$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa File: AFAC764C2C1711EC817C5912C4F9AE02.roa (raw, json) Hash identifier: 4OzF15EHWUJWQROMnU+Ow7V0ACuwuCPbuqKLd0rV0bw= Subject key identifier: 89:E3:E2:A3:E6:EA:54:BD:23:B6:BA:5D:B1:35:86:F1:01:DC:B2:05 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04EF Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa Signing time: Fri 29 Aug 2025 00:16:55 +0000 ROA not before: Fri 29 Aug 2025 00:16:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9927 IP address blocks: 103.170.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Aug 29 00:16:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0f177-c1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b9:65:f6:b2:3d:be:96:43:14:70:bd:e2:f6: 0f:06:55:e0:e6:de:9c:ff:4d:04:88:3f:2c:b6:bb: 92:65:3c:98:fb:51:c1:12:25:72:f2:0c:5c:45:67: 17:dc:c8:61:33:97:d0:2d:15:44:86:42:9f:9f:47: f3:3f:b8:f7:06:26:f2:28:80:03:91:b8:7d:85:67: ed:ef:d1:7c:c2:17:f1:c5:f3:ef:22:da:c4:4e:4e: 6a:dd:c4:50:b3:ca:68:ca:fe:38:3a:06:73:3f:41: a6:f4:0a:e5:ae:04:e7:3e:ab:01:a8:b6:23:59:65: 98:33:b2:62:f7:2f:02:e5:42:70:cf:cb:9f:35:80: b0:a7:52:47:a4:e8:8b:d5:c7:84:ba:50:db:f0:0f: 78:33:09:63:b2:4a:fa:4c:1d:77:79:7a:e7:8d:74: a8:4e:2e:91:ab:19:42:18:0a:f8:9c:6c:c7:4d:3c: a2:11:a9:71:f9:17:49:99:eb:10:11:c1:be:a3:58: 2d:10:fd:9b:8b:7b:b6:c0:21:f2:6d:6c:7a:0b:09: 9b:8c:fe:17:71:4e:61:f6:a5:16:ca:dc:a8:02:03: 06:db:de:93:63:5b:b3:aa:80:06:41:3a:63:cb:bb: e2:2a:21:5b:79:99:01:17:36:62:f8:57:02:38:d9: dd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E3:E2:A3:E6:EA:54:BD:23:B6:BA:5D:B1:35:86:F1:01:DC:B2:05 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AFAC764C2C1711EC817C5912C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.126.0/24 Signature Algorithm: sha256WithRSAEncryption 55:4d:7c:67:08:4c:be:00:42:a9:7a:89:e2:35:95:ec:1c:05: 68:b2:66:42:2a:3e:c2:76:ab:88:2f:58:52:af:87:65:69:7d: 6e:a8:1b:ec:52:46:63:a2:ab:39:7f:68:2b:70:40:0c:a9:c6: 43:22:bd:f2:39:e8:d0:17:32:12:53:d2:58:1e:13:1a:b8:a6: 24:8f:9f:0b:ca:e6:1c:dd:8f:7b:8c:85:1b:e6:a2:80:47:66: 73:65:c2:09:ad:5f:29:35:e2:df:b9:b2:0c:54:60:06:d4:92: dd:56:3e:69:85:fb:f6:d6:a1:87:a4:46:61:da:45:20:69:1d: 27:28:92:34:2c:bf:f7:2b:7d:f7:5a:c1:cc:a5:75:f4:06:13: a8:33:3d:df:74:80:7f:a8:d4:25:60:04:fe:6b:72:3f:9e:cb: f2:11:27:27:99:7f:49:85:25:23:73:bc:c9:5c:e0:60:55:fa: 9f:1d:9b:67:18:7a:ad:66:a3:8b:7c:b6:e2:a9:5a:11:e6:93: 53:01:c8:94:4a:62:7d:6a:73:3e:d6:f2:5d:1e:3a:7c:8e:e4: e2:02:f9:9c:53:10:f2:75:3b:95:3a:48:7b:ef:17:b5:fc:fe: ef:9c:76:28:c3:6c:96:44:cd:da:d9:f0:16:73:db:2f:96:06: 91:4e:4d:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwODI5MDAxNjU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwZjE3Ny1jMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87ll9rI9vpZDFHC94vYPBlXg5t6c/00EiD8struSZTyY+1HBEiVy8gxcRWcX 3MhhM5fQLRVEhkKfn0fzP7j3BibyKIADkbh9hWft79F8whfxxfPvItrETk5q3cRQ s8poyv44OgZzP0Gm9ArlrgTnPqsBqLYjWWWYM7Ji9y8C5UJwz8ufNYCwp1JHpOiL 1ceEulDb8A94Mwljskr6TB13eXrnjXSoTi6RqxlCGAr4nGzHTTyiEalx+RdJmesQ EcG+o1gtEP2bi3u2wCHybWx6CwmbjP4XcU5h9qUWytyoAgMG296TY1uzqoAGQTpj y7viKiFbeZkBFzZi+FcCONndnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFInj4qPm 6lS9I7a6XbE1hvEB3LIFMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlDRUYvQzQwMTlEMjQyQzEzMTFFQ0I0NTgwODQyQzRGOUFFMDIvQUZBQzc2NEMy QzE3MTFFQzgxN0M1OTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqn4wDQYJKoZIhvcNAQELBQADggEBAFVNfGcITL4AQql6 ieI1lewcBWiyZkIqPsJ2q4gvWFKvh2VpfW6oG+xSRmOiqzl/aCtwQAypxkMivfI5 6NAXMhJT0lgeExq4piSPnwvK5hzdj3uMhRvmooBHZnNlwgmtXyk14t+5sgxUYAbU kt1WPmmF+/bWoYekRmHaRSBpHScokjQsv/crffdawcyldfQGE6gzPd90gH+o1CVg BP5rcj+ey/IRJyeZf0mFJSNzvMlc4GBV+p8dm2cYeq1mo4t8tuKpWhHmk1MByJRK Yn1qcz7W8l0eOnyO5OIC+ZxTEPJ1O5U6SHvvF7X8/u+cdijDbJZEzdrZ8BZz2y+W BpFOTdQ= -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:20 2025 by rpki-client