$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa File: 9FA2A3588ABE11EFA0AEF447C4F9AE02.roa (raw, json) Hash identifier: 531oQX+rVA8FSL6e8iLTYKTaSv/hBNMulZCg1OlX9WE= Subject key identifier: 69:4D:18:A9:9B:14:45:98:2D:D9:89:84:4F:1E:2C:F7:9E:D7:06:19 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0751 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa Signing time: Tue 02 Sep 2025 23:44:22 +0000 ROA not before: Tue 02 Sep 2025 23:44:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322, serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 2 23:44:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b78155-f7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8e:63:28:c7:01:fa:c2:0e:7a:3f:76:d6:c4: 0f:cd:93:b1:2b:39:26:d1:cc:93:a2:40:5d:a7:4b: 94:dc:87:23:05:0c:74:3c:2e:79:8b:01:c6:86:42: 5f:74:bc:a4:ca:84:bb:2a:81:f9:9c:5c:bb:c4:f0: 14:0e:45:58:c6:b1:e6:32:50:a2:3f:c6:28:7f:5b: c8:e1:e3:b7:59:fb:90:50:65:d7:6b:68:1a:97:4a: e8:cd:85:3a:b4:07:75:d0:9d:7c:93:a0:3f:b0:9a: 80:f9:7c:b1:d7:a7:69:fd:aa:bc:c7:09:28:47:3d: 02:b2:bc:53:46:94:71:2b:03:44:52:dd:b7:f4:74: 07:47:cc:c7:ec:94:e7:8a:7b:3d:74:d9:04:67:fd: 66:17:9a:35:20:2a:6c:1a:2e:65:97:36:83:f8:8d: 1e:05:e4:d9:a6:d4:f2:c6:25:fa:78:83:7a:b3:77: 84:f5:b5:f5:d8:4c:0b:91:e1:e2:d2:f1:fb:1c:78: 31:fb:10:d1:0f:94:5a:a7:58:ea:ae:dc:f0:57:5f: 71:65:b9:2c:1d:3f:55:a6:9e:be:a9:76:c4:9c:34: b2:37:dd:b5:6e:5f:48:13:72:dc:e1:d0:71:1b:32: 7b:aa:b6:fe:9e:a9:bd:36:6f:00:7b:ad:3d:ae:89: 95:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4D:18:A9:9B:14:45:98:2D:D9:89:84:4F:1E:2C:F7:9E:D7:06:19 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.198.0/24 Signature Algorithm: sha256WithRSAEncryption c2:df:22:4e:cf:f2:b4:39:b9:65:d5:6f:53:a5:f1:6e:a0:12: 5f:03:04:96:1e:9d:f3:dd:de:a9:5b:54:18:50:d3:13:92:31: ca:bd:3b:5c:49:2b:3d:b9:c1:cc:95:fd:67:5a:6a:73:09:fe: a7:cc:6b:ed:55:a1:b0:e5:0e:4d:0c:cc:81:81:5d:e8:c5:41: 52:85:d3:20:5d:f2:40:86:4f:71:9e:34:f8:bd:6c:69:92:b0: 86:b4:7a:a6:b2:5a:8c:c8:90:25:e9:78:09:5e:d6:61:95:29: 8e:95:c6:c5:24:7c:64:08:96:e5:2b:a5:85:0d:a2:a1:21:a5: 43:93:cb:32:40:9b:9a:62:0f:cb:13:0e:c8:51:1d:03:8f:51: 4c:b3:b8:e1:05:75:d0:50:8a:f1:e4:b8:66:e3:a8:b6:14:bd: 51:1d:82:85:e4:44:5a:e3:3c:54:1c:54:11:4c:42:70:49:64: 66:d8:5a:3b:15:0f:31:7a:3f:d0:01:19:a0:9c:c1:83:4f:35: 42:e2:20:26:ea:43:6b:7d:3f:52:8a:e6:e8:a2:dd:9a:cc:b5: 0b:8f:ee:71:0d:38:64:e2:c4:12:f9:e9:e3:66:54:4a:88:19: 37:fc:9a:b0:9d:92:65:19:c8:94:fb:37:24:0c:51:ee:c3:14: d2:dc:54:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjUwOTAyMjM0NDIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODE1NS1mN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7o5jKMcB+sIOej921sQPzZOxKzkm0cyTokBdp0uU3IcjBQx0PC55iwHGhkJf dLykyoS7KoH5nFy7xPAUDkVYxrHmMlCiP8Yof1vI4eO3WfuQUGXXa2gal0rozYU6 tAd10J18k6A/sJqA+Xyx16dp/aq8xwkoRz0CsrxTRpRxKwNEUt239HQHR8zH7JTn ins9dNkEZ/1mF5o1ICpsGi5llzaD+I0eBeTZptTyxiX6eIN6s3eE9bX12EwLkeHi 0vH7HHgx+xDRD5Rap1jqrtzwV19xZbksHT9Vpp6+qXbEnDSyN921bl9IE3Lc4dBx GzJ7qrb+nqm9Nm8Ae609romVdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGlNGKmb FEWYLdmJhE8eLPee1wYZMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOUZBMkEzNTg4 QUJFMTFFRkEwQUVGNDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8MYwDQYJKoZIhvcNAQELBQADggEBAMLfIk7P8rQ5uWXV b1Ol8W6gEl8DBJYenfPd3qlbVBhQ0xOSMcq9O1xJKz25wcyV/WdaanMJ/qfMa+1V obDlDk0MzIGBXejFQVKF0yBd8kCGT3GeNPi9bGmSsIa0eqayWozIkCXpeAle1mGV KY6VxsUkfGQIluUrpYUNoqEhpUOTyzJAm5piD8sTDshRHQOPUUyzuOEFddBQivHk uGbjqLYUvVEdgoXkRFrjPFQcVBFMQnBJZGbYWjsVDzF6P9ABGaCcwYNPNULiICbq Q2t9P1KK5uii3ZrMtQuP7nENOGTixBL56eNmVEqIGTf8mrCdkmUZyJT7NyQMUe7D FNLcVI0= -----END CERTIFICATE-----Generated at Sun Sep 7 10:53:02 2025 by rpki-client