$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa File: 98E572FC777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: lV2/2NW27xVZaBILThpNeuepTXhQgC2yA5suVSBt5Mg= Subject key identifier: B5:D2:6E:82:C8:94:34:23:2A:D9:DE:AE:0B:6E:4F:23:32:D4:44:2F Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 1987 Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa Signing time: Sat 02 Aug 2025 16:55:20 +0000 ROA not before: Sat 02 Aug 2025 16:55:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58462 IP address blocks: 103.23.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6535 (0x1987) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313, serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 2 16:55:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688e42f8-e709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f0:60:f0:77:6a:18:7c:ce:db:ce:8d:ae:5a: a8:f9:3d:de:74:22:a8:20:06:00:a0:83:cc:e9:92: e4:98:c3:bb:25:2c:ea:51:82:78:b4:06:72:8b:88: 44:a0:05:9d:a4:10:b6:f8:ac:76:19:f4:9e:0e:10: 8d:fc:57:f8:ad:57:9e:b2:a9:4a:44:b8:43:79:a3: 3c:5e:b7:43:12:a1:35:6d:68:3b:55:9b:04:bc:64: d7:1a:2c:f5:ad:60:75:61:45:cd:94:83:28:e4:a1: 0a:25:81:bb:50:d9:2a:93:8c:c6:c0:04:04:57:e0: 7d:81:2a:32:04:0e:6b:c5:ef:1c:55:b3:29:51:08: e0:3b:93:4e:28:2a:af:98:b3:82:6b:89:ea:c2:83: 5f:4c:35:32:08:d6:10:ab:45:3a:80:6a:da:00:3f: 80:a5:04:58:bc:2a:1d:07:9f:57:32:26:54:ea:1d: a7:97:92:a2:88:24:eb:51:6e:2f:60:05:38:2c:11: bb:32:2f:e6:ee:d2:91:1f:64:6e:26:1a:cf:cb:12: b9:1b:83:9f:b8:59:b8:41:d1:00:03:4d:4c:be:97: 7e:7c:8b:f0:4d:37:f6:5b:d8:0b:81:a8:32:08:84: 43:57:e4:07:4a:ab:35:72:de:cb:50:35:a1:c7:52: 6f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D2:6E:82:C8:94:34:23:2A:D9:DE:AE:0B:6E:4F:23:32:D4:44:2F X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.214.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:7d:f9:b5:74:92:60:77:74:08:48:bd:0c:26:10:2c:42:29: 4f:c9:98:60:ce:4f:7b:37:d2:02:06:59:05:f9:2f:e1:3b:21: a1:11:7a:06:72:0d:68:f2:cf:25:7c:25:80:5d:bf:29:63:4a: 0d:ce:d2:c1:9d:b8:35:e0:76:c2:7b:97:7b:b8:e3:c3:2c:b3: be:9a:b8:e6:fc:91:b4:8b:50:17:b0:ea:30:41:1a:ae:b6:7b: 83:39:06:13:3b:1c:6a:a4:65:61:72:d7:02:d7:d8:8e:77:ee: b4:06:a3:16:02:50:e6:3f:5c:80:ed:d9:c7:f7:7c:21:ee:a2: 24:31:b9:8a:2d:20:2f:e7:b7:61:7d:91:c6:f2:0e:0c:e6:e0: 95:40:17:51:33:96:fd:41:f6:4c:3d:86:79:15:95:fe:a5:35: 5d:a1:71:f8:8f:b0:64:ad:47:62:7a:3c:4f:03:ed:30:83:f5: af:08:0e:f0:d7:c8:bd:ca:f9:46:00:2e:5a:d5:fd:f5:3e:b8: e1:ab:29:b0:77:95:47:b2:df:12:8e:12:1b:15:84:30:61:20: fa:6f:14:78:31:fb:28:14:31:2b:a0:ef:9c:00:55:c5:b9:81: 5d:88:e5:3f:18:44:7e:8a:21:8e:27:51:67:6e:32:aa:00:72: 4a:34:69:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjUwODAyMTY1NTIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNDJmOC1lNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/Bg8HdqGHzO286Nrlqo+T3edCKoIAYAoIPM6ZLkmMO7JSzqUYJ4tAZyi4hE oAWdpBC2+Kx2GfSeDhCN/Ff4rVeesqlKRLhDeaM8XrdDEqE1bWg7VZsEvGTXGiz1 rWB1YUXNlIMo5KEKJYG7UNkqk4zGwAQEV+B9gSoyBA5rxe8cVbMpUQjgO5NOKCqv mLOCa4nqwoNfTDUyCNYQq0U6gGraAD+ApQRYvCodB59XMiZU6h2nl5KiiCTrUW4v YAU4LBG7Mi/m7tKRH2RuJhrPyxK5G4OfuFm4QdEAA01Mvpd+fIvwTTf2W9gLgagy CIRDV+QHSqs1ct7LUDWhx1JvYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLXSboLI lDQjKtnergtuTyMy1EQvMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOThFNTcyRkM3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF9YwDQYJKoZIhvcNAQELBQADggEBAC99+bV0kmB3dAhI vQwmECxCKU/JmGDOT3s30gIGWQX5L+E7IaERegZyDWjyzyV8JYBdvyljSg3O0sGd uDXgdsJ7l3u448Mss76auOb8kbSLUBew6jBBGq62e4M5BhM7HGqkZWFy1wLX2I53 7rQGoxYCUOY/XIDt2cf3fCHuoiQxuYotIC/nt2F9kcbyDgzm4JVAF1Ezlv1B9kw9 hnkVlf6lNV2hcfiPsGStR2J6PE8D7TCD9a8IDvDXyL3K+UYALlrV/fU+uOGrKbB3 lUey3xKOEhsVhDBhIPpvFHgx+ygUMSug75wAVcW5gV2I5T8YRH6KIY4nUWduMqoA cko0aVE= -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:42 2025 by rpki-client