$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa File: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (raw, json) Hash identifier: K3UhQQDhvIK9kiqYEaaLUGkHSXsQC8El8DjsvYMTmMc= Subject key identifier: 9F:47:99:D0:26:F2:44:B3:48:DA:F1:78:07:52:9A:F8:5D:B2:87:D5 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 148B Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa Signing time: Thu 24 Jul 2025 17:25:52 +0000 ROA not before: Thu 24 Jul 2025 17:25:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4770 IP address blocks: 103.116.188.0/23 maxlen: 23 2001:df5:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5259 (0x148b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Jul 24 17:25:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68826ca0-734c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b3:ce:03:be:55:87:3a:54:3b:3c:e1:72:36: ad:d3:d6:02:dd:3c:06:39:88:df:03:a6:38:65:6f: 23:4e:5e:02:19:92:d6:ad:7a:90:c2:4a:00:8c:72: 45:ad:f3:56:5a:1f:fd:1a:51:8c:8e:b2:af:30:b5: 74:33:64:1d:d4:b7:f4:66:43:44:fb:dc:0c:2b:50: e6:19:12:f6:12:e8:20:92:b5:5d:5f:88:b4:19:fa: 8b:b1:d6:9f:f6:4d:c1:f1:6f:b2:82:2c:48:01:27: 0f:fa:a4:e6:09:db:d7:08:8e:cc:8b:8f:58:e4:80: 69:08:5e:b1:d0:d9:0e:e1:34:08:24:65:f3:dd:ee: aa:61:d3:b6:d5:7e:1e:82:b8:0d:2a:f7:c9:12:69: 7e:0c:0b:b4:a1:d4:6c:0c:57:e4:43:2c:ad:65:ea: 13:0f:32:b4:19:42:95:84:7b:2d:3d:d2:2e:8a:1b: 95:af:2d:c9:c0:e3:be:43:35:d9:81:34:43:06:b5: 7b:0a:c5:ce:c9:90:c2:1f:2b:0b:ef:f1:74:40:80: 1b:b6:15:07:52:cb:37:85:e0:40:f3:6c:b6:c6:51: ea:28:b1:9f:1b:10:f0:b9:16:0c:53:00:96:08:1e: a0:67:d6:e9:39:34:b1:f9:43:39:a8:30:5b:bb:39: 2c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:47:99:D0:26:F2:44:B3:48:DA:F1:78:07:52:9A:F8:5D:B2:87:D5 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.188.0/23 IPv6: 2001:df5:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 15:5d:63:31:a2:ee:81:93:0d:94:4f:06:f8:30:2a:b9:e6:2f: 8d:a2:b9:1a:c0:9f:73:f4:df:7b:1e:d6:87:e5:61:56:6a:52: 7d:35:e3:ad:40:23:ea:e8:18:a8:7c:b8:d6:28:2c:82:35:f9: 73:9d:a0:4a:97:62:cd:44:52:e8:f3:92:df:d0:6c:e0:c8:1e: 74:b8:6e:5a:5c:2f:76:cc:63:96:00:3e:a3:cf:40:a7:35:da: 71:4a:60:c2:94:3f:12:98:6b:51:d5:aa:fe:6f:88:d8:0f:48: 0d:55:45:88:8a:56:1b:7c:e9:37:01:db:38:d8:8b:c5:3d:8f: 72:2b:72:72:d5:be:08:f5:b0:38:ae:d9:c2:f6:e9:45:9c:47: d3:17:87:31:d1:a4:18:1e:fe:81:cc:17:6f:d7:0f:7a:8a:79: 04:41:44:78:99:21:01:d7:d9:48:2d:c1:0a:ea:17:d5:a1:1d: bc:21:3f:23:86:28:11:0f:e7:7d:11:a3:98:2a:89:d1:b5:b5: c7:55:43:11:e6:77:cd:70:3b:cb:57:04:74:60:0d:82:30:54: 80:78:d9:ed:df:17:22:0b:34:00:ab:78:85:3b:04:a0:77:4f: e8:0f:25:65:70:4b:bd:1c:fa:07:8e:39:fe:38:29:33:96:b1: b2:a3:82:33 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwNzI0MTcyNTUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyNmNhMC03MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7POA75VhzpUOzzhcjat09YC3TwGOYjfA6Y4ZW8jTl4CGZLWrXqQwkoAjHJF rfNWWh/9GlGMjrKvMLV0M2Qd1Lf0ZkNE+9wMK1DmGRL2EuggkrVdX4i0GfqLsdaf 9k3B8W+ygixIAScP+qTmCdvXCI7Mi49Y5IBpCF6x0NkO4TQIJGXz3e6qYdO21X4e grgNKvfJEml+DAu0odRsDFfkQyytZeoTDzK0GUKVhHstPdIuihuVry3JwOO+QzXZ gTRDBrV7CsXOyZDCHysL7/F0QIAbthUHUss3heBA82y2xlHqKLGfGxDwuRYMUwCW CB6gZ9bpOTSx+UM5qDBbuzksGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ9HmdAm 8kSzSNrxeAdSmvhdsofVMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCQTQvNDdFOTI2ODY2OEVEMTFFODkwRTM5NTQ5QzRGOUFFMDIvM0ZGMjk4RDQx QUZGMTFFRkIyMEMyNjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFndLwwDwQCAAIwCQMHACABDfVdADANBgkqhkiG9w0BAQsF AAOCAQEAFV1jMaLugZMNlE8G+DAqueYvjaK5GsCfc/Tfex7Wh+VhVmpSfTXjrUAj 6ugYqHy41igsgjX5c52gSpdizURS6POS39Bs4MgedLhuWlwvdsxjlgA+o89ApzXa cUpgwpQ/EphrUdWq/m+I2A9IDVVFiIpWG3zpNwHbONiLxT2PcityctW+CPWwOK7Z wvbpRZxH0xeHMdGkGB7+gcwXb9cPeop5BEFEeJkhAdfZSC3BCuoX1aEdvCE/I4Yo EQ/nfRGjmCqJ0bW1x1VDEeZ3zXA7y1cEdGANgjBUgHjZ7d8XIgs0AKt4hTsEoHdP 6A8lZXBLvRz6B445/jgpM5axsqOCMw== -----END CERTIFICATE-----Generated at Sat Aug 2 21:14:35 2025 by rpki-client