98:97:88:7a:de:66:6e:1e:a4:d4:03:d1:27:92: 09:13:ee:55:76:bc:20:2a:77:a0:6b:d0:24:d0:00: 5d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A4:46:BF:A8:39:B7:2A:B0:46:7C:F9:40:14:78:06:95:C1:90:0B X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.252.0/22 Signature Algorithm: sha256WithRSAEncryption 17:f1:3c:76:9b:fe:6c:4c:f1:cf:22:e8:0e:b4:60:9a:9f:92: 61:79:42:ad:dd:fe:dc:53:02:3a:97:c6:78:c9:bc:dd:da:c1: e5:66:77:fe:63:67:be:26:b0:b8:2c:d0:3f:f0:77:81:6d:ce: 3e:10:f7:16:16:92:e1:d9:bf:a1:02:2f:41:1a:57:73:29:3d: 61:64:a7:de:10:ab:a8:f6:2e:f2:59:18:8d:1f:65:61:f0:1c: 81:b9:0d:74:a3:d0:7b:79:c4:59:48:fd:81:90:92:aa:b5:d9: 66:72:c5:c1:61:44:85:3a:17:a9:4b:0e:8d:17:38:be:5a:9c: 4d:2d:c9:0d:ae:81:3f:83:3b:f2:eb:80:d6:d4:90:3f:7e:ed: 1b:f9:5f:9c:16:cf:c5:a0:05:16:49:24:10:26:81:46:9e:92: 00:66:fa:12:4a:57:de:a5:c0:c2:06:fb:9b:b3:ab:47:f9:b8: b3:24:38:66:c8:2d:7d:19:79:01:79:9a:f7:64:09:7c:27:7f: 18:cc:bf:c9:3c:8e:12:98:c6:4f:b3:b3:a5:81:01:d3:a7:10: 67:25:7d:3b:fa:e0:dc:57:0d:2a:74:38:27:52:fb:81:43:f5: de:de:f6:fe:e3:1c:68:dd:21:8e:f2:66:bf:c7:d4:d7:1d:cb: fa:62:54:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjUwNzMxMTgyNzQ0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiYjVhMC0zNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsESfhgAVCofvU3bBODj15XvgAYo/LzfGvyGJLtEg0HXCURnml63B9Cru3bYY 3sYEX/Iz49zRk5CrJX/2fKh0CiNz/QJBjIlsg4kCopI+BPQPlpF2Cto3xDZcGYmt pF5JIGeSXT69YVhSbWZcjUP4wOGVZkHwf3vnvkfx0z6f8JG2DK5nM+uIRV4J+qzQ WtaAnT5hr+c/j0uiqY7IjQS0mZLC+GigXbrrQNCAJHYX6Qy9yRJs8RZ6js1GrSVN Uw4TuCntnBGELfWIhusNk4Y3ubtJa4Dw7apuhAIcCzOZdptxmJeIet5mbh6k1APR J5IJE+5VdrwgKnega9Ak0ABdoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFASkRr+o ObcqsEZ8+UAUeAaVwZALMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyOTcvNDMwMUZEQkVBRjZFMTFFOUE5MjU4MDY3QzRGOUFFMDIvNDU3QTAwQThB RjdBMTFFOUFGRjEwNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXvwwDQYJKoZIhvcNAQELBQADggEBABfxPHab/mxM8c8i 6A60YJqfkmF5Qq3d/txTAjqXxnjJvN3aweVmd/5jZ74msLgs0D/wd4Ftzj4Q9xYW kuHZv6ECL0EaV3MpPWFkp94Qq6j2LvJZGI0fZWHwHIG5DXSj0Ht5xFlI/YGQkqq1 2WZyxcFhRIU6F6lLDo0XOL5anE0tyQ2ugT+DO/LrgNbUkD9+7Rv5X5wWz8WgBRZJ JBAmgUaekgBm+hJKV96lwMIG+5uzq0f5uLMkOGbILX0ZeQF5mvdkCXwnfxjMv8k8 jhKYxk+zs6WBAdOnEGclfTv64NxXDSp0OCdS+4FD9d7e9v7jHGjdIY7yZr/H1Ncd y/piVH0= -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:46 2025 by rpki-client