$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa File: C41538940B4711EC99840631C4F9AE02.roa (raw, json) Hash identifier: jmBBk9G7I6kWRNtiv9uf3HqTLrY1UbUUMPlSvnBT+V4= Subject key identifier: 85:C6:CF:68:9B:45:76:DE:A9:B7:AC:85:53:B5:33:4C:A5:B6:9F:B8 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 0585 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa Signing time: Thu 04 Sep 2025 23:35:09 +0000 ROA not before: Thu 04 Sep 2025 23:35:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142600 IP address blocks: 103.170.174.0/23 maxlen: 24 2001:df7:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Sep 4 23:35:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba222d-d0a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:cd:52:70:2d:be:27:ea:25:04:bf:7c:09: e5:ba:f1:2d:97:82:aa:22:96:2a:6c:4c:79:42:3b: 1b:c1:20:4f:45:e2:ae:37:75:ff:4a:1a:01:a7:34: cf:d3:34:9d:9b:fd:c0:0a:84:d9:87:9b:86:e1:30: 94:1a:cc:e2:e1:3e:3b:f8:e9:d7:bf:61:5f:a3:99: c4:24:91:c9:c7:57:ab:89:4d:29:35:c1:4e:cc:8a: 86:66:b9:3b:4a:98:76:43:95:f5:cf:c8:d0:ac:89: f7:25:9d:64:7c:43:1b:6c:27:82:f5:06:e0:3d:f4: 88:8c:7f:27:db:d8:46:d0:c5:c8:04:ef:60:be:be: 31:8f:d5:51:70:34:17:8d:9a:78:47:16:10:aa:61: 9c:fa:eb:b2:fb:22:36:bc:d8:bd:4b:0d:a7:ea:1c: b5:fd:fe:84:ec:9c:fa:cf:0d:0f:b9:ed:6b:70:88: f6:17:19:79:06:ac:b6:7f:db:6c:02:3a:1e:89:e7: 8e:b2:a0:fa:4c:04:48:81:4c:d9:ad:d9:ec:11:f0: 90:a5:3f:79:24:71:e6:33:70:ec:ad:cd:94:64:f7: 8e:c4:9d:67:c0:c5:40:b5:04:65:cd:98:82:55:ea: 3b:07:20:ee:f5:52:a6:e6:c4:19:6d:17:c4:e9:10: 99:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C6:CF:68:9B:45:76:DE:A9:B7:AC:85:53:B5:33:4C:A5:B6:9F:B8 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/C41538940B4711EC99840631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.174.0/23 IPv6: 2001:df7:2080::/48 Signature Algorithm: sha256WithRSAEncryption ae:b2:ee:ee:e6:c0:6e:12:79:b3:90:a2:a1:24:02:f9:3b:9f: 4d:2a:30:9a:dd:0e:af:27:c0:7f:10:81:53:27:0c:4c:0e:eb: db:a3:b6:82:e0:1d:3d:fb:8d:3b:c0:f1:cd:d6:01:45:91:0b: 39:95:63:15:2f:60:bc:99:2b:93:35:83:9d:79:5d:80:c5:e9: 1f:f2:4b:e0:78:eb:0f:3b:47:f2:58:34:35:28:af:a8:61:e6: 62:4f:be:14:06:fc:2b:c5:bd:1e:20:e6:44:2d:a7:5a:07:29: 83:90:5f:a4:a0:69:94:81:31:b3:56:5d:9f:d1:1c:4c:90:05: 26:13:ea:b2:82:30:37:69:79:ce:86:f6:fa:54:73:80:9d:76: a5:e8:46:86:b4:64:7e:cc:6d:21:09:cb:2c:15:b7:62:d7:8d: ef:bc:eb:2a:cb:db:57:47:a0:94:38:3c:d2:bf:14:9e:7e:17: 3f:f1:ce:25:66:38:01:22:7d:5e:47:9b:87:0d:4d:52:3c:85: 03:b1:6a:56:69:ee:fd:0f:a5:45:4f:ba:be:a0:51:db:4d:33: fa:52:14:f9:ae:49:86:2d:b7:60:2d:09:7d:75:a8:86:0d:27: 79:cd:70:62:7c:64:af:c1:7c:40:ec:02:c0:6a:75:88:f1:10: ad:25:3a:76 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUwOTA0MjMzNTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhMjIyZC1kMGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F/NUnAtvifqJQS/fAnluvEtl4KqIpYqbEx5QjsbwSBPReKuN3X/ShoBpzTP 0zSdm/3ACoTZh5uG4TCUGszi4T47+OnXv2Ffo5nEJJHJx1eriU0pNcFOzIqGZrk7 Sph2Q5X1z8jQrIn3JZ1kfEMbbCeC9QbgPfSIjH8n29hG0MXIBO9gvr4xj9VRcDQX jZp4RxYQqmGc+uuy+yI2vNi9Sw2n6hy1/f6E7Jz6zw0Pue1rcIj2Fxl5Bqy2f9ts AjoeieeOsqD6TARIgUzZrdnsEfCQpT95JHHmM3Dsrc2UZPeOxJ1nwMVAtQRlzZiC Veo7ByDu9VKm5sQZbRfE6RCZ0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIXGz2ib RXbeqbeshVO1M0yltp+4MB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDQjUvRDlGRDJERkVGMzdGMTFFQkIyODNFNzRBQzRGOUFFMDIvQzQxNTM4OTQw QjQ3MTFFQzk5ODQwNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqq4wDwQCAAIwCQMHACABDfcggDANBgkqhkiG9w0BAQsF AAOCAQEArrLu7ubAbhJ5s5CioSQC+TufTSowmt0OryfAfxCBUycMTA7r26O2guAd PfuNO8DxzdYBRZELOZVjFS9gvJkrkzWDnXldgMXpH/JL4HjrDztH8lg0NSivqGHm Yk++FAb8K8W9HiDmRC2nWgcpg5BfpKBplIExs1Zdn9EcTJAFJhPqsoIwN2l5zob2 +lRzgJ12pehGhrRkfsxtIQnLLBW3YteN77zrKsvbV0eglDg80r8Unn4XP/HOJWY4 ASJ9Xkebhw1NUjyFA7FqVmnu/Q+lRU+6vqBR200z+lIU+a5Jhi23YC0JfXWohg0n ec1wYnxkr8F8QOwCwGp1iPEQrSU6dg== -----END CERTIFICATE-----Generated at Fri Sep 19 12:21:41 2025 by rpki-client