$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa File: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (raw, json) Hash identifier: rV1Z8AbpTv1d+o44R7LlYsk8JevP6flWo0s81DQ5Rok= Subject key identifier: 2B:77:9B:7B:40:C8:0C:C7:DD:47:10:69:BE:F3:F0:BE:6B:4C:95:FD Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E55 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:21 +0000 ROA not before: Thu 28 Aug 2025 18:08:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 18:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3669 (0xe55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 28 18:08:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b09b14-6222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:20:76:79:13:c1:24:d1:b7:f8:c0:cf:3b:0d: d3:a4:4b:5e:55:83:34:19:bf:b6:7e:10:61:38:b9: 06:04:6d:fc:7b:0c:44:f7:6a:63:52:5b:16:fa:70: 49:b3:4b:86:dd:ba:d5:f8:be:3c:2a:b6:78:35:13: 06:4c:a1:84:05:da:c1:02:27:4e:27:77:6c:f4:9f: 90:af:5c:e0:47:d8:a0:66:a8:8f:88:77:08:da:75: 85:49:93:be:fa:de:85:ae:bf:66:99:da:96:8c:cf: 98:af:eb:29:6d:85:70:8a:55:9a:8e:7a:9f:3d:2c: e7:1c:04:98:72:9d:d2:7a:e2:7f:43:09:4a:73:c7: a7:aa:6f:17:9d:74:eb:ab:25:bf:84:c3:77:fe:3c: 34:ed:d2:b3:b7:85:9f:ea:93:37:cf:d4:5e:b1:e8: 56:db:3d:38:01:0c:45:ac:5d:31:97:80:94:d8:08: 40:29:a2:a9:b8:b2:fa:7f:cb:74:e5:5e:c9:75:ce: 54:1e:dd:c5:d1:0e:94:5e:19:c0:03:af:20:08:39: b7:8d:ea:d9:e8:58:80:8b:63:4d:4f:79:f6:ca:03: 4c:7d:df:54:5c:f3:e2:1b:77:31:12:f8:e4:55:f0: 77:fc:be:99:45:38:15:d0:d7:8f:40:43:5c:b5:e4: 8b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:77:9B:7B:40:C8:0C:C7:DD:47:10:69:BE:F3:F0:BE:6B:4C:95:FD X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:6e:80:a4:6b:2e:fd:b2:8f:51:df:3d:39:d5:b4:19:5d:5d: e9:9d:5e:04:0b:5d:61:c7:62:3c:d0:28:49:f6:1c:03:82:31: 59:4f:33:9a:2e:a0:76:43:32:95:66:8b:13:36:2b:a3:ae:d1: 51:ac:df:ca:ba:32:a7:fd:b1:95:97:7f:c0:86:99:f7:8a:32: ec:19:be:3d:17:02:a5:f4:54:e1:a0:f0:2f:c5:df:a0:15:6c: e0:0a:e9:c5:30:8e:0b:98:09:a2:fa:29:42:27:4c:9e:29:a8: b4:36:81:7d:7e:29:52:d2:d6:17:88:b9:6e:68:c4:da:7f:8e: ff:1f:dd:a0:c7:64:ca:b0:8e:7e:5c:3f:df:bc:25:f8:48:f9: 4e:37:32:8e:10:96:7a:0b:c6:97:44:c2:37:1d:ef:2d:9d:7d: 63:b5:e3:af:d9:95:4e:00:d9:d3:52:48:6e:8c:be:5f:a1:fd: 4c:59:af:23:ed:3b:8a:26:71:04:b1:ef:10:8d:83:ee:38:f0: d7:75:f7:c2:05:f0:01:e8:3d:4e:c9:6e:26:94:1c:27:6b:a8: 3f:68:1b:3a:c8:e6:82:78:36:8f:52:da:87:f6:ce:17:43:7f: 24:5c:df:95:77:ff:db:0f:2c:75:ae:4c:8d:5b:89:f2:3f:fb: 84:31:56:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwODI4MTgwODIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIxNC02MjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yB2eRPBJNG3+MDPOw3TpEteVYM0Gb+2fhBhOLkGBG38ewxE92pjUlsW+nBJ s0uG3brV+L48KrZ4NRMGTKGEBdrBAidOJ3ds9J+Qr1zgR9igZqiPiHcI2nWFSZO+ +t6Frr9mmdqWjM+Yr+spbYVwilWajnqfPSznHASYcp3SeuJ/QwlKc8enqm8XnXTr qyW/hMN3/jw07dKzt4Wf6pM3z9ResehW2z04AQxFrF0xl4CU2AhAKaKpuLL6f8t0 5V7Jdc5UHt3F0Q6UXhnAA68gCDm3jerZ6FiAi2NNT3n2ygNMfd9UXPPiG3cxEvjk VfB3/L6ZRTgV0NePQENcteSLKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCt3m3tA yAzH3UcQab7z8L5rTJX9MB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMTYwOUNFMDY3 QTRBMTFFQjk5QzExRjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBAF1ugKRrLv2yj1Hf PTnVtBldXemdXgQLXWHHYjzQKEn2HAOCMVlPM5ouoHZDMpVmixM2K6Ou0VGs38q6 Mqf9sZWXf8CGmfeKMuwZvj0XAqX0VOGg8C/F36AVbOAK6cUwjguYCaL6KUInTJ4p qLQ2gX1+KVLS1heIuW5oxNp/jv8f3aDHZMqwjn5cP9+8JfhI+U43Mo4QlnoLxpdE wjcd7y2dfWO146/ZlU4A2dNSSG6Mvl+h/UxZryPtO4omcQSx7xCNg+448Nd198IF 8AHoPU7JbiaUHCdrqD9oGzrI5oJ4No9S2of2zhdDfyRc35V3/9sPLHWuTI1bifI/ +4QxVnY= -----END CERTIFICATE-----Generated at Sun Oct 26 11:16:38 2025 by rpki-client