$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/42CD71AEE33511EC9EDB371BC4F9AE02.roa File: 42CD71AEE33511EC9EDB371BC4F9AE02.roa (raw, json) Hash identifier: WrNqwpKibajA317uV8R1n49/EqSR3J93tv1ZPGtLnSs= Subject key identifier: 27:33:5E:52:AD:E9:96:20:30:5E:42:D2:D7:1A:C7:D1:28:14:2E:11 Certificate issuer: /CN=A9188D0C/serialNumber=5B3B8BFB2C9F2CE883515FA3DCF9D1C0CFAD07A4 Certificate serial: 030A Authority key identifier: 5B:3B:8B:FB:2C:9F:2C:E8:83:51:5F:A3:DC:F9:D1:C0:CF:AD:07:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/42CD71AEE33511EC9EDB371BC4F9AE02.roa Signing time: Fri 01 Aug 2025 02:38:20 +0000 ROA not before: Fri 01 Aug 2025 02:38:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56264 IP address blocks: 103.189.6.0/24 maxlen: 24 103.189.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.crl rsync://rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D0C, serialNumber=5B3B8BFB2C9F2CE883515FA3DCF9D1C0CFAD07A4 Validity Not Before: Aug 1 02:38:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688c289b-39c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:be:9f:70:17:94:06:a4:a6:07:ec:96:1f:6d: 0b:50:f8:d8:62:a0:1c:fb:93:c4:19:6e:d9:90:ba: 0a:ec:75:b6:00:1f:7f:99:8c:ee:03:1c:cb:ec:9d: 5b:30:b9:2c:7c:50:a2:88:94:b2:03:a6:2e:99:09: 30:2f:52:38:59:ab:49:b8:c6:40:cf:7e:c3:e1:98: a5:42:11:6c:4e:40:37:57:e0:07:c4:af:29:ff:0b: e9:1d:1d:45:99:5c:97:0e:69:ae:12:21:33:63:73: 91:72:e0:cc:9a:96:30:c2:da:7b:75:02:51:ba:70: 4a:4c:06:ce:28:fc:55:3b:a5:fa:f8:c6:47:d0:93: 99:08:ff:74:3a:3f:08:02:9a:6a:ff:26:ed:46:eb: 52:14:c0:2f:dd:ef:55:1c:31:90:88:39:b7:86:5b: 6c:41:b1:51:9e:0f:63:d1:05:7d:5a:07:13:1f:f7: 37:dc:8f:ff:3f:df:13:38:b7:df:6b:9c:2f:09:c2: 0b:17:91:c5:6a:d2:6e:d6:b4:e0:80:b5:92:70:0f: 67:a7:75:d1:cd:f1:83:36:13:b7:a5:20:2e:e4:b6: 4d:14:12:48:b2:b7:d5:03:d0:eb:d8:6b:fa:35:84: 8d:92:f5:b3:7e:55:50:ff:8d:0d:f5:ff:8e:43:c4: 96:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:33:5E:52:AD:E9:96:20:30:5E:42:D2:D7:1A:C7:D1:28:14:2E:11 X509v3 Authority Key Identifier: keyid:5B:3B:8B:FB:2C:9F:2C:E8:83:51:5F:A3:DC:F9:D1:C0:CF:AD:07:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WzuL-yyfLOiDUV-j3PnRwM-tB6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D0C/BA86BA22E32E11EC9848507BC4F9AE02/42CD71AEE33511EC9EDB371BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.6.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:24:da:65:a3:0e:01:a5:27:6f:9d:cc:08:21:0a:75:8e:e1: be:83:a3:1d:04:06:e6:42:40:23:90:fb:a0:30:ce:78:34:ca: 02:6c:c3:67:fa:a6:50:51:f0:ed:a1:71:a8:03:e7:70:45:e9: c4:82:c7:88:ac:d0:8b:70:75:bb:d3:94:ed:2f:51:f1:6a:aa: aa:d2:98:8f:a3:45:8d:d7:63:20:4d:bd:31:3c:59:97:50:74: 1d:12:33:3c:7a:db:33:cc:98:27:da:ef:30:57:38:09:31:61: b2:91:73:23:62:28:03:78:ad:3d:4b:39:9b:01:06:cd:ae:8a: 17:ba:1a:d2:24:fe:f7:91:ec:b4:96:19:6d:18:69:9d:ef:9d: 25:77:e7:fe:89:ef:ea:f3:ff:b8:fb:cf:f4:aa:5c:15:1c:4e: cc:7f:a2:e4:72:28:59:a7:65:38:ce:d8:b3:37:3c:3f:73:9a: dc:65:0a:20:88:3e:8b:7b:cf:1a:38:74:fa:c7:45:21:58:f6: c0:88:5a:03:43:dd:73:de:45:86:d2:7d:78:3f:8c:b6:6a:ef: 94:a7:7b:d1:3c:9e:26:c5:c3:da:29:f0:03:c3:09:22:a1:bf: 05:8f:b4:d2:61:48:69:87:2a:87:b9:b1:39:15:18:dd:e2:74: 1e:fc:2c:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMEMxMTAvBgNVBAUTKDVCM0I4QkZCMkM5RjJDRTg4MzUxNUZBM0RDRjlEMUMw Q0ZBRDA3QTQwHhcNMjUwODAxMDIzODIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMjg5Yi0zOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb6fcBeUBqSmB+yWH20LUPjYYqAc+5PEGW7ZkLoK7HW2AB9/mYzuAxzL7J1b MLksfFCiiJSyA6YumQkwL1I4WatJuMZAz37D4ZilQhFsTkA3V+AHxK8p/wvpHR1F mVyXDmmuEiEzY3ORcuDMmpYwwtp7dQJRunBKTAbOKPxVO6X6+MZH0JOZCP90Oj8I Appq/ybtRutSFMAv3e9VHDGQiDm3hltsQbFRng9j0QV9WgcTH/c33I//P98TOLff a5wvCcILF5HFatJu1rTggLWScA9np3XRzfGDNhO3pSAu5LZNFBJIsrfVA9Dr2Gv6 NYSNkvWzflVQ/40N9f+OQ8SW1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCczXlKt 6ZYgMF5C0tcax9EoFC4RMB8GA1UdIwQYMBaAFFs7i/ssnyzog1Ffo9z50cDPrQek MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQwQy9CQTg2QkEyMkUz MkUxMUVDOTg0ODUwN0JDNEY5QUUwMi9XenVMLXl5ZkxPaURVVi1qM1BuUndNLXRC NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d6dUwteXlmTE9pRFVWLWozUG5Sd00tdEI2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhEMEMvQkE4NkJBMjJFMzJFMTFFQzk4NDg1MDdCQzRGOUFFMDIvNDJDRDcxQUVF MzM1MTFFQzlFREIzNzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvQYwDQYJKoZIhvcNAQELBQADggEBAA8k2mWjDgGlJ2+d zAghCnWO4b6Dox0EBuZCQCOQ+6Awzng0ygJsw2f6plBR8O2hcagD53BF6cSCx4is 0ItwdbvTlO0vUfFqqqrSmI+jRY3XYyBNvTE8WZdQdB0SMzx62zPMmCfa7zBXOAkx YbKRcyNiKAN4rT1LOZsBBs2uihe6GtIk/veR7LSWGW0YaZ3vnSV35/6J7+rz/7j7 z/SqXBUcTsx/ouRyKFmnZTjO2LM3PD9zmtxlCiCIPot7zxo4dPrHRSFY9sCIWgND 3XPeRYbSfXg/jLZq75Sne9E8nibFw9op8APDCSKhvwWPtNJhSGmHKoe5sTkVGN3i dB78LIA= -----END CERTIFICATE-----Generated at Sat Aug 9 15:09:38 2025 by rpki-client