$ rpki-client -vvf rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa File: 68A35F78831411EC90E07C19C4F9AE02.roa (raw, json) Hash identifier: DL4w0jdh6arH3ZaUufUuEs12A9UV6IxUUOEelp+erPM= Subject key identifier: 23:4C:CA:BA:FF:4C:DC:A6:E5:F8:94:E3:71:F3:F8:57:47:5D:44:7F Certificate issuer: /CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Certificate serial: 0C44 Authority key identifier: 2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa Signing time: Tue 02 Sep 2025 19:08:41 +0000 ROA not before: Tue 02 Sep 2025 19:08:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134383 IP address blocks: 103.121.140.0/22 maxlen: 22 2001:df6:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183496, serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Validity Not Before: Sep 2 19:08:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b740b8-d855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:56:67:41:10:ec:a0:53:79:58:f4:6e:fd:0e: e1:13:2f:33:77:7f:85:26:92:8c:96:c5:55:22:e6: aa:6e:bc:3b:59:80:af:21:ff:20:5b:33:f0:1b:7f: 8e:9d:c3:51:2d:c5:cb:34:2a:7a:5b:d3:58:5b:65: f1:c1:d4:6b:67:e4:6e:3d:e5:c9:28:1e:04:d5:05: cd:4e:bb:71:0f:12:2b:8c:3f:86:0c:90:7b:33:45: 5c:7a:24:73:76:10:3a:85:7c:6a:2a:47:cc:37:17: b8:c4:ad:bf:66:d8:8a:ea:f4:fc:52:32:cb:b3:d1: 7b:f8:f1:3a:c4:10:82:94:80:18:dd:29:4b:fb:47: a4:fe:ea:e5:d9:a9:28:ea:d7:a2:a6:8d:f9:d0:c6: 1a:85:31:4c:9c:9c:f1:74:0f:49:9f:64:5d:58:35: 01:3e:2d:79:e7:1d:ea:be:94:13:ac:7d:be:59:32: aa:1a:95:03:fa:b9:87:0a:37:e8:e5:ea:ad:2f:26: 0e:bc:a1:26:ab:5d:65:d1:c8:4b:ba:91:87:77:7d: 2a:ea:86:92:3a:3c:c6:76:52:f0:b9:07:e0:d8:e8: d7:69:52:74:d6:b2:aa:f5:e7:fd:13:bb:e0:67:05: 8f:5b:97:f2:3d:04:27:6a:1d:a8:b6:e4:77:1d:8c: d3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4C:CA:BA:FF:4C:DC:A6:E5:F8:94:E3:71:F3:F8:57:47:5D:44:7F X509v3 Authority Key Identifier: keyid:2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.140.0/22 IPv6: 2001:df6:4300::/48 Signature Algorithm: sha256WithRSAEncryption 41:10:4d:6d:d6:e7:48:3b:12:c4:be:9d:fd:f9:b9:e7:9d:8a: 07:2b:93:ed:0f:03:d4:5c:15:36:dc:f8:62:d9:4e:b9:a4:2c: 30:8d:db:03:23:6d:89:7a:a3:e2:40:be:3c:62:be:b2:4b:b9: 4f:34:e3:7e:38:05:a1:ab:e0:f4:53:d2:26:c4:3a:9c:02:d2: 9c:f4:ae:c7:00:70:63:3e:a8:bb:f8:4c:98:83:f9:17:80:51: 37:a4:a5:ab:cd:d6:ca:3a:b9:50:34:1e:ff:ae:87:1c:e8:bf: 1c:13:9a:dd:2d:cc:63:d0:5f:e8:51:db:02:91:04:b8:c9:cd: 15:5f:e0:62:04:06:d2:a8:38:fc:ef:33:76:61:80:a9:ed:b6: 8e:d1:4f:57:d7:81:d4:7a:31:27:75:12:93:e0:62:8c:1e:09: 41:f3:47:53:32:9e:e6:80:fa:cd:f4:42:48:82:12:b1:dc:dc: a7:4b:6b:db:b9:24:5b:4f:35:fe:72:fa:18:35:0f:91:87:03: 3d:7a:bd:bc:ce:87:b3:e4:da:8f:29:f3:cf:e1:25:5b:4c:c1: cd:36:50:31:1a:84:55:bc:43:e9:31:50:86:61:58:99:55:bd: 07:02:30:d7:3c:d7:96:e4:3a:9c:6d:1d:cb:36:6d:7d:f5:11: 3f:a3:2d:ec -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0OTYxMTAvBgNVBAUTKDJGN0ExQzFERDI3RUE3ODE1OENFMjFBOTREQkJGQjkw NzJGQjE3MzQwHhcNMjUwOTAyMTkwODQxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NDBiOC1kODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFZnQRDsoFN5WPRu/Q7hEy8zd3+FJpKMlsVVIuaqbrw7WYCvIf8gWzPwG3+O ncNRLcXLNCp6W9NYW2XxwdRrZ+RuPeXJKB4E1QXNTrtxDxIrjD+GDJB7M0VceiRz dhA6hXxqKkfMNxe4xK2/ZtiK6vT8UjLLs9F7+PE6xBCClIAY3SlL+0ek/url2ako 6teipo350MYahTFMnJzxdA9Jn2RdWDUBPi155x3qvpQTrH2+WTKqGpUD+rmHCjfo 5eqtLyYOvKEmq11l0chLupGHd30q6oaSOjzGdlLwuQfg2OjXaVJ01rKq9ef9E7vg ZwWPW5fyPQQnah2otuR3HYzTLwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCNMyrr/ TNym5fiU43Hz+FdHXUR/MB8GA1UdIwQYMBaAFC96HB3SfqeBWM4hqU27+5By+xc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzQ5Ni8yMzQxQTU2NjBG NkMxMUVBQTcwRjc5NUFDNEY5QUUwMi9MM29jSGRKLXA0Rll6aUdwVGJ2N2tITDdG elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzb2NIZEotcDRGWXppR3BUYnY3a0hMN0Z6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0OTYvMjM0MUE1NjYwRjZDMTFFQUE3MEY3OTVBQzRGOUFFMDIvNjhBMzVGNzg4 MzE0MTFFQzkwRTA3QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJneYwwDwQCAAIwCQMHACABDfZDADANBgkqhkiG9w0BAQsF AAOCAQEAQRBNbdbnSDsSxL6d/fm5552KByuT7Q8D1FwVNtz4YtlOuaQsMI3bAyNt iXqj4kC+PGK+sku5TzTjfjgFoavg9FPSJsQ6nALSnPSuxwBwYz6ou/hMmIP5F4BR N6Slq83Wyjq5UDQe/66HHOi/HBOa3S3MY9Bf6FHbApEEuMnNFV/gYgQG0qg4/O8z dmGAqe22jtFPV9eB1HoxJ3USk+BijB4JQfNHUzKe5oD6zfRCSIISsdzcp0tr27kk W081/nL6GDUPkYcDPXq9vM6Hs+Tajynzz+ElW0zBzTZQMRqEVbxD6TFQhmFYmVW9 BwIw1zzXluQ6nG0dyzZtffURP6Mt7A== -----END CERTIFICATE-----Generated at Fri Sep 19 01:11:02 2025 by rpki-client