$ rpki-client -vvf rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/42B2A584790C11F0BFDABE73C4F9AE02.roa File: 42B2A584790C11F0BFDABE73C4F9AE02.roa (raw, json) Hash identifier: rsXupeO8EVGQ/M7qesQZfS0Ho6k/jy/+B1i/0dc3Rfs= Subject key identifier: D6:50:F0:05:DC:53:A4:67:76:52:EB:93:D6:1E:7A:C4:6F:A7:66:69 Certificate issuer: /CN=A9161CEF/serialNumber=844BD6D1A972CFD2B60B84DE0CB63E5D54AFA8CF Certificate serial: 0C Authority key identifier: 84:4B:D6:D1:A9:72:CF:D2:B6:0B:84:DE:0C:B6:3E:5D:54:AF:A8:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEvW0alyz9K2C4TeDLY-XVSvqM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/42B2A584790C11F0BFDABE73C4F9AE02.roa Signing time: Thu 14 Aug 2025 12:48:22 +0000 ROA not before: Thu 14 Aug 2025 12:48:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140071 IP address blocks: 103.148.26.0/23 maxlen: 24 2001:df2:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/hEvW0alyz9K2C4TeDLY-XVSvqM8.crl rsync://rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/hEvW0alyz9K2C4TeDLY-XVSvqM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEvW0alyz9K2C4TeDLY-XVSvqM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161CEF, serialNumber=844BD6D1A972CFD2B60B84DE0CB63E5D54AFA8CF Validity Not Before: Aug 14 12:48:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=689ddb16-209d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:43:73:70:c3:21:76:d5:d6:da:62:ba:bf:92: 70:c2:b5:34:82:a0:a0:32:ce:65:84:0a:1d:42:db: dd:9e:a2:da:ce:cd:1e:cd:3b:ed:72:2e:33:4b:4f: f0:82:7f:1b:28:7b:1c:7e:96:4d:b0:11:ce:02:8d: 71:1c:3f:de:1a:b2:2e:42:f2:3f:e2:a2:5b:33:bc: c0:da:2d:cf:9f:10:b4:b4:7d:07:b1:d0:bc:02:2a: 38:f0:68:0f:70:aa:42:ee:78:b7:bf:b6:66:24:d0: b0:9d:02:d6:5b:8b:27:c1:eb:bc:fd:24:ae:92:48: c7:94:80:8d:03:f1:5f:3a:11:b5:ea:34:41:61:88: 7d:14:7f:82:06:71:63:62:7d:d6:82:7d:dc:ad:e8: bc:19:49:06:c3:32:32:13:dc:ea:77:4c:dd:ff:39: 0b:2d:1b:3e:52:20:8e:5d:c1:09:93:e6:1b:05:da: ec:63:52:b1:ac:aa:b9:b5:a5:93:49:15:71:d7:18: b5:3c:0e:8d:57:46:6b:60:45:48:7f:9d:44:44:da: c9:24:e1:b0:1d:bd:25:9c:84:a6:46:68:3e:5d:4a: 1e:1d:59:4f:76:c1:d8:2f:ca:de:13:c6:3b:11:c3: 6a:f4:27:6a:8a:c3:6d:1e:f0:ad:8e:91:0d:fe:de: 6e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:50:F0:05:DC:53:A4:67:76:52:EB:93:D6:1E:7A:C4:6F:A7:66:69 X509v3 Authority Key Identifier: keyid:84:4B:D6:D1:A9:72:CF:D2:B6:0B:84:DE:0C:B6:3E:5D:54:AF:A8:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/hEvW0alyz9K2C4TeDLY-XVSvqM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEvW0alyz9K2C4TeDLY-XVSvqM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161CEF/9CE51258459111EABE6B931BC4F9AE02/42B2A584790C11F0BFDABE73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.26.0/23 IPv6: 2001:df2:b980::/48 Signature Algorithm: sha256WithRSAEncryption 90:f3:4d:db:b2:c4:8e:d7:34:e5:46:e3:8a:61:1c:c4:2c:dd: c0:8c:70:bc:bb:ee:a6:14:17:14:78:a7:c0:a2:60:36:e4:bb: 56:34:ab:ad:be:1c:21:63:7a:2f:b6:c6:f0:3e:b4:71:1a:e4: 1b:c0:ba:b7:3c:fc:42:a9:95:71:88:09:33:6d:9d:fb:4e:1d: 13:e4:72:9b:be:c8:28:8a:2b:d5:11:7b:95:52:a5:f9:79:6f: eb:d2:ce:e5:4d:04:50:bf:1d:27:31:d3:bd:c9:51:e6:51:55: 1d:82:df:36:9a:1c:02:c0:f0:8b:26:ae:90:92:18:8c:d5:18: bb:c4:2c:48:fb:82:d0:63:76:cb:ba:a4:10:47:dc:a4:0f:eb: ff:65:8a:cc:e9:c7:f5:50:6e:32:55:c6:69:46:b6:9e:cf:86: b4:ed:0e:8f:b1:8f:62:6a:9c:dc:12:ce:51:cc:95:6c:02:df: 73:79:ec:16:8c:58:0b:5e:d7:f7:90:bc:3b:49:81:7e:14:b3: 73:0e:89:e1:dc:18:c2:14:e4:de:d6:e6:e5:ab:65:94:31:04: e7:67:9a:50:33:55:84:ed:0e:5d:aa:9a:3e:3e:26:5a:f8:1d: 04:00:9f:69:1b:bd:df:60:26:38:29:f0:86:db:26:b4:47:ce: 22:1f:fe:39 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUNFRjExMC8GA1UEBRMoODQ0QkQ2RDFBOTcyQ0ZEMkI2MEI4NERFMENCNjNFNUQ1 NEFGQThDRjAeFw0yNTA4MTQxMjQ4MjJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OWRkYjE2LTIwOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtQ3NwwyF21dbaYrq/knDCtTSCoKAyzmWECh1C292eotrOzR7NO+1yLjNLT/CC fxsoexx+lk2wEc4CjXEcP94asi5C8j/iolszvMDaLc+fELS0fQex0LwCKjjwaA9w qkLueLe/tmYk0LCdAtZbiyfB67z9JK6SSMeUgI0D8V86EbXqNEFhiH0Uf4IGcWNi fdaCfdyt6LwZSQbDMjIT3Op3TN3/OQstGz5SII5dwQmT5hsF2uxjUrGsqrm1pZNJ FXHXGLU8Do1XRmtgRUh/nURE2skk4bAdvSWchKZGaD5dSh4dWU92wdgvyt4TxjsR w2r0J2qKw20e8K2OkQ3+3m5BAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU1lDwBdxT pGd2UuuT1h56xG+nZmkwHwYDVR0jBBgwFoAUhEvW0alyz9K2C4TeDLY+XVSvqM8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxQ0VGLzlDRTUxMjU4NDU5 MTExRUFCRTZCOTMxQkM0RjlBRTAyL2hFdlcwYWx5ejlLMkM0VGVETFktWFZTdnFN OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaEV2VzBhbHl6OUsyQzRUZURMWS1YVlN2cU04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUNFRi85Q0U1MTI1ODQ1OTExMUVBQkU2QjkzMUJDNEY5QUUwMi80MkIyQTU4NDc5 MEMxMUYwQkZEQUJFNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeUGjAPBAIAAjAJAwcAIAEN8rmAMA0GCSqGSIb3DQEBCwUA A4IBAQCQ803bssSO1zTlRuOKYRzELN3AjHC8u+6mFBcUeKfAomA25LtWNKutvhwh Y3ovtsbwPrRxGuQbwLq3PPxCqZVxiAkzbZ37Th0T5HKbvsgoiivVEXuVUqX5eW/r 0s7lTQRQvx0nMdO9yVHmUVUdgt82mhwCwPCLJq6QkhiM1Ri7xCxI+4LQY3bLuqQQ R9ykD+v/ZYrM6cf1UG4yVcZpRraez4a07Q6PsY9iapzcEs5RzJVsAt9zeewWjFgL Xtf3kLw7SYF+FLNzDonh3BjCFOTe1ublq2WUMQTnZ5pQM1WE7Q5dqpo+PiZa+B0E AJ9pG73fYCY4KfCG2ya0R84iH/45 -----END CERTIFICATE-----Generated at Fri Aug 22 18:57:15 2025 by rpki-client