$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa File: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (raw, json) Hash identifier: KFPYG7z3ovj/gDTTmWKC0rC1bedBGEtuFgPr4XMRScs= Subject key identifier: F9:C5:79:B2:0A:F6:34:9E:0D:08:95:F4:7E:71:F7:F2:7D:98:90:79 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 0240 Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa Signing time: Fri 05 Sep 2025 02:38:27 +0000 ROA not before: Fri 05 Sep 2025 02:38:27 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136141 IP address blocks: 103.13.192.0/24 maxlen: 24 103.13.193.0/24 maxlen: 24 2001:df1:53c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F, serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: Sep 5 02:38:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba4d23-09dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:76:52:f3:1d:1b:72:94:ee:38:87:61:3a: 77:94:41:f2:60:a3:ae:29:4f:17:bc:35:ae:25:ef: e9:6e:e2:93:14:2b:8a:b1:a8:a8:2a:47:ff:92:bf: 12:22:de:a5:01:12:bf:4b:61:c5:a3:30:df:ce:3e: c8:ea:92:66:09:ea:f5:69:7d:b5:f5:13:83:0e:66: 13:14:6b:1a:71:dc:eb:c7:0b:e2:fe:52:b4:2a:f0: f3:ad:1e:d7:6b:5e:c8:21:92:77:f9:6d:d2:8d:ba: c6:58:61:6f:93:19:3c:f7:70:4e:e3:ad:54:9b:42: fd:9c:8b:ff:07:6b:c2:04:c5:80:77:a6:92:31:2e: 12:77:68:d2:da:3c:13:aa:ce:b1:a0:29:18:6c:5e: 8b:34:e4:c3:7d:bb:db:ff:9f:d2:09:ad:3c:18:11: 5f:61:7c:22:ca:ae:a3:72:c5:db:3c:db:44:eb:91: 3d:0d:37:ce:d7:81:f3:0a:32:5c:19:2a:c1:16:a7: e0:dc:8a:08:8e:a3:37:49:6c:db:f4:94:00:ad:86: d8:55:ee:66:48:e8:d6:64:cc:3a:2d:69:d6:fd:33: 4f:5f:e0:a7:00:d5:5f:a7:88:ed:91:bd:71:93:29: d5:4c:f0:d8:45:51:d1:5b:52:a2:8d:d9:cb:fa:7d: ef:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C5:79:B2:0A:F6:34:9E:0D:08:95:F4:7E:71:F7:F2:7D:98:90:79 X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.192.0/23 IPv6: 2001:df1:53c0::/48 Signature Algorithm: sha256WithRSAEncryption 90:0e:67:e6:d0:64:95:11:a2:f6:d1:6e:f6:a3:f2:ef:86:c2: 78:8f:49:10:95:26:47:c7:fb:17:88:ab:f5:09:d8:57:a8:d7: ef:0a:1e:e3:88:df:78:55:0c:be:d5:35:89:49:92:ed:a1:10: d3:97:a2:d6:6b:53:34:00:83:c8:b7:c6:6f:6d:a4:34:87:cf: 0e:14:25:f9:6e:c5:7c:7c:c5:00:82:5c:56:bd:e0:c7:05:57: d6:38:b8:9d:62:87:66:3d:85:68:9d:8e:45:24:2e:a8:88:a1: 9e:94:92:12:36:5b:d4:9b:7e:43:af:fd:71:5a:fa:2b:08:de: 34:48:5a:c4:93:fd:08:dd:88:27:fb:b8:cd:10:69:4f:13:cd: 28:20:1b:9e:b0:dc:88:a5:62:5e:bf:11:76:ad:56:00:46:0b: 57:69:e0:3a:2c:39:61:bf:a9:7b:27:4e:9d:ac:3c:8f:56:e3: 8d:ba:91:d4:ca:aa:05:62:96:4e:02:c1:1d:a9:4d:3f:17:bf: fe:98:51:fa:40:a2:1f:e3:82:08:a8:5b:8c:05:8b:e4:23:a4: 25:1d:b3:d9:9e:84:2a:48:11:5a:b9:21:72:a7:e7:d3:e1:fc: 99:01:1f:31:50:3c:9f:d9:6a:4a:76:02:b7:d1:7d:04:2d:b6: e7:09:34:87 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjUwOTA1MDIzODI3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNGQyMy0wOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTR2UvMdG3KU7jiHYTp3lEHyYKOuKU8XvDWuJe/pbuKTFCuKsaioKkf/kr8S It6lARK/S2HFozDfzj7I6pJmCer1aX219RODDmYTFGsacdzrxwvi/lK0KvDzrR7X a17IIZJ3+W3SjbrGWGFvkxk893BO461Um0L9nIv/B2vCBMWAd6aSMS4Sd2jS2jwT qs6xoCkYbF6LNOTDfbvb/5/SCa08GBFfYXwiyq6jcsXbPNtE65E9DTfO14HzCjJc GSrBFqfg3IoIjqM3SWzb9JQArYbYVe5mSOjWZMw6LWnW/TNPX+CnANVfp4jtkb1x kynVTPDYRVHRW1KijdnL+n3v5wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPnFebIK 9jSeDQiV9H5x9/J9mJB5MB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UyM0YvQzY0Q0FBQTQzRTUyMTFFREFBRDRCNjRGQzRGOUFFMDIvRDlGMUIzQzAz NkRBMTFFRUEwRDNFRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnDcAwDwQCAAIwCQMHACABDfFTwDANBgkqhkiG9w0BAQsF AAOCAQEAkA5n5tBklRGi9tFu9qPy74bCeI9JEJUmR8f7F4ir9QnYV6jX7woe44jf eFUMvtU1iUmS7aEQ05ei1mtTNACDyLfGb22kNIfPDhQl+W7FfHzFAIJcVr3gxwVX 1ji4nWKHZj2FaJ2ORSQuqIihnpSSEjZb1Jt+Q6/9cVr6KwjeNEhaxJP9CN2IJ/u4 zRBpTxPNKCAbnrDciKViXr8Rdq1WAEYLV2ngOiw5Yb+peydOnaw8j1bjjbqR1Mqq BWKWTgLBHalNPxe//phR+kCiH+OCCKhbjAWL5COkJR2z2Z6EKkgRWrkhcqfn0+H8 mQEfMVA8n9lqSnYCt9F9BC225wk0hw== -----END CERTIFICATE-----Generated at Fri Sep 19 10:45:00 2025 by rpki-client