$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa File: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (raw, json) Hash identifier: lbAPfcc0myVwdYbEISgNYKY5g+qS8g/HzTgMPDxOCGE= Subject key identifier: AF:A0:1A:2E:1F:3E:A5:62:A0:E2:6C:65:1E:B1:4E:BB:4E:F2:0E:13 Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E59 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:24 +0000 ROA not before: Thu 28 Aug 2025 18:08:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138538 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 28 18:08:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b09b18-eb05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d7:59:cc:f1:0f:de:f1:5a:9d:2c:7c:cb:8a: e9:13:c7:4e:74:4e:54:43:84:74:45:64:33:1d:67: 64:4a:e9:9f:0b:80:6c:39:de:80:32:14:dd:eb:e4: 2f:3b:71:c0:69:e7:f1:f2:0b:0e:27:a1:36:dc:0d: 6c:c5:e7:df:7e:d0:a3:c0:eb:3c:e8:0a:5c:93:f9: 92:22:0d:ea:f1:b3:a6:1b:a2:05:23:50:84:2e:68: 8b:72:b2:68:d2:34:ac:47:71:8a:d1:60:bc:a7:5a: 02:5a:bc:bc:1c:36:4d:c1:e4:84:a6:e2:5a:64:7d: 0d:69:18:8f:c2:86:e6:cd:9a:c1:a8:57:bc:36:56: 41:e2:4d:0a:18:88:b8:fb:56:f7:80:8a:b4:05:e3: dc:01:34:97:f6:f6:3f:73:23:dd:f0:0b:7a:5c:ff: e3:1c:71:94:86:b3:fd:f8:d5:b7:9a:ee:8a:97:06: 2b:b3:b5:ce:c2:ae:b7:4e:b0:7a:31:59:16:00:5e: 3b:07:a1:ea:95:58:eb:90:10:64:31:40:fb:52:c6: de:d8:50:bb:3e:2f:54:fd:6a:33:af:d1:83:82:af: 4f:96:48:2b:27:8c:c9:eb:77:a3:d6:ac:5c:64:0a: 23:92:df:f0:81:68:99:e7:b2:28:6f:9d:98:30:ba: 3c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A0:1A:2E:1F:3E:A5:62:A0:E2:6C:65:1E:B1:4E:BB:4E:F2:0E:13 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 46:39:ef:46:ea:f4:de:f3:18:41:3f:ad:e3:53:e9:4f:a2:fa: a2:87:86:dd:a5:4c:24:55:bf:2d:af:5f:cd:2a:e8:3c:73:43: c8:d3:9f:c1:db:17:bd:88:2b:a0:c9:d0:95:95:f3:22:32:a1: dc:bb:11:f2:12:4b:db:f3:90:60:09:11:4b:79:4d:02:da:ea: d9:7b:0a:f4:10:77:3a:88:b4:95:2d:6a:9f:50:8b:ef:ed:5b: 65:38:20:4d:98:21:b8:ef:a1:86:1d:fd:e2:76:ce:59:87:52: 0e:e8:69:f0:47:2a:93:8a:bc:a5:a3:ff:76:3a:f8:eb:b1:c5: fe:04:4c:90:6a:b9:e5:dd:4e:55:1e:72:9b:b6:a4:e1:a6:d8: 9d:2f:52:47:d8:ed:1c:a7:a8:0c:49:fc:f8:7e:d2:95:3a:1e: e4:d8:42:f0:b5:74:8f:c3:93:3b:47:2b:8d:56:3c:43:c8:af: e4:46:b7:f7:5c:db:eb:1f:f6:af:a0:ec:92:7a:a1:bd:bc:c9: 52:c4:52:40:02:ff:73:ac:0c:6b:f0:ce:4a:bd:03:9b:91:61: 99:b9:70:97:ba:b4:e8:46:0a:1c:24:ec:e3:1a:b6:3c:35:7f: ce:b0:19:cf:e9:40:45:c3:1a:a6:97:6c:90:83:84:18:09:80: 36:f0:05:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwODI4MTgwODI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIxOC1lYjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9dZzPEP3vFanSx8y4rpE8dOdE5UQ4R0RWQzHWdkSumfC4BsOd6AMhTd6+Qv O3HAaefx8gsOJ6E23A1sxeffftCjwOs86Apck/mSIg3q8bOmG6IFI1CELmiLcrJo 0jSsR3GK0WC8p1oCWry8HDZNweSEpuJaZH0NaRiPwobmzZrBqFe8NlZB4k0KGIi4 +1b3gIq0BePcATSX9vY/cyPd8At6XP/jHHGUhrP9+NW3mu6KlwYrs7XOwq63TrB6 MVkWAF47B6HqlVjrkBBkMUD7Usbe2FC7Pi9U/Wozr9GDgq9PlkgrJ4zJ63ej1qxc ZAojkt/wgWiZ57Iob52YMLo8MQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+gGi4f PqVioOJsZR6xTrtO8g4TMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMUQ5M0I4MkMy MUQ5MTFFQjg1REFGRTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBAEY570bq9N7zGEE/ reNT6U+i+qKHht2lTCRVvy2vX80q6DxzQ8jTn8HbF72IK6DJ0JWV8yIyody7EfIS S9vzkGAJEUt5TQLa6tl7CvQQdzqItJUtap9Qi+/tW2U4IE2YIbjvoYYd/eJ2zlmH Ug7oafBHKpOKvKWj/3Y6+Ouxxf4ETJBqueXdTlUecpu2pOGm2J0vUkfY7RynqAxJ /Ph+0pU6HuTYQvC1dI/DkztHK41WPEPIr+RGt/dc2+sf9q+g7JJ6ob28yVLEUkAC /3OsDGvwzkq9A5uRYZm5cJe6tOhGChwk7OMatjw1f86wGc/pQEXDGqaXbJCDhBgJ gDbwBQg= -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:04 2025 by rpki-client