$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa File: FEDF0BA43E5111EF86CB780AC4F9AE02.roa (raw, json) Hash identifier: Xwu2cFcPAEo+elSKxorX+Sf443v4LqtlzkSNNtTquMc= Subject key identifier: 71:BC:EF:A3:49:64:B2:48:71:C9:48:A9:41:88:23:BD:64:E3:8B:D5 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3928 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:48 +0000 ROA not before: Fri 04 Jul 2025 14:50:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9454 IP address blocks: 43.247.104.0/22 maxlen: 22 103.229.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14632 (0x3928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea48-56bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:91:4e:b9:b2:c9:7a:88:b9:c1:b3:88:03: 51:b0:8e:d5:ab:ba:09:ff:4a:28:32:0d:1b:ff:6d: 73:b0:f3:9f:50:67:ea:54:70:3b:d8:60:62:fc:8e: a5:7d:a9:b4:57:06:48:b1:b7:50:ad:9f:f7:72:3f: ac:6c:a7:e4:80:21:8a:20:0f:cc:0b:cc:c6:65:52: df:1a:83:e5:af:4b:54:4e:ba:72:4a:da:08:e8:83: 58:b0:f9:2a:7b:0f:ab:0c:ab:23:fa:67:24:29:15: 4c:aa:4d:04:96:39:c3:f0:78:4c:d8:85:5c:ec:0c: 3f:88:a4:a5:49:ad:59:dd:71:55:66:d1:06:e8:08: 5e:14:18:57:db:82:85:f8:2a:bd:95:12:56:e0:01: 82:42:44:6d:42:50:f8:ad:20:8e:e0:ab:b5:0c:33: 93:27:5c:0c:1d:ea:90:6d:55:a1:d5:67:a3:24:0d: 65:7f:c6:8a:2a:77:dd:61:15:8e:d2:bb:0f:25:d9: 4c:b8:99:f2:60:1d:21:a5:43:3e:e3:c7:17:6d:11: 1e:27:c6:33:20:9c:c0:cd:eb:61:bb:01:53:26:d2: fb:51:50:e3:83:6f:06:c1:03:f6:71:34:63:b7:76: 8d:d5:11:85:76:20:44:f5:2a:15:16:7f:87:3b:bd: 71:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BC:EF:A3:49:64:B2:48:71:C9:48:A9:41:88:23:BD:64:E3:8B:D5 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FEDF0BA43E5111EF86CB780AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.104.0/22 103.229.156.0/22 Signature Algorithm: sha256WithRSAEncryption 18:d0:d6:61:6a:b8:12:d3:c3:e8:a1:ca:23:2a:62:40:f5:b8: 57:24:ff:bb:7a:48:c1:9b:70:49:40:8c:e7:c6:55:fd:de:8f: 67:55:4d:71:9f:9e:74:04:93:7c:6c:ea:6e:63:98:d5:d8:35: a8:20:a0:3b:2e:2f:84:db:2f:0e:71:1d:56:86:fd:a5:36:df: 15:d4:67:3e:54:e4:19:4f:d3:46:a4:dc:a5:02:d8:97:7d:a2: 49:7f:b5:26:a6:c4:d0:d3:d4:72:b0:15:14:19:fa:37:10:32: 51:ee:0d:e4:47:81:db:63:a3:cd:e8:d7:e4:f5:54:b1:4c:7d: b5:50:04:16:bf:fa:e6:7e:d0:91:4b:de:94:47:a3:31:fd:e7: 3f:2d:6f:77:fb:a9:a3:51:a2:17:3c:ec:17:ba:07:ee:f8:14: 81:d8:d1:5e:79:aa:47:8f:6a:87:41:ed:e3:cd:12:e5:55:df: f9:97:95:26:4a:4d:63:21:e2:9a:d3:a4:de:fc:5d:b5:4a:28: 52:aa:cf:9b:82:d0:e8:a5:a5:a7:a3:f0:bb:25:75:64:d7:8a: 22:03:31:6e:a6:3d:34:b0:fd:65:8f:f3:d5:d7:7c:84:58:1a: 33:81:15:69:db:dd:67:ec:c0:d3:a2:3e:32:53:56:15:07:1a: 31:34:87:8e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWE0OC01NmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQeRTrmyyXqIucGziANRsI7Vq7oJ/0ooMg0b/21zsPOfUGfqVHA72GBi/I6l fam0VwZIsbdQrZ/3cj+sbKfkgCGKIA/MC8zGZVLfGoPlr0tUTrpyStoI6INYsPkq ew+rDKsj+mckKRVMqk0EljnD8HhM2IVc7Aw/iKSlSa1Z3XFVZtEG6AheFBhX24KF +Cq9lRJW4AGCQkRtQlD4rSCO4Ku1DDOTJ1wMHeqQbVWh1WejJA1lf8aKKnfdYRWO 0rsPJdlMuJnyYB0hpUM+48cXbREeJ8YzIJzAzethuwFTJtL7UVDjg28GwQP2cTRj t3aN1RGFdiBE9SoVFn+HO71x4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHG876NJ ZLJIcclIqUGII71k44vVMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRkVERjBCQTQz RTUxMTFFRjg2Q0I3ODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr92gDBAJn5ZwwDQYJKoZIhvcNAQELBQADggEBABjQ1mFq uBLTw+ihyiMqYkD1uFck/7t6SMGbcElAjOfGVf3ej2dVTXGfnnQEk3xs6m5jmNXY NaggoDsuL4TbLw5xHVaG/aU23xXUZz5U5BlP00ak3KUC2Jd9okl/tSamxNDT1HKw FRQZ+jcQMlHuDeRHgdtjo83o1+T1VLFMfbVQBBa/+uZ+0JFL3pRHozH95z8tb3f7 qaNRohc87Be6B+74FIHY0V55qkePaodB7ePNEuVV3/mXlSZKTWMh4prTpN78XbVK KFKqz5uC0Oilpaej8LsldWTXiiIDMW6mPTSw/WWP89XXfIRYGjOBFWnb3WfswNOi PjJTVhUHGjE0h44= -----END CERTIFICATE-----Generated at Tue Jul 22 11:50:30 2025 by rpki-client