$ rpki-client -vvf rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa File: 1CD34B6CEDFC11EE880F6F58C4F9AE02.roa (raw, json) Hash identifier: z1tB95lFpcoG7gufS1WVI98iQupCm/LxCrECBfeoY8E= Subject key identifier: 51:73:F6:AE:56:97:DB:1D:85:B1:3B:C7:FD:71:6F:6D:DD:7E:3A:99 Certificate issuer: /CN=A911112F/serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Certificate serial: 0127 Authority key identifier: 1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa Signing time: Tue 01 Jul 2025 05:42:37 +0000 ROA not before: Tue 01 Jul 2025 05:42:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142297 IP address blocks: 103.167.186.0/24 maxlen: 24 2001:df6:bb80::/48 maxlen: 48 2001:df6:bb80::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911112F, serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Validity Not Before: Jul 1 05:42:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6863754c-8a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:31:37:0e:b2:32:2b:3f:36:7e:9d:e4:77:7f: bf:ae:73:a6:5a:61:db:56:c1:4e:ea:9d:cb:d8:b4: 7e:45:f8:fc:00:04:18:b3:8e:fa:9d:5f:e2:75:e5: 57:7e:61:70:b5:16:2b:9f:d3:2b:3f:71:7c:7a:c7: b3:19:da:b2:e6:6b:33:cd:75:92:da:31:35:78:a0: 12:9d:08:2c:a3:cd:7c:5e:c7:88:8e:db:2d:d1:83: 4d:4f:63:6f:04:ad:65:f3:e6:0d:8b:99:64:0a:7b: 13:c5:ac:ae:8d:0b:80:f2:39:fb:84:77:dc:92:63: ae:a7:1a:84:bb:85:f5:9a:e4:50:0f:82:67:66:27: 18:95:f5:11:c1:9a:c5:d1:98:2e:78:04:67:a7:0c: 89:3e:2d:26:e9:1c:2b:44:b6:a6:f1:b2:ee:1b:ce: 7c:3e:bc:de:c0:ea:df:d4:d8:63:32:9b:61:9c:3c: 59:9d:c3:a1:51:dc:b4:eb:a4:e9:3f:d1:22:96:c1: 9e:f9:18:29:de:0b:31:73:7a:db:05:e7:44:66:1a: 02:13:3c:9b:c6:9d:52:50:6f:3b:1d:8b:54:25:bd: a9:63:b0:70:e2:58:13:aa:ba:bb:84:26:89:6e:65: 99:f6:86:a8:c3:1e:62:23:06:75:e8:30:88:4d:52: 98:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:73:F6:AE:56:97:DB:1D:85:B1:3B:C7:FD:71:6F:6D:DD:7E:3A:99 X509v3 Authority Key Identifier: keyid:1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.186.0/24 IPv6: 2001:df6:bb80::/48 Signature Algorithm: sha256WithRSAEncryption 3d:15:d0:08:8b:ae:04:59:a3:73:06:11:a5:c2:50:64:c0:83: 71:ad:98:65:01:cf:57:10:5f:d5:36:e6:ec:cb:22:2b:f9:be: 50:d6:1a:d7:25:a7:a3:55:bd:4f:49:51:c3:fd:30:1c:1c:e9: 68:20:d9:a9:f9:17:be:52:51:ab:31:fe:70:56:94:cc:56:d1: 2f:49:e9:fd:f4:f0:5f:84:e4:d5:3e:d6:65:8a:de:29:73:ae: 6f:4a:da:22:66:c6:3b:6c:8b:30:bd:01:83:46:66:ff:db:fe: 44:11:a8:31:7e:57:4c:8b:38:65:c6:e6:aa:e3:7f:f9:a6:e7: 83:9e:04:51:25:bf:c2:7b:50:d8:a6:19:ce:f8:4b:a4:a5:78: 02:fe:22:5b:cb:f4:2c:2d:e2:d1:20:cb:44:de:0f:41:dd:ad: f5:3b:20:eb:22:5c:18:f9:0b:04:a4:ef:d2:64:8a:5f:4f:a1: f5:63:f9:51:31:fb:84:d5:52:9a:88:a4:fa:2e:21:63:c2:f7: ae:df:b4:c7:55:50:a0:a5:d6:37:d6:ab:1b:06:be:c7:e0:1d: 5b:54:ca:44:a2:b5:08:e8:6f:c5:3d:f0:1c:90:f1:84:b9:fc: 80:e6:66:3d:05:12:31:e1:9e:bb:6e:5e:4f:3f:67:13:5e:f8: 65:9a:7f:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTExMkYxMTAvBgNVBAUTKDFFNTdCNDNGMDQ0RDRBQkE4MjIyQTQwOTc4NjYxNDI4 MEFBNzM5QTEwHhcNMjUwNzAxMDU0MjM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNzU0Yy04YTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jE3DrIyKz82fp3kd3+/rnOmWmHbVsFO6p3L2LR+Rfj8AAQYs476nV/ideVX fmFwtRYrn9MrP3F8esezGdqy5mszzXWS2jE1eKASnQgso818XseIjtst0YNNT2Nv BK1l8+YNi5lkCnsTxayujQuA8jn7hHfckmOupxqEu4X1muRQD4JnZicYlfURwZrF 0ZgueARnpwyJPi0m6RwrRLam8bLuG858PrzewOrf1NhjMpthnDxZncOhUdy066Tp P9EilsGe+Rgp3gsxc3rbBedEZhoCEzybxp1SUG87HYtUJb2pY7Bw4lgTqrq7hCaJ bmWZ9oaowx5iIwZ16DCITVKYAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFFz9q5W l9sdhbE7x/1xb23dfjqZMB8GA1UdIwQYMBaAFB5XtD8ETUq6giKkCXhmFCgKpzmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTEyRi85NjREQzY5QUJB OEQxMUVFODI4QTg5NDZDNEY5QUUwMi9IbGUwUHdSTlNycUNJcVFKZUdZVUtBcW5P YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsZTBQd1JOU3JxQ0lxUUplR1lVS0Fxbk9hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTExMkYvOTY0REM2OUFCQThEMTFFRTgyOEE4OTQ2QzRGOUFFMDIvMUNEMzRCNkNF REZDMTFFRTg4MEY2RjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnp7owDwQCAAIwCQMHACABDfa7gDANBgkqhkiG9w0BAQsF AAOCAQEAPRXQCIuuBFmjcwYRpcJQZMCDca2YZQHPVxBf1Tbm7MsiK/m+UNYa1yWn o1W9T0lRw/0wHBzpaCDZqfkXvlJRqzH+cFaUzFbRL0np/fTwX4Tk1T7WZYreKXOu b0raImbGO2yLML0Bg0Zm/9v+RBGoMX5XTIs4ZcbmquN/+abng54EUSW/wntQ2KYZ zvhLpKV4Av4iW8v0LC3i0SDLRN4PQd2t9Tsg6yJcGPkLBKTv0mSKX0+h9WP5UTH7 hNVSmoik+i4hY8L3rt+0x1VQoKXWN9arGwa+x+AdW1TKRKK1COhvxT3wHJDxhLn8 gOZmPQUSMeGeu25eTz9nE174ZZp/cw== -----END CERTIFICATE-----Generated at Thu Jul 3 13:23:57 2025 by rpki-client