$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa File: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (raw, json) Hash identifier: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc= Subject key identifier: 63:A3:FB:B1:3D:D2:48:99:AE:A2:25:10:CE:BC:2F:B3:1A:85:25:1E Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 080D Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa Signing time: Sat 30 Aug 2025 21:42:35 +0000 ROA not before: Sat 30 Aug 2025 21:42:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58715 IP address blocks: 103.155.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2061 (0x80d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Aug 30 21:42:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b3704b-85f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2a:f4:e9:7a:23:15:78:d1:30:42:0a:83:d1: eb:36:33:f6:e1:5b:94:ed:c8:04:d0:03:73:33:5b: 39:68:3c:27:de:71:05:a4:25:f4:20:db:63:9f:6e: 47:bd:e7:cc:1f:b8:04:38:5f:0a:86:2d:cb:bd:5e: 58:03:db:0f:f0:20:73:32:2c:f5:f6:e9:ab:29:9d: 73:2d:a2:64:d3:51:ff:6a:a3:1d:c5:0d:be:18:18: 83:80:1e:64:77:8f:2c:21:42:75:fa:eb:c8:82:49: 0f:03:a6:0d:67:9f:40:26:5e:78:49:26:ac:95:c4: fe:b1:9e:b5:8a:c8:8f:6d:f9:ef:0b:88:4d:62:9d: 99:cc:43:ee:e4:7e:1b:2a:bd:df:79:c6:b2:e5:2d: bb:fe:ff:ce:45:42:37:bf:68:82:67:00:fb:44:15: 4c:92:97:0e:b3:02:ca:a4:94:83:f6:bb:6a:9c:1f: 36:97:d3:40:48:31:5d:da:1c:57:4b:1c:48:c6:fd: 4e:f2:dd:91:0b:45:e3:b9:ee:e5:0c:f7:17:ee:a2: b7:c1:ae:cb:71:81:54:cd:45:c3:e1:d1:ec:36:7d: ee:10:da:27:9c:ca:fd:e1:67:58:b5:71:6b:63:e3: c9:c9:90:6c:9f:38:85:41:cb:a1:0e:b6:55:8c:42: 8a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A3:FB:B1:3D:D2:48:99:AE:A2:25:10:CE:BC:2F:B3:1A:85:25:1E X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.118.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:c4:07:e9:1f:01:c6:0b:64:bb:30:1f:da:51:7e:a6:1b:42: 9e:61:e8:4e:78:52:89:da:f5:30:d1:17:dc:6f:9a:6b:54:9f: 78:eb:5c:34:11:2e:04:9b:38:b5:7e:b0:21:d5:ae:a2:07:a9: 47:da:14:5e:5f:be:5b:0e:f2:f3:41:05:82:f8:2e:6e:52:1a: bd:90:68:26:7f:8e:8e:e6:57:ca:05:25:c8:6f:3a:99:ec:1d: e9:65:d1:45:66:cf:2e:a6:2b:7b:c6:5b:d5:48:83:b1:4c:a2: f2:01:65:a9:94:89:83:f9:11:a4:d9:a6:1d:75:e6:9e:1a:c9: fb:ff:66:fb:d5:48:af:d2:09:82:39:9a:42:e3:eb:c4:0f:bc: 15:72:5e:f3:02:26:d9:96:3b:55:fa:30:8f:f6:cb:96:65:e2: 1c:44:4b:d9:31:35:f8:ad:72:72:ec:8d:0c:5f:da:b6:bd:75: de:66:ed:67:1e:63:ed:9f:3e:ad:ad:7d:e8:07:a2:0b:f3:31: 64:82:6d:6a:cd:51:c5:0a:1e:b5:e9:0c:c5:37:d7:02:c7:d3: 0f:62:aa:c8:de:fd:42:1b:ed:96:a3:e3:e0:ce:55:01:67:21: c7:69:74:83:17:ad:08:ab:be:85:20:d3:e9:a0:9f:17:28:36: 55:e8:f6:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwODMwMjE0MjM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNzA0Yi04NWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCr06XojFXjRMEIKg9HrNjP24VuU7cgE0ANzM1s5aDwn3nEFpCX0INtjn25H vefMH7gEOF8Khi3LvV5YA9sP8CBzMiz19umrKZ1zLaJk01H/aqMdxQ2+GBiDgB5k d48sIUJ1+uvIgkkPA6YNZ59AJl54SSaslcT+sZ61isiPbfnvC4hNYp2ZzEPu5H4b Kr3fecay5S27/v/ORUI3v2iCZwD7RBVMkpcOswLKpJSD9rtqnB82l9NASDFd2hxX SxxIxv1O8t2RC0Xjue7lDPcX7qK3wa7LcYFUzUXD4dHsNn3uENonnMr94WdYtXFr Y+PJyZBsnziFQcuhDrZVjEKKIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGOj+7E9 0kiZrqIlEM68L7MahSUeMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVEMkIvOEI2NzAwQTZGNDA4MTFFQTkwQUM1NjZGQzRGOUFFMDIvQ0QwNzEwREEz RjM1MTFFRDg0QUZFQTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnm3YwDQYJKoZIhvcNAQELBQADggEBAB7EB+kfAcYLZLsw H9pRfqYbQp5h6E54Uona9TDRF9xvmmtUn3jrXDQRLgSbOLV+sCHVrqIHqUfaFF5f vlsO8vNBBYL4Lm5SGr2QaCZ/jo7mV8oFJchvOpnsHell0UVmzy6mK3vGW9VIg7FM ovIBZamUiYP5EaTZph115p4ayfv/ZvvVSK/SCYI5mkLj68QPvBVyXvMCJtmWO1X6 MI/2y5Zl4hxES9kxNfitcnLsjQxf2ra9dd5m7WceY+2fPq2tfegHogvzMWSCbWrN UcUKHrXpDMU31wLH0w9iqsje/UIb7Zaj4+DOVQFnIcdpdIMXrQirvoUg0+mgnxco NlXo9pI= -----END CERTIFICATE-----Generated at Mon Sep 8 13:16:15 2025 by rpki-client