$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/8A795CC866E711F0985D0751C4F9AE02.roa File: 8A795CC866E711F0985D0751C4F9AE02.roa (raw, json) Hash identifier: g1KuNxkFHwwpiwP+Lzl39JbGpSxNeMuhi4yzpFrKJZU= Subject key identifier: 36:6F:7F:2B:7A:B6:DA:67:2B:1D:4C:4C:5D:1D:B3:A1:18:20:7E:D3 Certificate issuer: /CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Certificate serial: 01AA Authority key identifier: 4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/8A795CC866E711F0985D0751C4F9AE02.roa Signing time: Tue 22 Jul 2025 10:35:09 +0000 ROA not before: Tue 22 Jul 2025 10:35:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 61317 IP address blocks: 103.213.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3C, serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Validity Not Before: Jul 22 10:35:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687f695d-caea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ef:bb:4d:8f:d6:92:fb:47:39:ee:54:c7:64: aa:b2:39:f7:9e:4b:71:62:a4:5a:9e:e3:b2:49:7f: a6:b9:f6:4f:10:67:72:7b:c0:f4:0e:bd:a6:3a:c7: 29:6e:52:26:5e:b9:c7:be:98:71:68:5f:9c:69:60: 5b:09:9f:28:0a:54:21:75:0a:c9:a5:e8:b9:a6:a9: 9f:32:c4:41:11:e2:dc:aa:38:ac:19:33:47:ee:e5: 53:90:0a:25:c5:38:76:ce:e6:c7:f0:4e:31:77:6e: c3:6a:c9:27:fb:e2:0c:f8:bf:34:5f:2e:2e:a5:14: 6d:eb:c3:74:3d:7d:96:88:67:c5:c8:48:da:00:a7: 70:e0:7a:a2:85:0a:9c:0a:f2:62:53:15:3a:9d:83: 12:4f:72:20:4c:b3:49:56:13:a2:ea:73:b9:44:79: 18:d1:e9:8a:83:19:b9:bd:73:66:f0:ad:34:74:7b: e8:85:62:9e:61:73:76:ab:57:a0:f2:d7:9c:9d:87: b7:2b:52:16:e2:d5:53:b3:50:92:bf:8b:5d:ed:45: 36:9a:d6:18:af:9f:34:8c:e9:a2:53:88:b6:15:9a: 93:68:c7:87:75:f0:22:11:9a:ff:40:97:e1:02:86: 6c:6a:a4:35:07:12:1b:cb:ad:8c:80:58:33:8c:40: 17:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6F:7F:2B:7A:B6:DA:67:2B:1D:4C:4C:5D:1D:B3:A1:18:20:7E:D3 X509v3 Authority Key Identifier: keyid:4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/8A795CC866E711F0985D0751C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.39.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:cd:6f:aa:ea:1e:15:12:1a:e2:34:1e:ad:1b:4a:a6:b4:5e: 4b:5b:4d:2f:91:88:da:c5:eb:1a:94:e6:e6:ed:7b:5e:3d:93: b6:49:a0:f0:52:df:7c:d7:e8:6e:57:57:7f:da:6b:39:5c:04: fd:42:52:39:6e:21:d7:db:5d:6a:53:0f:97:37:db:f9:15:30: 7a:33:39:bd:31:f9:f5:72:b9:c9:e3:1b:91:3d:ea:f0:42:6d: 12:3a:fe:58:85:d2:e5:f5:7b:ed:2d:e4:d0:03:6a:02:ca:52: de:84:7f:1d:2f:07:13:37:5e:2c:3d:b0:ca:cf:63:fb:dd:80: 5a:95:bd:61:70:b7:b8:60:18:73:ba:5f:fb:9e:5b:1b:f5:15: cc:3c:1d:1b:6b:c9:9f:3b:d8:36:92:78:55:92:8f:3e:ef:ef: a1:ee:56:36:8b:02:23:67:44:1d:40:3c:23:96:28:d4:04:1d: 89:e7:bc:5c:86:b3:fd:3d:d0:28:98:0d:a5:f3:0e:4e:b3:69: 65:30:1b:35:24:59:74:20:7e:17:df:18:67:9f:78:6d:56:93: 95:8a:7a:6a:a4:e2:65:2d:9f:ee:06:57:96:f0:d8:4a:28:60: 7f:0a:64:0e:b1:05:b4:4a:cf:fe:37:4e:e2:dc:bc:85:49:60: c6:de:96:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0MxMTAvBgNVBAUTKDRERUUwODM2RkEwRjdFRTkyQzJFNkE2QzE5ODAxNkRF OENGOEJGMTYwHhcNMjUwNzIyMTAzNTA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmNjk1ZC1jYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou+7TY/WkvtHOe5Ux2Sqsjn3nktxYqRanuOySX+mufZPEGdye8D0Dr2mOscp blImXrnHvphxaF+caWBbCZ8oClQhdQrJpei5pqmfMsRBEeLcqjisGTNH7uVTkAol xTh2zubH8E4xd27Daskn++IM+L80Xy4upRRt68N0PX2WiGfFyEjaAKdw4HqihQqc CvJiUxU6nYMST3IgTLNJVhOi6nO5RHkY0emKgxm5vXNm8K00dHvohWKeYXN2q1eg 8tecnYe3K1IW4tVTs1CSv4td7UU2mtYYr580jOmiU4i2FZqTaMeHdfAiEZr/QJfh AoZsaqQ1BxIby62MgFgzjEAX6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDZvfyt6 ttpnKx1MTF0ds6EYIH7TMB8GA1UdIwQYMBaAFE3uCDb6D37pLC5qbBmAFt6M+L8W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzQy8xMjcxNTdGMjA1 NkExMUVFQjg4NzAwMTNDNEY5QUUwMi9UZTRJTnZvUGZ1a3NMbXBzR1lBVzNvejR2 eFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlNElOdm9QZnVrc0xtcHNHWUFXM296NHZ4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0MvMTI3MTU3RjIwNTZBMTFFRUI4ODcwMDEzQzRGOUFFMDIvOEE3OTVDQzg2 NkU3MTFGMDk4NUQwNzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1ScwDQYJKoZIhvcNAQELBQADggEBAB/Nb6rqHhUSGuI0 Hq0bSqa0XktbTS+RiNrF6xqU5ubte149k7ZJoPBS33zX6G5XV3/aazlcBP1CUjlu IdfbXWpTD5c32/kVMHozOb0x+fVyucnjG5E96vBCbRI6/liF0uX1e+0t5NADagLK Ut6Efx0vBxM3Xiw9sMrPY/vdgFqVvWFwt7hgGHO6X/ueWxv1Fcw8HRtryZ872DaS eFWSjz7v76HuVjaLAiNnRB1APCOWKNQEHYnnvFyGs/090CiYDaXzDk6zaWUwGzUk WXQgfhffGGefeG1Wk5WKemqk4mUtn+4GV5bw2EooYH8KZA6xBbRKz/43TuLcvIVJ YMbello= -----END CERTIFICATE-----Generated at Sun Aug 10 19:55:18 2025 by rpki-client