$ rpki-client -vvf rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa File: 7416299C4B0C11EDB8430084C4F9AE02.roa (raw, json) Hash identifier: /HJseqaXYqKNU4JSpgFfB6yF7Shuw95sDH+Hz1X2J8o= Subject key identifier: 29:B1:2C:F1:47:2A:D8:9D:90:41:C5:02:65:C5:D3:FA:25:F9:88:AC Certificate issuer: /CN=A911DED4/serialNumber=8264AB280ADE993F3D222FBC864DEE2286BA9065 Certificate serial: 021A Authority key identifier: 82:64:AB:28:0A:DE:99:3F:3D:22:2F:BC:86:4D:EE:22:86:BA:90:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa Signing time: Thu 21 Aug 2025 02:39:48 +0000 ROA not before: Thu 21 Aug 2025 02:39:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38038 IP address blocks: 103.152.222.0/23 maxlen: 24 2406:35c0::/32 maxlen: 32 2406:35c0:4000::/36 maxlen: 36 2406:35c0:5000::/36 maxlen: 36 2406:35c0:6000::/35 maxlen: 36 2406:35c0:8000::/33 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.crl rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DED4, serialNumber=8264AB280ADE993F3D222FBC864DEE2286BA9065 Validity Not Before: Aug 21 02:39:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a686f4-feae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:52:2a:49:3a:8e:59:25:0c:d3:a2:9a:f2:29: 87:10:ac:21:2a:ad:cd:75:5e:c6:a6:5e:eb:54:16: 09:da:7a:dd:22:c3:88:57:bd:a2:af:f2:97:18:bb: 05:a2:c8:a4:68:76:4e:4d:6b:0e:db:a2:85:c9:e9: da:fa:b2:3b:99:91:c5:f0:f4:1c:46:9d:b2:42:0c: 38:86:46:f1:45:32:2f:29:47:63:42:f5:fe:56:3a: 6f:5a:f8:c8:1a:39:e5:09:db:d1:72:10:75:63:b9: df:9d:6f:fe:ed:dd:a1:63:e8:eb:bc:22:90:1b:f2: e5:39:9e:1e:82:14:fc:98:00:6f:e8:06:6a:66:0f: cb:08:b1:86:20:1e:26:b7:61:29:b7:67:6a:02:63: 90:6e:8e:79:a9:1d:ba:a9:f1:86:cb:dc:83:0b:37: 7b:66:33:7f:0d:d3:e1:cb:5b:47:c9:97:86:d8:75: 8a:4f:d0:ed:71:73:c4:65:d9:8e:1f:89:ab:ca:0a: 58:c1:0d:cf:ea:8c:59:c8:b9:d8:d0:d4:45:d5:c5: 36:c4:07:5c:cd:47:d2:b0:e6:d4:33:2e:77:c5:4d: 72:f9:5a:60:3d:d3:98:93:dd:6f:e6:a9:b3:77:81: 47:35:9d:03:11:fe:57:f6:3b:88:ee:5a:0a:f0:26: 9f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B1:2C:F1:47:2A:D8:9D:90:41:C5:02:65:C5:D3:FA:25:F9:88:AC X509v3 Authority Key Identifier: keyid:82:64:AB:28:0A:DE:99:3F:3D:22:2F:BC:86:4D:EE:22:86:BA:90:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.222.0/23 IPv6: 2406:35c0::/32 Signature Algorithm: sha256WithRSAEncryption 55:cb:93:bd:04:3d:36:6f:92:92:08:4d:91:68:42:81:fe:32: 3b:b7:05:bb:5b:f7:af:f0:83:a6:8c:2d:2d:22:ab:8e:0f:7c: 98:b4:c7:0e:0c:88:b9:55:83:ab:53:11:13:c8:48:7c:df:d1: 78:b8:f3:e6:a8:2a:d7:53:a1:c4:0e:59:e3:0c:38:67:f2:d5: a5:44:49:d0:22:db:12:37:01:4d:cf:1d:89:34:a4:07:d2:f7: 1e:08:a1:f4:aa:61:48:ad:31:16:e2:84:fb:66:f0:55:31:97: 51:3f:66:36:a3:6b:e4:b4:fa:ad:4a:f1:a6:b9:92:2f:a5:f6: 22:a3:43:11:6f:16:cf:45:bb:ab:8e:a8:5a:60:5e:58:44:77: 5e:18:9a:70:39:77:8f:c0:b5:1b:9b:67:2e:20:51:1b:73:9f: 86:26:35:6b:6e:1d:d7:a4:3a:81:6a:2c:d1:e7:72:bb:5a:8e: ee:b0:3e:14:95:bc:c1:58:d0:45:6d:da:80:1c:06:7b:27:af: 52:6e:48:ee:1f:36:cb:33:dd:c6:eb:e9:2f:fb:6a:02:6c:33: 8e:ad:c3:f2:4d:17:b1:9a:38:9e:cf:9e:80:72:58:7f:3f:62: 0e:87:ba:5f:7d:d4:bf:e8:34:aa:8e:17:67:3c:2e:b8:37:34: 74:86:a1:84 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFRDQxMTAvBgNVBAUTKDgyNjRBQjI4MEFERTk5M0YzRDIyMkZCQzg2NERFRTIy ODZCQTkwNjUwHhcNMjUwODIxMDIzOTQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2ODZmNC1mZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11IqSTqOWSUM06Ka8imHEKwhKq3NdV7Gpl7rVBYJ2nrdIsOIV72ir/KXGLsF osikaHZOTWsO26KFyena+rI7mZHF8PQcRp2yQgw4hkbxRTIvKUdjQvX+VjpvWvjI GjnlCdvRchB1Y7nfnW/+7d2hY+jrvCKQG/LlOZ4eghT8mABv6AZqZg/LCLGGIB4m t2Ept2dqAmOQbo55qR26qfGGy9yDCzd7ZjN/DdPhy1tHyZeG2HWKT9DtcXPEZdmO H4mrygpYwQ3P6oxZyLnY0NRF1cU2xAdczUfSsObUMy53xU1y+VpgPdOYk91v5qmz d4FHNZ0DEf5X9juI7loK8CafVQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCmxLPFH KtidkEHFAmXF0/ol+YisMB8GA1UdIwQYMBaAFIJkqygK3pk/PSIvvIZN7iKGupBl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREVENC9FNEZCMkJFNDRC MDcxMUVEOEVDMzM5NDdDNEY5QUUwMi9nbVNyS0FyZW1UODlJaS04aGszdUlvYTZr R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtU3JLQXJlbVQ4OUlpLThoazN1SW9hNmtHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFRDQvRTRGQjJCRTQ0QjA3MTFFRDhFQzMzOTQ3QzRGOUFFMDIvNzQxNjI5OUM0 QjBDMTFFREI4NDMwMDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmN4wDQQCAAIwBwMFACQGNcAwDQYJKoZIhvcNAQELBQAD ggEBAFXLk70EPTZvkpIITZFoQoH+Mju3Bbtb96/wg6aMLS0iq44PfJi0xw4MiLlV g6tTERPISHzf0Xi48+aoKtdTocQOWeMMOGfy1aVESdAi2xI3AU3PHYk0pAfS9x4I ofSqYUitMRbihPtm8FUxl1E/Zjaja+S0+q1K8aa5ki+l9iKjQxFvFs9Fu6uOqFpg XlhEd14YmnA5d4/AtRubZy4gURtzn4YmNWtuHdekOoFqLNHncrtaju6wPhSVvMFY 0EVt2oAcBnsnr1JuSO4fNssz3cbr6S/7agJsM46tw/JNF7GaOJ7PnoByWH8/Yg6H ul991L/oNKqOF2c8Lrg3NHSGoYQ= -----END CERTIFICATE-----Generated at Sun Aug 24 06:35:13 2025 by rpki-client