$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa File: 3A9B86AED0C011EEB134543DC4F9AE02.roa (raw, json) Hash identifier: GzY2mja93XMB8v0gofsGbfBeQdmx/oTQdYYP656riXY= Subject key identifier: BE:70:50:6E:8B:A4:FD:A9:EE:E4:DB:58:3A:FA:01:0B:39:78:3C:6D Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 01CA Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa Signing time: Fri 29 Aug 2025 03:52:29 +0000 ROA not before: Fri 29 Aug 2025 03:52:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 397423 IP address blocks: 103.120.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D, serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Aug 29 03:52:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b123fd-1f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:e1:19:20:77:df:d7:5a:58:e5:5e:e6:57: 0e:b9:35:bb:1b:c9:2b:7c:4a:0c:4e:48:c7:99:63: d9:bc:b7:c7:94:1a:64:ec:40:68:71:27:8d:b0:49: 79:1f:e0:5f:77:10:9d:b6:05:d9:71:04:34:4c:14: a6:f6:6d:50:de:f0:f0:9c:79:2c:a1:ad:f8:c8:7a: 0c:94:31:72:14:c3:36:88:5c:07:9e:45:51:16:9e: 02:15:06:6d:2b:81:17:cd:a7:1a:2e:96:3f:ef:77: c8:19:5a:e0:a7:f2:8a:49:40:03:d7:78:ae:4f:46: e5:44:00:a4:fb:5f:bd:0a:bb:b6:73:7c:d9:4e:98: 04:56:88:b8:83:9a:90:81:dc:ba:da:13:25:0e:31: 3b:ee:35:cd:3c:16:6f:7e:6b:16:0d:24:4e:cd:42: 85:cb:ef:1e:1c:a1:65:75:41:18:e3:80:b5:9c:82: c9:cc:34:86:17:f9:f5:82:c6:7c:ae:8e:c1:6c:b0: ff:17:24:db:9a:ea:68:6a:75:23:c0:9a:09:45:0f: 79:6f:db:88:6c:64:60:e8:5e:9e:a0:bf:3f:34:19: b5:ad:30:43:63:c4:79:01:ba:54:5a:e3:e4:e0:a4: c6:d6:eb:20:12:e1:88:e4:28:0b:57:6e:5d:f6:b0: 95:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:70:50:6E:8B:A4:FD:A9:EE:E4:DB:58:3A:FA:01:0B:39:78:3C:6D X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.14.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:4b:1e:76:8a:a7:64:d2:8e:61:b9:6b:fe:21:4f:c7:7d:87: 74:29:84:35:75:ee:48:f9:6c:9a:89:7e:9c:a2:90:5f:54:d5: 2f:30:fa:28:42:fb:49:bb:70:62:3e:0d:2d:cc:2e:6b:d1:43: 60:8a:55:a2:af:42:a6:c1:e5:e8:a9:13:34:8d:d8:1e:67:b6: d5:04:3d:6c:5b:b1:d0:45:5b:e8:9c:cc:26:ab:c2:bc:c7:48: 59:6b:12:84:09:e8:3a:a1:d0:1a:39:ac:21:d0:17:e3:1e:44: fd:3f:aa:0f:44:12:b3:98:02:c5:9b:2c:d9:77:f6:8b:c4:cd: 73:81:9f:64:1c:d6:6e:88:dc:64:c9:a1:3a:a9:d2:12:91:ed: 08:1b:5d:09:13:81:02:ed:74:87:51:80:9c:56:db:79:e1:23: 2d:66:35:51:ce:2e:82:8d:5d:ca:8a:5c:1c:47:3b:3d:98:60: aa:73:26:3e:2f:da:5a:c0:78:44:70:2c:d3:53:b8:6f:cf:74: 1c:24:23:be:c2:10:ca:9c:4c:ed:5b:d6:d0:87:ba:9d:37:eb: f8:15:8c:7c:69:c5:98:c9:a2:3e:e2:25:24:e0:6f:74:71:54: d8:aa:52:17:2e:41:1c:3e:be:48:c5:49:bb:4c:e8:16:83:27: d5:7e:e5:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwODI5MDM1MjI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMjNmZC0xZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3LhGSB339daWOVe5lcOuTW7G8krfEoMTkjHmWPZvLfHlBpk7EBocSeNsEl5 H+BfdxCdtgXZcQQ0TBSm9m1Q3vDwnHksoa34yHoMlDFyFMM2iFwHnkVRFp4CFQZt K4EXzacaLpY/73fIGVrgp/KKSUAD13iuT0blRACk+1+9Cru2c3zZTpgEVoi4g5qQ gdy62hMlDjE77jXNPBZvfmsWDSROzUKFy+8eHKFldUEY44C1nILJzDSGF/n1gsZ8 ro7BbLD/FyTbmupoanUjwJoJRQ95b9uIbGRg6F6eoL8/NBm1rTBDY8R5AbpUWuPk 4KTG1usgEuGI5CgLV25d9rCVDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL5wUG6L pP2p7uTbWDr6AQs5eDxtMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvM0E5Qjg2QUVE MEMwMTFFRUIxMzQ1NDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneA4wDQYJKoZIhvcNAQELBQADggEBAFxLHnaKp2TSjmG5 a/4hT8d9h3QphDV17kj5bJqJfpyikF9U1S8w+ihC+0m7cGI+DS3MLmvRQ2CKVaKv QqbB5eipEzSN2B5nttUEPWxbsdBFW+iczCarwrzHSFlrEoQJ6Dqh0Bo5rCHQF+Me RP0/qg9EErOYAsWbLNl39ovEzXOBn2Qc1m6I3GTJoTqp0hKR7QgbXQkTgQLtdIdR gJxW23nhIy1mNVHOLoKNXcqKXBxHOz2YYKpzJj4v2lrAeERwLNNTuG/PdBwkI77C EMqcTO1b1tCHup036/gVjHxpxZjJoj7iJSTgb3RxVNiqUhcuQRw+vkjFSbtM6BaD J9V+5aM= -----END CERTIFICATE-----Generated at Mon Sep 8 20:29:16 2025 by rpki-client