$ rpki-client -vvf rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/4AC85EBC8E1511F083A5EB46C4F9AE02.roa File: 4AC85EBC8E1511F083A5EB46C4F9AE02.roa (raw, json) Hash identifier: HpSbnGJEafe0Cwqy3fqQEE7tGOKywS9PLDhr9ZIWw18= Subject key identifier: 40:07:4E:6F:18:37:12:55:2E:5C:C2:36:7A:6E:5B:52:92:19:94:D1 Certificate issuer: /CN=A9119F89/serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Certificate serial: 06D8 Authority key identifier: 55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/4AC85EBC8E1511F083A5EB46C4F9AE02.roa Signing time: Wed 10 Sep 2025 07:10:55 +0000 ROA not before: Wed 10 Sep 2025 07:10:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 51847 IP address blocks: 103.24.207.0/24 maxlen: 24 103.100.158.0/24 maxlen: 24 103.137.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119F89, serialNumber=55088A315BCB5098BEEF665AA9CBDFD32A205820 Validity Not Before: Sep 10 07:10:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c1247f-6430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:57:8b:77:fd:6f:49:d0:64:5e:59:1d:e0:ed: 94:55:ce:27:45:e7:7f:53:f8:89:86:b0:39:65:ce: 47:06:b5:70:a1:c4:26:ee:f4:f2:e8:14:67:e9:86: b0:a4:09:1d:5d:d9:98:3c:40:ba:07:55:22:d1:c6: 10:36:f1:84:e5:d0:97:b2:ea:1c:b8:8b:f1:c6:bd: 60:8a:ac:02:a5:9c:a6:5d:de:df:58:58:c4:e1:8d: 2f:0a:40:9c:8a:de:56:5c:f3:1d:a9:14:9f:45:dd: bf:8f:28:63:d7:3f:dc:9f:69:40:97:02:72:40:89: 12:11:ef:e0:25:d1:ca:b1:47:a8:ee:98:a8:9e:70: e4:a4:60:4d:87:d1:c6:df:3c:26:7a:e4:64:d2:74: d5:27:8d:91:60:73:7c:cb:fb:a4:7c:23:f0:fe:d5: 12:0e:a4:f1:50:09:23:ad:fc:66:24:95:18:01:52: bb:d3:c6:ab:70:26:ca:ea:e1:a1:1d:27:3d:a1:12: 28:d7:af:2b:c5:2d:44:9c:4d:77:f3:c4:23:41:6b: 0b:9d:f0:e0:b4:d0:26:5d:91:eb:6f:b2:af:ef:ba: a6:e5:10:f4:9a:a7:c9:ee:6f:aa:97:9f:98:d4:5e: ff:7b:72:ce:3f:ea:67:28:43:7c:6f:f3:78:54:0e: 9d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:07:4E:6F:18:37:12:55:2E:5C:C2:36:7A:6E:5B:52:92:19:94:D1 X509v3 Authority Key Identifier: keyid:55:08:8A:31:5B:CB:50:98:BE:EF:66:5A:A9:CB:DF:D3:2A:20:58:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/VQiKMVvLUJi-72Zaqcvf0yogWCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQiKMVvLUJi-72Zaqcvf0yogWCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119F89/D35AA5AA7BE111EB8FF5F752C4F9AE02/4AC85EBC8E1511F083A5EB46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.207.0/24 103.100.158.0/24 103.137.215.0/24 Signature Algorithm: sha256WithRSAEncryption 81:5a:6e:d0:dc:ca:f3:06:c6:66:8d:7b:c0:30:e1:9e:9c:3d: 60:14:58:04:da:ca:89:49:db:99:b1:97:aa:98:58:28:41:9b: bc:29:c3:91:65:bb:82:63:05:5d:c0:06:ab:10:3a:91:a0:23: c8:10:62:22:f6:41:c3:65:dd:35:80:27:63:43:1e:bd:01:6f: 36:77:58:1f:e9:d5:be:f2:2a:56:ad:c5:42:79:69:93:9c:83: 1d:fb:81:de:e5:dd:c9:76:4a:a1:33:5a:b8:a1:4c:ef:91:dd: ea:f0:6c:fd:ba:09:dc:b6:f7:c3:40:16:0d:c9:76:04:15:fd: b2:61:41:f4:29:87:82:df:98:30:90:37:ce:3d:2e:1b:65:47: 19:7b:49:4e:91:61:ed:da:45:21:84:a6:99:08:8e:a7:46:87: c5:3a:50:3a:9e:71:1e:26:48:6b:53:c4:12:14:e7:fc:e8:2e: 48:f7:a5:5a:11:22:ac:eb:c3:64:0b:3a:7f:e3:2d:ed:8a:e5: 89:55:88:cb:d7:79:20:b9:c9:79:21:f2:1b:0a:1b:0d:c7:53: 97:f6:30:be:05:28:48:5f:66:da:76:66:f9:91:ec:57:91:d3: 88:d8:e6:16:39:79:4d:72:b3:da:e3:2f:dd:2b:ba:7f:e6:de: d7:26:06:eb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlGODkxMTAvBgNVBAUTKDU1MDg4QTMxNUJDQjUwOThCRUVGNjY1QUE5Q0JERkQz MkEyMDU4MjAwHhcNMjUwOTEwMDcxMDU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxMjQ3Zi02NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFeLd/1vSdBkXlkd4O2UVc4nRed/U/iJhrA5Zc5HBrVwocQm7vTy6BRn6Yaw pAkdXdmYPEC6B1Ui0cYQNvGE5dCXsuocuIvxxr1giqwCpZymXd7fWFjE4Y0vCkCc it5WXPMdqRSfRd2/jyhj1z/cn2lAlwJyQIkSEe/gJdHKsUeo7pionnDkpGBNh9HG 3zwmeuRk0nTVJ42RYHN8y/ukfCPw/tUSDqTxUAkjrfxmJJUYAVK708arcCbK6uGh HSc9oRIo168rxS1EnE1388QjQWsLnfDgtNAmXZHrb7Kv77qm5RD0mqfJ7m+ql5+Y 1F7/e3LOP+pnKEN8b/N4VA6dnwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEAHTm8Y NxJVLlzCNnpuW1KSGZTRMB8GA1UdIwQYMBaAFFUIijFby1CYvu9mWqnL39MqIFgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUY4OS9EMzVBQTVBQTdC RTExMUVCOEZGNUY3NTJDNEY5QUUwMi9WUWlLTVZ2TFVKaS03MlphcWN2ZjB5b2dX Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZRaUtNVnZMVUppLTcyWmFxY3ZmMHlvZ1dDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlGODkvRDM1QUE1QUE3QkUxMTFFQjhGRjVGNzUyQzRGOUFFMDIvNEFDODVFQkM4 RTE1MTFGMDgzQTVFQjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnGM8DBABnZJ4DBABnidcwDQYJKoZIhvcNAQELBQADggEB AIFabtDcyvMGxmaNe8Aw4Z6cPWAUWATayolJ25mxl6qYWChBm7wpw5Flu4JjBV3A BqsQOpGgI8gQYiL2QcNl3TWAJ2NDHr0BbzZ3WB/p1b7yKlatxUJ5aZOcgx37gd7l 3cl2SqEzWrihTO+R3erwbP26Cdy298NAFg3JdgQV/bJhQfQph4LfmDCQN849Lhtl Rxl7SU6RYe3aRSGEppkIjqdGh8U6UDqecR4mSGtTxBIU5/zoLkj3pVoRIqzrw2QL On/jLe2K5YlViMvXeSC5yXkh8hsKGw3HU5f2ML4FKEhfZtp2ZvmR7FeR04jY5hY5 eU1ys9rjL90run/m3tcmBus= -----END CERTIFICATE-----Generated at Sun Oct 19 16:11:44 2025 by rpki-client