$ rpki-client -vvf rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/F9A783F2352C11EEAD7A4625C4F9AE02.roa File: F9A783F2352C11EEAD7A4625C4F9AE02.roa (raw, json) Hash identifier: Poe8WZPLlmMRopxum73vePC7h4bI4X/kM9rphS1LhLw= Subject key identifier: 35:74:CF:E5:94:E6:75:78:74:51:E6:83:6F:85:6B:CE:42:55:BC:C4 Certificate issuer: /CN=A912B017/serialNumber=D3D3D860F868C93ED10E2ED5A97A879454C84C16 Certificate serial: 017F Authority key identifier: D3:D3:D8:60:F8:68:C9:3E:D1:0E:2E:D5:A9:7A:87:94:54:C8:4C:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/F9A783F2352C11EEAD7A4625C4F9AE02.roa Signing time: Thu 03 Jul 2025 04:08:39 +0000 ROA not before: Thu 03 Jul 2025 04:08:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151635 IP address blocks: 103.242.9.0/24 maxlen: 24 2401:1d20:1::/48 maxlen: 48 2401:1d20:2::/48 maxlen: 48 2401:1d20:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.crl rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 05:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B017, serialNumber=D3D3D860F868C93ED10E2ED5A97A879454C84C16 Validity Not Before: Jul 3 04:08:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68660247-5c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:31:cc:6a:14:fd:ad:64:fe:8a:38:6e:9a:00: c0:47:f3:e6:a9:96:d1:c5:25:5e:c0:34:f8:dc:e9: 75:8d:91:e2:88:09:b5:fa:fb:70:d0:47:43:7f:32: 06:d5:86:a4:31:b5:aa:ab:7c:16:6f:48:e4:4e:6b: 14:d5:a3:ce:ef:cf:f6:2b:91:15:19:90:86:bb:a5: 52:63:2c:9f:49:5c:84:52:b2:82:96:04:41:3f:7e: 27:1c:6c:3d:09:ae:24:2e:4e:15:e7:89:d2:c1:75: 26:84:e2:84:89:e0:38:5b:be:d7:db:ce:12:9f:50: 7b:38:20:fd:06:4f:3b:ea:3d:88:06:ae:a2:e8:8f: ee:dc:22:1d:ff:fe:b6:41:ed:4e:9f:21:6a:ea:5c: 8b:68:f4:cb:1e:b2:e8:09:77:b7:8f:c7:6c:9c:f2: 84:d2:20:69:65:54:5e:00:31:f6:79:a0:2c:39:41: 24:52:a1:e6:ef:4d:72:0e:19:94:1c:c5:9d:6f:56: 47:26:a4:59:6a:f8:24:89:f2:73:1d:83:ba:4c:a8: f0:a0:2d:5b:f6:27:c3:4b:48:96:66:7d:ea:e3:48: 55:45:8c:59:05:95:15:83:f3:c4:3e:29:a7:3f:47: cc:54:29:da:f6:3c:d6:ce:7c:aa:1e:c4:29:2c:f6: b6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:74:CF:E5:94:E6:75:78:74:51:E6:83:6F:85:6B:CE:42:55:BC:C4 X509v3 Authority Key Identifier: keyid:D3:D3:D8:60:F8:68:C9:3E:D1:0E:2E:D5:A9:7A:87:94:54:C8:4C:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/F9A783F2352C11EEAD7A4625C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.242.9.0/24 IPv6: 2401:1d20:1::-2401:1d20:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 12:38:c0:13:e4:d8:9e:33:48:ef:e5:d3:0d:69:3a:cf:bb:55: b1:52:5d:b9:48:72:cd:27:de:b0:46:76:0a:5c:09:cc:2c:6b: c0:ff:95:0f:cf:9d:c9:b7:ca:d2:39:c7:a9:07:21:72:1e:be: 40:3d:1c:c8:75:25:ca:85:92:03:10:21:a6:33:02:4c:b5:3c: 88:97:3b:e8:1b:cc:2b:13:ec:fb:81:42:6d:04:12:cb:51:62: ec:6d:4c:4d:2f:99:e2:28:12:e5:b1:5a:17:41:60:19:2a:20: 57:b7:98:48:4e:f3:a4:3a:83:ce:40:e2:f7:0a:96:52:74:2e: 94:6d:4a:eb:e2:31:ba:94:05:cb:b3:c3:6e:b5:40:49:8f:93: fe:4e:9a:41:b3:e5:c2:4a:5d:91:b2:4a:97:26:f7:a2:71:29: d6:e8:54:de:b6:ba:ae:2a:3a:df:77:a0:cb:89:d5:21:41:a6: 41:ac:4d:91:30:0d:25:88:e6:cd:f2:c4:6b:a1:f8:cb:d3:21: 30:94:a2:4a:b3:2f:11:b7:89:0c:c5:87:64:a2:f4:ed:a1:15: 00:3d:a9:da:68:f4:18:3a:04:d2:38:30:db:ef:3d:28:0c:b8: 19:85:b9:cd:64:17:ce:48:1c:b7:16:ca:68:a0:55:20:58:bc: 1e:7c:37:59 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwMTcxMTAvBgNVBAUTKEQzRDNEODYwRjg2OEM5M0VEMTBFMkVENUE5N0E4Nzk0 NTRDODRDMTYwHhcNMjUwNzAzMDQwODM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDI0Ny01YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5THMahT9rWT+ijhumgDAR/PmqZbRxSVewDT43Ol1jZHiiAm1+vtw0EdDfzIG 1YakMbWqq3wWb0jkTmsU1aPO78/2K5EVGZCGu6VSYyyfSVyEUrKClgRBP34nHGw9 Ca4kLk4V54nSwXUmhOKEieA4W77X284Sn1B7OCD9Bk876j2IBq6i6I/u3CId//62 Qe1OnyFq6lyLaPTLHrLoCXe3j8dsnPKE0iBpZVReADH2eaAsOUEkUqHm701yDhmU HMWdb1ZHJqRZavgkifJzHYO6TKjwoC1b9ifDS0iWZn3q40hVRYxZBZUVg/PEPimn P0fMVCna9jzWznyqHsQpLPa2HQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFDV0z+WU 5nV4dFHmg2+Fa85CVbzEMB8GA1UdIwQYMBaAFNPT2GD4aMk+0Q4u1al6h5RUyEwW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjAxNy9ERTc1RjIyMjJB MTMxMUVFOTVENThBNjZDNEY5QUUwMi8wOVBZWVBob3lUN1JEaTdWcVhxSGxGVElU QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5UFlZUGhveVQ3UkRpN1ZxWHFIbEZUSVRCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIwMTcvREU3NUYyMjIyQTEzMTFFRTk1RDU4QTY2QzRGOUFFMDIvRjlBNzgzRjIz NTJDMTFFRUFEN0E0NjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBABn8gkwGgQCAAIwFDASAwcAJAEdIAABAwcCJAEdIAAAMA0G CSqGSIb3DQEBCwUAA4IBAQASOMAT5NieM0jv5dMNaTrPu1WxUl25SHLNJ96wRnYK XAnMLGvA/5UPz53Jt8rSOcepByFyHr5APRzIdSXKhZIDECGmMwJMtTyIlzvoG8wr E+z7gUJtBBLLUWLsbUxNL5niKBLlsVoXQWAZKiBXt5hITvOkOoPOQOL3CpZSdC6U bUrr4jG6lAXLs8NutUBJj5P+TppBs+XCSl2RskqXJveicSnW6FTetrquKjrfd6DL idUhQaZBrE2RMA0liObN8sRrofjL0yEwlKJKsy8Rt4kMxYdkovTtoRUAPanaaPQY OgTSODDb7z0oDLgZhbnNZBfOSBy3FspooFUgWLwefDdZ -----END CERTIFICATE-----Generated at Tue Oct 28 14:55:46 2025 by rpki-client