$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa File: 2FCAEB4AE15311EEBE7C925BC4F9AE02.roa (raw, json) Hash identifier: Rgp4CAddp4zh4GvoUSZvZkXy9j88DgqM6tLo5LqrskY= Subject key identifier: 6E:1C:ED:12:24:AA:0A:FC:26:4E:16:7F:F6:3F:3E:60:A4:71:04:72 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0753 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa Signing time: Tue 02 Sep 2025 23:44:23 +0000 ROA not before: Tue 02 Sep 2025 23:44:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 5068 IP address blocks: 103.231.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322, serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 2 23:44:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b78157-b09d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:d9:47:b6:ea:28:50:d4:2b:30:c4:02:41: a4:b5:03:b9:ea:3f:f9:b5:bd:d4:02:e5:b6:f0:05: 2d:d3:fc:0c:b3:09:e4:fb:52:7e:be:7c:8c:9a:2c: e3:ae:8e:79:e7:f0:93:33:ed:11:87:21:7b:6a:cf: b1:59:09:67:d4:67:f4:ed:64:58:01:4c:12:42:4a: 53:5e:bb:93:5a:f2:3c:51:35:03:70:0c:85:4a:bf: 56:03:49:73:e6:ba:83:99:c2:f5:77:ae:1a:f3:bc: 5a:b0:39:4e:ca:11:5c:ba:f5:82:4e:6c:31:87:19: fe:dc:aa:27:b8:ee:dd:4e:fe:c9:3e:d3:8f:25:cf: 65:24:3a:19:3c:81:28:97:26:db:e4:7b:4d:d9:af: c0:2c:3f:b3:87:b4:c0:56:0b:f2:c8:e5:a0:82:b8: f7:de:86:57:95:d3:f3:a0:45:9f:d4:ec:0b:93:bd: c9:6d:69:ef:fb:4c:83:25:62:74:29:6c:63:46:42: e4:86:47:87:38:c9:8f:c6:d7:fd:d0:24:8a:0c:d7: e4:ff:9d:92:c7:fa:dc:78:ec:cc:79:d9:07:dc:ea: 6a:7c:e5:a4:20:63:c4:05:be:6f:b5:4b:19:1a:de: af:c0:ee:c9:59:db:16:83:ef:82:0b:29:16:21:08: ec:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1C:ED:12:24:AA:0A:FC:26:4E:16:7F:F6:3F:3E:60:A4:71:04:72 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/2FCAEB4AE15311EEBE7C925BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.56.0/24 Signature Algorithm: sha256WithRSAEncryption 39:91:b5:f8:91:97:af:b8:fe:34:b2:9a:34:18:5f:f3:1d:fd: 45:bd:25:ec:3d:76:22:c6:7c:16:55:60:cf:d0:c7:c7:17:96: 98:2c:ba:93:d2:68:2c:d1:dd:72:3c:ff:8d:c2:b4:9d:10:29: 26:c0:13:f5:13:96:0b:1e:ee:d8:12:bb:ad:af:f1:c6:65:8f: 12:5f:85:65:f1:28:c3:fb:66:fa:4c:18:50:06:07:be:69:1a: 29:44:f8:c0:53:fc:25:c8:94:1d:a7:25:9a:ac:38:a3:d4:89: 97:52:b6:71:9d:6f:65:9f:3a:84:b0:a6:4b:ed:19:95:b6:68: 90:1e:00:5a:05:ed:8d:f0:28:d3:49:46:17:d2:7e:8e:a0:b9: 2a:68:7e:dd:5f:48:48:b4:e9:ce:2e:95:48:7b:a0:20:fd:77: 34:cf:ed:d5:da:fb:4e:6e:a6:75:3b:cf:cf:ad:11:a1:82:8b: 19:34:c6:1c:ba:64:35:ca:22:0d:47:7b:12:a2:61:ea:54:bf: 21:f1:f5:f4:cb:a6:26:0e:c8:a7:e3:02:c9:c5:44:eb:d7:77: c6:c5:3a:ce:60:f1:3d:c4:18:5e:d5:92:be:ed:52:dc:77:ed: 6c:ff:84:3e:e9:e7:1e:be:a1:48:09:40:40:24:27:24:fa:af: d1:90:df:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjUwOTAyMjM0NDIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODE1Ny1iMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8rZR7bqKFDUKzDEAkGktQO56j/5tb3UAuW28AUt0/wMswnk+1J+vnyMmizj ro555/CTM+0RhyF7as+xWQln1Gf07WRYAUwSQkpTXruTWvI8UTUDcAyFSr9WA0lz 5rqDmcL1d64a87xasDlOyhFcuvWCTmwxhxn+3KonuO7dTv7JPtOPJc9lJDoZPIEo lybb5HtN2a/ALD+zh7TAVgvyyOWggrj33oZXldPzoEWf1OwLk73JbWnv+0yDJWJ0 KWxjRkLkhkeHOMmPxtf90CSKDNfk/52Sx/rceOzMedkH3OpqfOWkIGPEBb5vtUsZ Gt6vwO7JWdsWg++CCykWIQjszQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG4c7RIk qgr8Jk4Wf/Y/PmCkcQRyMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMkZDQUVCNEFF MTUzMTFFRUJFN0M5MjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zgwDQYJKoZIhvcNAQELBQADggEBADmRtfiRl6+4/jSy mjQYX/Md/UW9Jew9diLGfBZVYM/Qx8cXlpgsupPSaCzR3XI8/43CtJ0QKSbAE/UT lgse7tgSu62v8cZljxJfhWXxKMP7ZvpMGFAGB75pGilE+MBT/CXIlB2nJZqsOKPU iZdStnGdb2WfOoSwpkvtGZW2aJAeAFoF7Y3wKNNJRhfSfo6guSpoft1fSEi06c4u lUh7oCD9dzTP7dXa+05upnU7z8+tEaGCixk0xhy6ZDXKIg1HexKiYepUvyHx9fTL piYOyKfjAsnFROvXd8bFOs5g8T3EGF7Vkr7tUtx37Wz/hD7p5x6+oUgJQEAkJyT6 r9GQ3+E= -----END CERTIFICATE-----Generated at Sun Sep 7 11:03:22 2025 by rpki-client