$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: ICqDWqIBMrxZ5863INyqF5h5cmSlZ8OH5+rodgjND+s= Subject key identifier: 76:AA:6A:43:36:50:3A:46:3D:99:A6:F3:74:EF:B1:6B:C6:B6:C5:61 Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 023E Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Mon 01 Sep 2025 06:57:40 +0000 ROA not before: Mon 01 Sep 2025 06:57:40 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/23 maxlen: 23 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 2001:df1:6e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971, serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Sep 1 06:57:40 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68b543e4-1001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:de:e4:a5:d3:3f:12:5b:76:ea:23:64:7c:8b: a3:5c:8b:2d:7c:7c:18:66:c3:bf:77:ca:01:d9:d1: 4c:e9:93:8a:d6:2b:41:a3:d5:25:23:bb:0b:d2:3d: 4f:e6:6e:dd:f8:63:26:82:83:10:24:a7:f5:1f:ca: 50:31:d2:d4:a1:2e:9d:e2:6c:45:b8:7e:c5:cb:95: d2:bc:78:bb:a8:fa:63:31:31:56:04:05:47:42:2f: 9c:c8:fc:55:f2:a0:26:57:35:ba:3a:2a:21:8a:95: 85:e9:ea:6c:90:af:c8:d7:53:62:13:51:84:69:b4: 49:d0:e4:e0:59:bf:6e:4d:5e:7e:0c:b6:d9:f7:9d: ba:53:47:21:10:aa:82:38:83:3a:89:ea:7e:20:ac: dd:d9:f6:3d:42:48:89:b1:11:d0:ac:61:50:fc:aa: 2c:72:70:0a:e9:9a:09:f1:dd:11:80:f1:67:2a:2a: 7e:ab:66:9f:41:68:21:75:a2:0f:7f:e7:ef:bb:78: a7:f1:1d:a5:34:b4:8d:c5:1b:f4:51:3b:ba:75:14: 0c:6b:90:bb:e1:0b:8b:5b:91:1c:2d:59:48:de:96: d3:be:f0:d1:09:63:6f:d2:2b:e5:e2:51:6d:88:59: 01:61:83:3c:c8:3f:54:46:a2:90:1d:91:3f:d3:b8: 29:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AA:6A:43:36:50:3A:46:3D:99:A6:F3:74:EF:B1:6B:C6:B6:C5:61 X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 IPv6: 2001:df1:6e40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:f1:2f:39:24:79:17:13:70:a5:6a:44:f4:3e:46:34:e8:81: a4:56:d0:b0:05:b8:58:2b:72:e5:53:db:17:c5:1d:c5:0d:18: 6a:13:d4:06:a6:4b:12:19:fd:ba:ee:7d:0a:cf:53:f4:e1:db: 1e:c9:9c:ec:b2:cb:52:47:ec:c8:57:61:f5:51:af:87:29:b5: 31:35:10:4c:c6:15:7c:64:2f:05:e8:ab:e1:5e:e0:4b:25:78: 35:fe:fe:15:cf:23:ea:55:c0:7f:ca:db:a8:14:f2:7b:7f:09: 07:f5:d9:a5:b6:3e:16:fe:57:08:e2:0e:26:82:bf:89:08:3b: 95:25:a3:0d:e5:f1:d1:4f:d9:55:10:eb:ec:87:f7:9c:ee:47: f6:35:bc:4a:91:76:f9:ca:6a:3c:9b:b1:86:bc:22:63:fb:32: 67:90:dd:8d:16:7d:ca:4e:44:e7:b8:71:4d:36:c8:4c:62:c4: db:63:b9:c5:81:75:64:5f:39:1c:f9:c3:64:58:c3:62:05:4e: 64:f3:46:9f:19:a0:93:02:9d:f8:7f:a9:bd:e7:95:2c:53:f9: e2:a6:8a:83:6d:3c:d6:a7:6b:f0:b1:9e:8e:b8:5d:4d:54:c2: 80:09:23:4b:f7:de:6d:c2:78:65:c4:d4:32:be:a0:78:fd:8e: 1c:fa:a8:8b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjUwOTAxMDY1NzQwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1NDNlNC0xMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt7kpdM/Elt26iNkfIujXIstfHwYZsO/d8oB2dFM6ZOK1itBo9UlI7sL0j1P 5m7d+GMmgoMQJKf1H8pQMdLUoS6d4mxFuH7Fy5XSvHi7qPpjMTFWBAVHQi+cyPxV 8qAmVzW6OiohipWF6epskK/I11NiE1GEabRJ0OTgWb9uTV5+DLbZ9526U0chEKqC OIM6iep+IKzd2fY9QkiJsRHQrGFQ/KoscnAK6ZoJ8d0RgPFnKip+q2afQWghdaIP f+fvu3in8R2lNLSNxRv0UTu6dRQMa5C74QuLW5EcLVlI3pbTvvDRCWNv0ivl4lFt iFkBYYM8yD9URqKQHZE/07gpGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHaqakM2 UDpGPZmm83TvsWvGtsVhMB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGBAwDwQCAAIwCQMHACABDfFuQDANBgkqhkiG9w0BAQsF AAOCAQEAGvEvOSR5FxNwpWpE9D5GNOiBpFbQsAW4WCty5VPbF8UdxQ0YahPUBqZL Ehn9uu59Cs9T9OHbHsmc7LLLUkfsyFdh9VGvhym1MTUQTMYVfGQvBeir4V7gSyV4 Nf7+Fc8j6lXAf8rbqBTye38JB/XZpbY+Fv5XCOIOJoK/iQg7lSWjDeXx0U/ZVRDr 7If3nO5H9jW8SpF2+cpqPJuxhrwiY/syZ5DdjRZ9yk5E57hxTTbITGLE22O5xYF1 ZF85HPnDZFjDYgVOZPNGnxmgkwKd+H+pveeVLFP54qaKg2081qdr8LGejrhdTVTC gAkjS/febcJ4ZcTUMr6geP2OHPqoiw== -----END CERTIFICATE-----Generated at Thu Sep 18 04:14:13 2025 by rpki-client