$ rpki-client -vvf rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa File: 1D0A29A68E2911F08D963C69C4F9AE02.roa (raw, json) Hash identifier: 4ic8CmF7ut7Pvp2iYIvf/QMf2ZOGMMwbhjJKgiRPMl8= Subject key identifier: 80:F7:3F:A1:6D:C2:01:4A:99:BF:BE:AC:6D:4E:FF:DC:AD:C8:83:0E Certificate issuer: /CN=A91568A0/serialNumber=AFBAA1516E9E17F24CF9145B8C7CD4BA81A57A40 Certificate serial: 02 Authority key identifier: AF:BA:A1:51:6E:9E:17:F2:4C:F9:14:5B:8C:7C:D4:BA:81:A5:7A:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa Signing time: Wed 10 Sep 2025 09:32:48 +0000 ROA not before: Wed 10 Sep 2025 09:32:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140622 IP address blocks: 103.182.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.crl rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 08:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568A0, serialNumber=AFBAA1516E9E17F24CF9145B8C7CD4BA81A57A40 Validity Not Before: Sep 10 09:32:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68c145c0-012e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:15:bc:f5:73:47:82:62:1e:24:f9:e8:e0:52: bb:c2:7c:6c:90:c6:7a:8f:ad:46:ec:1c:b3:92:e4: 13:5b:d1:a9:4b:9f:b7:ef:d8:0e:40:ef:2f:6a:95: 27:61:a4:3c:02:dd:f8:8b:3e:c0:02:ef:69:28:d1: 06:da:4a:25:b9:ed:a1:e3:bb:c6:0c:a3:cd:11:f2: 50:84:56:51:ee:39:f6:55:e6:f8:39:fc:84:1b:04: a7:ef:59:1b:bc:42:2d:72:e1:00:fa:ba:34:96:50: 0f:fb:5f:d4:b4:87:4d:80:ac:46:b0:4e:65:07:e6: de:61:5d:aa:24:0d:c9:fa:ef:99:4e:f9:3c:c4:2b: fa:31:ac:be:0d:5c:10:8d:1e:10:97:10:25:2d:ac: 80:fc:f1:4e:03:8a:2a:73:ec:a6:ef:98:df:e3:1e: ca:61:6c:a6:7b:6e:72:67:e4:6d:5f:8a:2c:56:7d: 26:85:88:64:db:6f:6e:a9:a4:e1:8c:78:17:9a:47: a7:ca:f6:a1:41:01:58:a7:e6:53:5b:65:3c:7c:ae: 3f:29:b5:5b:7b:51:f0:d4:bb:ab:49:a9:ce:de:0f: 0c:d4:53:04:7d:34:e7:0c:40:88:50:ce:0e:93:0f: be:af:50:2e:99:45:87:81:55:32:ba:b2:38:fd:9d: 76:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F7:3F:A1:6D:C2:01:4A:99:BF:BE:AC:6D:4E:FF:DC:AD:C8:83:0E X509v3 Authority Key Identifier: keyid:AF:BA:A1:51:6E:9E:17:F2:4C:F9:14:5B:8C:7C:D4:BA:81:A5:7A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.173.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:ba:e2:a6:4c:24:c3:3b:53:c0:62:f0:0b:b9:21:69:d6:3b: fe:5c:38:02:a5:53:aa:d2:70:73:91:13:5b:22:39:61:36:95: 65:10:ca:60:1f:94:98:d6:46:5f:2d:12:8f:7e:ca:5c:27:10: b7:1b:c8:ea:e4:69:55:7f:e1:11:11:fa:b0:d3:b1:30:2b:2f: 3f:38:6a:5c:ad:a3:d4:92:6b:dc:a6:94:af:13:7e:71:a8:59: 4d:de:32:06:70:ef:fb:81:be:ce:9f:9b:c0:33:3a:80:8e:dc: 54:40:f0:34:7f:cd:f5:48:03:22:d2:29:46:cb:25:e6:7f:db: ce:c6:76:76:20:d0:dc:a7:5e:0a:5e:5f:61:54:f3:fd:9a:88: 40:a0:10:fb:96:f5:f5:0d:a0:65:6a:c9:8a:bb:af:ee:1b:87: b2:b1:a2:a5:78:55:4b:60:b5:cc:e7:b6:fd:49:ce:8c:e6:e6: 7e:f7:cd:0d:9f:84:f8:35:35:9d:5c:99:3e:7d:84:80:23:a3: a6:1f:45:18:ac:1d:fd:20:4e:5a:11:81:c2:a7:37:ee:87:ac: 1b:15:3c:93:b9:cc:0c:ae:da:40:fa:c4:17:29:85:ad:94:d3: 5a:b7:e8:bd:01:a7:b1:75:d9:79:bc:71:99:d4:8d:64:e3:8a: cf:a5:a4:41 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjhBMDExMC8GA1UEBRMoQUZCQUExNTE2RTlFMTdGMjRDRjkxNDVCOEM3Q0Q0QkE4 MUE1N0E0MDAeFw0yNTA5MTAwOTMyNDhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzE0NWMwLTAxMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrFbz1c0eCYh4k+ejgUrvCfGyQxnqPrUbsHLOS5BNb0alLn7fv2A5A7y9qlSdh pDwC3fiLPsAC72ko0QbaSiW57aHju8YMo80R8lCEVlHuOfZV5vg5/IQbBKfvWRu8 Qi1y4QD6ujSWUA/7X9S0h02ArEawTmUH5t5hXaokDcn675lO+TzEK/oxrL4NXBCN HhCXECUtrID88U4Diipz7KbvmN/jHsphbKZ7bnJn5G1fiixWfSaFiGTbb26ppOGM eBeaR6fK9qFBAVin5lNbZTx8rj8ptVt7UfDUu6tJqc7eDwzUUwR9NOcMQIhQzg6T D76vUC6ZRYeBVTK6sjj9nXZdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgPc/oW3C AUqZv76sbU7/3K3Igw4wHwYDVR0jBBgwFoAUr7qhUW6eF/JM+RRbjHzUuoGlekAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2OEEwL0IyMDY4Q0Y4OEUy ODExRjA5QzJBNkI0OUM0RjlBRTAyL3I3cWhVVzZlRl9KTS1SUmJqSHpVdW9HbGVr QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjdxaFVXNmVGX0pNLVJSYmpIelV1b0dsZWtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhBMC9CMjA2OENGODhFMjgxMUYwOUMyQTZCNDlDNEY5QUUwMi8xRDBBMjlBNjhF MjkxMUYwOEQ5NjNDNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe2rTANBgkqhkiG9w0BAQsFAAOCAQEAbLripkwkwztTwGLw C7khadY7/lw4AqVTqtJwc5ETWyI5YTaVZRDKYB+UmNZGXy0Sj37KXCcQtxvI6uRp VX/hERH6sNOxMCsvPzhqXK2j1JJr3KaUrxN+cahZTd4yBnDv+4G+zp+bwDM6gI7c VEDwNH/N9UgDItIpRssl5n/bzsZ2diDQ3KdeCl5fYVTz/ZqIQKAQ+5b19Q2gZWrJ iruv7huHsrGipXhVS2C1zOe2/UnOjObmfvfNDZ+E+DU1nVyZPn2EgCOjph9FGKwd /SBOWhGBwqc37oesGxU8k7nMDK7aQPrEFymFrZTTWrfovQGnsXXZebxxmdSNZOOK z6WkQQ== -----END CERTIFICATE-----Generated at Tue Sep 16 07:45:03 2025 by rpki-client