$ rpki-client -vvf rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/CDBA3F66B9BD11EAAE22B109C4F9AE02.roa File: CDBA3F66B9BD11EAAE22B109C4F9AE02.roa (raw, json) Hash identifier: RsZQ0BNdxh1wzai/m1/3XptdwO2wNNsrOgOJW8lagqU= Subject key identifier: E0:E5:6A:27:1E:59:84:57:A8:6B:98:2A:AD:30:12:5D:57:FF:DB:86 Certificate issuer: /CN=A9169DB2/serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Certificate serial: 08CF Authority key identifier: 9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/CDBA3F66B9BD11EAAE22B109C4F9AE02.roa Signing time: Wed 30 Jul 2025 10:13:26 +0000 ROA not before: Wed 30 Jul 2025 10:13:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 56301 IP address blocks: 103.17.108.0/23 maxlen: 23 103.48.116.0/24 maxlen: 24 103.87.69.0/24 maxlen: 24 183.81.170.0/23 maxlen: 23 203.26.188.0/24 maxlen: 24 203.26.189.0/24 maxlen: 24 218.100.84.0/24 maxlen: 24 2401:fd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169DB2, serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Validity Not Before: Jul 30 10:13:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6889f046-f1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:89:77:86:a2:80:7a:e6:a8:c8:bb:65:a3:b7: d4:a6:74:ec:51:fb:cd:72:03:0a:ea:ef:59:e8:ae: 77:57:77:2c:da:c2:0a:12:78:c6:8b:16:ed:35:82: e1:d0:9a:f1:a3:67:b8:07:0c:d6:08:c5:d6:85:54: 49:84:30:01:95:89:40:26:67:54:09:ce:98:bc:6f: 0e:fd:0a:52:08:87:ef:4b:76:1f:dd:34:38:0b:23: ea:38:15:1c:34:86:d4:11:28:a0:cb:86:24:79:d9: a3:74:0f:07:2e:4e:54:7f:52:da:23:f1:cf:4a:4d: 25:cc:44:cf:5b:2d:2e:b9:e9:4a:41:81:65:05:84: 62:de:2d:49:18:34:5d:6d:8a:35:9c:2e:e1:a0:08: 51:79:54:df:49:1f:86:15:56:d3:fd:cd:af:7a:d6: 29:41:b8:38:4d:55:f9:f5:66:0d:85:81:b5:e1:e9: 57:11:ff:a4:7d:07:07:27:b9:eb:32:68:d3:eb:10: de:2e:33:dd:24:6a:c4:0c:b6:23:55:42:88:80:79: 85:9f:ee:94:e5:cd:6d:14:fe:d2:8c:1c:87:76:1a: c8:ca:19:f8:29:03:f2:89:c3:3b:9a:ea:47:cd:dc: 0a:92:96:43:88:76:01:5f:7c:18:38:a6:23:be:c8: 61:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E5:6A:27:1E:59:84:57:A8:6B:98:2A:AD:30:12:5D:57:FF:DB:86 X509v3 Authority Key Identifier: keyid:9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/CDBA3F66B9BD11EAAE22B109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.108.0/23 103.48.116.0/24 103.87.69.0/24 183.81.170.0/23 203.26.188.0/23 218.100.84.0/24 IPv6: 2401:fd40::/32 Signature Algorithm: sha256WithRSAEncryption 1f:17:8d:92:8f:8e:8d:aa:0d:2e:2d:1e:72:27:e0:f4:73:ef: 32:a8:af:e6:38:bf:62:61:3f:b7:04:e1:dc:b0:bd:ab:1d:e4: b0:da:79:11:f3:d1:3c:0b:a7:5b:83:da:c1:a5:d9:60:fa:52: 80:df:b0:bd:0b:19:85:52:b4:05:5c:95:28:ce:fc:2c:80:ef: 41:e3:a9:75:49:46:4e:b8:f6:6d:27:0a:aa:d8:68:99:07:4a: 1f:5c:3e:0a:0c:1d:8a:74:3d:84:29:b9:84:71:45:02:e8:41: cb:81:50:f0:82:d4:dd:93:9b:3f:8b:cb:79:fd:58:d9:bf:16: d7:f4:7f:5a:1b:2c:cc:07:3b:ea:27:ef:d1:94:e9:6e:aa:09: c6:03:be:fc:14:5d:9c:9d:0d:93:b4:54:1b:e5:f8:14:a6:aa: 06:bd:5f:be:dc:2f:69:2c:81:cc:94:1c:ba:b3:79:2f:ee:0f: 25:da:7d:9e:21:67:85:b9:e8:cd:f5:e0:50:24:c6:4d:c4:f9: d0:1f:95:ab:8f:6e:54:15:1f:d4:22:8b:8d:df:41:17:4b:06: 52:64:b3:86:a3:db:a3:ff:c0:ea:31:3b:c5:25:95:82:b1:a0: 99:05:14:a2:07:92:a1:81:39:d5:ae:2a:7e:be:53:d0:3a:07: cb:fc:5a:1c -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlEQjIxMTAvBgNVBAUTKDlCODI1OUY3QjNDMURFREQ0NzE5QkMwQURDNTg3QjNE Qjg5RTdCREIwHhcNMjUwNzMwMTAxMzI2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5ZjA0Ni1mMWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIl3hqKAeuaoyLtlo7fUpnTsUfvNcgMK6u9Z6K53V3cs2sIKEnjGixbtNYLh 0Jrxo2e4BwzWCMXWhVRJhDABlYlAJmdUCc6YvG8O/QpSCIfvS3Yf3TQ4CyPqOBUc NIbUESigy4YkedmjdA8HLk5Uf1LaI/HPSk0lzETPWy0uuelKQYFlBYRi3i1JGDRd bYo1nC7hoAhReVTfSR+GFVbT/c2vetYpQbg4TVX59WYNhYG14elXEf+kfQcHJ7nr MmjT6xDeLjPdJGrEDLYjVUKIgHmFn+6U5c1tFP7SjByHdhrIyhn4KQPyicM7mupH zdwKkpZDiHYBX3wYOKYjvshhswIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFODlaice WYRXqGuYKq0wEl1X/9uGMB8GA1UdIwQYMBaAFJuCWfezwd7dRxm8CtxYez24nnvb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OURCMi9BOUNDNDlCNkI5 QkIxMUVBQkREMEZEODRDNEY5QUUwMi9tNEpaOTdQQjN0MUhHYndLM0ZoN1BiaWVl OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL200Slo5N1BCM3QxSEdid0szRmg3UGJpZWU5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlEQjIvQTlDQzQ5QjZCOUJCMTFFQUJERDBGRDg0QzRGOUFFMDIvQ0RCQTNGNjZC OUJEMTFFQUFFMjJCMTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAFnEWwDBABnMHQDBABnV0UDBAG3UaoDBAHLGrwDBADaZFQw DQQCAAIwBwMFACQB/UAwDQYJKoZIhvcNAQELBQADggEBAB8XjZKPjo2qDS4tHnIn 4PRz7zKor+Y4v2JhP7cE4dywvasd5LDaeRHz0TwLp1uD2sGl2WD6UoDfsL0LGYVS tAVclSjO/CyA70HjqXVJRk649m0nCqrYaJkHSh9cPgoMHYp0PYQpuYRxRQLoQcuB UPCC1N2Tmz+Ly3n9WNm/Ftf0f1obLMwHO+on79GU6W6qCcYDvvwUXZydDZO0VBvl +BSmqga9X77cL2ksgcyUHLqzeS/uDyXafZ4hZ4W56M314FAkxk3E+dAflauPblQV H9Qii43fQRdLBlJks4aj26P/wOoxO8UllYKxoJkFFKIHkqGBOdWuKn6+U9A6B8v8 Whw= -----END CERTIFICATE-----Generated at Sat Aug 9 05:43:06 2025 by rpki-client