$ rpki-client -vvf rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa File: 865AA3E400FC11EDAA69A61DC4F9AE02.roa (raw, json) Hash identifier: lRZm7R1XzhUUnYkMhnYwCmY95i90cE75koEdjvOdBVc= Subject key identifier: 40:5A:E0:7A:45:36:5C:68:56:55:84:AC:27:F3:F1:09:90:AA:78:0D Certificate issuer: /CN=A917AB94/serialNumber=3D3EE4E055C4E0F1FD5B17BCDF05D9F852CF05BC Certificate serial: 02DE Authority key identifier: 3D:3E:E4:E0:55:C4:E0:F1:FD:5B:17:BC:DF:05:D9:F8:52:CF:05:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa Signing time: Fri 29 Aug 2025 02:18:42 +0000 ROA not before: Fri 29 Aug 2025 02:18:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149998 IP address blocks: 103.190.90.0/24 maxlen: 24 2001:df0:e8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.crl rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AB94, serialNumber=3D3EE4E055C4E0F1FD5B17BCDF05D9F852CF05BC Validity Not Before: Aug 29 02:18:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b10e01-354e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4c:ea:36:01:11:80:7c:5f:f4:b7:40:17:57: ac:a6:11:6d:af:60:81:d8:64:bb:2a:31:56:a4:73: 98:4a:8f:8f:c7:b2:bc:dd:74:ed:09:34:3a:ed:26: ce:b3:39:88:ca:fa:68:68:02:d9:c3:20:4a:35:97: 72:f1:cc:7d:df:96:64:79:01:c5:18:98:06:78:7d: 87:c1:c9:fd:71:76:b6:a0:4a:5e:72:29:92:94:b3: 6e:c9:85:d7:5b:a8:5b:66:0d:b6:f2:7a:58:95:1f: b0:4a:19:98:14:76:2e:81:ea:a6:ed:67:c0:06:bd: 73:32:92:a3:12:11:8d:89:0c:e3:44:fc:ef:b4:f6: 58:11:2d:71:04:31:6a:72:90:79:7d:90:86:82:0b: 66:6c:9c:1c:a0:02:00:7f:a1:af:f5:8f:5b:f9:3b: e2:ce:3c:9e:c3:3d:1f:ef:e1:81:bf:ba:7c:71:c4: 21:c7:70:98:cc:84:04:54:37:bb:e5:50:cf:73:26: ba:29:53:1d:60:a0:87:46:2c:20:7d:52:b6:fc:b0: 3e:93:8b:50:86:9c:7a:1c:e9:90:66:a1:86:c1:fe: 9f:fb:c8:5c:ff:00:5c:09:a4:28:e5:8a:5e:41:08: 4a:87:2c:fd:8a:22:3a:27:ba:10:1d:03:9e:bd:4d: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5A:E0:7A:45:36:5C:68:56:55:84:AC:27:F3:F1:09:90:AA:78:0D X509v3 Authority Key Identifier: keyid:3D:3E:E4:E0:55:C4:E0:F1:FD:5B:17:BC:DF:05:D9:F8:52:CF:05:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PT7k4FXE4PH9Wxe83wXZ-FLPBbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AB94/D2BF6B72FB8711EC972BCE13C4F9AE02/865AA3E400FC11EDAA69A61DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.90.0/24 IPv6: 2001:df0:e8c0::/48 Signature Algorithm: sha256WithRSAEncryption 25:41:8d:b2:e5:ea:b1:04:4b:72:54:de:0c:bc:44:2d:0c:2a: aa:63:18:4a:d2:47:6e:d6:9f:e8:a6:b3:08:af:0b:b0:c2:f4: 64:29:5a:27:0a:38:7b:ff:77:84:b0:8a:49:38:c7:02:a6:f5: 77:b7:49:c2:30:dd:14:83:10:e8:7f:7a:72:8b:bb:d9:ba:12: 50:08:ee:d6:d0:04:b3:09:06:e5:12:80:1c:5c:0b:ad:40:45: 69:e9:98:a5:d8:a8:9a:ea:79:f5:0f:64:81:55:d7:3a:31:ad: 36:6d:53:7c:f7:a8:b5:4c:ba:38:36:88:85:15:91:23:54:c2: be:cf:57:fa:9e:ca:84:4d:fc:65:44:5f:41:35:e4:d6:19:20: 7e:a3:42:19:7f:76:12:70:1c:41:0e:e0:b3:c1:a1:86:06:92: f2:7f:c7:f8:a8:1b:5f:09:16:9f:46:84:d9:60:12:c9:f7:e8: 7f:3b:84:fb:d3:0d:6c:a3:1c:2a:0f:4d:0f:79:3a:11:9a:a9: cf:2b:da:46:5d:63:72:11:73:b8:1e:c0:60:05:a1:1e:c4:aa: 36:25:da:dd:d0:3f:08:db:d8:e5:82:71:29:e5:60:b3:e0:c4: dc:44:43:ae:36:f9:ab:93:0b:67:77:56:43:b3:50:4f:01:e2: 1b:ca:50:9e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FCOTQxMTAvBgNVBAUTKDNEM0VFNEUwNTVDNEUwRjFGRDVCMTdCQ0RGMDVEOUY4 NTJDRjA1QkMwHhcNMjUwODI5MDIxODQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMGUwMS0zNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEzqNgERgHxf9LdAF1esphFtr2CB2GS7KjFWpHOYSo+Px7K83XTtCTQ67SbO szmIyvpoaALZwyBKNZdy8cx935ZkeQHFGJgGeH2Hwcn9cXa2oEpecimSlLNuyYXX W6hbZg228npYlR+wShmYFHYugeqm7WfABr1zMpKjEhGNiQzjRPzvtPZYES1xBDFq cpB5fZCGggtmbJwcoAIAf6Gv9Y9b+Tvizjyewz0f7+GBv7p8ccQhx3CYzIQEVDe7 5VDPcya6KVMdYKCHRiwgfVK2/LA+k4tQhpx6HOmQZqGGwf6f+8hc/wBcCaQo5Ype QQhKhyz9iiI6J7oQHQOevU3IvwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEBa4HpF NlxoVlWErCfz8QmQqngNMB8GA1UdIwQYMBaAFD0+5OBVxODx/VsXvN8F2fhSzwW8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUI5NC9EMkJGNkI3MkZC ODcxMUVDOTcyQkNFMTNDNEY5QUUwMi9QVDdrNEZYRTRQSDlXeGU4M3dYWi1GTFBC YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUN2s0RlhFNFBIOVd4ZTgzd1haLUZMUEJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FCOTQvRDJCRjZCNzJGQjg3MTFFQzk3MkJDRTEzQzRGOUFFMDIvODY1QUEzRTQw MEZDMTFFREFBNjlBNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnvlowDwQCAAIwCQMHACABDfDowDANBgkqhkiG9w0BAQsF AAOCAQEAJUGNsuXqsQRLclTeDLxELQwqqmMYStJHbtaf6KazCK8LsML0ZClaJwo4 e/93hLCKSTjHAqb1d7dJwjDdFIMQ6H96cou72boSUAju1tAEswkG5RKAHFwLrUBF aemYpdiomup59Q9kgVXXOjGtNm1TfPeotUy6ODaIhRWRI1TCvs9X+p7KhE38ZURf QTXk1hkgfqNCGX92EnAcQQ7gs8GhhgaS8n/H+KgbXwkWn0aE2WASyffofzuE+9MN bKMcKg9ND3k6EZqpzyvaRl1jchFzuB7AYAWhHsSqNiXa3dA/CNvY5YJxKeVgs+DE 3ERDrjb5q5MLZ3dWQ7NQTwHiG8pQng== -----END CERTIFICATE-----Generated at Fri Sep 19 02:15:59 2025 by rpki-client