$ rpki-client -vvf rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/430E7F9CACBC11EBB0651B63C4F9AE02.roa File: 430E7F9CACBC11EBB0651B63C4F9AE02.roa (raw, json) Hash identifier: 3AbfHAacjnEAWoo2sa+rjsKYetf4drBAdDYIzgNRGw0= Subject key identifier: CB:BF:9E:A2:05:37:5C:D7:EB:F9:F6:C6:19:55:2F:FC:97:FB:94:CB Certificate issuer: /CN=A912D072/serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Certificate serial: 0806 Authority key identifier: 47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/430E7F9CACBC11EBB0651B63C4F9AE02.roa Signing time: Sun 31 Aug 2025 21:13:18 +0000 ROA not before: Sun 31 Aug 2025 21:13:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.153.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D072, serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Validity Not Before: Aug 31 21:13:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b4baee-062d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:93:9c:00:0a:b0:57:ed:23:f7:27:93:79:e8: 8f:37:e6:0c:7c:04:b9:ee:e4:31:30:25:23:14:bf: 0a:85:df:6f:f6:8b:14:5c:f0:f9:46:b0:91:85:4e: 31:b9:e5:7f:19:42:84:36:8c:0c:6f:22:63:ef:da: af:f3:6b:ee:49:b3:94:02:57:20:55:9a:1d:95:b3: e4:7a:bd:6f:de:33:3f:de:5e:a8:c8:ec:e2:7b:d0: 04:9b:fc:6b:f3:ff:31:2a:e7:45:d6:45:66:62:ca: 80:6c:8a:38:a6:92:4a:c4:78:9d:6e:2e:95:24:60: c2:9f:89:96:b9:b5:2f:98:88:e3:b7:be:69:5b:c7: 34:28:3c:d7:48:a7:8a:5a:b7:b4:dc:fa:83:73:fd: e4:0b:bc:cd:9e:f4:ef:54:06:08:9c:30:81:f5:69: b5:56:ed:3d:b6:dd:ad:c6:81:fd:a9:b7:ad:5b:b6: 0a:56:92:d2:00:15:c1:61:f5:e1:3c:4a:a2:15:4b: 33:98:c9:a2:66:c8:32:3b:a1:9b:15:45:ae:6c:a0: 1d:c1:59:20:70:b9:e3:32:53:0d:e5:25:3f:b0:67: a8:bc:44:38:c0:18:c3:67:65:a7:75:cd:73:7b:73: c3:3a:60:e9:ff:1c:c6:a1:17:c8:95:b4:74:71:6a: 43:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:BF:9E:A2:05:37:5C:D7:EB:F9:F6:C6:19:55:2F:FC:97:FB:94:CB X509v3 Authority Key Identifier: keyid:47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/430E7F9CACBC11EBB0651B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.138.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:8b:32:00:b9:4c:42:5b:21:aa:15:7e:89:28:6d:03:79:6d: a2:25:66:77:de:ee:b5:3f:b8:67:05:33:00:5d:e3:c4:d3:80: d2:39:39:e8:7b:5c:0a:f5:d3:e2:17:1a:39:97:79:a3:50:e2: 69:c1:58:65:06:35:cc:a2:45:fc:7c:c7:34:90:4b:10:e5:16: bc:00:b2:23:e2:55:01:75:26:27:74:1a:f5:28:e7:bb:32:48: 5d:0b:fd:62:07:76:86:f5:8b:16:65:d4:16:7c:ec:66:d6:13: f5:43:8b:4a:e7:67:dd:d2:05:87:4a:4b:f0:cf:9d:ca:4b:52: 09:ab:3a:4f:1a:b6:79:91:d9:f9:cd:83:ab:b6:10:ad:c1:fb: b9:2d:40:a8:c2:d3:e6:e0:67:1b:ca:ca:73:7a:2e:d4:62:d0: d9:5f:4a:ec:71:91:fd:74:9f:9d:1e:d7:69:95:ba:d2:c7:ca: 59:15:80:89:da:31:44:12:c6:8c:ed:93:6f:58:ce:f8:a7:b0: e3:61:8b:bb:17:37:9d:1b:c4:04:ed:52:3f:09:41:c4:16:b2: 34:c3:cf:7e:b2:04:d8:58:b8:4f:6a:12:f4:89:c6:ec:4c:c5: f4:58:0c:2e:45:42:a4:9c:0a:af:97:bd:95:0b:29:79:b5:61: a7:62:94:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwNzIxMTAvBgNVBAUTKDQ3NTc1Mjg0NEJFQTdBNDk3MDVCQzI1QUE4RjBDOUVG MTAwQzk4RjgwHhcNMjUwODMxMjExMzE4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI0YmFlZS0wNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55OcAAqwV+0j9yeTeeiPN+YMfAS57uQxMCUjFL8Khd9v9osUXPD5RrCRhU4x ueV/GUKENowMbyJj79qv82vuSbOUAlcgVZodlbPker1v3jM/3l6oyOzie9AEm/xr 8/8xKudF1kVmYsqAbIo4ppJKxHidbi6VJGDCn4mWubUvmIjjt75pW8c0KDzXSKeK Wre03PqDc/3kC7zNnvTvVAYInDCB9Wm1Vu09tt2txoH9qbetW7YKVpLSABXBYfXh PEqiFUszmMmiZsgyO6GbFUWubKAdwVkgcLnjMlMN5SU/sGeovEQ4wBjDZ2Wndc1z e3PDOmDp/xzGoRfIlbR0cWpD9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMu/nqIF N1zX6/n2xhlVL/yX+5TLMB8GA1UdIwQYMBaAFEdXUoRL6npJcFvCWqjwye8QDJj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDA3Mi8zQTQxODkzNkZC RTYxMUVBQjM1MzY2MENDNEY5QUUwMi9SMWRTaEV2cWVrbHdXOEphcVBESjd4QU1t UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxZFNoRXZxZWtsd1c4SmFxUERKN3hBTW1QZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQwNzIvM0E0MTg5MzZGQkU2MTFFQUIzNTM2NjBDQzRGOUFFMDIvNDMwRTdGOUNB Q0JDMTFFQkIwNjUxQjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmYowDQYJKoZIhvcNAQELBQADggEBAGuLMgC5TEJbIaoV fokobQN5baIlZnfe7rU/uGcFMwBd48TTgNI5Oeh7XAr10+IXGjmXeaNQ4mnBWGUG NcyiRfx8xzSQSxDlFrwAsiPiVQF1Jid0GvUo57sySF0L/WIHdob1ixZl1BZ87GbW E/VDi0rnZ93SBYdKS/DPncpLUgmrOk8atnmR2fnNg6u2EK3B+7ktQKjC0+bgZxvK ynN6LtRi0NlfSuxxkf10n50e12mVutLHylkVgInaMUQSxoztk29YzvinsONhi7sX N50bxATtUj8JQcQWsjTDz36yBNhYuE9qEvSJxuxMxfRYDC5FQqScCq+XvZULKXm1 YadilII= -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:50 2025 by rpki-client