$ rpki-client -vvf rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/8426E9543A8211EF9F1ED16FC4F9AE02.roa File: 8426E9543A8211EF9F1ED16FC4F9AE02.roa (raw, json) Hash identifier: Cmiqcg21C+LyhA2gAp/ZQEO6k8THpOIRSGDyZ2gTNpQ= Subject key identifier: 21:A9:14:8F:51:F7:FA:1B:D6:70:C6:6C:84:A9:C2:E2:A5:36:BE:5F Certificate issuer: /CN=A9193552/serialNumber=9B516C0516629EFB138EB0E685B05BA00EBF4E7F Certificate serial: BD Authority key identifier: 9B:51:6C:05:16:62:9E:FB:13:8E:B0:E6:85:B0:5B:A0:0E:BF:4E:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1FsBRZinvsTjrDmhbBboA6_Tn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/8426E9543A8211EF9F1ED16FC4F9AE02.roa Signing time: Sat 05 Jul 2025 06:12:39 +0000 ROA not before: Sat 05 Jul 2025 06:12:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136787 IP address blocks: 103.187.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/m1FsBRZinvsTjrDmhbBboA6_Tn8.crl rsync://rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/m1FsBRZinvsTjrDmhbBboA6_Tn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1FsBRZinvsTjrDmhbBboA6_Tn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193552, serialNumber=9B516C0516629EFB138EB0E685B05BA00EBF4E7F Validity Not Before: Jul 5 06:12:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868c256-bb02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:40:d2:48:7b:f3:54:39:c9:1a:07:70:db:b3: 43:b1:de:b1:df:ca:72:a6:12:29:2f:53:69:9e:b6: b7:af:d4:94:ae:40:5e:f7:d4:5b:4e:ec:b7:66:20: 3b:de:e3:1e:51:26:df:98:e9:19:8d:d0:80:fd:ca: 6c:36:56:c9:cb:dd:96:18:92:7f:b4:50:07:0f:dc: ce:8d:74:ac:ad:c5:b9:40:d8:58:03:f1:11:b1:b7: 65:fe:5d:35:ac:39:ef:22:51:f2:7d:97:e7:53:6a: 22:a8:28:03:19:e1:95:0c:e8:1b:60:0e:2a:5c:d4: 3e:fd:27:95:20:aa:5c:ff:1e:81:de:36:97:fd:9f: 44:35:3c:a3:bc:a3:80:3c:d7:e5:5c:f1:72:88:e0: 9c:14:d3:c2:e9:2c:03:59:46:3c:07:aa:bc:d4:49: ec:dd:07:ed:de:27:d1:04:34:dc:f3:dc:e4:1b:52: f9:d0:ca:d9:4b:28:ce:fe:33:08:8e:ba:2f:ac:98: 20:f6:ed:bd:47:1c:2e:96:79:67:d1:40:84:a8:7e: 86:d2:e3:79:f8:b6:60:59:68:f6:b3:60:81:d7:ea: c7:90:0b:3b:a7:c2:1a:bf:ba:5f:2c:6d:b0:9b:bc: bc:98:a7:10:8f:49:26:0a:ef:54:21:82:37:92:f6: b0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A9:14:8F:51:F7:FA:1B:D6:70:C6:6C:84:A9:C2:E2:A5:36:BE:5F X509v3 Authority Key Identifier: keyid:9B:51:6C:05:16:62:9E:FB:13:8E:B0:E6:85:B0:5B:A0:0E:BF:4E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/m1FsBRZinvsTjrDmhbBboA6_Tn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1FsBRZinvsTjrDmhbBboA6_Tn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193552/421215843A8211EFA2951C6FC4F9AE02/8426E9543A8211EF9F1ED16FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.243.0/24 Signature Algorithm: sha256WithRSAEncryption a1:20:f0:de:1e:a9:5a:ce:0a:4d:d5:44:36:54:58:2b:b7:68: 89:c5:dd:e3:9e:68:20:86:6a:4c:a5:71:8a:5e:27:22:c1:14: 3f:a7:0f:12:39:e4:a7:b0:12:9a:7d:af:0e:45:a2:ca:18:af: a2:45:69:3a:e7:b4:35:2a:99:22:15:57:92:95:2a:ac:3b:fe: fd:1e:f6:78:72:7f:ed:c4:32:e4:e5:e8:27:e2:e9:a6:18:d1: 02:3d:49:ad:4d:f6:aa:c9:f5:14:57:38:cc:ce:0c:3f:4f:81: 06:2d:fe:4f:96:1a:37:10:6d:c6:28:e9:b8:a8:51:93:cc:62: 3f:1c:91:57:98:c4:12:21:fe:ac:5c:7d:51:e3:c5:01:34:48: 4a:ff:e7:99:ec:fe:81:7e:1c:d2:10:52:77:6b:f7:90:6a:57: 2f:6b:c9:f1:e4:55:f3:7a:69:54:f5:d9:b1:5a:2c:55:fa:7a: 5b:9c:2e:21:7b:0c:c9:d9:ec:6b:0a:a1:1c:d1:67:9d:c5:da: 81:fd:48:ab:f2:45:f2:48:67:54:00:b0:67:e8:0d:b2:9c:87: 97:eb:7e:6c:08:80:2c:94:e9:f4:99:8f:1f:0f:aa:0d:18:64: dd:41:34:d3:55:cc:f7:a0:7d:83:71:33:24:96:32:3c:9f:c4: 8b:1a:fa:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1NTIxMTAvBgNVBAUTKDlCNTE2QzA1MTY2MjlFRkIxMzhFQjBFNjg1QjA1QkEw MEVCRjRFN0YwHhcNMjUwNzA1MDYxMjM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YzI1Ni1iYjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUDSSHvzVDnJGgdw27NDsd6x38pyphIpL1Npnra3r9SUrkBe99RbTuy3ZiA7 3uMeUSbfmOkZjdCA/cpsNlbJy92WGJJ/tFAHD9zOjXSsrcW5QNhYA/ERsbdl/l01 rDnvIlHyfZfnU2oiqCgDGeGVDOgbYA4qXNQ+/SeVIKpc/x6B3jaX/Z9ENTyjvKOA PNflXPFyiOCcFNPC6SwDWUY8B6q81Ens3Qft3ifRBDTc89zkG1L50MrZSyjO/jMI jrovrJgg9u29Rxwulnln0UCEqH6G0uN5+LZgWWj2s2CB1+rHkAs7p8Iav7pfLG2w m7y8mKcQj0kmCu9UIYI3kvawKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCGpFI9R 9/ob1nDGbISpwuKlNr5fMB8GA1UdIwQYMBaAFJtRbAUWYp77E46w5oWwW6AOv05/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzU1Mi80MjEyMTU4NDNB ODIxMUVGQTI5NTFDNkZDNEY5QUUwMi9tMUZzQlJaaW52c1RqckRtaGJCYm9BNl9U bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20xRnNCUlppbnZzVGpyRG1oYkJib0E2X1RuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM1NTIvNDIxMjE1ODQzQTgyMTFFRkEyOTUxQzZGQzRGOUFFMDIvODQyNkU5NTQz QTgyMTFFRjlGMUVEMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnu/MwDQYJKoZIhvcNAQELBQADggEBAKEg8N4eqVrOCk3V RDZUWCu3aInF3eOeaCCGakylcYpeJyLBFD+nDxI55KewEpp9rw5FosoYr6JFaTrn tDUqmSIVV5KVKqw7/v0e9nhyf+3EMuTl6Cfi6aYY0QI9Sa1N9qrJ9RRXOMzODD9P gQYt/k+WGjcQbcYo6bioUZPMYj8ckVeYxBIh/qxcfVHjxQE0SEr/55ns/oF+HNIQ Undr95BqVy9ryfHkVfN6aVT12bFaLFX6elucLiF7DMnZ7GsKoRzRZ53F2oH9SKvy RfJIZ1QAsGfoDbKch5frfmwIgCyU6fSZjx8Pqg0YZN1BNNNVzPegfYNxMySWMjyf xIsa+hc= -----END CERTIFICATE-----Generated at Mon Jul 21 21:44:04 2025 by rpki-client