$ rpki-client -vvf rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa File: FBD6D2BE158711E9881C4D1FC4F9AE02.roa (raw, json) Hash identifier: EsICdDI/f2T7+aUXSRJuKGq/JA27xtHkCXqw8t/ob1E= Subject key identifier: E0:77:F3:C6:E5:D2:CE:01:65:4C:97:41:6C:9F:BA:35:EE:C1:5E:98 Certificate issuer: /CN=A9126356/serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Certificate serial: 113B Authority key identifier: 72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa Signing time: Tue 26 Aug 2025 17:26:53 +0000 ROA not before: Tue 26 Aug 2025 17:26:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137994 IP address blocks: 103.97.87.0/24 maxlen: 24 103.119.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4411 (0x113b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126356, serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Validity Not Before: Aug 26 17:26:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68adee5d-f719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:2f:b3:b1:a1:af:55:c5:38:3f:94:b3:39: 18:4f:08:4a:bf:73:65:d0:fa:ef:4a:00:a0:3f:14: bc:da:34:25:e4:45:67:c5:37:8b:d2:cc:71:51:1c: c8:78:30:34:f1:38:82:4c:26:da:31:60:3d:c7:48: 62:34:5a:38:c3:27:ac:e2:2a:8b:bc:c3:0e:20:f2: 18:fe:44:86:a3:aa:bc:65:e2:71:d6:ea:3f:a4:6b: ab:7d:46:fd:02:15:30:1f:df:f1:89:1e:c0:6f:d4: 6e:28:c2:d7:a9:3b:50:4b:7b:fd:8c:ce:d6:f0:3e: d8:a1:ec:4c:50:4b:fa:98:92:52:1e:4c:6e:18:61: 2f:6f:72:99:6f:72:da:68:00:05:6f:16:5d:f5:c4: 30:3d:1f:86:0f:c5:4c:35:ed:8b:28:86:14:44:8e: f6:0f:b4:7b:1c:27:6e:47:43:ec:f3:03:79:ea:37: dc:4c:12:05:4d:29:b2:2e:af:be:9d:4e:f6:d2:83: 3e:cf:5c:95:55:16:f8:da:0e:75:f2:95:65:34:94: c7:1c:c7:d5:27:66:7e:98:7b:60:b9:95:38:03:cb: 49:cf:3f:7c:38:04:ff:6b:88:69:1c:9e:b2:a1:a9: 4f:20:82:12:09:99:63:44:b8:cf:23:a2:be:4c:bc: cf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:77:F3:C6:E5:D2:CE:01:65:4C:97:41:6C:9F:BA:35:EE:C1:5E:98 X509v3 Authority Key Identifier: keyid:72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.87.0/24 103.119.126.0/24 Signature Algorithm: sha256WithRSAEncryption 58:b9:9c:aa:ed:88:29:44:c2:bf:ff:a2:d7:0f:0f:cd:cc:cd: 25:78:96:55:29:65:a3:c0:e5:85:39:e4:6d:37:4f:04:0b:29: 69:66:ec:8d:24:d8:0c:27:4f:f2:a8:29:cc:88:e9:c9:7b:62: be:84:50:dc:c6:d8:34:70:de:9c:29:6d:dc:72:8e:3a:50:dd: 76:6b:b7:78:fb:0a:86:14:79:f6:5d:53:ff:d1:9d:45:db:9a: f6:46:f8:72:a0:c0:a6:d8:c7:e4:85:6e:b7:97:c1:9d:a9:44: a3:61:75:2e:0d:a3:18:f7:26:be:ff:48:90:95:c8:92:97:0e: 24:76:39:bd:09:ec:4b:34:ae:47:3b:04:5f:82:75:12:fc:f4: 34:21:1e:f6:14:74:d7:73:d8:af:71:42:2d:8e:0f:7d:29:85: 9b:6b:2c:64:0b:df:ce:a1:38:e3:77:54:92:e2:91:50:50:d2: 9d:64:9e:1f:94:1c:cc:4e:ab:0d:57:0d:11:64:d6:dd:8b:c0: 72:7c:13:a4:cd:53:14:25:32:31:5b:9c:65:d1:81:ef:01:89: 27:b5:58:d9:5d:e4:7f:3e:9d:d6:57:13:6d:95:83:b2:32:6b: c1:93:15:9a:f8:57:29:8d:7b:fa:85:92:d9:20:65:db:dc:82: fb:c8:44:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICETswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYzNTYxMTAvBgNVBAUTKDcyQ0QxRDU2MDkwNDQ1ODMwOEU5MUEzQUNDOUEzRDcw QjY3RDg0OTIwHhcNMjUwODI2MTcyNjUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkZWU1ZC1mNzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsncvs7Ghr1XFOD+UszkYTwhKv3Nl0PrvSgCgPxS82jQl5EVnxTeL0sxxURzI eDA08TiCTCbaMWA9x0hiNFo4wyes4iqLvMMOIPIY/kSGo6q8ZeJx1uo/pGurfUb9 AhUwH9/xiR7Ab9RuKMLXqTtQS3v9jM7W8D7YoexMUEv6mJJSHkxuGGEvb3KZb3La aAAFbxZd9cQwPR+GD8VMNe2LKIYURI72D7R7HCduR0Ps8wN56jfcTBIFTSmyLq++ nU720oM+z1yVVRb42g518pVlNJTHHMfVJ2Z+mHtguZU4A8tJzz98OAT/a4hpHJ6y oalPIIISCZljRLjPI6K+TLzPPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOB388bl 0s4BZUyXQWyfujXuwV6YMB8GA1UdIwQYMBaAFHLNHVYJBEWDCOkaOsyaPXC2fYSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjM1Ni8zM0E1M0Q3NjE1 ODcxMUU5QjhBODQwMUVDNEY5QUUwMi9jczBkVmdrRVJZTUk2Um82ekpvOWNMWjlo SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzMGRWZ2tFUllNSTZSbzZ6Sm85Y0xaOWhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYzNTYvMzNBNTNENzYxNTg3MTFFOUI4QTg0MDFFQzRGOUFFMDIvRkJENkQyQkUx NTg3MTFFOTg4MUM0RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYVcDBABnd34wDQYJKoZIhvcNAQELBQADggEBAFi5nKrt iClEwr//otcPD83MzSV4llUpZaPA5YU55G03TwQLKWlm7I0k2AwnT/KoKcyI6cl7 Yr6EUNzG2DRw3pwpbdxyjjpQ3XZrt3j7CoYUefZdU//RnUXbmvZG+HKgwKbYx+SF breXwZ2pRKNhdS4Noxj3Jr7/SJCVyJKXDiR2Ob0J7Es0rkc7BF+CdRL89DQhHvYU dNdz2K9xQi2OD30phZtrLGQL386hOON3VJLikVBQ0p1knh+UHMxOqw1XDRFk1t2L wHJ8E6TNUxQlMjFbnGXRge8BiSe1WNld5H8+ndZXE22Vg7Iya8GTFZr4VymNe/qF ktkgZdvcgvvIRGQ= -----END CERTIFICATE-----Generated at Fri Sep 19 05:54:47 2025 by rpki-client