$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/670DF186232111EB9896B783C4F9AE02.roa File: 670DF186232111EB9896B783C4F9AE02.roa (raw, json) Hash identifier: QRv08V7HqtcB3bHnZdM9X+W4jlFsB6z2SpL2l3Cbxgo= Subject key identifier: E6:03:29:C5:54:CA:F7:3C:E3:71:68:5B:95:99:70:EE:3B:AA:ED:CE Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E58 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/670DF186232111EB9896B783C4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:23 +0000 ROA not before: Thu 28 Aug 2025 18:08:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137969 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3672 (0xe58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 28 18:08:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b09b17-a350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f8:36:1e:f1:38:d6:9c:2d:eb:d5:6c:e2:43: 0e:57:bc:da:c9:a6:33:a3:6c:82:1e:68:71:21:34: 20:27:1b:62:5c:6d:a7:89:a0:94:24:16:37:2a:3d: 81:ca:15:05:c0:b8:21:25:dc:a7:34:b4:9e:72:19: 0a:2f:6e:ef:31:77:a4:0b:c6:cd:f5:66:a1:cc:d3: 30:4a:39:9a:25:4f:e7:41:d3:6b:d0:62:4f:96:10: be:6b:a4:ab:d8:0a:d6:bb:35:a2:c3:3b:31:07:58: a8:67:80:89:e8:b5:37:ba:a5:c9:0a:eb:c7:bb:22: 4c:74:76:3d:74:fc:96:f6:dc:8a:f8:86:58:c8:9c: 94:84:e0:e5:bd:50:5f:75:a4:d0:a5:fc:40:07:04: 1a:df:56:d8:f0:c8:a3:97:38:12:d8:a4:73:91:35: da:42:9e:45:6e:db:6e:21:58:d9:c6:60:ee:7d:f7: 34:7f:16:66:54:49:e1:35:bc:20:46:ec:de:e5:17: aa:2e:c7:e7:09:de:03:38:ab:20:13:35:fc:f8:f6: b9:e9:3d:74:d5:5f:20:e8:18:70:73:2b:3a:ac:7f: bc:14:19:98:91:99:0a:a2:38:0b:52:49:5a:04:ae: 14:36:a5:99:ea:58:9c:bd:4a:37:70:a8:6c:5e:60: f3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:03:29:C5:54:CA:F7:3C:E3:71:68:5B:95:99:70:EE:3B:AA:ED:CE X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/670DF186232111EB9896B783C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 33:ec:7f:48:a5:df:9e:43:00:57:d6:ac:a4:0a:f5:b9:04:43: e5:c3:63:53:f1:8f:e2:ba:49:ef:1b:db:88:1f:cf:20:9f:fd: 96:d9:ba:4f:a6:0e:ef:52:f1:8a:bc:20:73:ab:2b:c3:7e:db: b0:93:02:ab:18:db:23:6c:5b:e7:32:34:ab:8a:a3:7e:31:a6: 1f:08:68:7b:46:3b:22:4e:9c:6e:54:3d:d5:a9:6f:01:fd:70: f8:49:49:ea:f2:98:61:db:11:99:8b:aa:54:29:39:a6:33:52: 33:9b:b8:4d:23:14:2e:bd:1c:ef:7d:4a:f0:a7:df:9c:d9:22: 61:19:56:28:16:09:25:e2:16:bb:80:63:61:5a:ea:b8:5c:a1: 41:a1:5f:0c:32:03:d7:a7:5b:12:1f:0b:65:f2:0d:65:14:41: 0d:e8:a8:21:7f:b8:e3:7e:99:c1:e6:89:66:f9:10:9e:5c:86: 0a:a4:9a:76:c9:c9:32:2b:77:a8:9e:aa:94:3b:34:f0:8c:1f: e8:70:8e:5c:61:9c:c0:79:cd:4c:de:3f:fc:a5:b1:47:6c:26: ef:fd:24:6d:f9:47:27:5a:12:44:3e:d8:3d:17:47:e7:4c:90: 41:69:f2:ce:7f:e0:ea:31:7d:3a:2a:46:78:2f:c1:c2:a3:d8: 07:5c:60:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwODI4MTgwODIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIxNy1hMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pg2HvE41pwt69Vs4kMOV7zayaYzo2yCHmhxITQgJxtiXG2niaCUJBY3Kj2B yhUFwLghJdynNLSechkKL27vMXekC8bN9WahzNMwSjmaJU/nQdNr0GJPlhC+a6Sr 2ArWuzWiwzsxB1ioZ4CJ6LU3uqXJCuvHuyJMdHY9dPyW9tyK+IZYyJyUhODlvVBf daTQpfxABwQa31bY8MijlzgS2KRzkTXaQp5FbttuIVjZxmDuffc0fxZmVEnhNbwg Ruze5ReqLsfnCd4DOKsgEzX8+Pa56T101V8g6Bhwcys6rH+8FBmYkZkKojgLUkla BK4UNqWZ6licvUo3cKhsXmDz7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOYDKcVU yvc843FoW5WZcO47qu3OMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvNjcwREYxODYy MzIxMTFFQjk4OTZCNzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBADPsf0il355DAFfW rKQK9bkEQ+XDY1Pxj+K6Se8b24gfzyCf/ZbZuk+mDu9S8Yq8IHOrK8N+27CTAqsY 2yNsW+cyNKuKo34xph8IaHtGOyJOnG5UPdWpbwH9cPhJSerymGHbEZmLqlQpOaYz UjObuE0jFC69HO99SvCn35zZImEZVigWCSXiFruAY2Fa6rhcoUGhXwwyA9enWxIf C2XyDWUUQQ3oqCF/uON+mcHmiWb5EJ5chgqkmnbJyTIrd6ieqpQ7NPCMH+hwjlxh nMB5zUzeP/ylsUdsJu/9JG35RydaEkQ+2D0XR+dMkEFp8s5/4OoxfToqRngvwcKj 2AdcYCo= -----END CERTIFICATE-----Generated at Sun Sep 7 15:48:48 2025 by rpki-client