$ rpki-client -vvf rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa File: D8F27C903AD811EF960D9329C4F9AE02.roa (raw, json) Hash identifier: 3V/ibErrTNJ9w1YW/LwCYcNNPjpkRJOqZOAkX5zvOXE= Subject key identifier: DF:FC:A6:BC:42:4E:05:DB:47:2C:E2:53:87:5C:D4:3A:7B:C1:52:62 Certificate issuer: /CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Certificate serial: 019C Authority key identifier: 91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa Signing time: Mon 30 Jun 2025 12:30:00 +0000 ROA not before: Mon 30 Jun 2025 12:30:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 133551 IP address blocks: 103.48.0.0/24 maxlen: 24 103.48.1.0/24 maxlen: 24 2001:df1:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91215B3, serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Validity Not Before: Jun 30 12:30:00 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68628348-1fbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:c7:83:08:f9:e4:eb:fa:d4:a0:b9:78:ce: 7b:be:6a:a6:95:16:9f:ba:22:75:a4:4a:0b:3b:33: fd:f8:23:21:de:aa:0c:96:16:ce:5f:94:e5:c7:56: 24:ba:f4:61:0e:d8:ab:ee:9f:b4:b3:a0:8e:f2:f8: 6a:8d:09:09:e0:c6:04:40:93:d6:6f:3b:19:80:2d: 16:eb:fc:7a:63:79:03:8b:7f:87:ee:c1:05:ed:c8: 64:8c:11:8d:36:22:e5:07:05:24:5c:a5:b2:fc:52: 26:18:bc:3b:a5:b4:12:52:1a:63:68:9d:57:8f:91: 66:05:90:3d:ce:d1:40:c3:cd:bc:13:d4:30:85:fc: 92:1d:99:70:69:bb:d3:21:05:00:97:d5:b6:a1:e2: 19:ac:ed:2b:c2:18:4b:9e:27:a8:d0:25:3d:4a:4c: 32:cf:61:29:a2:56:44:bd:e9:96:61:92:83:17:4a: 29:ff:35:10:1f:5a:69:9b:1d:c2:b5:d1:ad:56:7a: cf:2d:be:08:4e:35:b4:46:d3:63:46:3d:0d:a2:0b: fa:dd:e0:d9:d5:4b:fc:e1:ca:94:22:51:be:4f:06: ee:0e:bb:6f:70:6e:e8:7c:1f:d9:45:35:33:37:51: e8:66:f9:aa:8c:b5:79:d4:c2:a8:06:35:45:65:dc: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FC:A6:BC:42:4E:05:DB:47:2C:E2:53:87:5C:D4:3A:7B:C1:52:62 X509v3 Authority Key Identifier: keyid:91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.0.0/23 IPv6: 2001:df1:a040::/48 Signature Algorithm: sha256WithRSAEncryption 78:29:52:83:35:c3:e0:72:f3:fb:0c:bd:1c:ff:98:d1:63:29: 9c:e3:f2:ff:7e:96:d7:a3:91:29:c1:5f:a3:e6:e3:f7:88:b4: 38:55:89:98:0d:51:4b:f0:bc:ed:e3:87:30:25:d5:b9:9c:12: fe:97:31:c6:9b:52:24:55:a0:98:53:5a:26:28:4e:f5:83:c9: 1c:80:f4:bb:e9:42:a7:21:a8:2d:5b:e3:cc:2d:c4:8c:d8:23: cf:15:b2:b3:9f:8a:4a:43:64:41:c8:72:d7:3d:9c:86:32:bd: 58:33:50:90:b2:dd:5d:da:06:51:ac:26:1b:60:57:86:0a:30: 6d:cb:a4:4b:37:11:e5:81:a6:dc:c6:ff:df:13:7b:3e:2b:9c: fd:a1:e0:51:b6:bf:47:57:21:98:68:b7:95:89:87:0d:cb:36: 62:a7:83:50:d6:7b:2f:1d:d5:c0:27:fb:94:35:52:3c:4e:13: 27:fc:4d:d2:9f:b2:02:40:d2:96:a8:ed:51:97:7c:e0:b3:8c: a4:98:15:65:2b:0c:73:9d:fa:35:a3:2f:5e:54:fa:51:0b:90: 52:f1:7d:55:86:ba:df:4f:93:67:fe:96:b9:20:71:10:52:cf: a1:c4:53:5d:e7:2b:d4:8e:f8:d2:24:b9:83:e5:6d:d6:47:55: 38:18:60:75 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE1QjMxMTAvBgNVBAUTKDkxNDg1MEM0QjhBNTEzQjJGOEU0RURDNEI1NTc4NzA3 Nzc2MzcyQUUwHhcNMjUwNjMwMTIzMDAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyODM0OC0xZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdvHgwj55Ov61KC5eM57vmqmlRafuiJ1pEoLOzP9+CMh3qoMlhbOX5Tlx1Yk uvRhDtir7p+0s6CO8vhqjQkJ4MYEQJPWbzsZgC0W6/x6Y3kDi3+H7sEF7chkjBGN NiLlBwUkXKWy/FImGLw7pbQSUhpjaJ1Xj5FmBZA9ztFAw828E9QwhfySHZlwabvT IQUAl9W2oeIZrO0rwhhLnieo0CU9Skwyz2EpolZEvemWYZKDF0op/zUQH1ppmx3C tdGtVnrPLb4ITjW0RtNjRj0Nogv63eDZ1Uv84cqUIlG+TwbuDrtvcG7ofB/ZRTUz N1HoZvmqjLV51MKoBjVFZdxbIQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN/8prxC TgXbRyziU4dc1Dp7wVJiMB8GA1UdIwQYMBaAFJFIUMS4pROy+OTtxLVXhwd3Y3Ku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTVCMy9FNkY2OEYwNjBC NEIxMUVFQUI5QUFENzlDNEY5QUUwMi9rVWhReExpbEU3TDQ1TzNFdFZlSEIzZGpj cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tVaFF4TGlsRTdMNDVPM0V0VmVIQjNkamNxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE1QjMvRTZGNjhGMDYwQjRCMTFFRUFCOUFBRDc5QzRGOUFFMDIvRDhGMjdDOTAz QUQ4MTFFRjk2MEQ5MzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnMAAwDwQCAAIwCQMHACABDfGgQDANBgkqhkiG9w0BAQsF AAOCAQEAeClSgzXD4HLz+wy9HP+Y0WMpnOPy/36W16ORKcFfo+bj94i0OFWJmA1R S/C87eOHMCXVuZwS/pcxxptSJFWgmFNaJihO9YPJHID0u+lCpyGoLVvjzC3EjNgj zxWys5+KSkNkQchy1z2chjK9WDNQkLLdXdoGUawmG2BXhgowbcukSzcR5YGm3Mb/ 3xN7Piuc/aHgUba/R1chmGi3lYmHDcs2YqeDUNZ7Lx3VwCf7lDVSPE4TJ/xN0p+y AkDSlqjtUZd84LOMpJgVZSsMc536NaMvXlT6UQuQUvF9VYa630+TZ/6WuSBxEFLP ocRTXecr1I740iS5g+Vt1kdVOBhgdQ== -----END CERTIFICATE-----Generated at Wed Jul 2 23:05:50 2025 by rpki-client