$ rpki-client -vvf rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa File: 43854B4044D411EB85615640C4F9AE02.roa (raw, json) Hash identifier: kHAZG3jN+HiEy9SCAyuumysCPoFNupJBB0jqW1iCUdg= Subject key identifier: D0:CB:33:94:7A:77:F0:43:22:3F:FA:1D:39:28:E6:8D:E0:72:44:19 Certificate issuer: /CN=A9168197/serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Certificate serial: 071E Authority key identifier: C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa Signing time: Thu 24 Jul 2025 22:33:56 +0000 ROA not before: Thu 24 Jul 2025 22:33:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131448 IP address blocks: 103.69.136.0/22 maxlen: 22 103.69.136.0/24 maxlen: 24 103.69.137.0/24 maxlen: 24 103.69.138.0/24 maxlen: 24 103.69.139.0/24 maxlen: 24 116.66.180.0/22 maxlen: 22 116.66.180.0/24 maxlen: 24 116.66.181.0/24 maxlen: 24 116.66.182.0/24 maxlen: 24 116.66.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168197, serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Validity Not Before: Jul 24 22:33:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6882b4d3-df80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:49:16:25:76:5b:94:60:ea:a3:61:2b:89:24: 24:c6:86:74:06:55:e1:1b:e2:b4:df:6e:7f:84:7f: bd:13:a1:09:b5:a8:9d:15:3a:71:c1:24:e1:fa:48: 01:0f:bc:bf:93:bc:e7:b8:2a:a5:92:b9:9f:42:b8: 3d:6e:1e:6f:7f:76:32:bd:31:db:b3:af:21:e7:ba: 4a:ac:c7:32:64:cb:9b:c6:a5:bb:9c:87:da:29:b2: 80:16:7b:0d:10:e5:b0:d2:86:34:83:ab:a9:dc:b2: f5:31:c3:51:a0:c3:d6:79:d1:c7:48:91:b8:72:9e: 1b:16:70:41:20:8a:f2:d6:8d:80:b9:ac:4e:f8:16: 86:6b:db:fc:57:5d:70:a8:99:d3:39:4d:14:3c:24: 81:a4:ae:45:cf:84:32:79:76:54:cb:38:a9:94:12: 8b:ab:9f:c3:67:88:37:1c:bc:96:2c:8a:38:54:10: d7:61:74:70:4c:19:5b:7e:47:f7:df:e8:54:5b:19: 7f:fe:37:be:33:e8:5b:28:b3:b3:78:f1:12:b0:ad: ab:9f:16:75:76:c9:c4:3e:58:19:ce:af:52:a9:a6: 0b:06:04:7f:02:b5:a3:34:e4:8c:1c:7f:11:88:93: 27:83:76:29:16:73:bc:54:7b:8c:70:f4:4b:c1:55: 6d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CB:33:94:7A:77:F0:43:22:3F:FA:1D:39:28:E6:8D:E0:72:44:19 X509v3 Authority Key Identifier: keyid:C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.136.0/22 116.66.180.0/22 Signature Algorithm: sha256WithRSAEncryption 57:5b:3f:bb:80:33:26:12:31:3b:fb:69:bc:f6:e2:92:48:c5: d0:d2:01:2e:65:10:db:ae:b3:ad:64:95:0e:02:e4:64:ab:30: 16:dc:11:64:48:38:e4:c4:2c:fd:b6:d5:3c:d1:c8:80:61:8d: 20:d7:c9:99:a2:9d:cc:06:ad:c2:d5:0e:9f:0c:26:c8:86:1d: 93:72:a0:b4:0f:78:11:57:16:51:ca:3c:29:5b:ff:6f:cd:a5: 41:60:65:11:79:53:36:c1:48:29:05:9a:ba:92:74:5b:55:64: bc:4d:c2:4d:a6:34:67:58:2f:b8:31:c9:92:df:2f:99:d6:7b: 63:73:30:3a:9c:99:05:4b:db:43:a3:e7:4f:59:7a:ec:5b:09: 86:3f:60:17:db:46:be:7e:ec:0d:1f:bf:25:61:ed:f3:ac:21: 91:70:f7:2f:3c:23:22:6b:0e:7f:2a:cb:c2:23:82:f4:66:85: c6:82:16:eb:fe:42:81:ce:ce:5b:5b:f5:70:5d:fd:b2:b4:b0: ab:59:82:12:57:35:d8:9e:de:2b:1c:a5:00:d1:d5:ba:09:34: 47:9d:37:6e:1f:5c:08:df:a2:5a:15:f6:0a:b3:82:88:1f:ee: 90:00:48:0a:ea:d1:e4:f2:74:38:df:50:34:7f:11:c8:94:8f: 65:41:c0:12 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxOTcxMTAvBgNVBAUTKEMzQjY0OEVCMkUyMzg3MkE5MThEMDU3NzEzMEYzNTg1 M0Y2RjYzOUUwHhcNMjUwNzI0MjIzMzU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyYjRkMy1kZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkkWJXZblGDqo2EriSQkxoZ0BlXhG+K0325/hH+9E6EJtaidFTpxwSTh+kgB D7y/k7znuCqlkrmfQrg9bh5vf3YyvTHbs68h57pKrMcyZMubxqW7nIfaKbKAFnsN EOWw0oY0g6up3LL1McNRoMPWedHHSJG4cp4bFnBBIIry1o2AuaxO+BaGa9v8V11w qJnTOU0UPCSBpK5Fz4QyeXZUyziplBKLq5/DZ4g3HLyWLIo4VBDXYXRwTBlbfkf3 3+hUWxl//je+M+hbKLOzePESsK2rnxZ1dsnEPlgZzq9SqaYLBgR/ArWjNOSMHH8R iJMng3YpFnO8VHuMcPRLwVVtGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNDLM5R6 d/BDIj/6HTko5o3gckQZMB8GA1UdIwQYMBaAFMO2SOsuI4cqkY0FdxMPNYU/b2Oe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE5Ny9BNEREQTUyNDQ0 RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5cVJqUVYzRXc4MWhUOXZZ NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3Wkk2eTRqaHlxUmpRVjNFdzgxaFQ5dlk1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxOTcvQTREREE1MjQ0NEQyMTFFQkIxMzc5QzNFQzRGOUFFMDIvNDM4NTRCNDA0 NEQ0MTFFQjg1NjE1NjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRYgDBAJ0QrQwDQYJKoZIhvcNAQELBQADggEBAFdbP7uA MyYSMTv7abz24pJIxdDSAS5lENuus61klQ4C5GSrMBbcEWRIOOTELP221TzRyIBh jSDXyZmincwGrcLVDp8MJsiGHZNyoLQPeBFXFlHKPClb/2/NpUFgZRF5UzbBSCkF mrqSdFtVZLxNwk2mNGdYL7gxyZLfL5nWe2NzMDqcmQVL20Oj509ZeuxbCYY/YBfb Rr5+7A0fvyVh7fOsIZFw9y88IyJrDn8qy8IjgvRmhcaCFuv+QoHOzltb9XBd/bK0 sKtZghJXNdie3iscpQDR1boJNEedN24fXAjfoloV9gqzgogf7pAASArq0eTydDjf UDR/EciUj2VBwBI= -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:19 2025 by rpki-client