$ rpki-client -vvf rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/CF0D85CEFE5211EFA5AB8F82C4F9AE02.roa File: CF0D85CEFE5211EFA5AB8F82C4F9AE02.roa (raw, json) Hash identifier: gpdjBjddXDySP7XwpO7PUD9YoIqfcH1r8H5PmyuUxoY= Subject key identifier: 08:8F:AD:E7:48:D4:81:AC:91:F2:70:6C:24:AA:AE:A4:AE:7B:DA:B7 Certificate issuer: /CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84 Certificate serial: 02BE Authority key identifier: 1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/CF0D85CEFE5211EFA5AB8F82C4F9AE02.roa Signing time: Fri 29 Aug 2025 02:19:21 +0000 ROA not before: Fri 29 Aug 2025 02:19:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 197537 IP address blocks: 103.69.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 702 (0x2be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187F7E, serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84 Validity Not Before: Aug 29 02:19:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b10e28-0a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:52:1e:e7:59:1f:f1:92:21:d1:6d:a5:36:d3: 06:e4:66:0e:e5:5f:33:24:64:0d:4b:cb:49:70:16: 41:4d:cf:49:8e:a1:41:4a:39:e2:38:6a:3c:c3:6a: 7b:e9:ef:b0:08:69:a1:5f:e0:ac:ae:5a:ca:14:f9: 90:2d:59:01:fe:fb:4a:d7:c8:13:5f:4a:33:80:71: 5b:37:0e:e5:29:d9:e1:a1:dc:fa:c6:7b:1e:a2:f6: 20:c4:bd:33:e6:2b:29:da:85:2d:a1:40:3e:3b:8e: 68:40:66:c0:ce:9c:20:f4:a6:d9:39:40:8b:01:6f: 0b:82:8e:ee:0a:87:b2:69:09:83:a6:71:ec:99:96: ae:ca:d8:a4:99:1b:f6:10:42:3f:6a:1b:2e:9c:2d: 36:f8:ae:56:d6:c6:34:f7:11:cf:51:1c:1f:37:e5: 1f:16:db:bb:63:1c:6a:40:b9:64:ad:a6:62:56:d8: 30:b4:48:2f:15:b6:34:2b:a4:09:5b:de:0c:ca:5a: 5a:9b:dc:33:c7:f5:9e:a9:3d:0d:e4:95:f2:72:2e: 58:c8:10:63:9b:5a:80:e5:cf:e9:fd:e4:f6:09:eb: 7f:da:7b:3b:b6:77:e0:22:f0:23:5e:4a:5c:26:79: 62:07:b5:f1:b5:76:12:fa:f9:05:21:06:75:45:0b: a7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8F:AD:E7:48:D4:81:AC:91:F2:70:6C:24:AA:AE:A4:AE:7B:DA:B7 X509v3 Authority Key Identifier: keyid:1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/CF0D85CEFE5211EFA5AB8F82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.2.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:c3:a5:69:69:d5:31:40:15:42:4f:1b:99:02:2e:4d:75:d7: fe:c1:ed:c8:c0:1b:cb:39:a5:50:1c:fd:1e:65:c5:e2:01:b9: 8c:33:50:5b:56:a6:07:c2:5d:3e:47:60:fa:99:a4:88:f1:3a: e9:f6:71:67:b5:5f:43:35:69:99:b5:1e:01:e4:4e:b8:bb:ef: c6:6a:3d:de:dc:a0:c5:97:92:28:04:74:62:19:ad:fb:77:7c: 62:5e:e8:98:e2:67:71:11:5c:b1:01:a0:53:8a:e1:ae:ad:bd: ec:7a:f4:8b:87:25:76:5d:28:0b:e6:1f:3d:fb:dd:be:a6:2f: f1:bc:01:ba:5f:66:84:e3:e5:b8:7c:c8:8c:2d:13:8b:a1:81: 7d:d1:6d:b6:44:f6:47:e3:37:8b:9d:e0:ef:be:ed:89:89:1a: ca:6f:54:cc:e2:b4:be:69:f2:a5:03:51:5c:01:3e:e0:0f:2e: 77:c8:0d:ff:b4:fe:40:41:f6:40:93:f1:1e:e3:94:a2:1e:42: ef:c5:ef:ae:71:96:a5:0f:30:66:9e:57:72:ad:28:45:7c:e1: f3:ba:05:49:a6:5c:62:bb:d8:68:cf:1c:96:92:52:90:5e:8f: 69:38:1c:97:f8:43:37:8e:b6:26:13:ec:e8:de:7f:92:32:69: ee:e3:df:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdGN0UxMTAvBgNVBAUTKDFBNjgyOTQxRjg3ODlDNENFQTNDQzMzQjYzNzNFNDk0 NzYzMEJDODQwHhcNMjUwODI5MDIxOTIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMGUyOC0wYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVIe51kf8ZIh0W2lNtMG5GYO5V8zJGQNS8tJcBZBTc9JjqFBSjniOGo8w2p7 6e+wCGmhX+CsrlrKFPmQLVkB/vtK18gTX0ozgHFbNw7lKdnhodz6xnseovYgxL0z 5isp2oUtoUA+O45oQGbAzpwg9KbZOUCLAW8Lgo7uCoeyaQmDpnHsmZauytikmRv2 EEI/ahsunC02+K5W1sY09xHPURwfN+UfFtu7YxxqQLlkraZiVtgwtEgvFbY0K6QJ W94Mylpam9wzx/WeqT0N5JXyci5YyBBjm1qA5c/p/eT2Cet/2ns7tnfgIvAjXkpc JnliB7XxtXYS+vkFIQZ1RQunOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAiPredI 1IGskfJwbCSqrqSue9q3MB8GA1UdIwQYMBaAFBpoKUH4eJxM6jzDO2Nz5JR2MLyE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0Y3RS9DNzYzQjVFMDEw RTkxMUVEODVDQ0VBMzdDNEY5QUUwMi9HbWdwUWZoNG5FenFQTU03WTNQa2xIWXd2 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtZ3BRZmg0bkV6cVBNTTdZM1BrbEhZd3ZJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdGN0UvQzc2M0I1RTAxMEU5MTFFRDg1Q0NFQTM3QzRGOUFFMDIvQ0YwRDg1Q0VG RTUyMTFFRkE1QUI4RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRQIwDQYJKoZIhvcNAQELBQADggEBAGzDpWlp1TFAFUJP G5kCLk111/7B7cjAG8s5pVAc/R5lxeIBuYwzUFtWpgfCXT5HYPqZpIjxOun2cWe1 X0M1aZm1HgHkTri778ZqPd7coMWXkigEdGIZrft3fGJe6JjiZ3ERXLEBoFOK4a6t vex69IuHJXZdKAvmHz373b6mL/G8AbpfZoTj5bh8yIwtE4uhgX3RbbZE9kfjN4ud 4O++7YmJGspvVMzitL5p8qUDUVwBPuAPLnfIDf+0/kBB9kCT8R7jlKIeQu/F765x lqUPMGaeV3KtKEV84fO6BUmmXGK72GjPHJaSUpBej2k4HJf4QzeOtiYT7Ojef5Iy ae7j3xU= -----END CERTIFICATE-----Generated at Fri Sep 5 08:50:01 2025 by rpki-client