$ rpki-client -vvf rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/07E789A228F011ED94BE9345C4F9AE02.roa File: 07E789A228F011ED94BE9345C4F9AE02.roa (raw, json) Hash identifier: UjqlRAwfwNLo2LEBYwVtNQxCTDJqJ6taRgiSuyPlUdk= Subject key identifier: 9F:E9:83:41:AA:E2:55:7C:86:D5:62:C9:A9:28:DA:A4:D3:D4:D0:66 Certificate issuer: /CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Certificate serial: 0263 Authority key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/07E789A228F011ED94BE9345C4F9AE02.roa Signing time: Fri 29 Aug 2025 02:19:46 +0000 ROA not before: Fri 29 Aug 2025 02:19:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150291 IP address blocks: 103.156.148.0/23 maxlen: 23 103.156.148.0/24 maxlen: 24 103.156.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912087D, serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Validity Not Before: Aug 29 02:19:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b10e41-950e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8c:e9:ca:f1:96:ba:37:ef:91:cd:ee:f0:8b: 43:9f:df:a6:f7:65:ae:0a:a1:bf:57:d2:f5:75:2f: 48:00:0e:56:7a:bc:01:f8:e0:58:48:dd:19:8a:fc: cc:5a:27:cb:c6:bf:de:fc:38:12:55:76:6c:c6:df: 50:55:ef:6d:da:77:92:68:c2:b7:19:fd:e2:ab:8c: 3f:e6:e2:2a:88:0a:c2:03:3a:e2:3a:0c:f1:8e:5e: 04:ba:fd:09:15:94:6e:34:75:7b:87:8a:ce:5a:3b: 5a:ec:ad:29:2c:53:74:74:8d:bf:98:88:2a:71:bc: ec:2d:71:f2:bc:c0:fa:00:28:79:5f:4c:ed:f5:b5: d6:f3:88:f6:9e:65:bc:a4:8c:f7:01:66:26:49:7d: 02:90:d5:a8:b3:cc:0b:96:78:1e:32:a8:9e:41:42: 11:89:01:f8:73:aa:a8:27:d0:78:08:00:04:62:74: 1c:50:d4:a4:65:db:54:1f:c1:f4:3f:1e:54:16:c2: d7:00:20:40:a4:5f:fc:c7:cb:a3:fe:a8:c7:13:da: 5d:0f:e6:63:74:c6:15:a8:04:01:a2:46:6a:01:cd: ea:a9:a0:8b:40:fa:c4:1b:86:9f:b0:46:b0:ab:e3: 62:c8:83:70:5d:e7:4c:71:78:b0:d8:82:db:0d:c4: 8f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E9:83:41:AA:E2:55:7C:86:D5:62:C9:A9:28:DA:A4:D3:D4:D0:66 X509v3 Authority Key Identifier: keyid:42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/07E789A228F011ED94BE9345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.148.0/23 Signature Algorithm: sha256WithRSAEncryption b8:83:6c:ed:ac:01:05:76:14:f0:24:86:92:5b:9c:6c:83:9c: 08:7a:f2:51:f6:50:7a:0e:96:03:cb:e3:82:f5:e0:30:f1:6d: dd:9e:86:f7:4a:92:6d:82:f5:a2:0c:b8:29:df:0f:36:d3:18: 0d:7c:ca:fe:20:ed:38:0a:d7:b4:e9:8d:c4:4d:4e:86:46:4b: 40:5b:2b:79:1e:1a:22:82:b4:c8:f4:93:fe:93:5d:70:1d:77: a5:22:4c:84:88:ac:55:ae:ec:1b:b6:0c:b5:c2:49:a5:b2:7f: 8e:05:d5:60:e0:9b:67:9e:f8:a0:33:1d:b2:f2:cd:bc:4f:31: d8:6d:cb:8a:97:21:67:50:9b:5a:bc:0a:35:08:7a:7b:82:87: ee:e0:ad:ee:99:10:ad:23:6c:b6:bf:64:57:cc:27:73:92:b7: e0:2a:ad:cd:2e:7e:e9:13:81:de:38:77:2a:4d:b7:a6:a5:c2: 43:9c:27:53:c4:01:6a:a4:5b:d2:f8:12:d2:8d:f6:98:42:3d: 49:51:a0:25:69:40:0c:87:b5:e4:0a:d8:16:c6:c9:2a:35:eb: 7c:55:fd:3a:fb:26:3c:6c:7a:bf:a7:1b:28:bb:0b:4c:92:24: a0:99:bc:b2:78:0d:1a:0e:a0:ab:ce:70:0e:d2:5f:7d:1c:e9: af:3b:91:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYzOTkzQkNDQTgz NjEyNzFCRkUwHhcNMjUwODI5MDIxOTQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMGU0MS05NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4zpyvGWujfvkc3u8ItDn9+m92WuCqG/V9L1dS9IAA5WerwB+OBYSN0ZivzM WifLxr/e/DgSVXZsxt9QVe9t2neSaMK3Gf3iq4w/5uIqiArCAzriOgzxjl4Euv0J FZRuNHV7h4rOWjta7K0pLFN0dI2/mIgqcbzsLXHyvMD6ACh5X0zt9bXW84j2nmW8 pIz3AWYmSX0CkNWos8wLlngeMqieQUIRiQH4c6qoJ9B4CAAEYnQcUNSkZdtUH8H0 Px5UFsLXACBApF/8x8uj/qjHE9pdD+ZjdMYVqAQBokZqAc3qqaCLQPrEG4afsEaw q+NiyINwXedMcXiw2ILbDcSP5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ/pg0Gq 4lV8htViyako2qTT1NBmMB8GA1UdIwQYMBaAFEKoTYwIia3FWGBmOZO8yoNhJxv+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDg3RC80QzE1ODU4QzI4 RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJjVllZR1k1azd6S2cyRW5H XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxaE5qQWlKcmNWWVlHWTVrN3pLZzJFbkdfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA4N0QvNEMxNTg1OEMyOEVEMTFFRDhCNTk3QjQwQzRGOUFFMDIvMDdFNzg5QTIy OEYwMTFFRDk0QkU5MzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnJQwDQYJKoZIhvcNAQELBQADggEBALiDbO2sAQV2FPAk hpJbnGyDnAh68lH2UHoOlgPL44L14DDxbd2ehvdKkm2C9aIMuCnfDzbTGA18yv4g 7TgK17TpjcRNToZGS0BbK3keGiKCtMj0k/6TXXAdd6UiTISIrFWu7Bu2DLXCSaWy f44F1WDgm2ee+KAzHbLyzbxPMdhty4qXIWdQm1q8CjUIenuCh+7gre6ZEK0jbLa/ ZFfMJ3OSt+Aqrc0ufukTgd44dypNt6alwkOcJ1PEAWqkW9L4EtKN9phCPUlRoCVp QAyHteQK2BbGySo163xV/Tr7Jjxser+nGyi7C0ySJKCZvLJ4DRoOoKvOcA7SX30c 6a87kTI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:43:55 2025 by rpki-client