$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa File: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (raw, json) Hash identifier: AKbHkLcQXH3Mnm7pa/ostI0hJA36SnM0asrKnPo4ABw= Subject key identifier: 0A:8C:33:03:FE:12:87:12:FB:B6:F3:F7:B9:C0:C0:0F:D2:71:73:E6 Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: C9 Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa Signing time: Wed 03 Sep 2025 06:28:17 +0000 ROA not before: Wed 03 Sep 2025 06:28:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 26658 IP address blocks: 43.246.116.0/22 maxlen: 22 103.35.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Sep 3 06:28:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7e001-3a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:45:44:91:45:0c:c1:fc:54:20:a9:d8:65: 93:ed:30:21:79:09:ab:7b:8a:1d:8c:16:76:35:d1: 0d:f5:15:dd:d1:08:5f:4e:c6:cc:ec:6d:39:25:a2: 93:eb:0c:22:2b:e4:05:6d:90:3a:b9:57:83:34:13: c0:7e:92:ba:d0:34:14:a5:eb:2d:f0:12:c7:ca:2c: 82:b1:0d:32:29:fd:42:a6:ea:e5:78:98:93:4d:f6: c9:13:e8:8e:41:d2:f5:01:df:0b:24:ba:71:d0:9c: 65:f7:64:8e:38:fc:32:8a:af:f7:dd:0f:c7:81:8f: 3a:27:95:2e:d5:d9:c1:ab:27:ba:45:a0:f6:c0:f8: 8f:dc:af:7c:24:51:29:2a:e4:12:b1:23:43:03:9f: 5b:4b:4b:e1:38:cc:d5:17:8a:82:26:0f:26:35:d0: e2:ac:4f:03:ac:15:ee:33:8b:e7:e5:81:1b:a9:67: e6:bd:e6:b2:41:dd:da:e9:35:bc:14:76:6a:22:69: 05:4c:b1:e0:27:b6:58:88:e4:75:0c:72:76:b0:ea: 06:61:50:91:00:de:18:5a:8d:8c:c3:ab:ab:de:5b: 7e:4a:96:ef:ce:7a:7a:72:33:4e:3a:3e:77:ab:89: ae:7a:5e:98:9a:6e:3f:a2:2f:e8:a9:48:46:e8:6e: 53:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8C:33:03:FE:12:87:12:FB:B6:F3:F7:B9:C0:C0:0F:D2:71:73:E6 X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.116.0/22 103.35.184.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:0a:11:af:6e:0a:cd:c6:39:cb:44:a3:98:e9:1d:5b:89:47: d4:a9:8b:d8:08:e9:e1:22:45:24:d0:69:be:61:cc:70:d6:c5: c4:08:6f:22:b9:0e:e2:78:c7:25:f6:a5:0f:b9:18:b8:7b:b4: 81:d3:97:74:88:e7:30:b4:10:84:ff:a5:99:e5:36:b9:06:44: 8a:8d:91:46:22:65:3a:d7:84:c2:7d:f2:2e:52:b3:20:25:dc: 77:5b:02:2e:29:8b:1e:c1:83:bd:68:62:fe:7e:2e:74:ee:fd: 5b:1f:b6:2b:0a:f2:e5:35:23:ee:ab:c9:67:33:74:f3:92:11: 4d:ad:a6:82:07:91:8e:b4:32:9f:01:36:19:3f:cb:f9:e6:98: 76:7b:03:10:9b:2e:24:2c:f3:3f:1f:9d:3c:f3:43:37:6a:ed: d9:4a:73:3f:37:c3:f5:ad:87:bf:ab:4b:79:62:27:6d:fc:a6: f3:e3:d4:34:23:f6:3c:d8:30:64:ae:ce:63:fb:4f:57:ef:0e: 14:1d:df:31:40:f0:13:16:44:f5:12:02:32:1c:cb:7d:60:48: 9e:48:9c:3a:47:c2:d5:5c:4b:fb:2b:25:9c:1d:9f:01:6c:12: e8:b2:46:05:17:64:bd:89:fc:ea:ea:97:9f:4f:a4:56:36:2b: e9:03:02:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUwOTAzMDYyODE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZTAwMS0zYThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvpFRJFFDMH8VCCp2GWT7TAheQmre4odjBZ2NdEN9RXd0QhfTsbM7G05JaKT 6wwiK+QFbZA6uVeDNBPAfpK60DQUpest8BLHyiyCsQ0yKf1CpurleJiTTfbJE+iO QdL1Ad8LJLpx0Jxl92SOOPwyiq/33Q/HgY86J5Uu1dnBqye6RaD2wPiP3K98JFEp KuQSsSNDA59bS0vhOMzVF4qCJg8mNdDirE8DrBXuM4vn5YEbqWfmveayQd3a6TW8 FHZqImkFTLHgJ7ZYiOR1DHJ2sOoGYVCRAN4YWo2Mw6ur3lt+Spbvznp6cjNOOj53 q4muel6Ymm4/oi/oqUhG6G5TuwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAqMMwP+ EocS+7bz97nAwA/ScXPmMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdDQkMvOTUyQkFFMkU1REYwMTFFRkFDNzBFRDBBQzRGOUFFMDIvRTFFRjkxM0E1 REYwMTFFRkFDOUNBNDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9nQDBAJnI7gwDQYJKoZIhvcNAQELBQADggEBAF8KEa9u Cs3GOctEo5jpHVuJR9Spi9gI6eEiRSTQab5hzHDWxcQIbyK5DuJ4xyX2pQ+5GLh7 tIHTl3SI5zC0EIT/pZnlNrkGRIqNkUYiZTrXhMJ98i5SsyAl3HdbAi4pix7Bg71o Yv5+LnTu/VsftisK8uU1I+6ryWczdPOSEU2tpoIHkY60Mp8BNhk/y/nmmHZ7AxCb LiQs8z8fnTzzQzdq7dlKcz83w/Wth7+rS3liJ238pvPj1DQj9jzYMGSuzmP7T1fv DhQd3zFA8BMWRPUSAjIcy31gSJ5InDpHwtVcS/srJZwdnwFsEuiyRgUXZL2J/Orq l59PpFY2K+kDAvM= -----END CERTIFICATE-----Generated at Tue Sep 9 08:59:09 2025 by rpki-client