$ rpki-client -vvf rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa File: E43CFABEB67611ECACB17C42C4F9AE02.roa (raw, json) Hash identifier: xFhwmyCR50XOerYq8iSgMgO+SIsbHjR9sIw6IGAYvWU= Subject key identifier: C9:D8:FE:8A:38:C9:DB:54:A6:BE:38:58:B1:2A:F6:9D:AE:FA:8E:E4 Certificate issuer: /CN=A9113683/serialNumber=CA7C86BE00DB414503ED5EE6C0AF928F34C5C7D8 Certificate serial: 08DF Authority key identifier: CA:7C:86:BE:00:DB:41:45:03:ED:5E:E6:C0:AF:92:8F:34:C5:C7:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa Signing time: Wed 02 Jul 2025 20:59:56 +0000 ROA not before: Wed 02 Jul 2025 20:59:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139009 IP address blocks: 103.153.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.crl rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2271 (0x8df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113683, serialNumber=CA7C86BE00DB414503ED5EE6C0AF928F34C5C7D8 Validity Not Before: Jul 2 20:59:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68659dcc-bf94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d4:30:ef:d8:c3:12:64:42:d6:6c:86:9c:08: 75:7f:f6:cc:9c:e4:6b:d8:0a:16:9e:c9:d1:54:b3: 3c:b5:bd:63:ef:7d:80:0a:27:0b:06:ea:e8:cc:8e: 66:85:1b:94:a0:b5:71:e2:2f:a8:83:cb:f8:8a:5d: de:18:17:f0:1e:a9:dc:c8:b1:6d:98:5d:f0:01:fe: bf:0d:b0:6d:85:fc:dc:66:d2:d9:33:bf:46:dc:46: b1:17:2d:56:6b:6c:de:88:f4:65:a2:15:13:23:76: f3:b0:3e:e9:33:62:f0:80:df:37:4c:bc:36:01:75: 6a:a8:69:82:ee:2b:12:77:4f:7a:77:f2:97:b6:dd: 54:07:4f:5c:43:d2:f3:21:f0:9f:00:67:05:5f:e0: 4f:6c:ec:08:6e:c1:49:c8:a3:65:f1:82:e9:49:45: 40:be:79:6b:8b:1b:39:86:2b:f9:24:67:59:c2:42: a0:d1:85:e2:09:2e:34:21:a6:bc:1b:bb:93:32:ff: 32:fd:1c:b0:00:16:60:e1:40:14:b3:91:38:fa:f7: 7e:f2:41:f7:98:2e:48:11:ff:13:19:03:c9:b0:49: 65:38:84:20:a3:e8:56:d8:7e:07:28:7d:93:25:a8: da:7f:7f:bf:1c:f5:81:04:b8:f1:70:cc:de:0b:7c: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D8:FE:8A:38:C9:DB:54:A6:BE:38:58:B1:2A:F6:9D:AE:FA:8E:E4 X509v3 Authority Key Identifier: keyid:CA:7C:86:BE:00:DB:41:45:03:ED:5E:E6:C0:AF:92:8F:34:C5:C7:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.66.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:33:4c:69:1f:7c:09:fe:36:06:87:e4:59:2d:d9:b8:0a:36: 0f:3d:41:4b:2e:05:44:c1:f4:fd:51:c5:64:d7:80:9d:32:1c: 6c:ed:ed:8c:c5:13:c4:e7:39:98:b7:29:fa:b8:82:bb:90:ec: 30:96:0b:d3:dc:98:86:27:d5:d6:07:e9:cf:62:53:1e:64:54: 20:92:e7:76:8e:bf:2e:c0:04:d6:5b:df:0a:97:b3:53:84:05: 83:b5:55:f4:d2:7a:b4:09:28:b2:a9:0a:dc:47:a3:b5:ed:c6: b3:4f:01:f7:02:83:55:e1:9e:db:2d:25:e9:9e:96:61:2e:a6: 01:6e:09:66:1b:86:cd:80:68:bb:a9:91:8b:13:14:99:bf:62: 6a:c3:ae:5d:ef:f9:d2:5c:a4:5c:82:e5:e2:84:f9:49:84:ce: 13:f6:f9:7e:68:74:87:7f:e4:73:23:c6:d6:b7:7d:00:af:e0: 5c:2a:5c:b2:50:ad:00:04:02:69:dc:68:4a:2f:e6:eb:d8:f7: 3b:d5:58:90:76:2d:7f:0e:ee:93:b7:08:d1:67:db:7d:56:5d: ef:ed:70:c6:03:fe:fe:1d:61:4c:3a:a9:41:58:7e:fe:22:40: 3a:7f:a9:d0:64:55:7b:6d:4a:72:c4:4a:25:7f:d3:e1:e1:bb: 79:c1:4b:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2ODMxMTAvBgNVBAUTKENBN0M4NkJFMDBEQjQxNDUwM0VENUVFNkMwQUY5MjhG MzRDNUM3RDgwHhcNMjUwNzAyMjA1OTU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OWRjYy1iZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tQw79jDEmRC1myGnAh1f/bMnORr2AoWnsnRVLM8tb1j732ACicLBurozI5m hRuUoLVx4i+og8v4il3eGBfwHqncyLFtmF3wAf6/DbBthfzcZtLZM79G3EaxFy1W a2zeiPRlohUTI3bzsD7pM2LwgN83TLw2AXVqqGmC7isSd096d/KXtt1UB09cQ9Lz IfCfAGcFX+BPbOwIbsFJyKNl8YLpSUVAvnlrixs5hiv5JGdZwkKg0YXiCS40Iaa8 G7uTMv8y/RywABZg4UAUs5E4+vd+8kH3mC5IEf8TGQPJsEllOIQgo+hW2H4HKH2T Jajaf3+/HPWBBLjxcMzeC3xC5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMnY/oo4 ydtUpr44WLEq9p2u+o7kMB8GA1UdIwQYMBaAFMp8hr4A20FFA+1e5sCvko80xcfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzY4My8zRjBCMzU2MkI3 OTMxMUVBQTRDNTRCMTRDNEY5QUUwMi95bnlHdmdEYlFVVUQ3Vjdtd0stU2p6VEZ4 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lueUd2Z0RiUVVVRDdWN213Sy1TanpURng5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM2ODMvM0YwQjM1NjJCNzkzMTFFQUE0QzU0QjE0QzRGOUFFMDIvRTQzQ0ZBQkVC Njc2MTFFQ0FDQjE3QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmUIwDQYJKoZIhvcNAQELBQADggEBADszTGkffAn+NgaH 5Fkt2bgKNg89QUsuBUTB9P1RxWTXgJ0yHGzt7YzFE8TnOZi3Kfq4gruQ7DCWC9Pc mIYn1dYH6c9iUx5kVCCS53aOvy7ABNZb3wqXs1OEBYO1VfTSerQJKLKpCtxHo7Xt xrNPAfcCg1XhntstJemelmEupgFuCWYbhs2AaLupkYsTFJm/YmrDrl3v+dJcpFyC 5eKE+UmEzhP2+X5odId/5HMjxta3fQCv4FwqXLJQrQAEAmncaEov5uvY9zvVWJB2 LX8O7pO3CNFn231WXe/tcMYD/v4dYUw6qUFYfv4iQDp/qdBkVXttSnLESiV/0+Hh u3nBS40= -----END CERTIFICATE-----Generated at Thu Jul 3 01:02:09 2025 by rpki-client