$ rpki-client -vvf rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa File: 4FD4AF70C39511ED99703D2AC4F9AE02.roa (raw, json) Hash identifier: 9/AcvjliR95434ywgMrtXlXwFBmsQrBKTnsFFaaHZi8= Subject key identifier: AA:9B:5B:4A:F6:E7:F5:30:91:84:F3:DE:05:95:14:03:97:5D:24:E4 Certificate issuer: /CN=A915568B/serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Certificate serial: 01D9 Authority key identifier: B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa Signing time: Wed 03 Sep 2025 03:20:48 +0000 ROA not before: Wed 03 Sep 2025 03:20:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150287 IP address blocks: 103.41.168.0/24 maxlen: 24 103.74.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915568B, serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Validity Not Before: Sep 3 03:20:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7b40f-baff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:02:ee:d5:2c:e7:79:3e:b1:c1:04:48:3b:87: 2d:84:8b:5c:d5:0f:46:01:68:77:8b:31:af:71:61: 6b:1f:49:9b:bc:4d:91:a5:f6:d0:2c:18:b8:b6:7f: 4d:6e:9f:e2:d4:c6:85:00:c6:e9:6a:62:a4:e0:25: d9:24:2b:5d:4e:a5:36:1d:19:96:e6:bb:73:19:c5: 9f:91:a9:d4:26:c7:9a:b1:d7:3b:88:66:40:05:81: 73:10:40:fb:78:72:55:a1:4f:60:44:52:1f:95:9a: ab:58:13:f6:21:f3:44:28:c3:8e:1c:6c:05:25:40: 80:bf:3a:9f:c4:a8:4c:62:c6:cd:02:7f:12:d2:36: 42:b3:c8:2e:15:61:2c:ec:73:47:3e:20:fb:c8:b7: 16:11:e1:69:39:0f:51:c9:4f:16:0b:cb:46:a0:ab: c1:94:88:59:93:9c:ac:f1:35:5f:3b:fe:ed:c3:10: 05:0f:c3:47:d0:9f:37:86:5b:d4:1a:1c:54:d0:c5: a8:ec:f7:f9:a3:c6:c6:20:c4:95:5f:8e:3a:a7:d2: 79:cd:b9:e7:bc:a4:60:60:b7:73:0c:a8:59:d2:73: 23:b1:bc:88:b8:2f:03:69:78:51:1b:9a:2b:bc:62: 86:fa:90:44:b2:9d:a1:14:f5:60:1e:99:04:68:6c: a3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9B:5B:4A:F6:E7:F5:30:91:84:F3:DE:05:95:14:03:97:5D:24:E4 X509v3 Authority Key Identifier: keyid:B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.168.0/24 103.74.225.0/24 Signature Algorithm: sha256WithRSAEncryption 13:ca:ec:92:33:71:df:a8:1d:2c:e9:a0:93:ce:3e:0a:06:d6: e5:b9:f1:28:db:82:39:d7:e2:cd:06:81:51:d0:eb:58:1e:12: 21:e7:a6:e4:84:49:a8:3f:76:2d:8f:4f:3f:e6:f2:90:c8:e8: 3b:ec:e4:19:ef:d6:b0:78:0d:6b:d3:3b:dc:4b:d1:b1:ef:4c: 54:12:c2:86:1a:77:16:48:09:b9:bd:f7:1b:bd:ea:d6:93:55: 6b:ae:e0:f2:3b:b8:08:45:88:10:6f:63:f1:c3:c4:8b:93:21: 2e:c3:26:b3:3e:58:57:f7:94:9a:5f:10:80:a1:a6:63:76:46: d1:c4:95:0d:e6:68:a5:13:c6:b2:ed:d9:e1:97:56:ac:1a:c6: 46:e7:23:27:94:85:39:b8:ac:0a:46:03:63:de:0b:8b:b4:db: 11:3a:0f:ab:99:38:45:bd:09:6b:82:65:1a:d5:44:2e:dd:84: 97:4c:11:11:bc:24:1f:43:ac:82:fb:24:c1:47:27:23:4d:a6: 28:cd:db:f0:9e:2e:bb:52:e3:79:af:9d:ab:1f:f4:a0:e8:c6: bb:1b:72:6f:0b:3a:dc:d7:86:90:27:b9:19:b5:b3:34:20:ac: 2c:b2:ca:58:be:80:5b:ff:c2:28:80:64:2b:18:de:45:b4:1f: 78:81:5e:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2OEIxMTAvBgNVBAUTKEI1RTlEREM2QkYwOUY4OTQ1ODU1NjA4NzQ0MkQ5NDhD NDQwMzQ1MzAwHhcNMjUwOTAzMDMyMDQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YjQwZi1iYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gLu1SzneT6xwQRIO4cthItc1Q9GAWh3izGvcWFrH0mbvE2RpfbQLBi4tn9N bp/i1MaFAMbpamKk4CXZJCtdTqU2HRmW5rtzGcWfkanUJseasdc7iGZABYFzEED7 eHJVoU9gRFIflZqrWBP2IfNEKMOOHGwFJUCAvzqfxKhMYsbNAn8S0jZCs8guFWEs 7HNHPiD7yLcWEeFpOQ9RyU8WC8tGoKvBlIhZk5ys8TVfO/7twxAFD8NH0J83hlvU GhxU0MWo7Pf5o8bGIMSVX446p9J5zbnnvKRgYLdzDKhZ0nMjsbyIuC8DaXhRG5or vGKG+pBEsp2hFPVgHpkEaGyjKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKqbW0r2 5/UwkYTz3gWVFAOXXSTkMB8GA1UdIwQYMBaAFLXp3ca/CfiUWFVgh0QtlIxEA0Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4Qi8xRjdCMUQwOEMz OEQxMUVEQTdFMUNBNjRDNEY5QUUwMi90ZW5keHI4Si1KUllWV0NIUkMyVWpFUURS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RlbmR4cjhKLUpSWVZXQ0hSQzJVakVRRFJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2OEIvMUY3QjFEMDhDMzhEMTFFREE3RTFDQTY0QzRGOUFFMDIvNEZENEFGNzBD Mzk1MTFFRDk5NzAzRDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnKagDBABnSuEwDQYJKoZIhvcNAQELBQADggEBABPK7JIz cd+oHSzpoJPOPgoG1uW58SjbgjnX4s0GgVHQ61geEiHnpuSESag/di2PTz/m8pDI 6Dvs5Bnv1rB4DWvTO9xL0bHvTFQSwoYadxZICbm99xu96taTVWuu4PI7uAhFiBBv Y/HDxIuTIS7DJrM+WFf3lJpfEIChpmN2RtHElQ3maKUTxrLt2eGXVqwaxkbnIyeU hTm4rApGA2PeC4u02xE6D6uZOEW9CWuCZRrVRC7dhJdMERG8JB9DrIL7JMFHJyNN pijN2/CeLrtS43mvnasf9KDoxrsbcm8LOtzXhpAnuRm1szQgrCyyyli+gFv/wiiA ZCsY3kW0H3iBXrI= -----END CERTIFICATE-----Generated at Fri Sep 19 14:01:09 2025 by rpki-client