$ rpki-client -vvf rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa File: 46106B5077E811F0B822833AC4F9AE02.roa (raw, json) Hash identifier: 9Oj88fgWpf7bDNpYMBgtHOzsobZ0C0giyGClKVgu7Io= Subject key identifier: 0D:68:6E:06:9B:67:4C:93:B1:E5:8A:04:0D:AB:13:72:C4:1E:0A:D6 Certificate issuer: /CN=A9169DB2/serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Certificate serial: 08DC Authority key identifier: 9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa Signing time: Wed 13 Aug 2025 01:53:14 +0000 ROA not before: Wed 13 Aug 2025 01:53:14 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 56301 IP address blocks: 103.17.108.0/23 maxlen: 23 103.48.116.0/24 maxlen: 24 103.87.69.0/24 maxlen: 24 183.81.170.0/23 maxlen: 24 203.26.188.0/24 maxlen: 24 203.26.189.0/24 maxlen: 24 218.100.84.0/24 maxlen: 24 2401:fd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169DB2, serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Validity Not Before: Aug 13 01:53:14 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=689bf00a-c7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:1d:d4:26:d4:e4:20:39:d7:13:22:c1:a0: c5:d5:6a:9e:b4:51:d0:7c:ea:94:7f:b0:02:96:4b: 64:ec:c2:f0:ce:f2:e5:7d:ea:6c:e3:0c:89:d7:b3: f2:f9:79:39:2d:bd:95:f5:e0:9f:88:73:81:58:b9: 92:32:1b:9d:34:86:30:41:dc:e4:73:ad:aa:cb:f0: 6f:b9:54:49:29:c2:41:e2:d0:85:32:79:f5:60:4b: aa:ef:9d:81:2c:c1:71:09:13:7b:ef:31:7e:d1:d3: b9:1e:93:ab:37:7f:68:e6:21:8d:93:4f:02:50:c1: a7:96:3e:c5:d0:f2:50:7d:26:2f:54:0f:97:25:81: dd:8e:8c:28:48:9b:28:07:e7:87:8c:92:e3:69:84: 22:19:87:50:3b:bb:66:28:89:70:d9:75:10:52:1a: 53:b0:37:b9:c1:18:b8:1f:f6:3e:17:90:f8:a5:dd: 7d:f3:1f:be:db:c6:62:4d:48:a9:1f:9f:0d:94:66: 8c:0b:85:78:54:87:f7:91:de:03:fa:e5:9e:0d:68: c4:2b:15:e5:9a:fe:d7:7f:9f:38:b8:36:51:e8:59: 8a:2d:dd:6e:5b:f9:23:86:c5:f4:fb:78:6b:2d:9b: 88:f0:35:bb:27:e3:cc:96:db:d8:3b:79:30:3c:5c: 50:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:68:6E:06:9B:67:4C:93:B1:E5:8A:04:0D:AB:13:72:C4:1E:0A:D6 X509v3 Authority Key Identifier: keyid:9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.108.0/23 103.48.116.0/24 103.87.69.0/24 183.81.170.0/23 203.26.188.0/23 218.100.84.0/24 IPv6: 2401:fd40::/32 Signature Algorithm: sha256WithRSAEncryption 82:d8:84:ab:38:2b:19:18:e1:f0:3c:71:21:43:5c:51:df:99: d0:af:07:ea:86:4b:c9:36:62:3f:ac:0c:b4:27:09:db:e5:36: 0e:b4:bc:c6:78:1f:14:21:05:9d:12:fe:f5:2c:3c:25:d0:e7: 1f:c6:fa:94:d0:1e:06:d4:a9:5c:c1:c5:50:80:f3:6c:97:22: 4d:50:b4:e8:bb:dc:7e:df:49:12:91:a0:26:de:fc:14:b2:6d: 3a:60:aa:a2:4d:ed:a0:c1:fd:77:d7:3e:7e:88:78:68:69:41: c7:12:3e:a7:48:ec:4a:42:10:39:09:a6:81:43:82:23:ca:61: e4:b0:fc:da:ae:e6:20:70:78:0d:d8:15:ef:5c:f0:90:38:c1: 4d:e8:37:93:1d:d3:4c:a8:44:f1:09:d2:36:e2:fa:0c:6e:97: 90:1c:f6:b3:f4:d0:6d:e1:1c:42:eb:15:bc:a6:71:59:ce:d9: 8f:5c:3d:9e:ee:ba:fd:ed:e1:a6:76:d7:c3:1e:1a:41:d4:d9: b8:4b:57:26:83:db:8c:73:4d:9b:14:7c:3b:fb:89:29:95:61: fe:a5:50:c9:5d:1c:88:bd:d0:02:c3:f2:43:1e:6a:ad:3b:af: 4f:5f:bd:a4:b6:c7:c2:62:4f:a7:04:7c:7d:09:f3:4a:b4:1b: 94:a2:73:ae -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlEQjIxMTAvBgNVBAUTKDlCODI1OUY3QjNDMURFREQ0NzE5QkMwQURDNTg3QjNE Qjg5RTdCREIwHhcNMjUwODEzMDE1MzE0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliZjAwYS1jN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOsd1CbU5CA51xMiwaDF1WqetFHQfOqUf7AClktk7MLwzvLlfeps4wyJ17Py +Xk5Lb2V9eCfiHOBWLmSMhudNIYwQdzkc62qy/BvuVRJKcJB4tCFMnn1YEuq752B LMFxCRN77zF+0dO5HpOrN39o5iGNk08CUMGnlj7F0PJQfSYvVA+XJYHdjowoSJso B+eHjJLjaYQiGYdQO7tmKIlw2XUQUhpTsDe5wRi4H/Y+F5D4pd198x++28ZiTUip H58NlGaMC4V4VIf3kd4D+uWeDWjEKxXlmv7Xf584uDZR6FmKLd1uW/kjhsX0+3hr LZuI8DW7J+PMltvYO3kwPFxQ3wIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFA1obgab Z0yTseWKBA2rE3LEHgrWMB8GA1UdIwQYMBaAFJuCWfezwd7dRxm8CtxYez24nnvb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OURCMi9BOUNDNDlCNkI5 QkIxMUVBQkREMEZEODRDNEY5QUUwMi9tNEpaOTdQQjN0MUhHYndLM0ZoN1BiaWVl OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL200Slo5N1BCM3QxSEdid0szRmg3UGJpZWU5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlEQjIvQTlDQzQ5QjZCOUJCMTFFQUJERDBGRDg0QzRGOUFFMDIvNDYxMDZCNTA3 N0U4MTFGMEI4MjI4MzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAFnEWwDBABnMHQDBABnV0UDBAG3UaoDBAHLGrwDBADaZFQw DQQCAAIwBwMFACQB/UAwDQYJKoZIhvcNAQELBQADggEBAILYhKs4KxkY4fA8cSFD XFHfmdCvB+qGS8k2Yj+sDLQnCdvlNg60vMZ4HxQhBZ0S/vUsPCXQ5x/G+pTQHgbU qVzBxVCA82yXIk1QtOi73H7fSRKRoCbe/BSybTpgqqJN7aDB/XfXPn6IeGhpQccS PqdI7EpCEDkJpoFDgiPKYeSw/Nqu5iBweA3YFe9c8JA4wU3oN5Md00yoRPEJ0jbi +gxul5Ac9rP00G3hHELrFbymcVnO2Y9cPZ7uuv3t4aZ218MeGkHU2bhLVyaD24xz TZsUfDv7iSmVYf6lUMldHIi90ALD8kMeaq07r09fvaS2x8JiT6cEfH0J80q0G5Si c64= -----END CERTIFICATE-----Generated at Sat Aug 23 10:56:05 2025 by rpki-client