$ rpki-client -vvf rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/9A28A416AF5B11EE9B50AD27C4F9AE02.roa File: 9A28A416AF5B11EE9B50AD27C4F9AE02.roa (raw, json) Hash identifier: wDTtZzZ893Qnlcl8FBMxtSNu4K9Csx8VnqL0SdZB7wg= Subject key identifier: A4:9C:70:82:08:10:7B:51:9B:89:A5:BE:C2:BE:CF:92:8A:84:AB:56 Certificate issuer: /CN=A9196296/serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Certificate serial: 0120 Authority key identifier: 5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/9A28A416AF5B11EE9B50AD27C4F9AE02.roa Signing time: Thu 17 Jul 2025 05:09:31 +0000 ROA not before: Thu 17 Jul 2025 05:09:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137891 IP address blocks: 103.116.190.0/23 maxlen: 23 103.116.190.0/24 maxlen: 24 103.116.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196296, serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Validity Not Before: Jul 17 05:09:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6878858b-0bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:7b:5c:61:13:70:c9:0e:bd:8f:8a:5c:d9: 9a:cf:d7:37:5b:2c:fc:a4:cc:f5:f9:1b:5d:eb:29: 5a:f5:be:1c:6c:a0:7e:75:c3:77:a9:4d:db:9d:e8: 0b:f2:2b:07:ca:46:0b:9a:14:af:6e:1d:e9:ba:96: 19:00:e4:02:54:0c:e4:21:25:3b:4c:48:5b:8c:bb: 51:6e:e5:b1:e0:f0:9f:6a:f4:f6:c1:37:57:1b:bd: a9:62:3c:cc:e1:a9:a2:ca:b7:91:54:dc:11:24:f6: 53:ea:fc:a6:e4:8c:61:2a:40:51:cf:62:ff:c9:f6: b2:16:71:8b:36:06:3a:41:0c:aa:6c:25:e8:a2:f9: 05:0a:9e:1b:59:51:35:42:28:43:de:6c:07:9f:f8: 42:bb:09:aa:84:50:30:bf:f1:74:56:4d:e7:60:b4: 05:62:98:eb:82:a8:39:06:37:c6:8e:2d:b8:5e:9e: ce:a2:e0:85:05:77:69:4a:ad:0a:2a:8d:a5:e6:73: 35:62:d9:5d:84:07:ed:be:5c:98:8b:07:c0:83:1f: 5b:01:b6:af:c2:3d:74:d9:7d:bd:8b:38:7d:66:58: c5:49:45:87:92:38:71:70:97:e7:a7:27:1f:36:b1: b3:0d:cf:ea:b5:41:16:43:ab:51:2b:a6:a1:4e:5d: b7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9C:70:82:08:10:7B:51:9B:89:A5:BE:C2:BE:CF:92:8A:84:AB:56 X509v3 Authority Key Identifier: keyid:5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/9A28A416AF5B11EE9B50AD27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.190.0/23 Signature Algorithm: sha256WithRSAEncryption 12:89:09:48:64:2d:9a:e8:31:5d:52:fd:89:42:f8:a0:82:b5: 55:8d:90:6d:0a:dd:9c:a6:e7:0c:31:1c:c4:19:0d:0e:19:4b: 42:79:20:a5:a0:c5:42:32:8c:57:57:bd:19:70:46:60:16:68: 53:87:3f:64:96:f4:99:6c:98:21:1d:28:70:93:77:35:51:a4: 55:dc:5e:27:5f:2a:8d:3c:f9:af:bf:f4:79:3d:7f:44:e2:a0: b5:e4:dd:de:9a:1d:49:aa:f0:88:d6:26:ef:c7:47:7c:f5:5f: 3d:65:52:7a:65:6b:93:d3:63:24:01:fb:82:9d:a8:3f:02:d0: 83:4f:57:01:62:5d:8a:97:20:1f:38:dc:f7:bc:fc:70:9f:24: dc:37:08:31:1a:bb:61:cd:8d:1e:be:30:85:d4:38:8d:d0:f7: c5:2f:88:7b:a2:53:70:fd:b5:a6:ac:c6:6c:f2:17:0f:a7:fb: c3:f4:00:98:c1:ff:e9:9c:7c:44:e3:9f:28:78:c0:4e:27:6f: 3d:05:a2:af:e8:24:9c:36:1d:d4:73:d5:0c:bf:ef:53:2c:6b: 54:6e:f8:bf:a5:8a:c0:34:ac:aa:8b:ef:96:e7:35:3e:e6:e4: 0c:ee:47:58:56:bd:bd:88:26:fc:c4:41:db:c7:dc:16:9b:7f: 2c:e1:26:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYyOTYxMTAvBgNVBAUTKDVGREJENURGNTMyRDJDNTYyMDZGN0IxMTJFN0JCQjMw NTdBMzk5OTAwHhcNMjUwNzE3MDUwOTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4ODU4Yi0wYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Mh7XGETcMkOvY+KXNmaz9c3Wyz8pMz1+Rtd6yla9b4cbKB+dcN3qU3bnegL 8isHykYLmhSvbh3pupYZAOQCVAzkISU7TEhbjLtRbuWx4PCfavT2wTdXG72pYjzM 4amiyreRVNwRJPZT6vym5IxhKkBRz2L/yfayFnGLNgY6QQyqbCXoovkFCp4bWVE1 QihD3mwHn/hCuwmqhFAwv/F0Vk3nYLQFYpjrgqg5BjfGji24Xp7OouCFBXdpSq0K Ko2l5nM1YtldhAftvlyYiwfAgx9bAbavwj102X29izh9ZljFSUWHkjhxcJfnpycf NrGzDc/qtUEWQ6tRK6ahTl23/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKSccIII EHtRm4mlvsK+z5KKhKtWMB8GA1UdIwQYMBaAFF/b1d9TLSxWIG97ES57uzBXo5mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjI5Ni80MkEwQjcxQUFG NUIxMUVFQjYwRDA1MjdDNEY5QUUwMi9YOXZWMzFNdExGWWdiM3NSTG51N01GZWpt WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g5dlYzMU10TEZZZ2Izc1JMbnU3TUZlam1aQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYyOTYvNDJBMEI3MUFBRjVCMTFFRUI2MEQwNTI3QzRGOUFFMDIvOUEyOEE0MTZB RjVCMTFFRTlCNTBBRDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndL4wDQYJKoZIhvcNAQELBQADggEBABKJCUhkLZroMV1S /YlC+KCCtVWNkG0K3Zym5wwxHMQZDQ4ZS0J5IKWgxUIyjFdXvRlwRmAWaFOHP2SW 9JlsmCEdKHCTdzVRpFXcXidfKo08+a+/9Hk9f0TioLXk3d6aHUmq8IjWJu/HR3z1 Xz1lUnpla5PTYyQB+4KdqD8C0INPVwFiXYqXIB843Pe8/HCfJNw3CDEau2HNjR6+ MIXUOI3Q98UviHuiU3D9taasxmzyFw+n+8P0AJjB/+mcfETjnyh4wE4nbz0Foq/o JJw2HdRz1Qy/71Msa1Ru+L+lisA0rKqL75bnNT7m5AzuR1hWvb2IJvzEQdvH3Bab fyzhJtI= -----END CERTIFICATE-----Generated at Mon Aug 11 13:08:01 2025 by rpki-client