$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa File: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (raw, json) Hash identifier: cTGuGnG9rqC1kt6QlqPGiDTyt8yC7pqJIZqMZttM2hs= Subject key identifier: 37:EF:1D:36:17:19:14:94:B8:35:AB:1D:CD:02:52:26:61:5F:8C:4C Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E38 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa Signing time: Tue 16 Sep 2025 17:57:29 +0000 ROA not before: Tue 16 Sep 2025 17:57:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24550 IP address blocks: 103.94.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3640 (0xe38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Sep 16 17:57:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c9a509-1a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:08:23:26:39:a7:f3:de:1f:2c:02:d8:c6: 9c:63:10:ee:98:ae:f5:d3:ce:17:b5:dd:5c:6e:b8: 90:e6:1d:d1:23:cf:8a:6a:7f:bc:cc:41:e1:75:ba: 38:3f:b4:76:5e:b5:a6:4c:0a:1c:67:f3:3a:df:98: 96:9a:9f:8b:97:e6:c0:a1:fe:a1:64:95:a5:18:2e: f1:bb:c4:4a:f3:53:76:09:1b:1a:8b:2d:45:d0:c0: ad:34:36:6e:9f:2a:c4:27:d5:b2:aa:f1:75:73:99: 0d:56:ec:5a:d9:b1:68:a6:5d:ae:06:0e:a8:40:ce: d6:e8:f7:44:58:25:72:d5:fe:78:7a:06:44:de:97: 61:76:11:ff:32:74:15:b7:32:4a:ae:36:19:fc:07: 66:36:66:80:53:cb:81:c5:4d:15:0a:9f:37:b3:f0: 05:79:73:bb:2a:da:86:c8:b0:0b:31:c9:0c:a5:96: f7:30:81:7e:23:8b:9e:64:84:1f:31:4a:8b:f5:ee: 4c:c6:47:bb:5c:42:84:f2:d5:92:9b:8d:df:cb:f2: 0d:92:7c:97:6a:85:d9:f8:7f:71:ac:07:3f:d9:6b: b4:fd:bf:9b:1d:f7:c7:7c:cc:e6:9e:ec:4a:6c:25: 49:12:18:79:d2:04:64:c1:ee:ff:da:d5:28:78:3e: e3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EF:1D:36:17:19:14:94:B8:35:AB:1D:CD:02:52:26:61:5F:8C:4C X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.252.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:13:2b:39:ac:e0:fa:3d:16:b0:47:f1:3a:bd:a0:dc:23:76: bf:17:6a:ed:dd:47:01:f5:4a:ec:4b:bc:98:4b:08:23:6e:b9: bf:0a:13:b4:03:70:89:48:c2:9e:35:62:53:f1:4e:3f:bc:a2: 68:60:85:03:2b:b2:6d:4b:0a:2c:6a:2d:47:52:19:2a:ac:6f: 10:0c:52:ef:8a:fb:d7:4b:98:3a:3f:ea:25:db:ab:9f:e0:6d: ad:bd:bb:e7:12:62:c2:7e:fc:e3:15:d1:fd:b8:50:59:33:08: 3a:30:57:d6:9e:3b:34:f6:75:55:bc:b5:a9:ac:3a:f5:83:71: 07:6f:c7:79:84:ce:fa:e3:bf:c8:88:db:3d:77:05:31:1c:86: d6:40:70:8f:e9:1f:67:ae:b4:b9:6d:bb:c6:03:ff:48:ab:48: 0c:46:f3:d5:48:98:ac:c9:44:39:0b:5b:0e:fa:38:83:39:e3: 13:a8:77:c6:76:ff:7a:82:42:62:31:5c:8d:cf:a9:d4:50:a8: 1e:41:90:c6:2c:c3:1d:e6:2b:5c:38:e0:2b:3b:f8:1b:b2:22: c8:6b:bf:18:c0:b9:bd:dc:94:7f:47:d9:f7:50:5c:96:86:f7: bd:dd:d7:28:7b:80:17:a8:65:53:40:e4:20:20:f5:1d:ee:74: a7:2c:fb:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjUwOTE2MTc1NzI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YTUwOS0xYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNgIIyY5p/PeHywC2MacYxDumK71084Xtd1cbriQ5h3RI8+Kan+8zEHhdbo4 P7R2XrWmTAocZ/M635iWmp+Ll+bAof6hZJWlGC7xu8RK81N2CRsaiy1F0MCtNDZu nyrEJ9WyqvF1c5kNVuxa2bFopl2uBg6oQM7W6PdEWCVy1f54egZE3pdhdhH/MnQV tzJKrjYZ/AdmNmaAU8uBxU0VCp83s/AFeXO7KtqGyLALMckMpZb3MIF+I4ueZIQf MUqL9e5Mxke7XEKE8tWSm43fy/INknyXaoXZ+H9xrAc/2Wu0/b+bHffHfMzmnuxK bCVJEhh50gRkwe7/2tUoeD7jqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDfvHTYX GRSUuDWrHc0CUiZhX4xMMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyOTcvNDMwMUZEQkVBRjZFMTFFOUE5MjU4MDY3QzRGOUFFMDIvNDU3QTAwQThB RjdBMTFFOUFGRjEwNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXvwwDQYJKoZIhvcNAQELBQADggEBAG4TKzms4Po9FrBH 8Tq9oNwjdr8Xau3dRwH1SuxLvJhLCCNuub8KE7QDcIlIwp41YlPxTj+8omhghQMr sm1LCixqLUdSGSqsbxAMUu+K+9dLmDo/6iXbq5/gba29u+cSYsJ+/OMV0f24UFkz CDowV9aeOzT2dVW8tamsOvWDcQdvx3mEzvrjv8iI2z13BTEchtZAcI/pH2eutLlt u8YD/0irSAxG89VImKzJRDkLWw76OIM54xOod8Z2/3qCQmIxXI3PqdRQqB5BkMYs wx3mK1w44Cs7+BuyIshrvxjAub3clH9H2fdQXJaG973d1yh7gBeoZVNA5CAg9R3u dKcs+z4= -----END CERTIFICATE-----Generated at Fri Sep 19 08:32:07 2025 by rpki-client