$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa File: 8E6DB97451C111EE9E564B29C4F9AE02.roa (raw, json) Hash identifier: x5ZXcyZot9NxnkynC1UvcdUEHIRqiQ9BeutOwqKe7/Q= Subject key identifier: 51:BC:47:B6:4A:07:D6:31:B0:15:04:13:DA:6E:70:A2:B1:CB:FC:00 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 074C Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa Signing time: Tue 02 Sep 2025 23:44:17 +0000 ROA not before: Tue 02 Sep 2025 23:44:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141676 IP address blocks: 103.24.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322, serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 2 23:44:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b78151-feba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:db:a7:53:f3:d3:ac:4e:f0:cf:8e:a7:1f: a8:90:e0:f1:3e:aa:2f:e6:5f:cf:28:bb:df:23:33: 4c:3b:f7:44:fa:f8:be:44:10:28:e3:30:4a:8a:db: af:35:38:6f:fc:83:fe:c6:10:73:1b:e0:ab:ec:69: ed:47:c9:08:03:71:5b:6c:19:ae:ac:5f:00:46:20: e9:d8:86:7f:84:fd:d6:1e:8c:26:08:06:d5:f3:83: 56:1b:62:e2:32:f1:e4:be:0f:9f:98:1d:cf:09:c5: b1:96:8b:3d:78:43:ac:5c:09:ed:65:ea:4f:56:e6: c1:25:59:bd:2d:c6:60:50:99:a5:90:72:2d:8b:5b: 0d:24:bd:24:c0:1c:34:fd:f5:1a:04:e2:89:bb:92: bf:df:5e:25:dd:39:40:c7:7a:e7:40:d4:df:59:cc: bc:e5:a7:96:8d:e9:81:6e:0e:4b:21:31:07:09:dc: 06:3b:5e:e7:02:15:05:e8:87:ee:96:53:b4:8f:a5: cd:54:ad:b8:ca:e3:8c:94:5e:65:56:93:7b:4b:8f: 49:6b:cc:93:4f:d8:21:f0:c2:8c:e1:d5:b3:2b:23: a7:e5:d2:aa:f5:63:e9:85:c1:6e:47:61:02:d1:0d: 8b:a8:19:9a:27:94:0c:34:dd:b9:c8:0e:21:88:27: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BC:47:B6:4A:07:D6:31:B0:15:04:13:DA:6E:70:A2:B1:CB:FC:00 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.216.0/24 Signature Algorithm: sha256WithRSAEncryption 46:80:97:ab:28:e5:4d:16:82:dc:cd:b3:39:1b:e7:65:b7:f8: 5f:85:30:a2:db:60:eb:e5:8b:fb:11:ba:23:5c:4d:1c:1d:a7: f2:44:f6:53:ab:e6:85:18:57:43:f9:44:d5:45:55:23:6e:07: d7:70:a6:b4:b4:37:ad:1e:5d:ca:62:f2:c8:83:2d:71:f4:7a: 21:c2:7f:0b:30:93:2f:5a:ec:8b:cc:32:1b:9d:5b:98:43:eb: 57:f1:a9:39:f3:5e:4a:69:0c:29:e0:c1:9f:1f:28:56:99:1f: f9:b6:c0:e5:14:4d:f2:ff:dd:80:21:ff:08:2f:3e:6d:a0:62: 88:ae:3c:e8:39:5d:34:dc:a1:f7:ba:33:92:c1:a6:77:92:8f: b8:7e:08:eb:85:a4:1c:0b:cb:62:9d:fe:ec:b8:78:c1:c0:14: 25:75:fd:db:a6:91:f9:f8:17:40:1a:b1:d3:72:d3:8c:1d:03: bd:7e:c0:f3:e7:5c:9b:1d:53:2a:5a:89:f4:e0:91:0e:37:89: d0:e0:11:af:ba:c9:bd:73:a3:08:15:8c:f1:5b:63:68:06:18: 91:4d:f0:89:00:42:94:94:27:cc:da:1f:27:63:59:61:1d:83: 80:b8:90:8e:af:87:7f:13:6d:ac:2a:7b:46:6a:db:3c:94:32: c7:b1:7d:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjUwOTAyMjM0NDE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODE1MS1mZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyXbp1Pz06xO8M+Opx+okODxPqov5l/PKLvfIzNMO/dE+vi+RBAo4zBKituv NThv/IP+xhBzG+Cr7GntR8kIA3FbbBmurF8ARiDp2IZ/hP3WHowmCAbV84NWG2Li MvHkvg+fmB3PCcWxlos9eEOsXAntZepPVubBJVm9LcZgUJmlkHIti1sNJL0kwBw0 /fUaBOKJu5K/314l3TlAx3rnQNTfWcy85aeWjemBbg5LITEHCdwGO17nAhUF6Ifu llO0j6XNVK24yuOMlF5lVpN7S49Ja8yTT9gh8MKM4dWzKyOn5dKq9WPphcFuR2EC 0Q2LqBmaJ5QMNN25yA4hiCdNAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFG8R7ZK B9YxsBUEE9pucKKxy/wAMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOEU2REI5NzQ1 MUMxMTFFRTlFNTY0QjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGNgwDQYJKoZIhvcNAQELBQADggEBAEaAl6so5U0WgtzN szkb52W3+F+FMKLbYOvli/sRuiNcTRwdp/JE9lOr5oUYV0P5RNVFVSNuB9dwprS0 N60eXcpi8siDLXH0eiHCfwswky9a7IvMMhudW5hD61fxqTnzXkppDCngwZ8fKFaZ H/m2wOUUTfL/3YAh/wgvPm2gYoiuPOg5XTTcofe6M5LBpneSj7h+COuFpBwLy2Kd /uy4eMHAFCV1/dumkfn4F0AasdNy04wdA71+wPPnXJsdUypaifTgkQ43idDgEa+6 yb1zowgVjPFbY2gGGJFN8IkAQpSUJ8zaHydjWWEdg4C4kI6vh38Tbawqe0Zq2zyU MsexfS8= -----END CERTIFICATE-----Generated at Sun Sep 7 10:53:02 2025 by rpki-client