$ rpki-client -vvf rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa File: 4A6A598EDB1311EB9B223B40C4F9AE02.roa (raw, json) Hash identifier: fPyMz9KhC5TO2GXmYwuNL/8fF1nSLqleV8d4Bv+swGQ= Subject key identifier: B7:63:D5:D0:15:15:2E:E9:B0:59:A0:B6:7C:FE:E4:DC:07:C8:A9:7C Certificate issuer: /CN=A9134CF6/serialNumber=27CC1291845507ACAFC287B77FE94FEA53DDC9C2 Certificate serial: 0C37 Authority key identifier: 27:CC:12:91:84:55:07:AC:AF:C2:87:B7:7F:E9:4F:EA:53:DD:C9:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa Signing time: Mon 26 May 2025 19:11:56 +0000 ROA not before: Mon 26 May 2025 19:11:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138694 IP address blocks: 103.136.204.0/22 maxlen: 22 103.136.204.0/23 maxlen: 23 103.136.204.0/24 maxlen: 24 103.136.205.0/24 maxlen: 24 103.136.206.0/23 maxlen: 23 103.136.206.0/24 maxlen: 24 103.136.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.crl rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134CF6, serialNumber=27CC1291845507ACAFC287B77FE94FEA53DDC9C2 Validity Not Before: May 26 19:11:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6834bcfc-e04b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4d:d7:a4:41:b5:8d:e4:f3:c3:30:dc:be:14: 79:de:15:c9:0f:28:ed:e8:d6:f0:3c:66:ea:09:3d: 83:7f:bd:f4:ce:14:f9:63:ab:fe:d5:75:fc:dc:9e: 46:e6:fe:38:86:47:19:08:53:4b:35:d4:41:06:6a: 8f:16:eb:1c:ff:93:cf:7c:1e:3b:e9:16:01:1d:6d: d4:32:03:8b:95:c5:78:a2:0f:77:13:dc:01:43:ba: 1e:62:88:05:fc:6c:79:75:1b:09:1a:c7:e7:e2:df: 8d:c1:9d:9a:d0:64:28:18:d4:4c:65:54:55:6b:bf: 7a:aa:0f:c1:6a:be:b3:b1:05:10:eb:74:e4:7f:c3: bf:c4:52:84:f7:f5:ee:68:f1:e4:c0:3f:d0:29:c2: e2:6e:d8:36:01:24:27:49:95:24:db:e4:12:da:09: c0:61:51:6a:44:69:31:a5:0d:3a:7f:b2:bb:be:cb: 23:d9:b7:26:ae:a4:c8:f6:b7:19:b2:96:97:ca:32: 75:b0:ff:e1:39:41:4d:3d:da:a3:e0:5d:6d:5c:51: 68:54:77:98:07:52:ba:9f:36:c4:de:57:70:3e:22: 33:ac:2b:47:0c:f8:10:c4:83:33:3a:cd:8a:71:94: ee:82:ae:92:2d:b2:09:f6:10:7d:b5:de:4c:1e:99: 4a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:63:D5:D0:15:15:2E:E9:B0:59:A0:B6:7C:FE:E4:DC:07:C8:A9:7C X509v3 Authority Key Identifier: keyid:27:CC:12:91:84:55:07:AC:AF:C2:87:B7:7F:E9:4F:EA:53:DD:C9:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/J8wSkYRVB6yvwoe3f-lP6lPdycI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8wSkYRVB6yvwoe3f-lP6lPdycI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134CF6/FD25018A0B7D11EA98E8FA3CC4F9AE02/4A6A598EDB1311EB9B223B40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.204.0/22 Signature Algorithm: sha256WithRSAEncryption df:ec:a6:3e:00:4d:a4:a0:e8:a4:80:fd:d0:21:f1:c7:46:87: dc:bf:d9:27:93:ba:fe:91:6e:71:a0:c5:ed:6b:9f:d9:5c:dc: 1a:4a:fe:bb:f1:34:d2:6c:87:d4:6e:c4:1b:1b:00:e1:d6:38: 07:8c:c2:a6:3c:0a:75:d7:7d:b8:b9:31:e1:0e:4c:c0:53:c1: 43:fd:13:ef:67:7c:de:85:39:64:82:0a:50:d8:da:7c:00:03: 84:ed:a4:92:f7:45:42:b2:9b:5d:ba:5f:09:f7:60:8f:37:e3: b5:b2:37:82:aa:7e:63:55:66:d2:43:5f:21:2f:05:30:12:97: 41:9b:54:48:78:e3:ba:e5:04:0c:19:9b:59:6c:9a:1d:6c:33: 99:ea:be:d4:c3:e5:88:08:1e:e8:dd:5f:20:10:57:02:d8:3e: b9:16:f0:16:89:c0:a2:76:35:9b:d2:c7:3a:2c:55:9c:45:61: 94:22:2e:99:55:97:0a:9b:d7:05:ea:b9:9e:7a:99:34:8d:a1: 8b:3e:fb:70:b6:bb:a6:3b:f1:db:55:a6:1d:d5:55:a1:24:37: 6c:7e:c4:37:09:dc:0b:6a:be:1e:01:16:35:31:21:da:db:d4: 49:ed:0f:54:aa:d3:69:32:51:86:98:93:ad:fb:72:30:13:9f: 90:c5:0a:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRDRjYxMTAvBgNVBAUTKDI3Q0MxMjkxODQ1NTA3QUNBRkMyODdCNzdGRTk0RkVB NTNEREM5QzIwHhcNMjUwNTI2MTkxMTU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0YmNmYy1lMDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA403XpEG1jeTzwzDcvhR53hXJDyjt6NbwPGbqCT2Df730zhT5Y6v+1XX83J5G 5v44hkcZCFNLNdRBBmqPFusc/5PPfB476RYBHW3UMgOLlcV4og93E9wBQ7oeYogF /Gx5dRsJGsfn4t+NwZ2a0GQoGNRMZVRVa796qg/Bar6zsQUQ63Tkf8O/xFKE9/Xu aPHkwD/QKcLibtg2ASQnSZUk2+QS2gnAYVFqRGkxpQ06f7K7vssj2bcmrqTI9rcZ spaXyjJ1sP/hOUFNPdqj4F1tXFFoVHeYB1K6nzbE3ldwPiIzrCtHDPgQxIMzOs2K cZTugq6SLbIJ9hB9td5MHplKTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLdj1dAV FS7psFmgtnz+5NwHyKl8MB8GA1UdIwQYMBaAFCfMEpGEVQesr8KHt3/pT+pT3cnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNENGNi9GRDI1MDE4QTBC N0QxMUVBOThFOEZBM0NDNEY5QUUwMi9KOHdTa1lSVkI2eXZ3b2UzZi1sUDZsUGR5 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4d1NrWVJWQjZ5dndvZTNmLWxQNmxQZHljSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRDRjYvRkQyNTAxOEEwQjdEMTFFQTk4RThGQTNDQzRGOUFFMDIvNEE2QTU5OEVE QjEzMTFFQjlCMjIzQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniMwwDQYJKoZIhvcNAQELBQADggEBAN/spj4ATaSg6KSA /dAh8cdGh9y/2SeTuv6RbnGgxe1rn9lc3BpK/rvxNNJsh9RuxBsbAOHWOAeMwqY8 CnXXfbi5MeEOTMBTwUP9E+9nfN6FOWSCClDY2nwAA4TtpJL3RUKym126Xwn3YI83 47WyN4KqfmNVZtJDXyEvBTASl0GbVEh447rlBAwZm1lsmh1sM5nqvtTD5YgIHujd XyAQVwLYPrkW8BaJwKJ2NZvSxzosVZxFYZQiLplVlwqb1wXquZ56mTSNoYs++3C2 u6Y78dtVph3VVaEkN2x+xDcJ3Atqvh4BFjUxIdrb1EntD1Sq02kyUYaYk637cjAT n5DFCnM= -----END CERTIFICATE-----Generated at Tue Nov 4 12:15:07 2025 by rpki-client