$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/CE899F0A66C311F08BE17B42C4F9AE02.roa File: CE899F0A66C311F08BE17B42C4F9AE02.roa (raw, json) Hash identifier: XycQAAjR4EYRiIJrbriGrgbwnZEgUHk+CyGzEa7IeHA= Subject key identifier: FB:D7:37:17:34:9F:7D:78:23:B8:06:C6:75:D2:17:BB:CE:0F:1E:BD Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 076D Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/CE899F0A66C311F08BE17B42C4F9AE02.roa Signing time: Tue 22 Jul 2025 06:19:22 +0000 ROA not before: Tue 22 Jul 2025 06:19:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55884 IP address blocks: 103.8.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 21:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Jul 22 06:19:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=687f2d6a-56bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:14:24:31:d5:c1:1f:0e:ce:2c:ab:ab:0d: 96:4c:93:23:65:fd:9e:6e:0b:5b:85:5a:3c:14:87: ed:34:42:17:27:1c:a6:8a:6f:91:da:22:e5:1f:48: 08:69:26:11:df:9c:10:bd:43:1d:35:fe:79:8b:53: bd:c3:49:02:06:af:26:13:cb:05:6e:17:0b:fa:51: d7:b6:aa:02:b6:7c:d1:44:7a:ab:ff:26:c0:96:53: 2d:ec:f4:c6:fd:10:f7:f2:1d:b5:f0:2f:ed:30:51: 11:a3:65:db:03:5f:2b:12:3d:d6:b0:0a:ec:49:26: 44:e5:27:2f:7c:ef:6f:0a:bb:65:fc:51:73:b0:1b: aa:5a:c2:fe:dd:9f:4d:fc:8c:fd:17:e8:24:5d:a1: 99:3e:b6:c2:c1:19:64:b0:56:cb:77:f1:48:ce:9b: 9f:93:81:f0:5f:27:a9:bf:cc:e9:ba:47:26:1f:ef: 11:c9:47:bd:14:37:85:d7:9b:8c:12:b1:5c:5d:de: 4f:15:58:f0:dd:f0:7a:c0:ac:af:ce:3d:c6:ca:81: 13:fa:34:e2:16:0c:7d:56:24:27:17:2c:1b:db:5b: 84:29:80:42:1b:0d:52:b3:82:fe:7e:7e:df:60:82: 37:14:3a:fd:9e:bd:bc:fc:aa:3d:36:8a:4e:a5:9f: 55:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D7:37:17:34:9F:7D:78:23:B8:06:C6:75:D2:17:BB:CE:0F:1E:BD X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/CE899F0A66C311F08BE17B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.134.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:1b:c2:bf:9a:30:f4:5a:b4:28:f6:4f:d2:53:34:bb:46:53: 16:7c:63:85:08:4c:66:5d:63:3b:ae:a0:b2:c5:9e:ee:99:20: 8f:bd:b1:0b:ff:d5:56:5e:0a:3a:ab:6e:b3:75:32:32:c7:8f: 4b:5e:18:07:f8:1f:08:7f:d8:77:a0:f3:03:4f:ff:c8:4d:bb: 73:ee:88:fa:ef:79:8c:7e:44:e0:de:40:a0:a3:26:4a:ec:b2: c5:55:6a:0c:24:bb:52:cb:2a:93:69:2b:9f:b3:69:35:6d:93: aa:d2:37:d6:b1:7f:7d:b5:73:24:ec:08:6c:57:06:9d:02:ea: 91:d1:e2:f6:1e:7e:59:2f:4c:ed:18:3a:df:35:d1:fe:49:2d: 95:ff:1a:39:47:41:ba:59:ed:74:68:00:8d:49:ee:63:cb:c8: 63:17:6a:14:f6:41:0a:d5:48:6c:57:90:00:00:26:b6:2e:99: b4:5f:c1:cc:2f:07:b2:ed:da:1e:34:89:b4:eb:e0:1e:b8:99: da:dd:31:b2:38:ff:c7:f0:27:b1:bd:cd:7e:0d:d1:96:80:f3: 49:57:c9:12:b9:63:30:44:6c:e7:67:4c:bd:ce:9e:6d:5a:03: d9:92:b2:5b:ae:ae:7c:c0:8b:fb:b1:50:a3:af:61:42:2d:f8: cf:3f:6c:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNzIyMDYxOTIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmMmQ2YS01NmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K4UJDHVwR8Oziyrqw2WTJMjZf2ebgtbhVo8FIftNEIXJxymim+R2iLlH0gI aSYR35wQvUMdNf55i1O9w0kCBq8mE8sFbhcL+lHXtqoCtnzRRHqr/ybAllMt7PTG /RD38h218C/tMFERo2XbA18rEj3WsArsSSZE5ScvfO9vCrtl/FFzsBuqWsL+3Z9N /Iz9F+gkXaGZPrbCwRlksFbLd/FIzpufk4HwXyepv8zpukcmH+8RyUe9FDeF15uM ErFcXd5PFVjw3fB6wKyvzj3GyoET+jTiFgx9ViQnFywb21uEKYBCGw1Ss4L+fn7f YII3FDr9nr28/Ko9NopOpZ9VuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPvXNxc0 n314I7gGxnXSF7vODx69MB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE2MjAvMjE5ODE2QUEyOTNEMTFFQkJGQzE0NzcxQzRGOUFFMDIvQ0U4OTlGMEE2 NkMzMTFGMDhCRTE3QjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCIYwDQYJKoZIhvcNAQELBQADggEBAIsbwr+aMPRatCj2 T9JTNLtGUxZ8Y4UITGZdYzuuoLLFnu6ZII+9sQv/1VZeCjqrbrN1MjLHj0teGAf4 Hwh/2Heg8wNP/8hNu3PuiPrveYx+RODeQKCjJkrsssVVagwku1LLKpNpK5+zaTVt k6rSN9axf321cyTsCGxXBp0C6pHR4vYeflkvTO0YOt810f5JLZX/GjlHQbpZ7XRo AI1J7mPLyGMXahT2QQrVSGxXkAAAJrYumbRfwcwvB7Lt2h40ibTr4B64mdrdMbI4 /8fwJ7G9zX4N0ZaA80lXyRK5YzBEbOdnTL3Onm1aA9mSsluurnzAi/uxUKOvYUIt +M8/bC0= -----END CERTIFICATE-----Generated at Wed Jul 23 12:21:37 2025 by rpki-client