$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa File: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (raw, json) Hash identifier: xqp4ztY1055hAOWGxzBB8IclFQx9Z0YAGfkQm9qw9nQ= Subject key identifier: 78:4B:65:DA:BA:4F:63:FB:36:F7:2B:B5:98:D4:F8:61:B6:AB:3C:C9 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0FC5 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:07:40 +0000 ROA not before: Tue 02 Sep 2025 18:07:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138324 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4037 (0xfc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 2 18:07:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7326c-6a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cb:1a:45:76:59:9c:90:52:75:a6:52:68:98: 35:04:7d:00:3d:35:7c:4e:64:45:e0:09:3e:46:a9: 2a:b7:cb:a7:d9:f0:65:6d:cb:79:2a:d2:97:3b:8c: 71:b4:ba:1d:f8:ec:36:ec:28:1f:49:f4:19:04:65: 53:28:8f:11:fc:2a:98:4f:e7:97:3f:33:ec:c3:89: a6:1c:f0:49:e7:d2:f4:35:cb:7e:3a:a3:e2:be:ba: ea:dd:59:ab:99:e5:e2:f7:59:fd:dc:cf:de:21:0b: 83:99:53:70:b5:5e:4d:b8:ef:bd:2c:50:a7:ff:6f: ab:cb:22:5d:2a:52:71:5c:ab:99:37:f4:b1:9d:d5: 2d:04:1e:3b:63:c0:a3:66:f2:cf:da:73:ce:d6:12: 83:42:82:f5:36:d7:c6:c3:b0:7a:87:08:2b:20:2d: ca:1e:63:58:07:ec:30:ba:89:7d:f8:eb:14:1f:17: 25:85:8c:4f:f0:1f:59:a2:55:67:aa:58:81:4e:36: 41:2c:2b:5b:7d:14:d0:f6:6b:c9:5b:9e:ee:c3:95: ae:70:2f:e6:17:62:b1:3e:c1:2c:f0:b0:ac:b0:8f: 7f:43:81:8e:75:48:6f:21:a6:fa:32:5e:02:2e:e1: e0:2c:b7:25:62:e6:ea:98:14:31:69:97:95:bd:b9: 53:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4B:65:DA:BA:4F:63:FB:36:F7:2B:B5:98:D4:F8:61:B6:AB:3C:C9 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/28DA447C289B11EAA1EA9B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 78:5e:06:0c:55:70:6e:c3:1e:1c:f5:44:0c:68:2c:eb:e3:3e: e5:29:35:08:86:30:f4:c1:1f:11:4c:a1:f1:86:8e:60:66:f0: 59:c1:7d:68:d6:0d:bf:22:00:ea:0c:76:54:0c:29:88:18:be: 5a:c6:99:69:ca:f8:ca:8b:cf:b5:b8:61:a8:80:66:a1:5c:3e: 51:16:4c:2c:50:5d:6d:7d:ba:13:a5:5b:3d:6a:0f:2a:b4:fe: 8c:a4:ed:21:11:e4:5d:4c:65:d2:08:4e:b3:aa:36:d4:5a:b6: 66:e0:c9:f9:75:ed:a1:7e:a0:60:e8:29:9b:48:57:3e:c1:d9: a0:eb:dd:ce:45:af:73:83:30:e2:5a:38:84:c9:1a:21:31:0d: db:3b:4c:ca:d1:1c:a3:14:c0:f6:60:9b:20:7c:d0:89:77:46: 6f:c2:b3:eb:76:7b:43:5d:8f:58:51:03:2c:e6:aa:52:29:63: f9:79:dc:fe:d7:63:91:ca:65:cd:b6:92:d8:b1:97:dc:38:c7: 53:a8:65:4d:b1:b9:c5:32:f1:e3:a7:ef:07:a0:f4:33:2f:e2: 34:bd:c7:91:da:9b:b6:9c:c7:dc:59:bc:1f:87:6a:c6:59:38: 74:50:ac:f2:88:1a:c4:af:6f:8c:be:16:5a:71:0c:7a:b1:fd: f7:0c:73:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwOTAyMTgwNzQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MzI2Yy02YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ssaRXZZnJBSdaZSaJg1BH0APTV8TmRF4Ak+Rqkqt8un2fBlbct5KtKXO4xx tLod+Ow27CgfSfQZBGVTKI8R/CqYT+eXPzPsw4mmHPBJ59L0Nct+OqPivrrq3Vmr meXi91n93M/eIQuDmVNwtV5NuO+9LFCn/2+ryyJdKlJxXKuZN/SxndUtBB47Y8Cj ZvLP2nPO1hKDQoL1NtfGw7B6hwgrIC3KHmNYB+wwuol9+OsUHxclhYxP8B9ZolVn qliBTjZBLCtbfRTQ9mvJW57uw5WucC/mF2KxPsEs8LCssI9/Q4GOdUhvIab6Ml4C LuHgLLclYubqmBQxaZeVvblTMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHhLZdq6 T2P7NvcrtZjU+GG2qzzJMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMjhEQTQ0N0My ODlCMTFFQUExRUE5QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAHheBgxV cG7DHhz1RAxoLOvjPuUpNQiGMPTBHxFMofGGjmBm8FnBfWjWDb8iAOoMdlQMKYgY vlrGmWnK+MqLz7W4YaiAZqFcPlEWTCxQXW19uhOlWz1qDyq0/oyk7SER5F1MZdII TrOqNtRatmbgyfl17aF+oGDoKZtIVz7B2aDr3c5Fr3ODMOJaOITJGiExDds7TMrR HKMUwPZgmyB80Il3Rm/Cs+t2e0Ndj1hRAyzmqlIpY/l53P7XY5HKZc22ktixl9w4 x1OoZU2xucUy8eOn7weg9DMv4jS9x5Ham7acx9xZvB+HasZZOHRQrPKIGsSvb4y+ FlpxDHqx/fcMc+4= -----END CERTIFICATE-----Generated at Mon Sep 8 19:58:53 2025 by rpki-client