$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/A4FA29BC750411F09F0F3145C4F9AE02.roa File: A4FA29BC750411F09F0F3145C4F9AE02.roa (raw, json) Hash identifier: eq3Foq5M9QUghcS91tb93v1XHbNde25fjNDc1FX1j6w= Subject key identifier: 23:D9:D2:E5:D5:D3:25:04:DD:CC:13:15:2A:91:64:B2:61:35:D9:E8 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 0138 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/A4FA29BC750411F09F0F3145C4F9AE02.roa Signing time: Sat 09 Aug 2025 09:38:46 +0000 ROA not before: Sat 09 Aug 2025 09:38:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135523 IP address blocks: 103.101.232.0/24 maxlen: 24 103.165.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 05:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Aug 9 09:38:46 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68971725-cca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:cc:06:5b:51:a7:09:3e:95:62:53:ae:c9: eb:dc:96:e8:5d:84:34:28:2e:49:73:40:85:94:af: d6:0a:06:01:ca:07:0e:3e:28:6a:da:2e:e9:f6:b9: 24:82:49:0a:41:fc:45:c4:fb:71:3a:89:d5:de:d9: c9:d3:0f:d3:fa:b5:2a:33:fb:90:35:d5:e8:ff:a7: 96:6a:f5:aa:76:97:c4:be:61:2c:e5:a2:34:f5:d9: 5a:f8:04:f8:1e:1b:81:d8:2d:ce:08:18:a3:ad:1f: 09:e3:06:d2:6b:16:88:f3:4b:8c:10:47:bf:f2:27: d1:2c:cd:81:b3:27:33:6e:3b:a7:cb:c0:18:98:a1: 49:4a:d9:7d:09:d5:12:f0:22:0c:67:1a:55:5f:48: 61:76:53:cf:91:fb:f1:fc:12:8a:70:de:19:c9:2d: 15:44:fe:bd:7b:ba:62:b7:27:3a:71:04:22:8b:3a: d8:eb:ed:da:b8:43:36:6d:d6:2a:75:1c:50:36:4c: 32:98:b1:02:20:d7:26:da:99:aa:52:2f:05:15:c1: ea:74:88:17:e4:5f:b6:59:36:fb:83:2c:ca:07:5c: 4d:7c:a3:17:1e:02:41:f8:ff:ea:ca:52:ec:18:99: 7b:46:12:d2:b5:21:6d:4c:d8:05:6d:81:de:e1:34: 66:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D9:D2:E5:D5:D3:25:04:DD:CC:13:15:2A:91:64:B2:61:35:D9:E8 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/A4FA29BC750411F09F0F3145C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.232.0/24 103.165.176.0/24 Signature Algorithm: sha256WithRSAEncryption 94:20:69:7d:ad:a2:3e:f7:e3:97:c9:f1:66:0a:ae:89:8e:b5: 85:fc:72:54:99:0d:33:7f:61:08:9e:5f:15:3b:e1:28:c2:d9: b5:83:c9:18:f5:04:1b:ee:2c:c6:ea:d1:00:c4:fa:bc:a2:37: 55:98:36:78:74:e9:34:68:3c:46:31:d2:0f:14:95:74:5c:4c: b8:c8:da:64:5d:5b:9a:4f:f8:80:74:35:03:cd:31:27:0b:12: 93:53:22:e2:d9:c7:60:9e:a5:f1:cb:57:4f:f1:77:5a:5c:a7: 57:e1:19:fe:bc:34:a2:3d:51:16:0a:26:86:ba:40:e0:ca:2f: 95:fd:6b:d3:6d:40:c8:87:7f:38:a0:cd:ed:2c:16:20:c7:31: b3:cf:7d:4e:6e:80:ec:bb:48:22:fe:97:8b:58:58:14:c3:10: 62:f9:12:22:7e:44:19:45:c5:ef:e2:78:ff:cc:05:ca:d8:b7: 0d:69:69:c9:bd:7e:f3:6d:9a:78:90:b7:b0:40:47:a0:d6:5e: 47:6d:76:cb:d4:94:df:0e:ae:27:d8:5e:15:c1:40:24:fa:d5: 06:ca:38:8a:92:cb:9b:f6:26:33:cc:62:63:9d:a7:cf:5c:8c: a0:c0:9f:c5:33:14:e4:6b:3e:60:31:30:f2:00:d6:3d:d0:9b: f4:5a:bd:42 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjUwODA5MDkzODQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk3MTcyNS1jY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt7MBltRpwk+lWJTrsnr3JboXYQ0KC5Jc0CFlK/WCgYBygcOPihq2i7p9rkk gkkKQfxFxPtxOonV3tnJ0w/T+rUqM/uQNdXo/6eWavWqdpfEvmEs5aI09dla+AT4 HhuB2C3OCBijrR8J4wbSaxaI80uMEEe/8ifRLM2Bsyczbjuny8AYmKFJStl9CdUS 8CIMZxpVX0hhdlPPkfvx/BKKcN4ZyS0VRP69e7pityc6cQQiizrY6+3auEM2bdYq dRxQNkwymLECINcm2pmqUi8FFcHqdIgX5F+2WTb7gyzKB1xNfKMXHgJB+P/qylLs GJl7RhLStSFtTNgFbYHe4TRmxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCPZ0uXV 0yUE3cwTFSqRZLJhNdnoMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FDQTgvRjk3MTRBRTZBQUZBMTFFRUEyMjFFNzJFQzRGOUFFMDIvQTRGQTI5QkM3 NTA0MTFGMDlGMEYzMTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZegDBABnpbAwDQYJKoZIhvcNAQELBQADggEBAJQgaX2t oj7345fJ8WYKromOtYX8clSZDTN/YQieXxU74SjC2bWDyRj1BBvuLMbq0QDE+ryi N1WYNnh06TRoPEYx0g8UlXRcTLjI2mRdW5pP+IB0NQPNMScLEpNTIuLZx2CepfHL V0/xd1pcp1fhGf68NKI9URYKJoa6QODKL5X9a9NtQMiHfzigze0sFiDHMbPPfU5u gOy7SCL+l4tYWBTDEGL5EiJ+RBlFxe/ieP/MBcrYtw1pacm9fvNtmniQt7BAR6DW XkdtdsvUlN8OrifYXhXBQCT61QbKOIqSy5v2JjPMYmOdp89cjKDAn8UzFORrPmAx MPIA1j3Qm/RavUI= -----END CERTIFICATE-----Generated at Wed Aug 13 17:57:37 2025 by rpki-client