$ rpki-client -vvf rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa File: 688DBA84577911EE8A10F47BC4F9AE02.roa (raw, json) Hash identifier: lw98bEtKYAV3W3eLzVIhHAUrtXOXdYQymX4EcxFqPzw= Subject key identifier: CD:2F:A6:2F:72:AB:52:B8:25:07:4E:FB:F4:31:43:79:51:E0:A1:6A Certificate issuer: /CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Certificate serial: 0159 Authority key identifier: 98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa Signing time: Sat 19 Jul 2025 04:39:58 +0000 ROA not before: Sat 19 Jul 2025 04:39:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 1221 IP address blocks: 103.226.244.0/24 maxlen: 24 103.226.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190EF5, serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Validity Not Before: Jul 19 04:39:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687b219e-39ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:63:32:23:79:93:99:f9:e0:8d:28:c0:53:a5: 78:9a:42:58:4f:48:49:ee:ca:fd:0e:57:b9:b7:25: 55:c3:6e:e7:3f:11:d0:12:58:2c:65:22:6d:46:9a: 64:5d:52:20:25:83:6e:53:ea:ec:de:c4:b8:38:0a: 5b:3a:ee:a1:8f:0a:31:83:01:97:47:d5:4f:13:1a: 7f:c1:a7:75:cc:ce:c1:86:66:0a:a5:0d:50:91:4f: 99:1c:37:02:23:c4:00:97:4b:b0:e8:ef:63:ca:46: 84:89:3c:a4:23:29:c3:2b:44:48:06:13:38:87:2f: c6:ed:cb:b1:fe:e9:6d:54:96:be:9b:d1:0f:50:2f: 8c:a1:40:c9:ca:b8:cf:e4:e1:dc:2e:97:27:3c:b9: cd:12:3a:bc:01:06:d7:5a:84:a3:e4:d7:4b:db:36: a0:3a:f2:c2:6f:f8:c8:61:16:30:0a:77:2c:2d:1e: e3:6d:56:be:a0:9a:1c:53:37:ef:72:7c:27:36:30: 77:04:8a:25:7a:8a:6f:e0:da:1c:e2:2b:0b:a9:ba: 34:02:14:31:73:ea:60:5b:63:69:91:41:73:a6:eb: 64:b5:9b:d2:73:52:f2:be:f3:08:76:95:75:81:44: 22:a5:2d:79:d3:07:41:2b:a8:76:e3:44:07:48:c1: a7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2F:A6:2F:72:AB:52:B8:25:07:4E:FB:F4:31:43:79:51:E0:A1:6A X509v3 Authority Key Identifier: keyid:98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.244.0/23 Signature Algorithm: sha256WithRSAEncryption 29:7f:f4:fa:16:5e:7b:dd:e8:a9:d6:81:9f:24:a2:78:50:ea: ed:b6:1a:8e:5c:ad:be:56:48:81:67:a4:a7:9a:04:c1:05:8e: 62:f0:b4:26:7a:eb:d8:3c:91:68:75:4a:f6:9b:05:4e:29:75: fc:c8:24:86:5b:30:08:14:08:a1:bc:0b:64:65:47:b1:dc:da: 30:5a:e4:98:da:b8:4e:99:7d:7e:c7:bc:5f:2b:d4:c9:07:e4: 03:a2:c7:dc:00:ea:d9:5a:58:2c:9a:98:54:4d:8f:16:90:fc: 63:b3:56:69:ee:1d:7e:1d:72:2d:06:0c:2b:91:50:07:8b:70: c0:77:70:d8:04:da:94:fe:c1:dc:11:6d:98:4e:60:fc:30:dd: c6:44:41:f0:27:6d:26:d2:04:a3:93:7e:92:c6:aa:32:40:e4: 39:22:27:ea:4f:59:91:b4:7f:85:58:82:b9:98:7b:df:97:ac: 2c:35:bd:45:db:6a:81:48:36:67:e4:e5:91:80:56:af:a8:6f: 2c:89:15:73:ce:49:79:6c:fc:6f:83:46:e4:08:38:72:b2:65: dd:97:8d:a2:c6:f9:38:ca:9b:8c:af:1c:8f:a1:39:64:50:f1: 72:bb:65:b2:0e:68:4a:9c:0f:78:ac:7d:86:96:51:8b:52:24: 73:f1:42:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBFRjUxMTAvBgNVBAUTKDk4RjRFRDFFQTU2RUZFMzdDQTEzNEY4NzZBOTY1RjJB QzZGQTM3NDgwHhcNMjUwNzE5MDQzOTU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdiMjE5ZS0zOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2MyI3mTmfngjSjAU6V4mkJYT0hJ7sr9Dle5tyVVw27nPxHQElgsZSJtRppk XVIgJYNuU+rs3sS4OApbOu6hjwoxgwGXR9VPExp/wad1zM7BhmYKpQ1QkU+ZHDcC I8QAl0uw6O9jykaEiTykIynDK0RIBhM4hy/G7cux/ultVJa+m9EPUC+MoUDJyrjP 5OHcLpcnPLnNEjq8AQbXWoSj5NdL2zagOvLCb/jIYRYwCncsLR7jbVa+oJocUzfv cnwnNjB3BIoleopv4Noc4isLqbo0AhQxc+pgW2NpkUFzputktZvSc1LyvvMIdpV1 gUQipS150wdBK6h240QHSMGnRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM0vpi9y q1K4JQdO+/QxQ3lR4KFqMB8GA1UdIwQYMBaAFJj07R6lbv43yhNPh2qWXyrG+jdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEVGNS85NDA2NjI4RTU3 NzgxMUVFOENERjg1N0FDNEY5QUUwMi9tUFR0SHFWdV9qZktFMC1IYXBaZktzYjZO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21QVHRIcVZ1X2pmS0UwLUhhcFpmS3NiNk4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBFRjUvOTQwNjYyOEU1Nzc4MTFFRThDREY4NTdBQzRGOUFFMDIvNjg4REJBODQ1 Nzc5MTFFRThBMTBGNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn4vQwDQYJKoZIhvcNAQELBQADggEBACl/9PoWXnvd6KnW gZ8konhQ6u22Go5crb5WSIFnpKeaBMEFjmLwtCZ669g8kWh1SvabBU4pdfzIJIZb MAgUCKG8C2RlR7Hc2jBa5JjauE6ZfX7HvF8r1MkH5AOix9wA6tlaWCyamFRNjxaQ /GOzVmnuHX4dci0GDCuRUAeLcMB3cNgE2pT+wdwRbZhOYPww3cZEQfAnbSbSBKOT fpLGqjJA5DkiJ+pPWZG0f4VYgrmYe9+XrCw1vUXbaoFINmfk5ZGAVq+obyyJFXPO SXls/G+DRuQIOHKyZd2XjaLG+TjKm4yvHI+hOWRQ8XK7ZbIOaEqcD3isfYaWUYtS JHPxQqI= -----END CERTIFICATE-----Generated at Sun Jul 20 06:35:07 2025 by rpki-client