$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/3AA7BC60818D11F0BBDB1314C4F9AE02.roa File: 3AA7BC60818D11F0BBDB1314C4F9AE02.roa (raw, json) Hash identifier: ihM25CouPRPE3mefgoi+Ck5jPfVP6rD6JnWyK4AvBps= Subject key identifier: ED:92:48:75:0C:01:4C:34:73:94:23:20:0A:EB:17:49:01:0F:E7:48 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 1040 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/3AA7BC60818D11F0BBDB1314C4F9AE02.roa Signing time: Mon 25 Aug 2025 08:26:42 +0000 ROA not before: Mon 25 Aug 2025 08:26:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134153 IP address blocks: 103.138.26.0/24 maxlen: 24 103.138.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4160 (0x1040) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: Aug 25 08:26:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68ac1e42-e9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a2:96:4c:7c:28:0e:68:1a:ac:1f:f4:d7:6c: 0d:7e:67:96:66:4e:89:80:f6:f6:1b:a2:b0:76:1d: 95:2b:d4:f1:ac:de:4d:6c:48:9b:e1:45:59:d1:fa: 29:64:23:49:e9:27:4f:a9:1d:e9:02:a6:d8:31:3c: 03:13:a9:6a:85:83:9a:89:01:86:8f:30:a1:8d:90: 1c:aa:ff:15:53:30:98:49:b0:62:11:70:32:cf:de: b6:c9:8f:e4:e7:ff:df:33:ef:10:ef:43:e3:6d:68: 4b:8f:60:77:60:d6:ae:a0:7f:ec:1a:ce:b7:57:63: fe:4d:6b:a7:99:25:52:3a:e3:0f:55:f7:d2:e7:d9: 8f:2f:d2:39:22:87:09:1e:71:92:8a:4f:b7:b0:fc: 55:42:9c:60:71:29:67:0d:42:b2:0f:9a:62:23:41: 80:57:3c:ed:16:31:69:14:d5:49:a0:8b:4b:e2:ff: f4:16:49:2c:ee:80:df:76:8c:78:5e:69:02:19:22: c0:34:93:ff:f3:fa:c2:50:8f:0c:b8:9b:70:17:43: 35:e8:f4:dd:6e:36:a6:38:57:11:e2:6a:ca:d0:45: 53:16:60:a6:d0:33:66:2e:52:14:b3:a1:41:81:64: fd:64:c2:60:21:d8:24:c9:f5:9d:f4:5e:7b:38:b6: bb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:92:48:75:0C:01:4C:34:73:94:23:20:0A:EB:17:49:01:0F:E7:48 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/3AA7BC60818D11F0BBDB1314C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.26.0/23 Signature Algorithm: sha256WithRSAEncryption e6:30:85:74:f7:73:25:20:e7:bd:54:79:25:21:09:ce:8f:e7: 27:54:6a:3c:80:f3:be:7c:84:7c:64:80:2d:b2:10:a5:3f:70: 1e:f4:55:38:2f:52:39:5e:a9:e5:38:99:ff:d4:af:5f:75:b2: 6c:91:1f:c4:1c:a8:5c:24:fb:90:0e:32:46:4d:00:6a:eb:9e: 09:30:ac:b4:e8:36:25:22:97:29:71:90:69:12:c9:e6:44:b4: c1:63:de:12:37:8e:22:11:0f:39:dd:83:56:c0:75:9e:8e:f8: 19:c6:03:ca:94:0a:27:a1:1f:86:08:59:93:31:7e:d2:ff:4b: c5:89:c2:be:32:a7:c6:c5:53:cb:14:cf:39:e2:4f:f6:8a:3f: 25:e9:b4:dd:19:a1:cd:6e:1a:d7:6a:11:07:06:c2:e2:58:bc: 9d:2e:19:e4:6d:57:ec:25:5b:71:47:ce:e2:33:3b:ce:87:91: e8:20:71:bd:d1:91:19:41:6d:00:8e:a1:83:94:4d:97:1a:6b: 59:8d:f3:c4:30:0e:54:ed:43:b7:07:71:72:c8:eb:2b:89:8d: c8:53:6b:e0:f1:e4:59:73:77:d1:1e:1f:a2:71:ae:9a:a4:19: bb:fe:e7:07:4d:82:23:ab:cb:ed:ee:96:ce:d0:03:e1:44:43: f3:fd:a6:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwODI1MDgyNjQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFjMWU0Mi1lOWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26KWTHwoDmgarB/012wNfmeWZk6JgPb2G6Kwdh2VK9TxrN5NbEib4UVZ0fop ZCNJ6SdPqR3pAqbYMTwDE6lqhYOaiQGGjzChjZAcqv8VUzCYSbBiEXAyz962yY/k 5//fM+8Q70PjbWhLj2B3YNauoH/sGs63V2P+TWunmSVSOuMPVffS59mPL9I5IocJ HnGSik+3sPxVQpxgcSlnDUKyD5piI0GAVzztFjFpFNVJoItL4v/0Fkks7oDfdox4 XmkCGSLANJP/8/rCUI8MuJtwF0M16PTdbjamOFcR4mrK0EVTFmCm0DNmLlIUs6FB gWT9ZMJgIdgkyfWd9F57OLa7mQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO2SSHUM AUw0c5QjIArrF0kBD+dIMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvM0FBN0JDNjA4 MThEMTFGMEJCREIxMzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnihowDQYJKoZIhvcNAQELBQADggEBAOYwhXT3cyUg571U eSUhCc6P5ydUajyA8758hHxkgC2yEKU/cB70VTgvUjleqeU4mf/Ur191smyRH8Qc qFwk+5AOMkZNAGrrngkwrLToNiUilylxkGkSyeZEtMFj3hI3jiIRDzndg1bAdZ6O +BnGA8qUCiehH4YIWZMxftL/S8WJwr4yp8bFU8sUzzniT/aKPyXptN0Zoc1uGtdq EQcGwuJYvJ0uGeRtV+wlW3FHzuIzO86Hkeggcb3RkRlBbQCOoYOUTZcaa1mN88Qw DlTtQ7cHcXLI6yuJjchTa+Dx5Flzd9EeH6JxrpqkGbv+5wdNgiOry+3uls7QA+FE Q/P9phY= -----END CERTIFICATE-----Generated at Tue Sep 9 23:03:01 2025 by rpki-client