$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/F03B784A8FEE11F0806DDB0BC4F9AE02.roa File: F03B784A8FEE11F0806DDB0BC4F9AE02.roa (raw, json) Hash identifier: U5/YWhrZAQQvMZ+hJN+D2aT4VObUU5nu5mfisqOgOq0= Subject key identifier: 64:C1:B8:91:23:6B:5E:9E:32:CF:96:43:8C:48:A7:36:3D:8E:6A:E6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 09B5 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/F03B784A8FEE11F0806DDB0BC4F9AE02.roa Signing time: Fri 12 Sep 2025 15:41:25 +0000 ROA not before: Fri 12 Sep 2025 15:41:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 148996 IP address blocks: 103.142.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2485 (0x9b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Sep 12 15:41:25 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68c43f24-c1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:81:ae:17:39:69:02:44:08:24:e4:c2:da: f7:8f:bc:12:17:fe:58:40:7a:ac:0a:6a:3f:ee:ee: 60:56:65:0e:a2:89:e5:af:14:5c:33:6c:0c:bd:ef: c4:49:1b:f4:00:35:cb:25:89:2c:b5:12:6e:a4:b6: 8e:1e:93:bc:5d:76:c1:65:d6:89:c8:0d:86:e2:35: f5:bb:20:88:19:33:e5:aa:4f:fa:14:41:80:bf:ba: 0d:15:82:75:0c:06:1d:01:e2:60:2c:80:5c:39:d1: 62:b8:28:8c:8c:1a:50:42:99:11:57:83:55:ac:79: 2b:51:52:89:4a:df:f4:d8:e8:2e:af:3f:e8:a0:f2: 65:7e:f7:f3:f3:fa:c8:a5:9f:d3:4a:6b:f3:4a:5d: 5a:19:79:9e:ff:df:ec:73:9a:52:a9:43:93:3f:c7: c4:37:6b:b6:6b:07:7c:90:b3:2e:dd:d8:df:cd:63: 0b:4c:6f:61:2a:ca:1b:b6:36:a5:76:9d:25:99:55: 01:48:e6:7a:d6:94:6d:aa:1f:a9:4c:38:8a:3f:ac: 50:73:7c:b1:60:c5:1a:c9:09:6c:bf:f1:f6:50:99: 5e:85:f9:e6:84:43:f2:71:9c:5f:4d:7b:2a:d8:c8: d8:45:df:9e:2b:90:6a:b0:6c:fe:99:34:59:69:ea: 9d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:B8:91:23:6B:5E:9E:32:CF:96:43:8C:48:A7:36:3D:8E:6A:E6 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/F03B784A8FEE11F0806DDB0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.8.0/24 Signature Algorithm: sha256WithRSAEncryption 85:72:b3:fc:ce:1d:47:86:6c:11:4a:5e:b0:35:0a:73:6e:4c: 19:40:0d:ec:8d:b7:33:2b:9b:89:42:b5:c7:c6:28:30:a5:69: 57:ee:05:a3:34:ae:94:20:08:87:26:f5:09:d0:b9:3b:8d:3d: 38:ba:14:d8:16:b8:11:a7:82:97:00:d6:bd:41:34:8a:5c:c0: c6:63:32:da:c9:74:a0:8b:9a:7f:b5:59:db:67:86:c4:ee:cd: b8:67:45:ef:37:d8:ec:31:b1:52:ef:c0:f0:8b:3c:ed:bd:a4: 59:84:2f:7e:ca:31:3f:95:74:de:b1:10:18:b2:ba:73:62:2b: a0:fe:58:4f:0a:60:8a:1a:93:28:ab:33:c9:18:8b:81:e9:b6: 6b:66:43:18:70:01:bf:4d:15:5e:0f:3e:fd:c6:03:87:ef:bf: d7:0f:c4:8b:cc:a3:31:cc:32:51:ce:98:ae:7b:fc:5f:64:06: 71:3a:da:41:76:62:37:0f:93:d4:1d:2c:6d:a9:53:5b:56:47: 7c:0c:d7:99:4a:2d:e3:09:ab:3f:bb:3c:03:55:b1:5a:98:7b: 48:1b:0f:9e:e3:f8:f2:57:f2:a7:96:75:4d:59:5d:ff:12:d1: 41:09:cb:27:0b:ba:87:8a:10:38:43:3a:48:41:2d:89:a7:6d: 42:0d:9d:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUwOTEyMTU0MTI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0M2YyNC1jMWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwc+Brhc5aQJECCTkwtr3j7wSF/5YQHqsCmo/7u5gVmUOoonlrxRcM2wMve/E SRv0ADXLJYkstRJupLaOHpO8XXbBZdaJyA2G4jX1uyCIGTPlqk/6FEGAv7oNFYJ1 DAYdAeJgLIBcOdFiuCiMjBpQQpkRV4NVrHkrUVKJSt/02Ogurz/ooPJlfvfz8/rI pZ/TSmvzSl1aGXme/9/sc5pSqUOTP8fEN2u2awd8kLMu3djfzWMLTG9hKsobtjal dp0lmVUBSOZ61pRtqh+pTDiKP6xQc3yxYMUayQlsv/H2UJlehfnmhEPycZxfTXsq 2MjYRd+eK5BqsGz+mTRZaeqdEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGTBuJEj a16eMs+WQ4xIpzY9jmrmMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZERTUvNzJDNUE5Q0M5NDMwMTFFQUJENzVGOTgzQzRGOUFFMDIvRjAzQjc4NEE4 RkVFMTFGMDgwNkREQjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjggwDQYJKoZIhvcNAQELBQADggEBAIVys/zOHUeGbBFK XrA1CnNuTBlADeyNtzMrm4lCtcfGKDClaVfuBaM0rpQgCIcm9QnQuTuNPTi6FNgW uBGngpcA1r1BNIpcwMZjMtrJdKCLmn+1WdtnhsTuzbhnRe832OwxsVLvwPCLPO29 pFmEL37KMT+VdN6xEBiyunNiK6D+WE8KYIoakyirM8kYi4HptmtmQxhwAb9NFV4P Pv3GA4fvv9cPxIvMozHMMlHOmK57/F9kBnE62kF2YjcPk9QdLG2pU1tWR3wM15lK LeMJqz+7PANVsVqYe0gbD57j+PJX8qeWdU1ZXf8S0UEJyycLuoeKEDhDOkhBLYmn bUINnRI= -----END CERTIFICATE-----Generated at Fri Sep 19 02:23:26 2025 by rpki-client