$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/42B13940C3C011EE86C2C317C4F9AE02.roa File: 42B13940C3C011EE86C2C317C4F9AE02.roa (raw, json) Hash identifier: ohub1su2eLkcxe2mnfMUSQeEjo+GPwYrkG+K0CsdsDY= Subject key identifier: E2:48:CD:87:54:A5:8C:70:0F:48:E1:07:AA:59:D2:E2:C8:39:8D:74 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 096C Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/42B13940C3C011EE86C2C317C4F9AE02.roa Signing time: Sun 14 Sep 2025 20:31:24 +0000 ROA not before: Sun 14 Sep 2025 20:31:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139351 IP address blocks: 103.141.158.0/24 maxlen: 24 103.141.159.0/24 maxlen: 24 2400:17a0::/48 maxlen: 48 2400:17a0:1::/48 maxlen: 48 2400:17a0:2::/48 maxlen: 48 2400:17a0:3::/48 maxlen: 48 2400:17a0:4::/48 maxlen: 48 2400:17a0:5::/48 maxlen: 48 2400:17a0:6::/48 maxlen: 48 2400:17a0:7::/48 maxlen: 48 2400:17a0:8::/48 maxlen: 48 2400:17a0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2412 (0x96c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Sep 14 20:31:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c7261c-1e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:69:44:35:08:de:e4:60:2e:77:aa:b8:68:6f: a7:b2:2f:dc:02:ad:19:1c:59:07:9e:98:56:6e:70: 88:54:f7:83:30:ca:c9:27:bc:6c:7d:0c:d0:19:33: 8e:b2:35:bf:0b:ac:d9:cb:9e:79:49:6a:88:b2:6f: 42:f8:2b:55:2a:6f:f3:20:62:13:88:c8:98:11:ed: ab:33:fe:82:19:77:d0:ac:37:8a:b5:09:5a:8a:a5: ee:c4:11:1c:ad:6a:0e:65:f0:50:10:3e:1f:a0:15: 05:56:85:2e:93:cf:f0:8f:57:1c:51:86:1c:2f:f1: 45:d3:8b:00:7d:44:1b:8b:23:83:0f:f4:b4:3b:6c: b4:0e:bc:6c:f8:b6:1c:27:ff:4d:4d:f1:23:f5:f0: d0:7a:63:8d:33:79:1f:d1:26:31:6d:85:3d:f9:1f: a7:a6:0f:44:7e:a9:a4:d4:2f:51:a2:ed:e3:cc:da: 60:ec:a4:4e:82:6f:c0:c2:ba:d6:d5:f0:b7:0d:af: e1:0e:3d:72:fd:84:92:ec:17:87:c5:f2:6f:ad:e8: 2e:48:85:52:3c:89:fc:07:1b:93:72:5d:88:a0:7b: ef:c8:7f:7d:df:a6:ff:d0:9d:92:40:45:45:62:9f: 9c:53:47:c3:ee:3c:35:0c:a4:26:2a:d8:2c:db:ad: d8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:48:CD:87:54:A5:8C:70:0F:48:E1:07:AA:59:D2:E2:C8:39:8D:74 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/42B13940C3C011EE86C2C317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.158.0/23 IPv6: 2400:17a0::-2400:17a0:9:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6b:70:95:5b:c1:1f:c9:f4:90:91:93:3c:d8:19:18:38:98:78: 2b:00:fe:fd:b5:29:4a:b8:8c:ca:3f:6c:a6:7f:36:62:2d:3c: b2:a4:6d:1f:4d:9f:34:79:70:82:a6:1e:f0:bc:79:d0:d8:1e: bf:73:6a:87:4f:72:2e:c0:c3:c0:28:d2:9e:4a:98:0b:50:99: 7c:71:12:16:11:0c:56:0a:7b:8b:11:e1:39:9a:ed:3a:b3:e3: 95:02:77:f9:62:b2:ed:67:b9:a8:35:36:e6:de:16:14:66:f5: a7:b9:43:73:32:02:ee:50:3f:d5:c9:4f:c7:61:4c:1e:df:4e: 3b:44:7b:68:ce:ae:f4:1c:86:0e:53:2d:e6:9b:ee:d9:3f:05: af:c9:bf:bf:bc:d8:95:18:6b:34:99:f6:80:0d:6b:5b:eb:92: a2:4d:25:61:9c:4d:74:10:16:46:11:2b:45:7a:75:18:53:b2: a5:60:83:55:b2:4d:51:b4:8c:c7:64:6d:57:57:33:fd:48:19: ea:60:0a:d7:52:6a:fc:35:18:e0:83:87:46:7e:39:8f:b5:39: af:92:c0:18:9f:21:75:bb:51:bd:90:fc:a1:29:a8:a4:70:8a: 16:82:5b:24:75:15:54:2b:f5:94:dd:8b:7c:81:b5:1d:12:d1: 0f:83:c1:c0 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUwOTE0MjAzMTI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3MjYxYy0xZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42lENQje5GAud6q4aG+nsi/cAq0ZHFkHnphWbnCIVPeDMMrJJ7xsfQzQGTOO sjW/C6zZy555SWqIsm9C+CtVKm/zIGITiMiYEe2rM/6CGXfQrDeKtQlaiqXuxBEc rWoOZfBQED4foBUFVoUuk8/wj1ccUYYcL/FF04sAfUQbiyODD/S0O2y0Drxs+LYc J/9NTfEj9fDQemONM3kf0SYxbYU9+R+npg9Efqmk1C9Rou3jzNpg7KROgm/AwrrW 1fC3Da/hDj1y/YSS7BeHxfJvreguSIVSPIn8BxuTcl2IoHvvyH9936b/0J2SQEVF Yp+cU0fD7jw1DKQmKtgs263YSQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFOJIzYdU pYxwD0jhB6pZ0uLIOY10MB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJCQzkvODNGRjlGRUNBQTgxMTFFQUI0MkEwNDMzQzRGOUFFMDIvNDJCMTM5NDBD M0MwMTFFRTg2QzJDMzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnjZ4wGAQCAAIwEjAQAwUFJAAXoAMHASQAF6AACDANBgkq hkiG9w0BAQsFAAOCAQEAa3CVW8EfyfSQkZM82BkYOJh4KwD+/bUpSriMyj9spn82 Yi08sqRtH02fNHlwgqYe8Lx50Ngev3Nqh09yLsDDwCjSnkqYC1CZfHESFhEMVgp7 ixHhOZrtOrPjlQJ3+WKy7We5qDU25t4WFGb1p7lDczIC7lA/1clPx2FMHt9OO0R7 aM6u9ByGDlMt5pvu2T8Fr8m/v7zYlRhrNJn2gA1rW+uSok0lYZxNdBAWRhErRXp1 GFOypWCDVbJNUbSMx2RtV1cz/UgZ6mAK11Jq/DUY4IOHRn45j7U5r5LAGJ8hdbtR vZD8oSmopHCKFoJbJHUVVCv1lN2LfIG1HRLRD4PBwA== -----END CERTIFICATE-----Generated at Fri Sep 19 10:18:54 2025 by rpki-client