$ rpki-client -vvf rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/069483747E7F11F091356E86C4F9AE02.roa File: 069483747E7F11F091356E86C4F9AE02.roa (raw, json) Hash identifier: Yrv7o+i08VMkPfTsO9wW2G4Ntl0tTtmIsoOx+zJY4Xo= Subject key identifier: 54:E6:B4:11:A8:ED:67:B2:B2:F0:A0:FF:C3:92:B0:E3:2E:17:EE:F4 Certificate issuer: /CN=A9114382/serialNumber=76887469D6410BE468077587847EEAA080B42272 Certificate serial: 5A Authority key identifier: 76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/069483747E7F11F091356E86C4F9AE02.roa Signing time: Thu 21 Aug 2025 11:07:28 +0000 ROA not before: Thu 21 Aug 2025 11:07:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56265 IP address blocks: 103.3.236.0/24 maxlen: 24 103.3.237.0/24 maxlen: 24 103.3.238.0/24 maxlen: 24 103.3.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 11:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114382, serialNumber=76887469D6410BE468077587847EEAA080B42272 Validity Not Before: Aug 21 11:07:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68a6fdf0-e6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:10:9a:a5:39:1f:fd:c9:69:91:bc:5b:77:9f: cb:e7:94:f2:11:e2:67:d1:c0:15:cd:cc:21:8f:ad: 5c:39:71:1f:21:eb:40:94:c9:b9:93:48:b7:4e:47: a3:c0:f8:5b:f8:34:6e:b7:3a:a2:02:60:c6:61:25: fb:f6:51:81:05:c3:2b:ce:cd:5f:be:4e:5d:78:03: 99:9f:7c:35:9d:07:53:3a:85:58:5f:58:28:66:8b: 6e:58:b5:aa:42:5d:7b:bf:6c:e8:7c:16:9f:5b:86: 5a:bf:55:ff:e0:a0:6c:f7:60:07:68:d7:b0:e6:ce: bc:6f:50:25:44:d9:5a:da:e8:ff:e0:65:0a:16:5a: 60:f7:2a:b3:07:43:b4:e8:cb:92:2f:36:1b:ca:5a: 19:c1:ba:99:68:8c:77:74:73:36:0a:28:20:0a:4e: 8b:11:77:93:56:85:a8:9a:86:56:ce:eb:74:26:c9: 6c:c1:ab:c7:ff:41:21:d6:cf:78:76:5e:bc:7f:53: c3:9b:46:e7:43:98:9f:0f:aa:e9:ed:65:cf:2e:25: 86:05:ac:e3:13:a7:b1:fc:2e:8e:ff:25:9f:be:98: 2c:df:ee:61:01:ba:74:bd:32:a1:3e:85:98:80:8f: 53:a2:9e:d4:34:cc:1e:ff:db:fc:31:5a:d6:21:f0: 37:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E6:B4:11:A8:ED:67:B2:B2:F0:A0:FF:C3:92:B0:E3:2E:17:EE:F4 X509v3 Authority Key Identifier: keyid:76:88:74:69:D6:41:0B:E4:68:07:75:87:84:7E:EA:A0:80:B4:22:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/doh0adZBC-RoB3WHhH7qoIC0InI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/doh0adZBC-RoB3WHhH7qoIC0InI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114382/44B5FA1C0AC011F0B58F8247C4F9AE02/069483747E7F11F091356E86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.3.236.0/22 Signature Algorithm: sha256WithRSAEncryption 32:c3:8b:74:c1:b5:f5:2d:7e:e1:df:4a:40:bc:f2:75:6c:a4: 04:bf:d0:37:0f:35:44:04:14:26:b2:26:fc:36:63:0e:13:1a: 80:52:46:31:a2:a9:9e:6b:bb:5e:cc:27:6c:8b:65:11:44:bc: e4:72:1c:3b:22:ed:e5:ae:9d:02:11:0f:73:ea:cb:11:8f:84: 65:a1:5a:68:e7:6f:a2:30:eb:a2:eb:fb:8b:9b:cc:4b:e8:d1: 31:80:a3:29:6d:22:1c:f0:9e:a3:6a:61:4a:a1:18:47:13:a5: 81:f4:93:79:9c:71:1f:1a:ec:80:4f:87:7a:7a:ea:cc:b9:e7: 72:e5:84:f4:26:df:c3:18:c0:3e:62:ec:19:75:b7:0a:1e:dd: 29:ff:39:0c:0e:8d:35:27:26:28:cb:46:9f:ad:d1:2c:7e:66: d6:89:5a:2b:af:a8:22:b5:7f:47:52:7f:21:df:47:a1:bb:e1: 17:dc:4c:75:c1:24:1e:4b:d0:18:be:50:c3:1d:99:54:f2:e4: 16:70:9a:73:a4:a6:43:73:b0:06:2f:d4:db:d7:ba:cd:e4:cc: 20:85:00:26:99:aa:6d:f3:54:13:32:40:62:e4:35:59:61:b2: d4:7a:78:06:3a:ac:6a:83:e2:9c:ea:79:d7:03:34:b2:98:89: f3:da:2d:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDM4MjExMC8GA1UEBRMoNzY4ODc0NjlENjQxMEJFNDY4MDc3NTg3ODQ3RUVBQTA4 MEI0MjI3MjAeFw0yNTA4MjExMTA3MjhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTZmZGYwLWU2ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsEJqlOR/9yWmRvFt3n8vnlPIR4mfRwBXNzCGPrVw5cR8h60CUybmTSLdOR6PA +Fv4NG63OqICYMZhJfv2UYEFwyvOzV++Tl14A5mffDWdB1M6hVhfWChmi25YtapC XXu/bOh8Fp9bhlq/Vf/goGz3YAdo17DmzrxvUCVE2Vra6P/gZQoWWmD3KrMHQ7To y5IvNhvKWhnBuplojHd0czYKKCAKTosRd5NWhaiahlbO63QmyWzBq8f/QSHWz3h2 Xrx/U8ObRudDmJ8PquntZc8uJYYFrOMTp7H8Lo7/JZ++mCzf7mEBunS9MqE+hZiA j1OintQ0zB7/2/wxWtYh8DctAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVOa0Eajt Z7Ky8KD/w5Kw4y4X7vQwHwYDVR0jBBgwFoAUdoh0adZBC+RoB3WHhH7qoIC0InIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0MzgyLzQ0QjVGQTFDMEFD MDExRjBCNThGODI0N0M0RjlBRTAyL2RvaDBhZFpCQy1Sb0IzV0hoSDdxb0lDMElu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZG9oMGFkWkJDLVJvQjNXSGhIN3FvSUMwSW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDM4Mi80NEI1RkExQzBBQzAxMUYwQjU4RjgyNDdDNEY5QUUwMi8wNjk0ODM3NDdF N0YxMUYwOTEzNTZFODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcD7DANBgkqhkiG9w0BAQsFAAOCAQEAMsOLdMG19S1+4d9K QLzydWykBL/QNw81RAQUJrIm/DZjDhMagFJGMaKpnmu7XswnbItlEUS85HIcOyLt 5a6dAhEPc+rLEY+EZaFaaOdvojDrouv7i5vMS+jRMYCjKW0iHPCeo2phSqEYRxOl gfSTeZxxHxrsgE+HenrqzLnncuWE9CbfwxjAPmLsGXW3Ch7dKf85DA6NNScmKMtG n63RLH5m1olaK6+oIrV/R1J/Id9HobvhF9xMdcEkHkvQGL5Qwx2ZVPLkFnCac6Sm Q3OwBi/U29e6zeTMIIUAJpmqbfNUEzJAYuQ1WWGy1Hp4BjqsaoPinOp51wM0spiJ 89ot3A== -----END CERTIFICATE-----Generated at Fri Aug 22 18:29:06 2025 by rpki-client