$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/31F9C990668B11F0B10A9677C4F9AE02.roa File: 31F9C990668B11F0B10A9677C4F9AE02.roa (raw, json) Hash identifier: K71+YfyZb/sq1ejJDvO1hCnjvjzaiRU1ev/4lLqwtW0= Subject key identifier: 31:C5:3A:96:90:7E:97:C5:90:A6:2D:E4:02:E0:34:34:79:9F:DA:7E Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: 5F Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/31F9C990668B11F0B10A9677C4F9AE02.roa Signing time: Mon 21 Jul 2025 23:34:07 +0000 ROA not before: Mon 21 Jul 2025 23:34:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 11870 IP address blocks: 103.44.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Jul 21 23:34:07 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=687ece6f-05c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:65:e3:af:42:64:f1:23:2f:05:17:df:d1: 09:ea:0b:d6:93:df:45:95:1c:23:33:a2:9c:dc:82: 87:92:ac:28:5e:82:d7:a0:62:db:54:94:4a:45:b7: 5b:7e:76:9f:3f:cc:18:ba:42:2a:ad:f5:9e:d6:b7: 00:e3:a3:b3:a1:40:1f:aa:81:f7:68:af:d0:dc:49: 94:94:5d:a0:3c:be:bd:2b:76:67:03:d0:5f:6a:3b: 67:92:16:9c:48:81:c2:d9:1f:81:9c:fe:34:0a:a4: 2c:9b:e7:7d:61:eb:e9:8a:8c:80:07:dc:b9:34:a5: 39:64:26:73:51:7d:80:c8:8c:fa:10:3c:51:0b:2c: 30:87:d4:ca:4a:5c:db:a1:d4:2a:0e:ee:94:2d:5a: 95:36:ce:6b:7b:16:c6:27:b0:e7:18:87:d2:02:2b: ee:fc:9b:b5:40:e8:87:7b:17:14:88:05:b3:a6:af: 1e:da:c5:bd:88:b4:42:ec:76:d2:d2:64:20:d9:34: 61:5f:54:c0:2f:f6:32:76:07:7a:79:d4:b5:32:a7: d6:ea:05:4a:1a:d0:a8:a6:70:3c:03:3b:57:bb:10: 19:ba:de:13:c9:e4:5e:a6:94:ca:99:e7:3f:49:50: 8e:99:8c:b9:04:de:ac:45:18:32:22:ab:65:26:7c: 5d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C5:3A:96:90:7E:97:C5:90:A6:2D:E4:02:E0:34:34:79:9F:DA:7E X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/31F9C990668B11F0B10A9677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.17.0/24 Signature Algorithm: sha256WithRSAEncryption aa:c0:85:8a:22:ac:a7:60:31:ba:f6:1f:66:70:64:46:25:f8: 87:ae:3a:e2:f2:22:ec:2f:41:df:d3:0d:6e:eb:12:25:a5:8b: 1f:90:30:2d:28:ed:72:6f:ed:1f:96:c0:6d:ed:49:8f:d4:b8: e8:fb:1e:a9:e8:9c:00:79:f7:bb:97:de:c5:fb:0c:07:00:29: 0c:0c:35:ab:dd:2a:1b:6e:56:bb:53:d0:80:18:0d:93:8f:bf: c4:18:3e:1c:84:a9:52:d4:dc:34:c9:96:f1:fd:0b:2b:c4:fc: 90:83:57:46:24:72:3a:df:31:f0:42:2a:58:74:a0:67:f4:81: 2a:12:65:ea:9a:be:24:8c:66:17:1b:e0:f9:16:0b:83:77:78: 93:7b:3b:7a:75:3d:57:2a:98:31:42:a3:ec:19:08:30:42:59: 14:57:60:61:2b:05:cc:51:04:1c:5f:74:89:53:3a:b7:3a:71: 83:e1:37:6b:dd:95:2c:a0:37:47:02:39:1e:13:c7:c9:6a:fd: 70:76:4a:15:01:cc:f1:b0:b8:da:85:79:3a:04:4d:be:c1:bc: c7:47:53:36:4b:e2:73:ab:aa:61:80:7d:13:0f:2b:64:14:4a: f7:b4:5f:1d:e7:cd:81:9f:e2:d8:14:32:c5:23:78:ad:51:e4: da:ad:79:c6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEE0NjExMC8GA1UEBRMoQTg4RUUyM0ZGOEQ3MDgyOENFREJDNzAxRTc4QzgwNzQ3 RkZDMTFDQTAeFw0yNTA3MjEyMzM0MDdaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2VjZTZmLTA1YzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ1GXjr0Jk8SMvBRff0QnqC9aT30WVHCMzopzcgoeSrChegtegYttUlEpFt1t+ dp8/zBi6Qiqt9Z7WtwDjo7OhQB+qgfdor9DcSZSUXaA8vr0rdmcD0F9qO2eSFpxI gcLZH4Gc/jQKpCyb531h6+mKjIAH3Lk0pTlkJnNRfYDIjPoQPFELLDCH1MpKXNuh 1CoO7pQtWpU2zmt7FsYnsOcYh9ICK+78m7VA6Id7FxSIBbOmrx7axb2ItELsdtLS ZCDZNGFfVMAv9jJ2B3p51LUyp9bqBUoa0KimcDwDO1e7EBm63hPJ5F6mlMqZ5z9J UI6ZjLkE3qxFGDIiq2UmfF0jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMcU6lpB+ l8WQpi3kAuA0NHmf2n4wHwYDVR0jBBgwFoAUqI7iP/jXCCjO28cB54yAdH/8Ecow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4QTQ2L0Q2NEU1QTdFREM4 NDExRUZCOTA4NTAzQkM0RjlBRTAyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUk3aVBfalhDQ2pPMjhjQjU0eUFkSF84RWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEE0Ni9ENjRFNUE3RURDODQxMUVGQjkwODUwM0JDNEY5QUUwMi8zMUY5Qzk5MDY2 OEIxMUYwQjEwQTk2NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcsETANBgkqhkiG9w0BAQsFAAOCAQEAqsCFiiKsp2AxuvYf ZnBkRiX4h6464vIi7C9B39MNbusSJaWLH5AwLSjtcm/tH5bAbe1Jj9S46Pseqeic AHn3u5fexfsMBwApDAw1q90qG25Wu1PQgBgNk4+/xBg+HISpUtTcNMmW8f0LK8T8 kINXRiRyOt8x8EIqWHSgZ/SBKhJl6pq+JIxmFxvg+RYLg3d4k3s7enU9VyqYMUKj 7BkIMEJZFFdgYSsFzFEEHF90iVM6tzpxg+E3a92VLKA3RwI5HhPHyWr9cHZKFQHM 8bC42oV5OgRNvsG8x0dTNkvic6uqYYB9Ew8rZBRK97RfHefNgZ/i2BQyxSN4rVHk 2q15xg== -----END CERTIFICATE-----Generated at Mon Aug 11 01:53:58 2025 by rpki-client