$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa File: 31A1996898F711EEB7B27877C4F9AE02.roa (raw, json) Hash identifier: inpneUp76nQQX6Q/CpN1dgRfEj/8zpxJb6ddO35TdAM= Subject key identifier: 7C:EE:81:1D:70:B6:A5:98:E2:0D:7D:84:A8:3C:51:6E:C9:9E:A8:8D Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 014D Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa Signing time: Tue 17 Jun 2025 03:42:41 +0000 ROA not before: Tue 17 Jun 2025 03:42:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55532 IP address blocks: 43.245.40.0/24 maxlen: 24 43.245.41.0/24 maxlen: 24 43.245.42.0/24 maxlen: 24 43.245.43.0/24 maxlen: 24 103.1.192.0/24 maxlen: 24 103.1.193.0/24 maxlen: 24 103.1.194.0/24 maxlen: 24 103.1.195.0/24 maxlen: 24 202.9.94.0/23 maxlen: 24 203.25.173.0/24 maxlen: 24 2001:df0:a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 05:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Jun 17 03:42:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6850e431-8103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:12:03:f0:61:0e:cd:e6:c6:2c:47:7e:ed: 5f:5a:68:6f:8e:07:ce:e6:24:1c:9e:d8:ee:6c:23: ad:ac:8b:7e:5b:b2:17:a4:32:3e:46:16:66:b0:74: 9f:a5:4b:46:bf:18:b5:cc:8e:44:57:86:e5:d0:5c: 73:73:82:23:b5:35:ed:94:5a:8f:b9:a9:28:34:e5: 1c:ab:d1:b3:f3:a4:a9:1e:8d:9c:b5:8c:0c:17:98: cd:1d:fc:b9:9a:b9:06:d6:ff:74:55:f1:64:ea:d2: 17:66:00:6a:75:8e:ba:e8:a4:58:45:a6:b8:e1:da: 5b:c5:1b:71:3c:f0:5b:56:4c:31:97:42:c7:cc:a1: 25:b9:fe:42:fa:22:41:3d:a5:a0:0b:b1:f5:0c:a2: ce:41:ef:18:59:fc:16:48:b9:9d:b6:1b:38:75:bd: cb:7b:01:91:fd:8e:bb:0a:28:9a:d0:7e:93:be:2a: a1:92:78:e3:30:8a:0a:ff:b7:4e:24:80:b3:4d:ae: a8:ee:36:9d:7a:e6:0e:88:e4:90:ca:0b:ce:c9:6b: 15:1e:87:3e:49:d8:66:43:45:62:99:ea:02:67:dd: 90:e9:9a:35:a7:ac:08:40:b2:5f:85:5d:d5:54:03: 98:c7:14:c8:49:4d:3b:1e:6d:fe:ac:fa:cb:fc:f4: a8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EE:81:1D:70:B6:A5:98:E2:0D:7D:84:A8:3C:51:6E:C9:9E:A8:8D X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/31A1996898F711EEB7B27877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.40.0/22 103.1.192.0/22 202.9.94.0/23 203.25.173.0/24 IPv6: 2001:df0:a1::/48 Signature Algorithm: sha256WithRSAEncryption 50:ff:7c:23:6f:06:5e:71:47:79:7e:51:73:de:60:a4:02:7b: 47:47:06:c2:e5:46:12:fc:c5:09:c0:14:52:0a:d8:89:20:a5: 3a:25:5f:42:b5:0d:a6:87:54:da:2c:59:c3:6b:a1:52:cd:5b: de:71:83:1b:18:3d:13:ad:e5:2f:a1:00:63:33:1a:6f:fb:0a: c0:d8:eb:06:0d:d0:01:d0:3e:2f:38:72:c2:f9:67:20:7c:17: bd:cb:56:49:6f:5f:b2:c9:9c:52:3d:bd:20:66:95:0a:c7:03: 7c:a6:56:45:07:24:ae:e3:de:82:ea:97:d5:04:b4:d6:ff:63: cc:dc:f4:34:75:6a:a3:1e:50:e5:03:33:29:6e:cc:48:c6:97: e2:05:f1:ea:88:87:e2:1a:67:62:1b:40:cd:2e:fb:94:81:ec: 9d:2b:33:c4:98:3b:76:96:0c:7e:1f:65:93:d9:28:4d:d8:f3: 92:40:e0:50:e4:e4:80:74:9f:73:5b:2f:ed:04:71:df:ac:cb: 42:ea:91:d1:36:85:69:c2:19:50:b3:d5:11:f8:0c:8a:5d:f7: e6:19:e7:92:0f:c8:e1:4b:4b:87:57:ce:c5:df:e9:80:fb:4f: dc:8d:0a:0a:02:21:b4:54:97:55:05:c5:d7:fb:87:06:3b:1c: 52:3c:a9:00 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjUwNjE3MDM0MjQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwZTQzMS04MTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GUSA/BhDs3mxixHfu1fWmhvjgfO5iQcntjubCOtrIt+W7IXpDI+RhZmsHSf pUtGvxi1zI5EV4bl0Fxzc4IjtTXtlFqPuakoNOUcq9Gz86SpHo2ctYwMF5jNHfy5 mrkG1v90VfFk6tIXZgBqdY666KRYRaa44dpbxRtxPPBbVkwxl0LHzKEluf5C+iJB PaWgC7H1DKLOQe8YWfwWSLmdths4db3LewGR/Y67Ciia0H6TviqhknjjMIoK/7dO JICzTa6o7jadeuYOiOSQygvOyWsVHoc+SdhmQ0VimeoCZ92Q6Zo1p6wIQLJfhV3V VAOYxxTISU07Hm3+rPrL/PSoeQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFHzugR1w tqWY4g19hKg8UW7JnqiNMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg2MjAvMEU5MTk5MzQ4ODQyMTFFRUE3RDhDODE0QzRGOUFFMDIvMzFBMTk5Njg5 OEY3MTFFRUI3QjI3ODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAIr9SgDBAJnAcADBAHKCV4DBADLGa0wDwQCAAIwCQMHACAB DfAAoTANBgkqhkiG9w0BAQsFAAOCAQEAUP98I28GXnFHeX5Rc95gpAJ7R0cGwuVG EvzFCcAUUgrYiSClOiVfQrUNpodU2ixZw2uhUs1b3nGDGxg9E63lL6EAYzMab/sK wNjrBg3QAdA+LzhywvlnIHwXvctWSW9fssmcUj29IGaVCscDfKZWRQckruPeguqX 1QS01v9jzNz0NHVqox5Q5QMzKW7MSMaX4gXx6oiH4hpnYhtAzS77lIHsnSszxJg7 dpYMfh9lk9koTdjzkkDgUOTkgHSfc1sv7QRx36zLQuqR0TaFacIZULPVEfgMil33 5hnnkg/I4UtLh1fOxd/pgPtP3I0KCgIhtFSXVQXF1/uHBjscUjypAA== -----END CERTIFICATE-----Generated at Mon Oct 27 12:00:02 2025 by rpki-client