$ rpki-client -vvf rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa File: 7BFE665EE17F11EF9536DC48C4F9AE02.roa (raw, json) Hash identifier: 0v/buppkF/DfpCpfVlA0Y6wo8IqosGS/hcXir1bpF1E= Subject key identifier: C1:A8:A5:6C:CB:6D:B4:30:2E:E7:F0:7D:93:74:94:AF:D0:C8:15:F5 Certificate issuer: /CN=A9176DFC/serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Certificate serial: 0194 Authority key identifier: B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa Signing time: Wed 27 Aug 2025 04:08:49 +0000 ROA not before: Wed 27 Aug 2025 04:08:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149765 IP address blocks: 103.238.216.0/24 maxlen: 24 103.238.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176DFC, serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Validity Not Before: Aug 27 04:08:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae84d0-793b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:50:b2:59:2f:e4:ac:38:0a:1b:c9:ff:61:43: 0b:dc:39:c8:c5:67:ec:69:c5:17:39:1a:27:91:fc: 9a:23:8e:b8:56:64:03:f0:1f:b5:95:29:ae:93:e5: 42:02:00:a6:76:30:b0:06:07:96:43:cc:7b:86:5b: e8:5d:87:71:42:2c:e0:eb:1f:45:0c:e6:6e:31:ad: 14:5c:8a:1d:cb:7c:f3:0b:47:c1:8d:d6:4c:94:c3: 73:5a:e0:ee:3b:c2:1a:f3:44:f7:09:8c:80:04:55: e4:df:c3:cc:df:42:20:82:d3:82:1f:fd:f0:1d:14: 67:74:20:54:35:f2:db:12:f0:57:d6:cd:e4:42:68: 26:72:87:77:2e:84:f1:8f:f8:c6:b7:cf:11:02:d0: e2:57:b9:ce:8a:88:46:67:ed:e1:c7:8b:f1:83:74: 23:ec:12:11:97:2b:52:12:1f:c3:c9:4e:f4:44:3c: e2:4c:6d:ca:48:0c:82:c9:47:12:2c:d1:8d:c3:9d: df:59:7a:97:10:d5:51:89:4f:d7:e4:53:fa:3d:c0: a2:3a:54:80:cd:12:9a:3a:75:c8:ec:d4:5c:a3:7c: 44:3a:34:86:ce:d5:ad:33:3e:1e:a0:57:c6:bd:3c: 3a:4c:a4:fb:98:26:cd:f3:58:c6:5e:c5:bb:25:a5: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A8:A5:6C:CB:6D:B4:30:2E:E7:F0:7D:93:74:94:AF:D0:C8:15:F5 X509v3 Authority Key Identifier: keyid:B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.216.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:3c:c6:82:86:e5:9b:69:da:94:58:85:5f:95:02:b8:60:61: 4d:1a:10:56:f7:35:f2:8c:42:5d:c1:32:bc:bf:c6:15:ae:7b: 7b:3a:80:79:87:57:14:59:22:bf:6a:81:61:25:35:56:60:49: bb:91:21:b8:56:8d:14:64:d1:1c:c6:ad:36:48:27:2c:6f:a3: cb:59:09:24:d5:21:b2:cc:eb:72:9c:b7:94:e4:43:7a:bf:cc: 89:58:70:3b:5f:0d:42:7c:9f:e4:7b:f9:32:0e:c1:da:cf:ad: 39:0e:ea:f0:e8:7b:da:22:32:7e:cc:86:8d:fd:bd:db:80:11: 2b:1e:50:3c:6b:01:61:a5:2b:5f:1a:fa:c3:2a:7c:0f:87:d8: 19:b3:62:d8:b0:86:bc:c7:8d:c9:75:d3:0d:a7:67:ee:b7:39: 8e:e6:72:8d:97:c9:28:3f:51:86:a7:63:d3:97:e0:06:d0:b6: 16:05:79:01:1c:de:8c:85:04:38:cc:4f:71:d2:f3:a7:7c:27: ba:db:d7:2d:e6:25:f1:3f:ae:73:5a:84:f8:2b:2b:c1:b8:18: e6:8a:c7:a2:61:08:21:2d:bb:2d:ee:22:73:c8:51:c6:69:f5: b8:f2:35:f2:8c:a4:8c:5e:80:c4:1f:fa:2f:36:7d:b9:0e:4e: 68:1f:77:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZERkMxMTAvBgNVBAUTKEIwMzUyQUJCNDNGMEE4NTU2NDlCOUQ3NjFBNjU1QzNG QzYwRjZFNjMwHhcNMjUwODI3MDQwODQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlODRkMC03OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FCyWS/krDgKG8n/YUML3DnIxWfsacUXORonkfyaI464VmQD8B+1lSmuk+VC AgCmdjCwBgeWQ8x7hlvoXYdxQizg6x9FDOZuMa0UXIody3zzC0fBjdZMlMNzWuDu O8Ia80T3CYyABFXk38PM30IggtOCH/3wHRRndCBUNfLbEvBX1s3kQmgmcod3LoTx j/jGt88RAtDiV7nOiohGZ+3hx4vxg3Qj7BIRlytSEh/DyU70RDziTG3KSAyCyUcS LNGNw53fWXqXENVRiU/X5FP6PcCiOlSAzRKaOnXI7NRco3xEOjSGztWtMz4eoFfG vTw6TKT7mCbN81jGXsW7JaWnwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMGopWzL bbQwLufwfZN0lK/QyBX1MB8GA1UdIwQYMBaAFLA1KrtD8KhVZJuddhplXD/GD25j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkRGQy9CRTQwQzEzNjI0 OEIxMUVFQTM0RjZGMzRDNEY5QUUwMi9zRFVxdTBQd3FGVmttNTEyR21WY1A4WVBi bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NEVXF1MFB3cUZWa201MTJHbVZjUDhZUGJtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZERkMvQkU0MEMxMzYyNDhCMTFFRUEzNEY2RjM0QzRGOUFFMDIvN0JGRTY2NUVF MTdGMTFFRjk1MzZEQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn7tgwDQYJKoZIhvcNAQELBQADggEBAB88xoKG5Ztp2pRY hV+VArhgYU0aEFb3NfKMQl3BMry/xhWue3s6gHmHVxRZIr9qgWElNVZgSbuRIbhW jRRk0RzGrTZIJyxvo8tZCSTVIbLM63Kct5TkQ3q/zIlYcDtfDUJ8n+R7+TIOwdrP rTkO6vDoe9oiMn7Mho39vduAESseUDxrAWGlK18a+sMqfA+H2BmzYtiwhrzHjcl1 0w2nZ+63OY7mco2XySg/UYanY9OX4AbQthYFeQEc3oyFBDjMT3HS86d8J7rb1y3m JfE/rnNahPgrK8G4GOaKx6JhCCEtuy3uInPIUcZp9bjyNfKMpIxegMQf+i82fbkO Tmgfd6I= -----END CERTIFICATE-----Generated at Wed Sep 10 16:22:08 2025 by rpki-client