$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa File: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (raw, json) Hash identifier: zk2dr+AUUcgcseaus5ZI0MyjJIW4D1il57/7c0zzcK4= Subject key identifier: 69:74:A9:FA:DB:2B:7F:CA:AB:93:47:5C:FF:EF:C7:70:3D:0D:C7:D9 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 043A Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:45:38 +0000 ROA not before: Wed 03 Sep 2025 00:45:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137427 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Sep 3 00:45:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b78fb1-e5e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:50:67:b0:44:6a:ef:32:b9:15:99:be:40:3b: d1:ba:c4:20:7c:e6:da:15:75:60:a7:73:24:ad:1d: 35:7d:0a:a0:9c:e1:33:0a:0b:6e:ee:1d:55:5e:ef: f7:d4:1b:29:71:00:f3:e5:18:35:a0:f4:30:e0:0d: 51:1d:31:30:9f:17:67:e9:5d:db:be:f7:05:83:b6: 85:37:07:1d:70:00:20:c3:9a:2e:ab:17:6b:b7:a2: f1:54:41:e6:5e:c6:6f:24:cf:8a:0c:5d:eb:1f:8e: bf:fd:a2:62:5e:35:11:f5:b2:0a:5f:f1:df:0e:ce: d5:54:6b:2d:fa:3c:36:bd:3e:4d:4c:3b:87:9c:cd: 86:4c:98:1a:6d:47:ab:ac:95:6b:55:11:34:db:08: cd:92:66:45:7f:80:ba:7c:34:95:7d:21:dd:b8:cf: a9:91:ea:c8:6f:93:43:f2:9a:d8:31:fe:8b:3a:aa: f7:83:17:61:ea:48:47:d4:35:20:7f:97:60:78:3a: 6e:63:6c:bb:15:5b:7b:b4:68:55:29:0d:17:73:45: ef:d9:f7:ec:7a:d1:26:f9:85:ad:15:04:36:5a:99: 7c:7d:17:64:2e:2d:87:fd:99:4c:77:c4:94:88:9a: 66:28:9a:89:05:5d:6f:0d:27:f0:af:0b:19:a6:82: 4c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:74:A9:FA:DB:2B:7F:CA:AB:93:47:5C:FF:EF:C7:70:3D:0D:C7:D9 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 65:e3:1d:72:77:36:54:a8:d6:1c:80:60:e0:20:a4:aa:29:fe: e0:c3:c5:ac:f6:70:f5:11:f1:c6:9e:02:11:e8:c0:c0:cd:02: 77:6f:c6:8a:43:cc:49:f9:29:c2:42:86:a8:5f:e2:f6:e1:28: 58:df:97:cc:89:fc:5a:96:d9:d6:d4:00:75:27:82:76:c9:7a: 5f:ee:ea:f2:44:22:e5:eb:d2:9d:05:21:19:6b:2d:bf:57:06: 89:2b:b2:00:e7:45:e4:f7:cc:4f:d5:3b:52:98:d2:4c:6a:e8: dc:bf:41:24:1e:69:99:27:4e:43:f3:de:64:96:ba:be:82:79: 11:e5:63:2c:81:11:66:9b:47:10:9a:5c:79:5a:17:43:de:e5: 4b:08:eb:f3:84:db:b6:2f:06:85:e7:ba:c7:3d:66:d2:df:f2: 09:b5:08:50:73:af:29:f5:dc:da:48:5a:56:02:f5:22:c4:f6: c2:c6:bd:b4:a2:23:b1:c1:fc:16:0c:5a:c7:13:ed:90:14:f5: 0d:53:ee:b6:d8:90:4c:28:bc:c4:61:b4:e2:e9:9e:77:23:02: a4:d7:13:92:18:a3:99:e9:83:8b:6f:ea:b0:31:60:77:d2:f5: ef:33:d2:69:c6:5a:63:f3:43:3b:6e:12:36:18:d6:b6:a5:c0: eb:40:d8:38 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUwOTAzMDA0NTM4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3OGZiMS1lNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVBnsERq7zK5FZm+QDvRusQgfObaFXVgp3MkrR01fQqgnOEzCgtu7h1VXu/3 1BspcQDz5Rg1oPQw4A1RHTEwnxdn6V3bvvcFg7aFNwcdcAAgw5ouqxdrt6LxVEHm XsZvJM+KDF3rH46//aJiXjUR9bIKX/HfDs7VVGst+jw2vT5NTDuHnM2GTJgabUer rJVrVRE02wjNkmZFf4C6fDSVfSHduM+pkerIb5ND8prYMf6LOqr3gxdh6khH1DUg f5dgeDpuY2y7FVt7tGhVKQ0Xc0Xv2ffsetEm+YWtFQQ2Wpl8fRdkLi2H/ZlMd8SU iJpmKJqJBV1vDSfwrwsZpoJM1QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGl0qfrb K3/Kq5NHXP/vx3A9DcfZMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOEE0QzY2MkFF QUI1MTFFQ0JCREUzQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAZeMdcnc2VKjWHIBg4CCkqin+4MPFrPZw9RHxxp4CEejAwM0Cd2/GikPMSfkp wkKGqF/i9uEoWN+XzIn8WpbZ1tQAdSeCdsl6X+7q8kQi5evSnQUhGWstv1cGiSuy AOdF5PfMT9U7UpjSTGro3L9BJB5pmSdOQ/PeZJa6voJ5EeVjLIERZptHEJpceVoX Q97lSwjr84Tbti8Ghee6xz1m0t/yCbUIUHOvKfXc2khaVgL1IsT2wsa9tKIjscH8 FgxaxxPtkBT1DVPuttiQTCi8xGG04umedyMCpNcTkhijmemDi2/qsDFgd9L17zPS acZaY/NDO24SNhjWtqXA60DYOA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:25:09 2025 by rpki-client