$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa File: 49CEB44A28D111EDB364C870C4F9AE02.roa (raw, json) Hash identifier: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU= Subject key identifier: 9A:82:E1:2B:30:C3:94:18:E3:07:5E:BC:C8:DE:C3:A6:E2:B9:B7:18 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0239 Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa Signing time: Thu 05 Jun 2025 01:49:34 +0000 ROA not before: Thu 05 Jun 2025 01:49:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56294 IP address blocks: 103.215.160.0/24 maxlen: 24 103.215.161.0/24 maxlen: 24 103.215.162.0/24 maxlen: 24 103.215.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Jun 5 01:49:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840f7ae-bc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:59:ce:30:c6:55:3c:28:fe:5b:f0:20:5f:5c: bb:ed:38:17:f0:62:c1:e5:63:3a:4d:eb:7b:03:65: f5:20:f7:26:d6:24:c6:f3:30:99:e1:0d:ec:df:f7: 45:12:f0:88:a7:8b:cf:fc:1a:43:9c:d8:b6:3a:0d: 35:69:c7:e0:4d:d1:dd:c5:11:76:fa:63:88:08:e0: 11:86:c0:71:ee:94:f2:93:3d:1b:60:1d:75:23:a5: 79:70:9a:32:d0:9c:69:a6:00:82:44:8f:b0:c9:58: 3a:a2:ab:dc:06:ee:25:a3:99:56:8f:ad:fb:47:e9: 79:24:9c:59:d9:8a:db:1b:83:2d:b6:c0:0c:af:13: 3e:75:f0:07:cc:c0:b2:e7:3f:1e:de:c2:01:0a:a5: a0:44:b1:f2:d9:ca:38:6c:2e:d2:12:d4:0f:33:1b: 41:8f:ae:81:2e:a8:b7:d6:c7:45:a7:30:78:30:d6: 0d:8c:40:29:2c:0a:66:8f:eb:45:c4:74:5e:b7:71: c3:1c:3f:df:3f:6c:20:24:1c:9a:5f:6f:42:45:a2: 9e:a0:80:a3:ec:a4:4c:49:44:29:59:56:55:0a:2f: 9c:74:6f:41:55:51:05:4c:3c:43:4a:48:b8:b7:7f: 09:be:50:d0:39:24:12:00:df:8f:25:35:7d:77:35: d8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:82:E1:2B:30:C3:94:18:E3:07:5E:BC:C8:DE:C3:A6:E2:B9:B7:18 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.160.0/22 Signature Algorithm: sha256WithRSAEncryption 35:fd:5d:3d:48:16:aa:38:7f:df:e8:36:bd:6d:7e:c3:db:ec: 4c:0b:50:63:2f:d2:d5:0e:a8:bf:ea:2a:bf:d4:e7:ea:30:ea: ea:a4:4c:bc:40:24:46:3c:06:59:87:72:97:bc:8c:2d:1a:8c: 01:eb:ff:3c:35:b4:58:b8:13:fa:98:f8:81:b8:de:2d:a8:e0: 4f:b1:76:32:01:76:ed:67:27:a6:10:d6:b1:a7:13:5a:18:88: 2f:1f:5b:92:bd:7c:b7:86:a0:e4:e2:a5:07:08:84:fd:60:5f: 1e:39:33:8b:d1:ac:76:c1:89:85:a4:09:a3:87:4c:4d:36:31: 8b:2b:56:83:60:03:d6:b5:f4:49:2f:13:b0:c8:bf:14:bf:6a: 9a:e0:a1:e5:7c:c1:2c:3d:ed:7d:9f:53:c7:4b:e8:f0:2a:62: 1c:ca:d8:26:aa:fd:0b:ff:ac:ff:b4:79:a7:4b:b0:2a:60:89: 6e:5f:97:63:fa:55:57:5f:c0:db:78:ba:af:77:f3:d4:4e:25: cd:d9:48:8e:89:3e:45:a0:e5:d7:d4:e6:77:c3:18:56:53:21: ea:ba:19:8c:32:a0:5e:f5:c8:7d:0c:64:d8:13:16:34:ca:4c: c5:71:25:a0:9a:4a:e7:44:d7:a9:d4:d0:33:d8:16:28:33:98: 7e:e8:e3:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUwNjA1MDE0OTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjdhZS1iYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlnOMMZVPCj+W/AgX1y77TgX8GLB5WM6Tet7A2X1IPcm1iTG8zCZ4Q3s3/dF EvCIp4vP/BpDnNi2Og01acfgTdHdxRF2+mOICOARhsBx7pTykz0bYB11I6V5cJoy 0JxppgCCRI+wyVg6oqvcBu4lo5lWj637R+l5JJxZ2YrbG4MttsAMrxM+dfAHzMCy 5z8e3sIBCqWgRLHy2co4bC7SEtQPMxtBj66BLqi31sdFpzB4MNYNjEApLApmj+tF xHRet3HDHD/fP2wgJByaX29CRaKeoICj7KRMSUQpWVZVCi+cdG9BVVEFTDxDSki4 t38JvlDQOSQSAN+PJTV9dzXYsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJqC4Ssw w5QY4wdevMjew6biubcYMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMjgvNEJEQUVFREMyOENFMTFFREI2ODMzOTZFQzRGOUFFMDIvNDlDRUI0NEEy OEQxMTFFREIzNjRDODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn16AwDQYJKoZIhvcNAQELBQADggEBADX9XT1IFqo4f9/o Nr1tfsPb7EwLUGMv0tUOqL/qKr/U5+ow6uqkTLxAJEY8BlmHcpe8jC0ajAHr/zw1 tFi4E/qY+IG43i2o4E+xdjIBdu1nJ6YQ1rGnE1oYiC8fW5K9fLeGoOTipQcIhP1g Xx45M4vRrHbBiYWkCaOHTE02MYsrVoNgA9a19EkvE7DIvxS/aprgoeV8wSw97X2f U8dL6PAqYhzK2Caq/Qv/rP+0eadLsCpgiW5fl2P6VVdfwNt4uq9389ROJc3ZSI6J PkWg5dfU5nfDGFZTIeq6GYwyoF71yH0MZNgTFjTKTMVxJaCaSudE16nU0DPYFigz mH7o49w= -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:09 2025 by rpki-client