$ rpki-client -vvf rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/40F782C8B4AA11EEB330C137C4F9AE02.roa File: 40F782C8B4AA11EEB330C137C4F9AE02.roa (raw, json) Hash identifier: Oy0sD/XZsc15D/sxcRQlGFb92CKWJ3EipEQzMz/zoGc= Subject key identifier: BA:79:13:16:F1:30:36:82:87:58:2D:B7:06:85:06:2F:D7:FD:3E:6C Certificate issuer: /CN=A9148526/serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Certificate serial: 0137 Authority key identifier: CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/40F782C8B4AA11EEB330C137C4F9AE02.roa Signing time: Wed 03 Sep 2025 05:23:24 +0000 ROA not before: Wed 03 Sep 2025 05:23:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131296 IP address blocks: 103.68.228.0/22 maxlen: 24 180.222.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148526, serialNumber=CAE90F46C221D00B2DA0807AD4C4B06503374344 Validity Not Before: Sep 3 05:23:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7d0cc-6942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f5:63:6e:47:94:85:74:8a:db:54:8f:3b:39: b5:38:47:3c:af:b7:94:93:55:e8:f3:84:5f:43:d7: 8d:ea:31:25:b5:56:2f:1b:52:ba:15:61:54:e6:b9: 21:1d:e9:59:7a:7f:05:1a:3c:e1:b6:d0:71:fe:fd: 78:28:fc:4d:49:a3:4e:09:ac:30:27:af:8d:2f:8d: 82:a4:e3:51:f0:32:ab:20:3a:8e:5c:9e:ac:ab:4f: 77:28:4b:d6:4c:1f:eb:56:cd:81:ab:6e:7a:59:e6: 64:31:42:3f:56:ee:69:6c:85:a9:43:17:0f:df:09: 49:31:ca:4c:b5:b3:99:2f:93:6b:da:1d:e1:3f:2e: 1c:88:60:64:0f:ce:1d:2b:5b:b3:58:60:dc:ae:26: d2:7f:d1:31:e6:ad:cd:75:c6:1f:fa:5f:0e:fe:84: a2:13:ab:86:c1:b2:86:fc:4a:21:11:19:f0:7b:48: c7:e5:73:66:06:5a:c3:91:2f:44:b5:f7:fe:88:fa: 72:19:af:98:99:3e:9e:dd:74:ac:12:ba:0c:42:58: 9f:ce:58:5e:51:c6:cf:49:12:1a:25:c5:7e:73:e0: ac:b9:48:78:ba:53:14:aa:c1:a2:dc:b4:64:2d:f6: fd:e9:9d:70:9d:f3:2d:1f:9f:02:fd:d8:52:e5:35: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:79:13:16:F1:30:36:82:87:58:2D:B7:06:85:06:2F:D7:FD:3E:6C X509v3 Authority Key Identifier: keyid:CA:E9:0F:46:C2:21:D0:0B:2D:A0:80:7A:D4:C4:B0:65:03:37:43:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/yukPRsIh0AstoIB61MSwZQM3Q0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yukPRsIh0AstoIB61MSwZQM3Q0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148526/C4C6D046B44A11EE90D46F0CC4F9AE02/40F782C8B4AA11EEB330C137C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.228.0/22 180.222.124.0/22 Signature Algorithm: sha256WithRSAEncryption a2:ff:c5:1d:f6:21:2c:4c:25:19:be:e4:4d:61:02:8c:e3:fa: 5b:ad:8a:df:ae:70:1f:d5:a8:92:e5:e4:c5:dc:86:d6:3e:88: c0:12:83:0a:43:83:32:f4:c2:51:35:6e:c3:59:d8:c2:25:22: 69:bc:7b:fa:af:71:5f:6b:d5:7e:77:be:2b:81:47:73:d9:57: 4c:4d:a1:af:9c:1b:43:ac:c6:2f:7f:8d:7f:aa:d3:ca:8e:4f: 0a:6c:bc:5f:c9:71:99:97:45:70:19:35:45:ad:47:16:61:04: 08:38:21:62:0d:86:e7:2e:ea:0a:d0:ab:44:b1:42:d4:10:79: 9f:46:5d:f4:81:30:53:c4:e5:9e:ee:04:7e:33:24:17:76:ac: 35:6b:15:d2:4e:8a:9c:9d:bb:06:ed:f9:f1:5d:99:f1:9a:af: 7b:14:c0:fb:43:12:82:c5:40:88:4d:dd:6a:92:48:6f:8c:65: 47:67:ad:90:a7:5f:3e:59:ec:0d:3a:71:ab:27:7f:76:09:3e: 68:1d:f5:8d:a8:00:43:8c:b3:8e:11:13:40:e1:9c:0d:d4:81: 0f:8a:ef:86:b3:db:84:1d:4f:48:b3:4e:06:56:17:b7:14:b7: 2c:4c:e4:a8:f9:d3:7f:cf:c0:99:fc:8a:ef:c5:3d:25:15:e8: ab:62:e8:9b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg1MjYxMTAvBgNVBAUTKENBRTkwRjQ2QzIyMUQwMEIyREEwODA3QUQ0QzRCMDY1 MDMzNzQzNDQwHhcNMjUwOTAzMDUyMzI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDBjYy02OTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/VjbkeUhXSK21SPOzm1OEc8r7eUk1Xo84RfQ9eN6jEltVYvG1K6FWFU5rkh HelZen8FGjzhttBx/v14KPxNSaNOCawwJ6+NL42CpONR8DKrIDqOXJ6sq093KEvW TB/rVs2Bq256WeZkMUI/Vu5pbIWpQxcP3wlJMcpMtbOZL5Nr2h3hPy4ciGBkD84d K1uzWGDcribSf9Ex5q3NdcYf+l8O/oSiE6uGwbKG/EohERnwe0jH5XNmBlrDkS9E tff+iPpyGa+YmT6e3XSsEroMQlifzlheUcbPSRIaJcV+c+CsuUh4ulMUqsGi3LRk Lfb96Z1wnfMtH58C/dhS5TXhEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLp5Exbx MDaCh1gttwaFBi/X/T5sMB8GA1UdIwQYMBaAFMrpD0bCIdALLaCAetTEsGUDN0NE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODUyNi9DNEM2RDA0NkI0 NEExMUVFOTBENDZGMENDNEY5QUUwMi95dWtQUnNJaDBBc3RvSUI2MU1Td1pRTTNR MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1a1BSc0loMEFzdG9JQjYxTVN3WlFNM1EwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg1MjYvQzRDNkQwNDZCNDRBMTFFRTkwRDQ2RjBDQzRGOUFFMDIvNDBGNzgyQzhC NEFBMTFFRUIzMzBDMTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnROQDBAK03nwwDQYJKoZIhvcNAQELBQADggEBAKL/xR32 ISxMJRm+5E1hAozj+lutit+ucB/VqJLl5MXchtY+iMASgwpDgzL0wlE1bsNZ2MIl Imm8e/qvcV9r1X53viuBR3PZV0xNoa+cG0Osxi9/jX+q08qOTwpsvF/JcZmXRXAZ NUWtRxZhBAg4IWINhucu6grQq0SxQtQQeZ9GXfSBMFPE5Z7uBH4zJBd2rDVrFdJO ipyduwbt+fFdmfGar3sUwPtDEoLFQIhN3WqSSG+MZUdnrZCnXz5Z7A06casnf3YJ Pmgd9Y2oAEOMs44RE0DhnA3UgQ+K74az24QdT0izTgZWF7cUtyxM5Kj503/PwJn8 iu/FPSUV6Kti6Js= -----END CERTIFICATE-----Generated at Fri Sep 19 05:30:34 2025 by rpki-client