$ rpki-client -vvf rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa File: 73F5DB88BC9C11EB9AC8E073C4F9AE02.roa (raw, json) Hash identifier: B/l1/qnG+ox/f3khU2Qu7i7cTmOVlXxBXIJAWV1sQEM= Subject key identifier: 0C:05:6E:54:6D:6F:53:DB:5F:B0:AB:FF:5D:DD:80:FD:22:36:B0:7A Certificate issuer: /CN=A912EFA6/serialNumber=3958C78EDB2CBDA46B66A67EB934AA7BD3C3865E Certificate serial: 05E3 Authority key identifier: 39:58:C7:8E:DB:2C:BD:A4:6B:66:A6:7E:B9:34:AA:7B:D3:C3:86:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa Signing time: Thu 26 Jun 2025 22:52:34 +0000 ROA not before: Thu 26 Jun 2025 22:52:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132220 IP address blocks: 103.219.148.0/22 maxlen: 22 103.219.148.0/24 maxlen: 24 103.219.149.0/24 maxlen: 24 103.219.150.0/24 maxlen: 24 103.219.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.crl rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EFA6, serialNumber=3958C78EDB2CBDA46B66A67EB934AA7BD3C3865E Validity Not Before: Jun 26 22:52:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685dcf32-0664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:09:8e:c0:a9:e0:51:1a:b4:f1:43:cf:c9:79: 76:02:2c:5c:d7:2a:a1:ae:03:5f:e4:60:29:3b:b4: 04:33:ba:f3:89:5f:f3:b5:8f:43:54:d1:6a:fd:bf: d0:46:3e:c4:b0:31:ab:63:9e:2b:55:74:70:0c:a2: 4e:c4:8b:bf:d3:e6:eb:d7:2a:d0:02:c4:56:52:cc: 75:f0:3c:cb:42:3d:30:90:a8:37:ec:a0:84:19:71: 29:30:e1:14:a6:1d:77:4b:f7:fe:1a:ca:c4:56:be: ab:26:cc:0a:40:c9:39:ee:98:a2:9e:70:18:9a:c1: ab:20:75:93:01:bf:6f:d4:bc:77:fc:94:e3:a9:7f: a3:80:d4:d1:d8:64:cd:ac:5b:4b:dc:a1:f4:05:ba: ff:57:d9:59:ef:3c:79:2a:61:4f:c6:e9:b3:56:05: f2:87:ed:e9:da:2a:b3:d9:ed:dc:62:74:79:d1:7e: 7d:a4:95:dd:ff:f4:24:80:ba:a1:ae:3d:a9:dd:3d: e6:cd:45:62:3d:32:4b:78:88:1b:6b:c6:95:0f:d4: 1c:ba:09:d5:1d:fc:49:66:f6:8c:e8:eb:04:1b:b8: 5d:ea:cc:45:41:7f:a3:b6:30:93:42:3c:ab:dd:0e: 08:53:52:0f:f2:fb:dc:53:2b:ae:56:8a:46:6a:f2: bc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:05:6E:54:6D:6F:53:DB:5F:B0:AB:FF:5D:DD:80:FD:22:36:B0:7A X509v3 Authority Key Identifier: keyid:39:58:C7:8E:DB:2C:BD:A4:6B:66:A6:7E:B9:34:AA:7B:D3:C3:86:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.148.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:db:f7:fa:60:af:80:c2:84:c2:0a:0f:32:cc:6f:5f:c2:0d: 14:b4:a1:5e:08:ea:9f:d7:c0:b0:da:ac:bf:38:32:f4:c7:49: 94:5d:80:1f:cd:d1:ae:aa:c8:37:6c:6b:f1:17:37:b0:70:06: e4:0f:e0:95:b7:e1:15:c7:51:d9:e8:42:07:fb:10:62:4f:58: 6e:54:a4:eb:7e:bd:ce:c7:9f:ec:d1:4d:a0:15:97:ed:68:82: cb:f8:ad:4f:16:95:0b:0a:b5:f2:94:f1:06:42:c5:88:f8:ad: 0f:d0:44:a9:14:12:3e:ee:34:30:7b:a3:d2:5d:02:0f:ce:bb: bf:0b:53:17:d3:90:8a:2a:fd:a1:39:54:85:9a:93:07:60:6a: d3:4a:03:23:d0:ce:f1:cb:82:e4:21:a7:0e:5d:36:3f:81:97: fa:bf:e6:63:24:31:2f:2b:74:a3:0e:1a:b8:30:c6:5d:36:40: cf:a2:f5:5f:2a:9a:5a:64:57:10:cc:64:92:4b:af:2b:bb:fb: 86:bf:41:de:9d:52:ee:30:30:bd:f5:7b:54:41:f7:92:e5:66: 97:af:23:f2:3a:eb:f6:1d:93:41:92:af:bd:de:7a:20:8b:9c: 17:f6:5a:d6:72:e5:fb:25:83:81:28:55:cc:2e:7d:42:64:79: 05:2f:77:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVGQTYxMTAvBgNVBAUTKDM5NThDNzhFREIyQ0JEQTQ2QjY2QTY3RUI5MzRBQTdC RDNDMzg2NUUwHhcNMjUwNjI2MjI1MjM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkY2YzMi0wNjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgmOwKngURq08UPPyXl2Aixc1yqhrgNf5GApO7QEM7rziV/ztY9DVNFq/b/Q Rj7EsDGrY54rVXRwDKJOxIu/0+br1yrQAsRWUsx18DzLQj0wkKg37KCEGXEpMOEU ph13S/f+GsrEVr6rJswKQMk57piinnAYmsGrIHWTAb9v1Lx3/JTjqX+jgNTR2GTN rFtL3KH0Bbr/V9lZ7zx5KmFPxumzVgXyh+3p2iqz2e3cYnR50X59pJXd//QkgLqh rj2p3T3mzUViPTJLeIgba8aVD9QcugnVHfxJZvaM6OsEG7hd6sxFQX+jtjCTQjyr 3Q4IU1IP8vvcUyuuVopGavK8ZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAwFblRt b1PbX7Cr/13dgP0iNrB6MB8GA1UdIwQYMBaAFDlYx47bLL2ka2amfrk0qnvTw4Ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUZBNi8wNjE2RTg0MkJD OUIxMUVCOTZGMzVGNkJDNEY5QUUwMi9PVmpIanRzc3ZhUnJacVotdVRTcWU5UERo bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WakhqdHNzdmFSclpxWi11VFNxZTlQRGhsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkVGQTYvMDYxNkU4NDJCQzlCMTFFQjk2RjM1RjZCQzRGOUFFMDIvNzNGNURCODhC QzlDMTFFQjlBQzhFMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn25QwDQYJKoZIhvcNAQELBQADggEBAH7b9/pgr4DChMIK DzLMb1/CDRS0oV4I6p/XwLDarL84MvTHSZRdgB/N0a6qyDdsa/EXN7BwBuQP4JW3 4RXHUdnoQgf7EGJPWG5UpOt+vc7Hn+zRTaAVl+1ogsv4rU8WlQsKtfKU8QZCxYj4 rQ/QRKkUEj7uNDB7o9JdAg/Ou78LUxfTkIoq/aE5VIWakwdgatNKAyPQzvHLguQh pw5dNj+Bl/q/5mMkMS8rdKMOGrgwxl02QM+i9V8qmlpkVxDMZJJLryu7+4a/Qd6d Uu4wML31e1RB95LlZpevI/I66/Ydk0GSr73eeiCLnBf2WtZy5fslg4EoVcwufUJk eQUvd7A= -----END CERTIFICATE-----Generated at Thu Jul 3 11:22:36 2025 by rpki-client