$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa File: D193920E709411E99F95933EC4F9AE02.roa (raw, json) Hash identifier: cGhnDxeygmjtWG8DkCbsMlX+1o7K6dnzIlHaIw6aiaM= Subject key identifier: 51:4C:1D:95:76:5F:71:EE:39:5A:93:04:82:EA:54:7C:20:57:30:D5 Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0F64 Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa Signing time: Wed 09 Jul 2025 14:52:16 +0000 ROA not before: Wed 09 Jul 2025 14:52:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139008 IP address blocks: 103.138.144.0/23 maxlen: 23 103.138.144.0/24 maxlen: 24 103.138.145.0/24 maxlen: 24 2001:df0:3f80::/48 maxlen: 48 2406:2c0::/32 maxlen: 32 2406:2c0:1100::/40 maxlen: 40 2406:2c0:1101::/48 maxlen: 48 2406:2c0:1102::/48 maxlen: 48 2406:2c0:110b::/48 maxlen: 48 2406:2c0:110e::/48 maxlen: 48 2406:2c0:1132::/48 maxlen: 48 2406:2c0:7100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3940 (0xf64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Jul 9 14:52:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686e8220-95f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9f:ab:5d:0e:d5:0c:9a:ed:f9:3d:7c:d6:b3: 61:00:15:0c:94:19:23:8d:8b:5b:e4:1b:3e:75:69: a1:6d:b8:3e:9f:7d:c4:56:16:55:e2:6c:3a:40:33: 22:cd:71:e1:45:ec:77:ef:e6:69:c9:b9:07:3a:6c: 6d:e3:09:6d:8f:5a:c8:db:88:47:34:3e:b4:7b:10: 2a:69:97:c6:cf:9b:2b:7f:2f:78:fc:07:e8:b5:17: 8d:9f:3a:e0:ab:41:cd:0a:16:6d:0c:7e:f2:16:2f: 74:d1:0a:98:78:75:5f:8d:1c:f0:5e:54:1d:b5:7e: 7a:e6:9e:10:ba:c6:27:7b:69:6a:b8:2e:7d:9f:0c: b6:20:cf:8e:6a:1f:c1:48:74:99:64:e8:83:37:a2: 0a:d3:d2:1b:81:09:02:08:8f:2c:98:2f:7f:99:ad: eb:66:c1:10:1c:2b:f2:f0:c6:18:ab:90:59:12:60: 05:11:88:b9:ea:7f:69:50:03:04:fc:ca:a8:5f:e2: 27:a8:02:41:3e:b0:00:3f:09:03:72:12:09:7b:20: 56:ce:46:9e:08:8c:b1:80:51:04:95:45:52:48:79: 1b:0e:79:aa:fa:6b:3e:6a:e4:34:2a:47:f3:b1:52: f9:2d:3d:c6:d8:b2:e0:4b:20:fa:e7:05:63:17:3f: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:4C:1D:95:76:5F:71:EE:39:5A:93:04:82:EA:54:7C:20:57:30:D5 X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.144.0/23 IPv6: 2001:df0:3f80::/48 2406:2c0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:35:cc:75:d5:51:4b:4e:2c:4c:4e:9c:8d:55:68:01:a5:31: 82:89:2d:89:6d:40:6a:50:08:4d:28:f0:f6:70:ca:81:4d:04: 34:79:af:de:1f:04:09:b4:55:c2:c4:d4:8a:1b:8d:e8:bf:72: 50:22:a4:d6:d7:f1:7f:9b:8b:1e:f9:fe:95:5e:6b:43:8f:a2: 6a:47:a0:aa:ee:29:dd:c6:ef:41:f6:7e:da:b2:9a:31:02:af: 47:5f:4b:0f:79:14:dc:70:29:66:eb:82:1e:6a:df:32:4d:b8: 64:ee:e7:2e:a2:ed:ba:51:e8:7b:8b:cf:fe:fa:49:a8:06:a5: e2:2c:b5:b9:37:cd:6c:1a:21:1d:be:44:9b:c6:72:1d:7b:18: 46:6f:7c:1b:7e:aa:16:dd:97:4a:80:68:3e:5a:9d:9b:4b:71: 92:54:cd:87:91:d7:b5:64:68:5d:bb:2e:22:04:e3:be:66:6d: 02:c8:aa:0d:3d:5f:04:f1:4f:12:ef:02:04:f2:5b:ad:dd:29: 41:45:08:6d:6b:96:2f:8f:16:8c:19:76:25:34:99:02:b3:7c: 49:74:7a:fe:05:30:de:43:da:da:88:dc:e5:13:5a:a8:ba:82: b7:36:40:b8:73:89:b2:a4:48:6a:5e:47:52:e5:0d:27:d2:9b: 2a:05:fe:81 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICD2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUwNzA5MTQ1MjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlODIyMC05NWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5+rXQ7VDJrt+T181rNhABUMlBkjjYtb5Bs+dWmhbbg+n33EVhZV4mw6QDMi zXHhRex37+ZpybkHOmxt4wltj1rI24hHND60exAqaZfGz5srfy94/AfotReNnzrg q0HNChZtDH7yFi900QqYeHVfjRzwXlQdtX565p4QusYne2lquC59nwy2IM+Oah/B SHSZZOiDN6IK09IbgQkCCI8smC9/ma3rZsEQHCvy8MYYq5BZEmAFEYi56n9pUAME /MqoX+InqAJBPrAAPwkDchIJeyBWzkaeCIyxgFEElUVSSHkbDnmq+ms+auQ0Kkfz sVL5LT3G2LLgSyD65wVjFz8WswIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFFFMHZV2 X3HuOVqTBILqVHwgVzDVMB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlCREYvRTcwRTBBOTg3MDkzMTFFOTgwQkQ3QzNEQzRGOUFFMDIvRDE5MzkyMEU3 MDk0MTFFOTlGOTU5MzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFnipAwFgQCAAIwEAMHACABDfA/gAMFACQGAsAwDQYJKoZI hvcNAQELBQADggEBAFo1zHXVUUtOLExOnI1VaAGlMYKJLYltQGpQCE0o8PZwyoFN BDR5r94fBAm0VcLE1Iobjei/clAipNbX8X+bix75/pVea0OPompHoKruKd3G70H2 ftqymjECr0dfSw95FNxwKWbrgh5q3zJNuGTu5y6i7bpR6HuLz/76SagGpeIstbk3 zWwaIR2+RJvGch17GEZvfBt+qhbdl0qAaD5anZtLcZJUzYeR17VkaF27LiIE475m bQLIqg09XwTxTxLvAgTyW63dKUFFCG1rli+PFowZdiU0mQKzfEl0ev4FMN5D2tqI 3OUTWqi6grc2QLhzibKkSGpeR1LlDSfSmyoF/oE= -----END CERTIFICATE-----Generated at Mon Aug 11 06:22:54 2025 by rpki-client