$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa File: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (raw, json) Hash identifier: 2B9M6Do3yPaVSo2nSu7dpxy53nQb48sMXjuDHm1rO08= Subject key identifier: AF:58:4B:FA:C2:C1:59:D7:8D:B2:0E:3C:23:C4:B3:98:B5:87:92:44 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 019D Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa Signing time: Sun 31 Aug 2025 04:22:30 +0000 ROA not before: Sun 31 Aug 2025 04:22:30 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139803 IP address blocks: 103.135.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Aug 31 04:22:30 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3ce06-303b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:96:5b:51:f3:86:8e:29:b0:37:16:77:2f: a2:d3:54:a2:f6:f7:05:a0:78:f8:66:0a:3a:e4:26: da:03:66:20:87:37:4e:90:38:b9:24:02:93:0b:55: e1:5a:16:96:a8:f4:60:c0:38:e4:4b:6b:a6:50:b9: c6:c9:a2:2f:58:ce:d6:81:2c:5d:e1:9f:cb:b5:b5: 71:d9:87:6c:48:05:0a:a5:69:9d:06:97:1b:5d:0d: fe:e6:b1:1c:73:52:fc:4d:a2:d1:75:30:f5:ee:74: 41:a0:3a:d8:e3:52:3f:49:ab:39:c5:2d:c9:9c:e6: 37:4c:29:77:74:80:ca:ae:ea:94:c4:2d:3a:bf:94: a1:08:35:43:d3:98:3e:4c:62:b3:7d:d0:2d:64:02: 22:18:1e:63:ed:f1:78:38:ed:53:80:82:3c:41:0a: b1:7b:ef:84:f0:74:43:2f:02:c6:52:af:54:38:b2: 1d:dd:ae:f3:45:8a:8f:0d:ab:f8:03:8a:fd:48:78: 21:a9:e6:22:29:1d:a9:55:fa:e4:c5:94:d3:7c:9e: 3b:a6:bc:cd:fb:f7:09:4a:f9:4e:ba:0b:ba:1c:3e: 31:bf:f3:94:f2:57:8d:3e:19:0a:5e:e8:23:71:37: 7c:d5:ff:9b:e5:7e:41:1c:a5:a1:bd:45:dc:5d:e4: f0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:58:4B:FA:C2:C1:59:D7:8D:B2:0E:3C:23:C4:B3:98:B5:87:92:44 X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.44.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:a4:44:87:0c:ab:ff:1a:58:e2:3c:ae:ec:db:0f:0e:88:fb: 5e:ec:26:52:93:95:a4:e9:28:cc:2a:82:7c:7c:4f:dd:76:4e: a7:2e:02:44:25:07:90:e2:01:4e:85:16:8a:0d:26:0b:48:d6: aa:65:df:b4:6e:f8:8b:c7:f7:0a:90:b7:5d:f3:89:1c:aa:be: 61:f5:52:5e:45:09:87:72:96:36:6f:79:06:42:a4:bc:56:ee: fa:90:f8:66:ad:2e:e0:0d:27:a7:59:71:65:ac:a5:5b:08:68: c2:81:4c:75:30:d0:a9:4c:53:3e:f6:0e:dc:e3:1f:72:6b:46: 19:f2:13:82:38:fe:f9:4d:eb:13:41:75:7b:12:84:12:86:d2: d2:cd:0a:7e:35:44:a1:ad:bc:90:82:7f:1a:db:e7:6c:85:0b: 2d:8b:7d:bf:69:ee:65:a3:e2:d7:f9:93:2f:d5:f1:02:36:35: 5f:29:0d:f9:fa:d9:18:f1:a2:e1:5a:96:0e:f9:b9:79:19:fb: 40:62:83:dd:43:5a:f9:b9:3f:24:34:78:dc:a3:99:82:72:56: fc:e3:71:1c:a5:1a:08:19:35:9b:a6:36:90:84:07:eb:58:18: 5b:52:0e:37:6b:ae:18:b9:d6:a9:15:e0:be:c5:00:18:71:2d: 05:61:4f:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwODMxMDQyMjMwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzY2UwNi0zMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eSWW1Hzho4psDcWdy+i01Si9vcFoHj4Zgo65CbaA2YghzdOkDi5JAKTC1Xh WhaWqPRgwDjkS2umULnGyaIvWM7WgSxd4Z/LtbVx2YdsSAUKpWmdBpcbXQ3+5rEc c1L8TaLRdTD17nRBoDrY41I/Sas5xS3JnOY3TCl3dIDKruqUxC06v5ShCDVD05g+ TGKzfdAtZAIiGB5j7fF4OO1TgII8QQqxe++E8HRDLwLGUq9UOLId3a7zRYqPDav4 A4r9SHghqeYiKR2pVfrkxZTTfJ47przN+/cJSvlOugu6HD4xv/OU8leNPhkKXugj cTd81f+b5X5BHKWhvUXcXeTw2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK9YS/rC wVnXjbIOPCPEs5i1h5JEMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU4QkYvQjM4OUNGMzg0MUE3MTFFRTkyRTVCMzc4QzRGOUFFMDIvQkQ4RUIxQThC OUVBMTFFRjhBMjE4QzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhywwDQYJKoZIhvcNAQELBQADggEBAHukRIcMq/8aWOI8 ruzbDw6I+17sJlKTlaTpKMwqgnx8T912TqcuAkQlB5DiAU6FFooNJgtI1qpl37Ru +IvH9wqQt13ziRyqvmH1Ul5FCYdyljZveQZCpLxW7vqQ+GatLuANJ6dZcWWspVsI aMKBTHUw0KlMUz72DtzjH3JrRhnyE4I4/vlN6xNBdXsShBKG0tLNCn41RKGtvJCC fxrb52yFCy2Lfb9p7mWj4tf5ky/V8QI2NV8pDfn62RjxouFalg75uXkZ+0Big91D Wvm5PyQ0eNyjmYJyVvzjcRylGggZNZumNpCEB+tYGFtSDjdrrhi51qkV4L7FABhx LQVhTzg= -----END CERTIFICATE-----Generated at Tue Sep 9 13:34:59 2025 by rpki-client