$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa File: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (raw, json) Hash identifier: zNSJaFB9LBSsLzUDfYUOhRUi2F6fmcd7uzbxPnxKRUA= Subject key identifier: D2:87:9C:4A:39:71:FF:D9:06:24:18:C6:B0:AA:C6:19:CA:9C:09:7F Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FC6 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:07:41 +0000 ROA not before: Tue 02 Sep 2025 18:07:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9541 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4038 (0xfc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 2 18:07:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7326c-21fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:be:22:f6:b3:93:ea:eb:ae:72:83:97:44:29: f4:07:dc:12:64:4c:dd:f0:6b:08:41:94:17:16:9d: b5:7c:db:20:e4:ed:4b:da:1a:c9:b8:03:f4:94:42: f1:2d:b6:98:21:a4:92:e7:80:e9:6f:72:05:da:c2: b7:25:32:b8:ae:d9:5c:fd:13:7f:83:e3:ef:a5:cb: 31:11:51:15:5a:34:ec:f3:0b:06:dc:91:f2:f6:4b: ff:e0:5c:f3:27:8c:0c:cd:ab:64:79:72:c8:bc:80: 63:4f:97:58:a4:35:96:bf:fd:ea:2b:f6:fb:d7:d6: e4:fb:c0:fc:43:a7:80:dc:e9:32:19:3c:83:d9:b0: c4:16:fd:5d:a3:83:83:59:95:a8:e3:aa:33:95:cb: 08:76:cf:53:cf:0f:c7:e4:4a:99:e7:dd:21:f6:8b: 82:48:f7:90:3b:7e:4c:4f:dc:c6:b8:7c:95:c1:96: 64:a0:8f:1b:f3:77:ba:97:9f:1b:10:89:cf:1c:9a: 2b:db:21:82:7a:f5:d5:94:e8:fc:4d:55:2c:4a:e1: 6f:6e:e1:d0:c6:c8:19:87:51:b2:ea:28:38:a9:0e: df:d7:7d:22:e6:8e:94:c0:69:06:36:e8:e5:87:ec: a3:74:32:2d:1c:e5:1a:09:d9:10:42:16:8a:83:cf: 35:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:87:9C:4A:39:71:FF:D9:06:24:18:C6:B0:AA:C6:19:CA:9C:09:7F X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 67:8a:a7:0b:af:96:e9:a3:9a:bb:54:f7:95:ce:b1:ed:3c:66: 4f:a3:de:1b:54:fd:e1:75:3b:b3:0e:52:e0:63:94:68:bf:93: 0a:a4:81:db:17:14:40:58:c5:19:1e:a5:4d:d6:47:13:ab:f1: 6f:a2:10:fb:be:b9:8c:2d:50:00:97:fa:3a:15:05:3f:be:5b: f3:c1:17:a2:cf:61:9b:5a:88:a1:5d:83:80:85:ff:e9:7d:3a: f8:2d:31:b1:85:fc:5d:be:1e:70:07:75:c8:73:9f:35:ce:15: 66:d2:eb:0b:38:26:77:fe:ce:3f:3f:46:de:ee:bc:dd:87:29: 75:16:7b:b0:c1:a1:00:3a:fa:d9:5f:17:98:91:b5:a8:67:f9: 6c:ff:c8:7d:4c:51:e1:1f:8a:1d:94:47:38:38:c8:81:5a:5f: e9:65:ec:38:96:d0:54:b9:15:82:92:03:d9:05:d2:9d:b5:24: 9b:bf:ea:b4:2a:c4:e2:b2:62:bd:45:34:83:11:88:59:f8:5a: f7:0f:7d:05:60:8e:5e:84:27:66:0c:bd:3b:81:5b:eb:6e:0e: 0d:b8:a1:6e:c5:ac:eb:b7:f0:7d:f1:07:d1:96:78:fe:06:a2: 6c:f0:9d:9b:aa:61:9d:99:a6:10:c1:a4:1b:25:61:6c:bb:98: d2:a5:6c:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwOTAyMTgwNzQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MzI2Yy0yMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs74i9rOT6uuucoOXRCn0B9wSZEzd8GsIQZQXFp21fNsg5O1L2hrJuAP0lELx LbaYIaSS54Dpb3IF2sK3JTK4rtlc/RN/g+PvpcsxEVEVWjTs8wsG3JHy9kv/4Fzz J4wMzatkeXLIvIBjT5dYpDWWv/3qK/b719bk+8D8Q6eA3OkyGTyD2bDEFv1do4OD WZWo46ozlcsIds9Tzw/H5EqZ590h9ouCSPeQO35MT9zGuHyVwZZkoI8b83e6l58b EInPHJor2yGCevXVlOj8TVUsSuFvbuHQxsgZh1Gy6ig4qQ7f130i5o6UwGkGNujl h+yjdDItHOUaCdkQQhaKg881OwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNKHnEo5 cf/ZBiQYxrCqxhnKnAl/MB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMERDNjk4RUFB RUYwMTFFOTlENUVGQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAGeKpwuv lumjmrtU95XOse08Zk+j3htU/eF1O7MOUuBjlGi/kwqkgdsXFEBYxRkepU3WRxOr 8W+iEPu+uYwtUACX+joVBT++W/PBF6LPYZtaiKFdg4CF/+l9OvgtMbGF/F2+HnAH dchznzXOFWbS6ws4Jnf+zj8/Rt7uvN2HKXUWe7DBoQA6+tlfF5iRtahn+Wz/yH1M UeEfih2URzg4yIFaX+ll7DiW0FS5FYKSA9kF0p21JJu/6rQqxOKyYr1FNIMRiFn4 WvcPfQVgjl6EJ2YMvTuBW+tuDg24oW7FrOu38H3xB9GWeP4GomzwnZuqYZ2ZphDB pBslYWy7mNKlbO4= -----END CERTIFICATE-----Generated at Sun Sep 7 08:20:56 2025 by rpki-client