$ rpki-client -vvf rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/8C19B3A21EFD11F0B822DF56C4F9AE02.roa File: 8C19B3A21EFD11F0B822DF56C4F9AE02.roa (raw, json) Hash identifier: qPzJ/oeyp8XIlVlZetvJbilZBw8geUbM+mpNnzYDNLQ= Subject key identifier: CD:40:93:1E:BA:85:73:E5:96:DB:A5:1A:2D:DB:53:5F:D7:98:4D:49 Certificate issuer: /CN=A9113493/serialNumber=C8B2BC3B8AB1EBAE4A743F90D8C8A1DFD1D4CE17 Certificate serial: 4A Authority key identifier: C8:B2:BC:3B:8A:B1:EB:AE:4A:74:3F:90:D8:C8:A1:DF:D1:D4:CE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yLK8O4qx665KdD-Q2Mih39HUzhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/8C19B3A21EFD11F0B822DF56C4F9AE02.roa Signing time: Wed 03 Sep 2025 08:08:00 +0000 ROA not before: Wed 03 Sep 2025 08:08:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 46484 IP address blocks: 103.245.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/yLK8O4qx665KdD-Q2Mih39HUzhc.crl rsync://rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/yLK8O4qx665KdD-Q2Mih39HUzhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yLK8O4qx665KdD-Q2Mih39HUzhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113493, serialNumber=C8B2BC3B8AB1EBAE4A743F90D8C8A1DFD1D4CE17 Validity Not Before: Sep 3 08:08:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7f760-ff24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:39:52:f4:0a:51:f2:fd:e0:d9:18:37:93: df:34:d7:36:c6:26:fb:5d:8c:04:ad:42:de:57:20: d2:a9:66:27:67:b3:7a:c2:1f:e2:29:c7:a8:64:1a: d0:0b:4c:6f:16:45:0a:79:eb:35:f7:bf:00:40:40: 62:d8:48:ab:7a:71:e6:79:7a:4e:d9:6c:84:bb:4f: b8:01:ae:9f:fd:d1:9c:99:6e:6b:29:1c:90:b1:2f: 54:fe:84:0b:d4:67:94:1a:10:e9:bd:31:cb:f4:21: 15:63:c0:16:fc:e6:bd:d1:81:f6:7c:10:4e:98:c6: 42:8d:da:96:a0:cb:27:71:8b:6b:0e:10:3c:d7:aa: 0e:8d:8f:12:fc:38:d7:20:3f:33:26:dd:6a:ca:80: 83:f8:f2:56:36:05:b4:3c:0c:96:9d:e5:c7:99:ad: 3f:13:73:36:9f:25:9d:66:3c:e3:d6:d1:5c:cb:39: 2c:f7:b4:d8:ad:39:d3:1e:28:09:ca:3b:ec:a9:b5: da:58:fc:2a:b3:0f:37:88:d1:44:e5:fc:53:13:f5: 70:47:de:56:cf:90:de:5d:cd:f1:60:c6:bd:54:73: 4e:0a:e8:c9:c7:b9:56:01:20:1e:fb:53:92:48:a8: 83:90:4d:38:2a:da:4e:b1:6a:0e:5b:eb:11:26:ca: d9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:40:93:1E:BA:85:73:E5:96:DB:A5:1A:2D:DB:53:5F:D7:98:4D:49 X509v3 Authority Key Identifier: keyid:C8:B2:BC:3B:8A:B1:EB:AE:4A:74:3F:90:D8:C8:A1:DF:D1:D4:CE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/yLK8O4qx665KdD-Q2Mih39HUzhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yLK8O4qx665KdD-Q2Mih39HUzhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113493/05EC1D141EF911F0B411E32EC4F9AE02/8C19B3A21EFD11F0B822DF56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.44.0/22 Signature Algorithm: sha256WithRSAEncryption 99:0c:03:57:5c:b8:4b:17:6e:d7:86:67:ef:9d:cc:6e:0a:fb: 21:ec:4f:0b:8c:5f:a2:3a:16:89:31:3f:c6:ef:7d:86:86:5d: 14:8e:c2:9b:fb:14:79:c5:ea:5a:2e:75:5f:f2:5c:ba:f0:a3: e7:a1:f6:c3:e8:0c:24:12:02:55:a8:eb:2f:10:6a:40:9c:6a: 0c:fa:5b:d7:eb:70:5e:9b:16:1a:77:01:c9:1f:4c:b6:74:84: d6:65:48:c3:66:a0:9f:1b:62:d1:16:db:84:00:fc:e8:cb:b8: 35:dc:a7:45:8c:1c:33:d6:a3:de:de:6f:f7:2a:1a:9d:78:14: d8:1f:31:8a:d1:81:64:03:cd:1d:cc:6b:bd:1c:f1:aa:81:1b: 10:a5:ec:49:4e:0d:f7:45:f3:67:e4:ae:25:ca:01:02:13:e8: 1b:b8:c9:46:6b:71:d9:73:b6:8b:0e:12:62:60:b6:9b:bb:de: 0e:87:9d:50:e6:e8:d5:e3:b1:1e:b6:34:ee:b5:d9:55:5a:fc: 18:36:08:fb:27:c8:25:19:d3:57:71:10:b4:04:0e:36:e3:ec: 10:19:d9:b2:66:bf:bd:f0:c2:9b:ca:35:05:89:ba:fb:f8:52: 3c:21:44:5f:89:fa:33:70:b8:ca:84:b0:c6:c4:e3:34:14:35: 62:33:f6:d6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzQ5MzExMC8GA1UEBRMoQzhCMkJDM0I4QUIxRUJBRTRBNzQzRjkwRDhDOEExREZE MUQ0Q0UxNzAeFw0yNTA5MDMwODA4MDBaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjdmNzYwLWZmMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHYjlS9ApR8v3g2Rg3k9801zbGJvtdjAStQt5XINKpZidns3rCH+Ipx6hkGtAL TG8WRQp56zX3vwBAQGLYSKt6ceZ5ek7ZbIS7T7gBrp/90ZyZbmspHJCxL1T+hAvU Z5QaEOm9Mcv0IRVjwBb85r3RgfZ8EE6YxkKN2pagyydxi2sOEDzXqg6NjxL8ONcg PzMm3WrKgIP48lY2BbQ8DJad5ceZrT8TczafJZ1mPOPW0VzLOSz3tNitOdMeKAnK O+yptdpY/CqzDzeI0UTl/FMT9XBH3lbPkN5dzfFgxr1Uc04K6MnHuVYBIB77U5JI qIOQTTgq2k6xag5b6xEmytk5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzUCTHrqF c+WW26UaLdtTX9eYTUkwHwYDVR0jBBgwFoAUyLK8O4qx665KdD+Q2Mih39HUzhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzNDkzLzA1RUMxRDE0MUVG OTExRjBCNDExRTMyRUM0RjlBRTAyL3lMSzhPNHF4NjY1S2RELVEyTWloMzlIVXpo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUxLOE80cXg2NjVLZEQtUTJNaWgzOUhVemhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzQ5My8wNUVDMUQxNDFFRjkxMUYwQjQxMUUzMkVDNEY5QUUwMi84QzE5QjNBMjFF RkQxMUYwQjgyMkRGNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmf1LDANBgkqhkiG9w0BAQsFAAOCAQEAmQwDV1y4Sxdu14Zn 753Mbgr7IexPC4xfojoWiTE/xu99hoZdFI7Cm/sUecXqWi51X/JcuvCj56H2w+gM JBICVajrLxBqQJxqDPpb1+twXpsWGncByR9MtnSE1mVIw2agnxti0RbbhAD86Mu4 NdynRYwcM9aj3t5v9yoanXgU2B8xitGBZAPNHcxrvRzxqoEbEKXsSU4N90XzZ+Su JcoBAhPoG7jJRmtx2XO2iw4SYmC2m7veDoedUObo1eOxHrY07rXZVVr8GDYI+yfI JRnTV3EQtAQONuPsEBnZsma/vfDCm8o1BYm6+/hSPCFEX4n6M3C4yoSwxsTjNBQ1 YjP21g== -----END CERTIFICATE-----Generated at Fri Sep 19 08:53:41 2025 by rpki-client