$ rpki-client -vvf rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa File: 6A8E3C9474A811EFA3123A41C4F9AE02.roa (raw, json) Hash identifier: 3DRrxdG8LfKAYdtHGcco//4+Q6X+ndXhUkgJbiWj/MI= Subject key identifier: 63:83:C4:4C:7A:1F:EF:B6:CD:E9:AB:96:E5:04:8B:90:B9:DF:78:59 Certificate issuer: /CN=A912F515/serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Certificate serial: 9D Authority key identifier: FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa Signing time: Thu 03 Jul 2025 06:41:57 +0000 ROA not before: Thu 03 Jul 2025 06:41:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132300 IP address blocks: 45.121.60.0/24 maxlen: 24 45.121.61.0/24 maxlen: 24 45.121.62.0/24 maxlen: 24 45.121.63.0/24 maxlen: 24 103.29.188.0/24 maxlen: 24 103.29.189.0/24 maxlen: 24 103.29.190.0/24 maxlen: 24 103.29.191.0/24 maxlen: 24 183.90.168.0/22 maxlen: 22 183.90.168.0/24 maxlen: 24 183.90.169.0/24 maxlen: 24 183.90.170.0/24 maxlen: 24 183.90.171.0/24 maxlen: 24 183.90.172.0/23 maxlen: 24 183.90.174.0/24 maxlen: 24 183.90.175.0/24 maxlen: 24 202.129.205.0/24 maxlen: 24 202.129.206.0/24 maxlen: 24 202.129.207.0/24 maxlen: 24 2406:7900:7226::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F515, serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Validity Not Before: Jul 3 06:41:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68662635-cc88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2a:1f:42:53:c4:d9:fa:f0:c6:f5:55:65:ac: c7:6f:53:a9:b6:21:b2:51:9b:e1:1e:57:9e:d8:54: ce:7c:1a:27:e2:d3:2b:e0:fd:89:d5:3e:a3:a1:c1: a7:42:6c:6e:2b:64:76:76:7c:67:01:c1:25:be:03: 63:c6:f7:86:4a:01:ab:b3:34:0c:e8:30:a1:a3:cc: 7f:1a:3c:2c:f2:dd:ec:77:2e:54:fb:e0:30:21:24: 80:33:29:55:21:50:da:b3:8a:96:98:0f:c0:0f:0a: 51:08:f4:07:dc:09:c0:6e:2a:2f:ef:18:43:2f:9b: 1c:8c:4d:95:bc:f7:75:58:a3:6e:89:61:24:d6:2c: 7c:70:32:03:41:bc:4b:a8:35:44:36:88:fa:cb:80: 03:32:d6:42:98:d0:f3:bd:49:19:00:20:66:42:6c: 36:57:36:d1:b4:05:4e:f9:a5:46:b0:80:3e:82:7e: 15:50:1d:ba:82:15:35:7b:17:f0:5f:0a:5b:5f:32: 00:88:c6:37:60:7b:6e:9a:7e:a9:58:a9:46:fe:be: d8:73:e5:80:78:df:87:6a:24:33:5c:5f:bb:6e:5e: 76:4b:e0:a8:47:35:9c:e3:88:4f:e2:c1:1e:e5:24: 6e:23:2b:90:b2:4a:59:57:26:dd:b9:05:55:80:e9: ac:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:83:C4:4C:7A:1F:EF:B6:CD:E9:AB:96:E5:04:8B:90:B9:DF:78:59 X509v3 Authority Key Identifier: keyid:FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.60.0/22 103.29.188.0/22 183.90.168.0/21 202.129.205.0-202.129.207.255 IPv6: 2406:7900:7226::/48 Signature Algorithm: sha256WithRSAEncryption 33:f5:5e:6e:f9:9c:ce:61:e6:b1:46:20:ad:d9:ab:a6:f4:ff: ce:c8:bc:61:ba:4d:3b:f3:d6:4a:6a:d2:33:73:4c:d6:f6:a7: 07:91:e5:39:a9:67:18:a9:ce:04:35:c1:92:94:9a:59:13:db: 46:86:ed:3b:4b:c1:26:8e:e6:cf:88:37:b2:44:56:3b:44:16: a5:76:af:00:96:c0:e9:a4:be:61:35:e5:cb:58:c0:4b:94:1f: 89:de:6e:03:ba:54:b4:c2:0c:02:6c:77:98:f9:9e:2a:01:6a: e2:db:4c:7c:e6:2e:cb:1a:8a:9f:60:21:e9:dc:1d:81:5b:9d: 62:52:ce:6d:62:fb:dd:6d:b4:48:5c:52:19:b3:20:02:66:d9: fa:7e:05:fa:77:13:51:6f:91:5a:bb:8a:fa:a8:44:fe:04:f7: 75:ba:4d:e3:53:37:39:41:5b:cd:ab:99:64:d3:ee:32:6f:e8: 2d:62:1e:e1:4b:46:6e:da:f9:93:91:7d:f3:85:b1:5e:50:71: e1:90:3a:4b:42:36:11:1b:6c:1b:5f:fb:b4:31:86:ff:c3:61: 50:0d:4d:9d:42:96:10:34:6a:8a:3e:0b:3f:c1:79:f7:12:9f: 9e:8f:6b:14:09:83:b2:aa:4d:30:33:0d:8e:58:bf:b5:9d:2b: 59:8c:bb:46 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MTUxMTAvBgNVBAUTKEZCNUFDRkJDRjlGQ0VGMDM0QjhBOTNCRDMxOUU2MjA0 NDJENjY2N0YwHhcNMjUwNzAzMDY0MTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MjYzNS1jYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSofQlPE2frwxvVVZazHb1OptiGyUZvhHlee2FTOfBon4tMr4P2J1T6jocGn QmxuK2R2dnxnAcElvgNjxveGSgGrszQM6DCho8x/Gjws8t3sdy5U++AwISSAMylV IVDas4qWmA/ADwpRCPQH3AnAbiov7xhDL5scjE2VvPd1WKNuiWEk1ix8cDIDQbxL qDVENoj6y4ADMtZCmNDzvUkZACBmQmw2VzbRtAVO+aVGsIA+gn4VUB26ghU1exfw XwpbXzIAiMY3YHtumn6pWKlG/r7Yc+WAeN+HaiQzXF+7bl52S+CoRzWc44hP4sEe 5SRuIyuQskpZVybduQVVgOmsPwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFGODxEx6 H++2zemrluUEi5C533hZMB8GA1UdIwQYMBaAFPtaz7z5/O8DS4qTvTGeYgRC1mZ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUxNS8zRDNDQTMwODc0 QTcxMUVGOEVBMkM1M0RDNEY5QUUwMi8tMXJQdlBuODd3TkxpcE85TVo1aUJFTFda bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0xclB2UG44N3dOTGlwTzlNWjVpQkVMV1puOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MTUvM0QzQ0EzMDg3NEE3MTFFRjhFQTJDNTNEQzRGOUFFMDIvNkE4RTNDOTQ3 NEE4MTFFRkEzMTIzQTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MCYEAgABMCADBAIteTwDBAJnHbwDBAO3WqgwDAMEAMqBzQMEBMqBwDAPBAIA AjAJAwcAJAZ5AHImMA0GCSqGSIb3DQEBCwUAA4IBAQAz9V5u+ZzOYeaxRiCt2aum 9P/OyLxhuk0789ZKatIzc0zW9qcHkeU5qWcYqc4ENcGSlJpZE9tGhu07S8EmjubP iDeyRFY7RBaldq8AlsDppL5hNeXLWMBLlB+J3m4DulS0wgwCbHeY+Z4qAWri20x8 5i7LGoqfYCHp3B2BW51iUs5tYvvdbbRIXFIZsyACZtn6fgX6dxNRb5Fau4r6qET+ BPd1uk3jUzc5QVvNq5lk0+4yb+gtYh7hS0Zu2vmTkX3zhbFeUHHhkDpLQjYRG2wb X/u0MYb/w2FQDU2dQpYQNGqKPgs/wXn3Ep+ej2sUCYOyqk0wMw2OWL+1nStZjLtG -----END CERTIFICATE-----Generated at Fri Jul 4 07:58:39 2025 by rpki-client