$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/838DF1B0572011EC905C770CC4F9AE02.roa File: 838DF1B0572011EC905C770CC4F9AE02.roa (raw, json) Hash identifier: iL8DbZfU13LX2Ap/5AtahLEn5kXxcngJgS8iYsEF4yY= Subject key identifier: DF:C6:72:6E:11:69:28:2A:B1:8F:DF:66:DD:A3:58:5D:00:AC:16:4A Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 0473 Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/838DF1B0572011EC905C770CC4F9AE02.roa Signing time: Tue 05 Aug 2025 01:07:35 +0000 ROA not before: Tue 05 Aug 2025 01:07:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140096 IP address blocks: 103.169.216.0/24 maxlen: 24 103.169.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: Aug 5 01:07:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68915957-3979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:7e:90:27:3d:53:8c:62:a2:9d:36:cb:47: 9a:13:a4:db:a5:49:a8:9a:04:3b:b1:a7:cc:5d:60: 1d:fb:5f:ca:c0:31:94:97:67:52:ab:f4:1a:58:7f: 4d:65:ee:64:14:90:2c:f2:c9:b5:58:ce:59:24:41: a4:2c:43:75:93:83:c4:44:3a:16:7b:db:c7:47:43: 71:a9:9a:e7:82:d7:c6:8d:a6:4d:d8:9b:52:67:6a: 94:e8:8e:f1:f7:63:e5:f5:61:ea:a7:84:bc:56:98: b6:ba:d8:a5:e4:34:52:97:e5:3b:d4:0a:c0:06:d4: 3f:9d:13:a0:8b:41:19:22:ba:ec:63:88:ea:d0:5c: e2:11:9b:7d:35:08:65:9e:58:6b:84:ee:b7:4d:a1: 2c:ca:bf:aa:c6:7f:7a:50:7f:a0:84:1d:0c:27:6c: 90:7a:06:98:1d:88:1b:12:ce:70:e8:4b:b1:ec:19: d7:31:69:63:39:58:1a:9a:8d:7e:9f:92:f6:26:ad: 20:b8:70:ec:e2:59:c4:fc:77:db:de:ce:23:45:ac: 99:da:49:93:af:dd:28:0c:14:84:58:46:c7:01:2c: 55:0a:9d:1f:47:0f:b6:82:c0:87:ee:f6:00:c4:a2: ff:66:f7:b6:92:11:aa:6e:23:e3:36:fc:e4:e5:51: 9c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C6:72:6E:11:69:28:2A:B1:8F:DF:66:DD:A3:58:5D:00:AC:16:4A X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/838DF1B0572011EC905C770CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.216.0/23 Signature Algorithm: sha256WithRSAEncryption b1:9e:33:0f:10:a6:a1:ed:47:5c:57:70:ab:2e:fc:a2:e3:ea: 67:55:72:ab:58:f1:c3:88:ff:ee:94:55:82:e6:8b:e8:ee:09: 9e:d8:63:6b:98:c6:50:95:db:6f:6b:30:22:a4:ea:84:1c:20: 6b:65:e2:dc:62:1c:12:5d:16:bb:2f:d8:6f:39:9f:45:2f:c2: ef:07:1a:b7:ba:ff:30:86:0a:6a:9a:57:b8:5f:e6:4e:77:e7: 35:17:44:c0:75:e8:f3:1f:e0:a1:24:c1:7a:b5:63:d5:e5:7c: 35:ba:e3:27:e2:91:d5:0a:f2:ca:92:a3:4c:c8:86:f1:fb:02: b0:00:29:75:31:1e:d3:c5:83:fb:b9:c6:a7:00:4d:91:15:85: ce:1a:17:76:b5:68:10:e8:49:d6:6c:47:0f:76:05:a8:5f:fd: c0:76:f3:23:ae:86:88:77:d2:fa:d4:a1:59:08:bf:3a:f4:2f: 6f:2c:2d:e0:e4:a0:04:68:fb:d4:93:78:10:db:b7:9b:64:78: 3c:f1:29:4c:90:87:66:1e:53:16:b9:76:36:b0:cd:db:c3:02: c5:c5:5f:6c:23:76:0b:c5:2d:83:6e:6e:14:df:56:8d:ad:20: 48:55:00:f5:8d:56:d5:02:fa:8c:19:09:5a:f6:1c:15:a7:74: 08:5c:76:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUwODA1MDEwNzM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNTk1Ny0zOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bh+kCc9U4xiop02y0eaE6TbpUmomgQ7safMXWAd+1/KwDGUl2dSq/QaWH9N Ze5kFJAs8sm1WM5ZJEGkLEN1k4PERDoWe9vHR0NxqZrngtfGjaZN2JtSZ2qU6I7x 92Pl9WHqp4S8Vpi2util5DRSl+U71ArABtQ/nROgi0EZIrrsY4jq0FziEZt9NQhl nlhrhO63TaEsyr+qxn96UH+ghB0MJ2yQegaYHYgbEs5w6Eux7BnXMWljOVgamo1+ n5L2Jq0guHDs4lnE/Hfb3s4jRayZ2kmTr90oDBSEWEbHASxVCp0fRw+2gsCH7vYA xKL/Zve2khGqbiPjNvzk5VGcGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/Gcm4R aSgqsY/fZt2jWF0ArBZKMB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAxODcvRjFFMkEzRjg1NzFDMTFFQ0JCNjNGRTgzQzRGOUFFMDIvODM4REYxQjA1 NzIwMTFFQzkwNUM3NzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqdgwDQYJKoZIhvcNAQELBQADggEBALGeMw8QpqHtR1xX cKsu/KLj6mdVcqtY8cOI/+6UVYLmi+juCZ7YY2uYxlCV229rMCKk6oQcIGtl4txi HBJdFrsv2G85n0Uvwu8HGre6/zCGCmqaV7hf5k535zUXRMB16PMf4KEkwXq1Y9Xl fDW64yfikdUK8sqSo0zIhvH7ArAAKXUxHtPFg/u5xqcATZEVhc4aF3a1aBDoSdZs Rw92Bahf/cB28yOuhoh30vrUoVkIvzr0L28sLeDkoARo+9STeBDbt5tkeDzxKUyQ h2YeUxa5djawzdvDAsXFX2wjdgvFLYNubhTfVo2tIEhVAPWNVtUC+owZCVr2HBWn dAhcdrA= -----END CERTIFICATE-----Generated at Sun Aug 10 19:02:12 2025 by rpki-client