$ rpki-client -vvf rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa File: 85CE44A4BC1111EE9E42EB2DC4F9AE02.roa (raw, json) Hash identifier: AfyKET21CuVm+C0lZplWyO7fvqiYNNsqsgPynM9Y4+0= Subject key identifier: 43:D9:FB:87:08:69:37:19:C0:DD:66:52:ED:76:BD:F6:1A:9D:B5:12 Certificate issuer: /CN=A9154376/serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B Certificate serial: 0197 Authority key identifier: 8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa Signing time: Mon 25 Aug 2025 04:10:22 +0000 ROA not before: Mon 25 Aug 2025 04:10:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151608 IP address blocks: 103.36.88.0/23 maxlen: 23 103.36.88.0/24 maxlen: 24 103.36.89.0/24 maxlen: 24 2001:df2:ae40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.crl rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 04:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154376, serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B Validity Not Before: Aug 25 04:10:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68abe22e-3d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:02:3c:b8:3b:be:ae:49:ba:d3:5a:b4:47:89: fd:e5:b6:9f:d4:b0:3a:43:2e:79:f5:bf:d3:58:e0: 18:2c:8f:77:4a:a4:de:82:b6:4c:ab:e6:e6:7a:a8: ea:97:13:1a:81:ab:50:6d:f1:ad:dc:53:6e:df:f6: 3c:70:39:0a:41:71:25:53:75:b4:23:d5:b6:cd:95: ed:e9:e1:a8:1d:74:da:1e:47:43:e8:43:7a:77:79: 41:41:ad:80:1e:5a:05:7f:90:0d:d0:20:e8:64:a8: 53:70:eb:78:f1:d6:35:91:23:f3:d7:7c:40:13:a2: 97:1c:30:0f:f5:f5:a1:a4:5d:be:30:2b:29:68:94: ca:db:7c:a4:6c:88:01:4c:56:21:e8:97:e5:03:f6: ae:f0:ee:84:68:78:fc:d6:92:51:04:a8:c6:1e:1a: 93:44:fe:ee:c4:6c:5c:64:1c:21:52:20:17:94:05: d7:0e:4d:46:54:21:2a:d1:d0:bb:46:d8:c1:d0:95: 9c:2d:6d:43:3d:d1:45:9c:b4:c8:d0:ab:2b:38:ca: b7:b4:83:17:e0:88:08:6f:7b:c4:7b:27:12:d0:44: 12:b6:6e:71:d1:7a:17:92:ca:1a:a8:8b:de:4a:15: 1e:3f:46:e6:c4:63:11:5d:e8:d9:79:c2:e6:97:49: 73:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D9:FB:87:08:69:37:19:C0:DD:66:52:ED:76:BD:F6:1A:9D:B5:12 X509v3 Authority Key Identifier: keyid:8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.88.0/23 IPv6: 2001:df2:ae40::/48 Signature Algorithm: sha256WithRSAEncryption 02:df:43:75:a8:b0:80:cc:32:93:57:49:b9:c8:80:98:b1:91: d7:8e:39:34:f5:53:cf:46:b5:df:07:48:89:f4:04:07:9c:0e: 1e:1d:7d:7c:c5:2d:7e:0a:f3:ad:15:98:23:0e:2f:c9:0c:ec: 58:6f:22:e7:cd:ca:60:98:e5:e4:13:a1:93:25:56:37:0b:8a: da:81:18:8a:55:26:5f:07:b5:2d:5f:78:cf:96:22:12:32:77: e4:cc:b0:cd:da:ec:16:ca:64:28:c3:1d:19:b3:13:4a:1d:c7: 5e:84:5f:f7:3e:8d:32:7f:01:02:a0:1e:91:90:02:a2:bb:68: c9:0d:00:6c:6b:da:b9:ac:4e:f8:ea:f9:db:6b:e2:a7:ec:50: cf:16:03:50:76:7b:6a:aa:a9:aa:86:81:33:b1:94:ba:bf:f1: e4:b6:05:aa:4f:9d:27:a2:cc:1c:0e:93:0a:1c:6f:fe:04:c5: 53:84:9c:a5:64:94:79:7f:ce:b4:3a:2d:5b:c8:51:2c:d8:3c: 7e:84:e3:15:c6:4c:9e:a7:b6:13:0e:4c:07:29:67:5c:a1:06: 05:6d:10:89:cf:a7:71:3f:ce:c7:1d:9c:77:6f:b9:a4:7b:01: 2a:1b:8b:d6:b5:ba:bb:12:c1:52:ee:da:4b:9e:74:19:4d:96: 3e:7c:1b:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNzYxMTAvBgNVBAUTKDhBNTgxNjU1QzkyMkE3QTUxMjFFMDBGQjdBNDI3RTAx OUFDNzMwN0IwHhcNMjUwODI1MDQxMDIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiZTIyZS0zZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wI8uDu+rkm601q0R4n95baf1LA6Qy559b/TWOAYLI93SqTegrZMq+bmeqjq lxMagatQbfGt3FNu3/Y8cDkKQXElU3W0I9W2zZXt6eGoHXTaHkdD6EN6d3lBQa2A HloFf5AN0CDoZKhTcOt48dY1kSPz13xAE6KXHDAP9fWhpF2+MCspaJTK23ykbIgB TFYh6JflA/au8O6EaHj81pJRBKjGHhqTRP7uxGxcZBwhUiAXlAXXDk1GVCEq0dC7 RtjB0JWcLW1DPdFFnLTI0KsrOMq3tIMX4IgIb3vEeycS0EQStm5x0XoXksoaqIve ShUeP0bmxGMRXejZecLml0lzQQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEPZ+4cI aTcZwN1mUu12vfYanbUSMB8GA1UdIwQYMBaAFIpYFlXJIqelEh4A+3pCfgGaxzB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM3Ni9BMzU3RDc5NjIw OEIxMUVFQThCNTg5MzRDNEY5QUUwMi9pbGdXVmNraXA2VVNIZ0Q3ZWtKLUFackhN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lsZ1dWY2tpcDZVU0hnRDdla0otQVpySE1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQzNzYvQTM1N0Q3OTYyMDhCMTFFRUE4QjU4OTM0QzRGOUFFMDIvODVDRTQ0QTRC QzExMTFFRTlFNDJFQjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJFgwDwQCAAIwCQMHACABDfKuQDANBgkqhkiG9w0BAQsF AAOCAQEAAt9DdaiwgMwyk1dJuciAmLGR1445NPVTz0a13wdIifQEB5wOHh19fMUt fgrzrRWYIw4vyQzsWG8i583KYJjl5BOhkyVWNwuK2oEYilUmXwe1LV94z5YiEjJ3 5MywzdrsFspkKMMdGbMTSh3HXoRf9z6NMn8BAqAekZACortoyQ0AbGvauaxO+Or5 22vip+xQzxYDUHZ7aqqpqoaBM7GUur/x5LYFqk+dJ6LMHA6TChxv/gTFU4ScpWSU eX/OtDotW8hRLNg8foTjFcZMnqe2Ew5MBylnXKEGBW0Qic+ncT/Oxx2cd2+5pHsB KhuL1rW6uxLBUu7aS550GU2WPnwbxQ== -----END CERTIFICATE-----Generated at Mon Aug 25 07:27:41 2025 by rpki-client