$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa File: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (raw, json) Hash identifier: 1hlPRZQBD73jEyWKbHC8ZRWrArjylE9If913X/Jb57A= Subject key identifier: 29:92:44:17:1E:98:64:33:28:E2:A8:8B:0A:5D:2E:48:2F:FA:08:66 Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E56 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:22 +0000 ROA not before: Thu 28 Aug 2025 18:08:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3670 (0xe56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 28 18:08:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b09b15-cdde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c5:98:77:ab:2e:9e:e1:19:23:f7:81:26:2a: 2d:a9:42:9b:eb:d3:d2:bc:d2:45:32:02:19:75:80: c6:a8:80:5b:44:1e:4b:4e:b8:6a:06:7c:27:53:5b: 26:c4:cc:d8:4b:09:3d:e9:a4:7e:e1:2a:42:ce:82: 04:d7:e3:d0:db:57:fe:5f:e3:43:a4:a8:a2:b6:90: 54:9a:89:42:63:7a:80:d5:65:9c:8d:3b:92:55:42: 45:42:5a:27:53:b8:4c:53:09:69:ec:4c:3c:56:67: 2b:7a:bc:db:54:3d:ef:11:20:e6:f9:44:59:32:13: c1:06:c4:03:af:de:bb:64:45:6a:83:98:99:78:fd: e1:a2:9e:e7:01:5c:3f:b4:83:76:48:53:49:26:a3: 05:96:54:23:94:59:31:5b:56:7f:66:b0:97:d5:f5: 0c:a5:94:9f:e9:ab:64:88:8d:79:64:bb:ad:08:59: c3:a6:ec:3d:ea:67:96:b7:4f:f2:be:7d:25:19:18: 87:68:da:b3:22:62:1e:ed:2f:15:90:7e:52:9a:4c: b5:7f:6b:7a:5e:6c:80:fd:c8:9a:ae:5f:2f:80:ab: 92:6b:16:9a:63:98:cb:30:8c:10:89:f0:28:23:b6: d1:f5:ae:6c:82:92:07:ca:a8:d3:6a:7b:39:9e:74: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:92:44:17:1E:98:64:33:28:E2:A8:8B:0A:5D:2E:48:2F:FA:08:66 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:e6:ea:3d:9d:db:8d:df:65:30:87:38:b8:b6:f0:55:4c:3d: 70:b2:9f:b2:8f:2e:93:5b:ef:78:20:d4:f1:e3:2b:67:5c:4e: 07:02:1e:81:31:e3:b9:3f:bf:14:d2:2a:1f:8c:5d:83:cb:21: 8a:e0:05:14:1a:e9:76:c0:9b:03:60:0d:ea:63:5f:df:24:6d: ce:25:95:04:aa:4f:84:b8:6d:cb:7f:b6:d1:87:a8:66:e8:79: 8a:73:92:79:a1:53:2e:1c:d9:89:c1:98:03:15:71:11:97:67: f6:62:38:c7:fb:d0:56:21:fc:45:6e:d7:a5:8e:34:41:94:ad: 6a:8e:0d:79:38:63:03:44:98:6a:2f:ae:ba:aa:5c:f3:b3:64: 4c:99:96:1d:b7:29:3d:7c:a3:1a:4b:c2:8f:f2:4f:11:af:a9: 66:42:f4:c8:4a:d0:a3:50:e2:96:b6:4e:4c:52:60:16:5a:cf: 14:23:15:36:14:16:20:75:36:0a:c0:ab:57:0a:6d:ba:65:33: ac:12:40:66:6f:a0:4c:0e:fb:d2:0e:e0:34:64:a2:cf:b0:0f: 70:a5:ce:c4:ed:a0:ee:a0:b8:d1:19:42:a2:d1:a1:7a:35:bd: 68:cf:54:df:00:0a:89:8e:ff:86:cf:c2:8c:cd:f3:82:48:33: 1f:fd:58:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwODI4MTgwODIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIxNS1jZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cWYd6sunuEZI/eBJiotqUKb69PSvNJFMgIZdYDGqIBbRB5LTrhqBnwnU1sm xMzYSwk96aR+4SpCzoIE1+PQ21f+X+NDpKiitpBUmolCY3qA1WWcjTuSVUJFQlon U7hMUwlp7Ew8VmcrerzbVD3vESDm+URZMhPBBsQDr967ZEVqg5iZeP3hop7nAVw/ tIN2SFNJJqMFllQjlFkxW1Z/ZrCX1fUMpZSf6atkiI15ZLutCFnDpuw96meWt0/y vn0lGRiHaNqzImIe7S8VkH5Smky1f2t6XmyA/ciarl8vgKuSaxaaY5jLMIwQifAo I7bR9a5sgpIHyqjTans5nnQcvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCmSRBce mGQzKOKoiwpdLkgv+ghmMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMUJCRTI0OUMy MUQ5MTFFQjg1REFGRTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBAGrm6j2d243fZTCH OLi28FVMPXCyn7KPLpNb73gg1PHjK2dcTgcCHoEx47k/vxTSKh+MXYPLIYrgBRQa 6XbAmwNgDepjX98kbc4llQSqT4S4bct/ttGHqGboeYpzknmhUy4c2YnBmAMVcRGX Z/ZiOMf70FYh/EVu16WONEGUrWqODXk4YwNEmGovrrqqXPOzZEyZlh23KT18oxpL wo/yTxGvqWZC9MhK0KNQ4pa2TkxSYBZazxQjFTYUFiB1NgrAq1cKbbplM6wSQGZv oEwO+9IO4DRkos+wD3ClzsTtoO6guNEZQqLRoXo1vWjPVN8AComO/4bPwozN84JI Mx/9WOA= -----END CERTIFICATE-----Generated at Sun Sep 7 12:31:04 2025 by rpki-client