$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa File: A768E6B6FB0811ED860A5143C4F9AE02.roa (raw, json) Hash identifier: yQ+XYCupRjpKC1z+KmqRpy0/MHYgLpl3GjcGFImbs1s= Subject key identifier: 5A:38:DB:3D:C7:09:C2:40:25:35:D4:A4:13:8F:F2:DB:26:59:64:17 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 2384 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa Signing time: Sun 24 Aug 2025 15:53:22 +0000 ROA not before: Sun 24 Aug 2025 15:53:22 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134204 IP address blocks: 103.12.72.0/22 maxlen: 22 103.12.72.0/23 maxlen: 23 103.12.72.0/24 maxlen: 24 103.12.73.0/24 maxlen: 24 103.12.74.0/23 maxlen: 23 103.12.74.0/24 maxlen: 24 103.12.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9092 (0x2384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Aug 24 15:53:22 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ab3572-331b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:49:1e:12:c1:9f:54:6e:32:56:cf:ea:05:ab: 53:05:26:70:69:ac:b6:36:8a:53:31:ab:cf:09:3e: 96:b1:4e:bd:f1:75:60:7f:b4:7a:1b:3b:6d:f6:5b: e0:09:54:b2:51:16:ae:0d:01:31:99:29:a5:71:08: f5:aa:cd:c4:65:04:31:be:1a:af:5f:ac:c6:21:c9: ae:7e:c4:51:34:b2:0b:8f:7f:d5:71:5a:3f:78:7d: 6e:9c:20:5f:6e:b0:86:7b:83:92:3f:36:e3:60:47: 3d:cc:54:84:b6:09:a4:63:c1:e1:5c:23:88:a1:3b: c9:53:3b:3f:22:62:1e:56:1a:94:00:c0:44:76:c4: 1c:6b:ef:40:f3:3e:95:68:7c:8d:a3:1c:32:c3:a0: 50:e0:f7:34:81:3f:30:38:11:f9:a6:ea:e5:a0:36: cf:72:64:2b:d2:e9:1e:e7:f1:d8:99:72:d3:98:31: 2d:61:c6:e4:97:f9:f1:48:7d:09:69:00:3c:7f:7d: ca:9c:e0:ef:3d:d7:ae:a4:94:c5:7f:83:14:20:a4: 7b:c9:9f:86:b4:54:16:ee:34:36:95:9d:73:4c:ed: f3:bb:bf:70:1d:c4:42:fb:41:0b:38:2e:ca:55:a6: dd:df:05:0b:2a:ec:0a:61:f4:c0:e8:6c:9d:9e:9a: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:38:DB:3D:C7:09:C2:40:25:35:D4:A4:13:8F:F2:DB:26:59:64:17 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.72.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:31:d6:3c:65:80:cc:95:4b:73:d0:2f:10:cc:1d:e0:5d:7d: 8a:16:7c:9c:23:1c:94:18:f1:5a:b6:0a:93:94:08:a0:58:1f: 16:2b:79:03:c4:f2:1f:e4:c7:67:72:f8:df:50:06:f7:3b:43: fc:89:4d:a4:ca:b3:a9:73:30:0f:57:3d:e1:8f:ce:fc:a7:51: 67:3f:5b:e5:93:0e:b1:06:a7:0a:3c:1c:d4:aa:b1:77:b0:33: 46:ac:7f:25:47:0c:a0:07:69:97:69:07:e8:41:3b:58:ae:1a: 9a:e4:66:33:2f:12:09:31:cf:b2:65:7d:bb:2c:ff:52:cb:24: d5:96:b2:33:94:53:12:9b:2e:72:f8:84:4f:9f:6d:a3:a2:5a: e5:82:ce:c5:af:67:ce:1a:a5:58:0d:3f:8e:a3:0b:6a:1e:5b: 86:69:a7:29:01:6c:b4:0f:8a:fc:58:9f:90:3d:44:08:a0:96: b6:34:d8:53:a6:79:58:83:9f:90:3d:79:a7:9b:7e:66:4c:4d: 7c:37:d9:db:4e:10:a1:67:d9:2a:90:e1:3d:69:1e:4e:83:e6: 72:a8:be:fc:f8:03:dd:d0:dd:bf:7c:58:d9:75:36:6f:c4:ff: 3f:9e:e2:00:b0:80:e6:fc:81:4e:1e:ab:af:4b:56:ca:66:e1: 70:e8:f8:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICI4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUwODI0MTU1MzIyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiMzU3Mi0zMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kkeEsGfVG4yVs/qBatTBSZwaay2NopTMavPCT6WsU698XVgf7R6Gztt9lvg CVSyURauDQExmSmlcQj1qs3EZQQxvhqvX6zGIcmufsRRNLILj3/VcVo/eH1unCBf brCGe4OSPzbjYEc9zFSEtgmkY8HhXCOIoTvJUzs/ImIeVhqUAMBEdsQca+9A8z6V aHyNoxwyw6BQ4Pc0gT8wOBH5purloDbPcmQr0uke5/HYmXLTmDEtYcbkl/nxSH0J aQA8f33KnODvPdeupJTFf4MUIKR7yZ+GtFQW7jQ2lZ1zTO3zu79wHcRC+0ELOC7K Vabd3wULKuwKYfTA6GydnppjhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFo42z3H CcJAJTXUpBOP8tsmWWQXMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZCRDgvQzU4M0QyMzI4N0EyMTFFNTlFNTFGMjUxQzRGOUFFMDIvQTc2OEU2QjZG QjA4MTFFRDg2MEE1MTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDEgwDQYJKoZIhvcNAQELBQADggEBABwx1jxlgMyVS3PQ LxDMHeBdfYoWfJwjHJQY8Vq2CpOUCKBYHxYreQPE8h/kx2dy+N9QBvc7Q/yJTaTK s6lzMA9XPeGPzvynUWc/W+WTDrEGpwo8HNSqsXewM0asfyVHDKAHaZdpB+hBO1iu GprkZjMvEgkxz7Jlfbss/1LLJNWWsjOUUxKbLnL4hE+fbaOiWuWCzsWvZ84apVgN P46jC2oeW4ZppykBbLQPivxYn5A9RAiglrY02FOmeViDn5A9eaebfmZMTXw32dtO EKFn2SqQ4T1pHk6D5nKovvz4A93Q3b98WNl1Nm/E/z+e4gCwgOb8gU4eq69LVspm 4XDo+GY= -----END CERTIFICATE-----Generated at Fri Sep 19 10:43:22 2025 by rpki-client