$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa File: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (raw, json) Hash identifier: eVGJpjXfZuqnT2xF5gSdYG+4NURN3G12aXx32PS/6hU= Subject key identifier: 0C:D4:EA:E1:9B:B4:9D:51:D7:0A:48:8D:1C:88:52:BB:58:50:2F:F4 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 0235 Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa Signing time: Wed 20 Aug 2025 09:05:19 +0000 ROA not before: Wed 20 Aug 2025 09:05:19 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150740 IP address blocks: 103.20.242.0/24 maxlen: 24 2001:df1:65c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Validity Not Before: Aug 20 09:05:19 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68a58fcf-6b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:fb:df:19:51:b3:a8:8d:58:2c:69:7c:84: c2:21:58:fb:43:d7:3f:72:a3:15:77:38:51:01:49: 6e:7b:48:56:46:f4:fc:c5:18:ef:0c:e4:8d:c2:18: 48:3d:29:eb:1a:fa:1e:5b:e4:a6:4e:e9:30:1a:50: a8:f4:52:e9:1d:08:53:ef:1b:f6:49:77:df:5f:df: cc:6d:3d:ee:90:e7:c2:ce:6f:84:fb:bd:29:17:1c: 4e:de:da:87:3b:d9:9b:51:d9:67:99:c9:02:15:54: da:ba:af:56:3c:48:3d:10:74:c1:1e:01:bb:db:ae: b1:bd:b7:3e:d1:22:a9:b7:26:7e:36:0d:91:dd:01: 11:66:93:66:94:d1:60:b9:08:d2:34:dd:28:a0:af: ea:a4:d1:90:e7:97:9b:aa:6f:7c:7f:df:ba:59:7d: 7d:25:97:4c:a8:23:f4:4e:c9:00:5f:92:20:ec:b5: 81:80:19:b3:aa:f1:5a:31:f4:20:46:af:73:4d:dd: 96:ac:85:8e:c2:63:8c:3a:be:0a:80:4b:ef:34:aa: 2c:ec:2b:91:e3:40:82:d0:a0:ba:b1:d3:a5:1b:1b: d7:30:3c:50:b4:b1:80:62:e7:b9:f6:9f:1b:2e:c8: ba:bd:77:2a:c3:55:d4:17:5e:c1:a4:75:ad:8b:fc: 4c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D4:EA:E1:9B:B4:9D:51:D7:0A:48:8D:1C:88:52:BB:58:50:2F:F4 X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.242.0/24 IPv6: 2001:df1:65c0::/48 Signature Algorithm: sha256WithRSAEncryption 0a:eb:12:b2:49:af:ba:56:16:8f:d0:34:c4:14:b1:fc:3d:bc: 0c:5b:5b:e3:6c:99:fa:0c:e8:4a:16:72:c5:65:77:a6:57:d8: ed:08:16:73:3a:5c:f3:f8:8d:ad:4f:4d:ba:1d:c7:91:ef:32: 1c:96:50:b8:0c:79:65:78:ae:6d:d6:e2:98:fc:38:eb:2e:40: 5e:28:13:11:cb:3b:95:aa:cd:dc:77:9c:27:f1:ab:27:04:19: a9:bf:c7:24:97:be:e9:33:a4:d6:ad:1d:6b:37:70:1c:70:f4: 02:2f:44:35:d1:19:58:59:a1:8e:71:1e:d0:30:99:41:b3:a3: 2e:43:a0:eb:44:5d:70:8d:02:ad:b0:af:20:86:ce:c8:dd:53: 5b:4d:21:3f:d8:8e:96:1b:a7:a9:97:9c:73:10:1a:3d:52:c2: 1f:10:8d:6e:e9:62:13:15:3e:85:6f:ae:34:56:10:db:9b:6b: eb:8e:fd:d9:0b:a1:9c:28:37:34:3a:e6:c9:5f:3f:14:c7:e0: 57:01:a9:74:1d:f9:ba:7b:cc:01:b3:34:8d:ce:ab:ad:ad:ce: 98:ba:02:b8:de:01:aa:62:ef:e0:8a:22:98:cf:21:96:3f:00: 98:2b:f8:f0:9a:81:3d:29:63:75:b8:6e:a2:a9:cf:16:2c:e7: 7c:b8:1a:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjUwODIwMDkwNTE5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1OGZjZi02YjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMX73xlRs6iNWCxpfITCIVj7Q9c/cqMVdzhRAUlue0hWRvT8xRjvDOSNwhhI PSnrGvoeW+SmTukwGlCo9FLpHQhT7xv2SXffX9/MbT3ukOfCzm+E+70pFxxO3tqH O9mbUdlnmckCFVTauq9WPEg9EHTBHgG7266xvbc+0SKptyZ+Ng2R3QERZpNmlNFg uQjSNN0ooK/qpNGQ55ebqm98f9+6WX19JZdMqCP0TskAX5Ig7LWBgBmzqvFaMfQg Rq9zTd2WrIWOwmOMOr4KgEvvNKos7CuR40CC0KC6sdOlGxvXMDxQtLGAYue59p8b Lsi6vXcqw1XUF17BpHWti/xMPQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAzU6uGb tJ1R1wpIjRyIUrtYUC/0MB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY5MDkvOUFCQUNBQzg0RENCMTFFRDgyOTYxQjM2QzRGOUFFMDIvOEZGRjlDNUFB RjFBMTFFRkFGMTIyQTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnFPIwDwQCAAIwCQMHACABDfFlwDANBgkqhkiG9w0BAQsF AAOCAQEACusSskmvulYWj9A0xBSx/D28DFtb42yZ+gzoShZyxWV3plfY7QgWczpc 8/iNrU9Nuh3Hke8yHJZQuAx5ZXiubdbimPw46y5AXigTEcs7larN3HecJ/GrJwQZ qb/HJJe+6TOk1q0dazdwHHD0Ai9ENdEZWFmhjnEe0DCZQbOjLkOg60RdcI0CrbCv IIbOyN1TW00hP9iOlhunqZeccxAaPVLCHxCNbuliExU+hW+uNFYQ25tr64792Quh nCg3NDrmyV8/FMfgVwGpdB35unvMAbM0jc6rra3OmLoCuN4BqmLv4IoimM8hlj8A mCv48JqBPSljdbhuoqnPFiznfLgatA== -----END CERTIFICATE-----Generated at Fri Aug 22 18:27:51 2025 by rpki-client