$ rpki-client -vvf rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/53F9A80E8C8C11F0877C6061C4F9AE02.roa File: 53F9A80E8C8C11F0877C6061C4F9AE02.roa (raw, json) Hash identifier: tHI2ZV2W30lsiHLJ0QkTh5JWa/tEoNDCdLp8gmfckPY= Subject key identifier: AB:BF:85:C2:75:19:C2:F9:B0:C8:B1:E0:16:7A:62:1B:11:DF:78:28 Certificate issuer: /CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Certificate serial: 0A82 Authority key identifier: 7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/53F9A80E8C8C11F0877C6061C4F9AE02.roa Signing time: Mon 08 Sep 2025 08:19:47 +0000 ROA not before: Mon 08 Sep 2025 08:19:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58895 IP address blocks: 103.87.192.0/24 maxlen: 24 103.87.193.0/24 maxlen: 24 103.87.195.0/24 maxlen: 24 203.96.168.0/24 maxlen: 24 203.96.169.0/24 maxlen: 24 203.96.170.0/24 maxlen: 24 203.96.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 19:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2690 (0xa82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142661, serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Validity Not Before: Sep 8 08:19:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68be91a3-a761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:72:75:58:55:f0:92:d2:2c:6f:5f:75:1e: 0a:ef:11:d7:b4:ba:ce:01:cb:d6:dd:fb:5a:89:6b: 68:91:5d:f5:c6:04:dc:01:62:ca:31:e5:64:95:2c: e2:fa:0c:1b:01:cc:f5:fb:68:aa:07:cd:c6:d3:d5: 8c:4d:93:6f:ca:05:1c:31:d2:95:93:e4:91:c0:6c: a2:d0:82:44:b2:6f:51:55:74:7b:3d:2d:06:50:9c: d5:59:5e:83:ce:81:bf:fb:9a:c2:ba:38:62:a2:04: 2b:f7:16:c0:4d:4b:3c:95:f4:c3:5d:db:a5:62:16: 17:1c:8e:5f:b8:db:e9:c5:50:79:77:3e:12:e6:6c: e0:62:94:7b:3a:72:ca:b8:db:de:f9:57:bf:3e:09: cb:72:b6:e2:38:72:ca:7a:f8:8b:68:e2:87:4b:25: b2:49:fe:48:a9:c7:0c:ad:aa:53:8e:e0:a8:dc:a7: b3:ac:e6:6b:75:80:4f:80:8b:54:c9:af:ed:8f:88: 74:7d:65:06:3e:44:1a:4d:03:d6:8c:27:e1:24:91: 9d:e4:22:a8:61:c9:97:f7:67:19:a8:da:1f:d2:c9: 03:b2:28:f0:7e:32:71:5a:29:75:3c:88:61:ff:4b: 5c:bd:f0:ea:b5:10:da:5a:8d:c6:20:ea:20:bf:2e: 69:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BF:85:C2:75:19:C2:F9:B0:C8:B1:E0:16:7A:62:1B:11:DF:78:28 X509v3 Authority Key Identifier: keyid:7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/53F9A80E8C8C11F0877C6061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.192.0/23 103.87.195.0/24 203.96.168.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:b2:1b:cc:7c:a0:03:68:cc:8a:41:fb:36:c1:4b:44:51:b1: 92:cb:07:ed:d9:58:de:2c:4a:fa:da:68:d6:b8:ea:ee:27:3b: d2:63:bd:1a:4e:82:40:8d:71:52:5c:49:be:71:a6:49:52:9a: 58:fa:74:7b:e4:35:55:2f:70:f9:ed:b1:8e:b6:d5:d7:85:f6: f1:98:c2:32:f7:20:87:78:a4:65:5a:9f:ad:4b:6c:0d:ea:27: c4:80:f1:97:bc:60:cc:95:34:08:64:30:1c:a3:fe:0b:43:76: 9e:60:36:c2:44:c1:62:e0:b5:3e:ac:30:84:1f:db:49:ed:3f: 0b:9a:d9:a9:11:93:13:59:83:5a:50:27:10:ec:50:22:86:26: 83:ef:37:2e:c1:60:08:01:36:26:c2:f9:60:e6:e4:63:07:cb: 0f:0c:9d:25:1f:b2:a7:13:46:40:f2:4a:6d:1c:71:ea:18:fd: d6:d3:77:82:3b:52:bf:eb:0c:27:65:33:f5:ef:5e:e8:cb:99: 38:1c:26:4b:66:9a:58:e9:af:2c:9f:e3:bf:09:1a:a4:39:3d: cb:cc:54:c7:88:47:c8:bd:75:b6:9a:01:13:10:9e:a4:0f:2e: 9c:f9:4f:de:79:05:46:dd:e2:b4:1b:10:a7:94:46:23:df:f0: 8e:4e:89:41 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI2NjExMTAvBgNVBAUTKDdBRTk2MjJGODM0Q0Y0QzZDRjVBRDFBOThBRjA3RDUw MTU0NUE0QkYwHhcNMjUwOTA4MDgxOTQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJlOTFhMy1hNzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHdydVhV8JLSLG9fdR4K7xHXtLrOAcvW3ftaiWtokV31xgTcAWLKMeVklSzi +gwbAcz1+2iqB83G09WMTZNvygUcMdKVk+SRwGyi0IJEsm9RVXR7PS0GUJzVWV6D zoG/+5rCujhiogQr9xbATUs8lfTDXdulYhYXHI5fuNvpxVB5dz4S5mzgYpR7OnLK uNve+Ve/PgnLcrbiOHLKeviLaOKHSyWySf5IqccMrapTjuCo3KezrOZrdYBPgItU ya/tj4h0fWUGPkQaTQPWjCfhJJGd5CKoYcmX92cZqNof0skDsijwfjJxWil1PIhh /0tcvfDqtRDaWo3GIOogvy5ppwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKu/hcJ1 GcL5sMix4BZ6YhsR33goMB8GA1UdIwQYMBaAFHrpYi+DTPTGz1rRqYrwfVAVRaS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjY2MS80Q0M3NzI3NjY5 QkMxMUVBQUYxQjlGNjlDNEY5QUUwMi9ldWxpTDROTTlNYlBXdEdwaXZCOVVCVkZw TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V1bGlMNE5NOU1iUFd0R3BpdkI5VUJWRnBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI2NjEvNENDNzcyNzY2OUJDMTFFQUFGMUI5RjY5QzRGOUFFMDIvNTNGOUE4MEU4 QzhDMTFGMDg3N0M2MDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnV8ADBABnV8MDBALLYKgwDQYJKoZIhvcNAQELBQADggEB AB2yG8x8oANozIpB+zbBS0RRsZLLB+3ZWN4sSvraaNa46u4nO9JjvRpOgkCNcVJc Sb5xpklSmlj6dHvkNVUvcPntsY621deF9vGYwjL3IId4pGVan61LbA3qJ8SA8Ze8 YMyVNAhkMByj/gtDdp5gNsJEwWLgtT6sMIQf20ntPwua2akRkxNZg1pQJxDsUCKG JoPvNy7BYAgBNibC+WDm5GMHyw8MnSUfsqcTRkDySm0cceoY/dbTd4I7Ur/rDCdl M/XvXujLmTgcJktmmljpryyf478JGqQ5PcvMVMeIR8i9dbaaARMQnqQPLpz5T955 BUbd4rQbEKeURiPf8I5OiUE= -----END CERTIFICATE-----Generated at Tue Sep 16 12:35:23 2025 by rpki-client