$ rpki-client -vvf rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa File: 4911720A694F11ECB6F9B541C4F9AE02.roa (raw, json) Hash identifier: 7k8YHn/nAtUVU3VLssB80YxDHO9IxRBfL7eh5zIgJsw= Subject key identifier: EA:37:59:A1:1D:47:CB:4A:C3:43:2E:FA:0B:C5:B6:C7:A8:FD:33:A3 Certificate issuer: /CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Certificate serial: 048F Authority key identifier: BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa Signing time: Wed 01 Oct 2025 00:56:26 +0000 ROA not before: Wed 01 Oct 2025 00:56:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146962 IP address blocks: 103.172.106.0/24 maxlen: 24 103.172.107.0/24 maxlen: 24 2407:d040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138C14, serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Validity Not Before: Oct 1 00:56:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc7c3a-834e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c6:c3:86:34:57:a5:c6:ad:fb:ea:e7:b0:dd: ee:03:c8:b7:95:ce:93:63:3c:24:3a:a7:c0:2d:f8: cd:84:d5:a0:fe:6e:dd:91:86:9f:a0:11:62:01:49: b8:72:3d:44:fa:15:7a:e3:42:51:d3:df:90:36:38: 57:0b:2d:ab:b4:2a:ad:ea:33:c6:10:ca:b5:47:c7: df:b5:89:0d:21:21:8a:be:a3:46:89:39:7d:36:8a: e7:d7:01:39:27:38:1f:13:af:ad:0a:2a:55:36:c0: 95:c0:85:9c:ea:1e:48:31:70:f3:fd:e6:83:23:c3: 93:f2:fe:18:48:ce:47:7c:97:ce:46:ea:da:23:6a: 93:be:ea:86:54:07:e1:2f:12:e3:cb:d6:4b:e1:87: 53:7d:83:1c:88:a2:6e:c9:71:ac:f5:0b:29:9d:d4: 12:c4:17:83:03:6d:97:71:d4:43:68:e9:df:82:0d: 3c:60:13:fe:93:a5:0f:09:e7:22:95:af:f1:b0:95: 20:90:c1:20:d3:d9:2f:df:54:3c:ae:75:b6:69:e4: 56:f7:d6:8f:ff:db:3b:0e:2a:95:92:12:5d:b8:85: 4f:bb:05:cb:44:6d:47:45:5c:5c:e3:08:c0:26:62: 97:dd:66:c7:45:a6:f2:8a:d8:ae:95:12:8d:2e:dc: e8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:37:59:A1:1D:47:CB:4A:C3:43:2E:FA:0B:C5:B6:C7:A8:FD:33:A3 X509v3 Authority Key Identifier: keyid:BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.106.0/23 IPv6: 2407:d040::/32 Signature Algorithm: sha256WithRSAEncryption 6f:da:34:8f:ff:35:d4:1e:d2:4c:0d:a1:c6:dd:bb:88:cc:a9: 3f:48:5e:8e:03:a3:52:65:42:fa:a9:9a:8a:17:09:28:c2:a9: 25:09:9a:19:55:64:4d:78:fd:57:23:a5:16:ab:e2:35:b3:6b: 15:1b:0e:c0:31:5f:41:53:71:7e:c1:e2:55:ac:7f:d1:b5:1e: c1:81:f9:39:ef:38:98:0f:7b:74:3e:0f:bd:a5:23:e8:0f:0d: 5c:7a:e9:97:f3:a9:f8:bf:f3:d0:54:4a:09:6c:f9:35:5e:a9: 9e:47:df:a7:c1:c3:2b:d5:7a:88:30:ce:1a:7d:2f:69:02:63: 0c:b6:17:d4:52:2e:69:24:ba:73:b8:92:ef:79:2e:77:b4:78: 3d:a1:d9:cb:bb:c9:03:07:f0:32:6a:09:69:fe:26:e9:cf:29: af:65:7e:45:37:f9:d6:27:24:48:bd:5f:e5:35:08:5d:6b:fe: 01:b9:22:95:9a:01:03:3b:c9:e9:8b:02:77:b6:c9:f4:9b:f5: c6:8f:fe:80:9b:14:32:f6:f1:0a:72:3b:48:f8:98:56:69:cf: ca:04:4a:47:79:c7:48:44:bd:b0:1e:ed:51:a4:04:96:3c:53: 78:d0:6c:99:40:6c:36:f6:9e:39:28:9b:7b:09:f6:44:59:58: 19:23:65:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhDMTQxMTAvBgNVBAUTKEJCMEU1NTAzNzlGRUEyODFBODgxQTY3NDc5Qjc3Qzg2 MDJEMDEzMTQwHhcNMjUxMDAxMDA1NjI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjN2MzYS04MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmcbDhjRXpcat++rnsN3uA8i3lc6TYzwkOqfALfjNhNWg/m7dkYafoBFiAUm4 cj1E+hV640JR09+QNjhXCy2rtCqt6jPGEMq1R8fftYkNISGKvqNGiTl9Norn1wE5 JzgfE6+tCipVNsCVwIWc6h5IMXDz/eaDI8OT8v4YSM5HfJfORuraI2qTvuqGVAfh LxLjy9ZL4YdTfYMciKJuyXGs9QspndQSxBeDA22XcdRDaOnfgg08YBP+k6UPCeci la/xsJUgkMEg09kv31Q8rnW2aeRW99aP/9s7DiqVkhJduIVPuwXLRG1HRVxc4wjA JmKX3WbHRabyitiulRKNLtzoawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOo3WaEd R8tKw0Mu+gvFtseo/TOjMB8GA1UdIwQYMBaAFLsOVQN5/qKBqIGmdHm3fIYC0BMU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEMxNC8zRTRDNDYzMDVC QzQxMUVDOTYyNzkzNTRDNEY5QUUwMi91dzVWQTNuLW9vR29nYVowZWJkOGhnTFFF eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3NVZBM24tb29Hb2dhWjBlYmQ4aGdMUUV4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhDMTQvM0U0QzQ2MzA1QkM0MTFFQzk2Mjc5MzU0QzRGOUFFMDIvNDkxMTcyMEE2 OTRGMTFFQ0I2RjlCNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrGowDQQCAAIwBwMFACQH0EAwDQYJKoZIhvcNAQELBQAD ggEBAG/aNI//NdQe0kwNocbdu4jMqT9IXo4Do1JlQvqpmooXCSjCqSUJmhlVZE14 /VcjpRar4jWzaxUbDsAxX0FTcX7B4lWsf9G1HsGB+TnvOJgPe3Q+D72lI+gPDVx6 6Zfzqfi/89BUSgls+TVeqZ5H36fBwyvVeogwzhp9L2kCYwy2F9RSLmkkunO4ku95 Lne0eD2h2cu7yQMH8DJqCWn+JunPKa9lfkU3+dYnJEi9X+U1CF1r/gG5IpWaAQM7 yemLAne2yfSb9caP/oCbFDL28QpyO0j4mFZpz8oESkd5x0hEvbAe7VGkBJY8U3jQ bJlAbDb2njkom3sJ9kRZWBkjZXU= -----END CERTIFICATE-----Generated at Tue Oct 14 20:36:40 2025 by rpki-client