$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa File: A999E39EC36C11EFAF838D35C4F9AE02.roa (raw, json) Hash identifier: 1KvDgGWuLyFCN6s+q1kiM6VlBFYXCDfUfEerU6uXVoQ= Subject key identifier: 1D:9B:4A:E8:28:7A:FC:9F:F4:E0:1B:C1:FF:C7:96:EF:88:B2:BB:08 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: 62 Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa Signing time: Fri 27 Jun 2025 07:21:11 +0000 ROA not before: Fri 27 Jun 2025 07:21:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140661 IP address blocks: 103.151.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D, serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Validity Not Before: Jun 27 07:21:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e4667-9468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:c9:be:c6:17:fc:af:c3:99:a5:44:b6:69: ee:55:a6:13:43:4e:eb:a4:d2:99:93:ed:ef:ef:e1: 9d:49:81:0a:f8:08:3b:cf:f6:4c:61:c8:d8:44:9d: 94:82:ed:24:0f:43:ff:5d:cf:8c:16:3a:52:33:74: 58:46:91:7a:4b:83:74:19:1d:de:4b:17:59:f5:75: 4b:b2:83:55:f0:ce:3e:fe:4a:e1:b1:31:47:10:0b: 55:a1:04:1e:f6:47:7c:dd:70:32:fc:d4:7f:39:a8: 13:62:9e:c4:c3:f3:39:65:69:0c:c3:48:19:8e:f9: 1d:90:97:47:86:8e:f5:23:3a:a8:cf:47:a7:4d:4e: d3:06:ba:59:08:6b:b3:c5:13:1d:09:4a:e2:e8:d1: 5d:e4:f4:e6:86:d7:9a:32:80:6f:98:db:a2:31:9e: 59:b6:d5:a2:51:77:5d:25:04:fd:ec:e0:60:d8:6f: d9:b3:9f:61:98:9c:4b:b9:df:53:59:11:ae:dd:1f: 48:20:7d:7b:ea:b7:51:88:2e:72:8e:f0:f0:07:75: 76:7d:b3:b2:48:01:74:07:6d:15:de:70:29:25:b5: 0b:48:cc:f9:50:ae:46:2f:00:24:4e:f8:4e:b4:d1: ae:b5:73:a9:41:fa:99:66:d3:72:57:f8:74:6b:3b: e1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9B:4A:E8:28:7A:FC:9F:F4:E0:1B:C1:FF:C7:96:EF:88:B2:BB:08 X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.115.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:25:82:78:60:59:5c:fc:06:9f:aa:2e:bc:f9:0a:7c:18:a2: e8:0b:3f:d2:18:61:31:9f:30:ef:6a:87:b9:3c:34:00:5a:c1: f1:8d:68:24:71:2e:82:a7:ec:ae:c2:31:44:73:36:8b:fb:3b: 51:7a:cc:bb:9b:d2:40:c9:40:51:4a:2d:63:bf:57:29:c7:f6: b0:94:b5:4a:37:52:0b:d7:9f:d9:f1:26:41:75:a4:a8:b7:d5: de:68:ce:47:62:e5:fc:8c:f3:89:43:d9:aa:d1:c5:f6:ab:b0: 2e:73:fd:30:5e:a6:ec:b1:09:6a:7e:21:80:ae:0c:d4:c7:fd: 7c:07:a2:98:66:1f:53:d4:11:fb:f4:54:93:82:66:6d:79:48: 7e:a6:65:c0:ad:2c:7a:57:81:cc:02:b2:e8:fc:4b:30:95:bf: 52:65:06:0b:29:57:59:f4:cd:c9:db:07:27:0a:7e:ed:c6:41: 5d:93:1c:46:48:d7:ff:63:24:78:ab:e0:fd:82:67:48:fb:95: e2:a1:9d:39:5f:1a:06:5a:e1:46:2c:79:f4:08:a9:e1:53:6b: 11:a1:b7:a2:be:62:a0:eb:af:3a:05:5a:f4:0e:27:5a:ad:82: 47:23:90:21:a0:c7:6e:7a:ba:cb:e0:0f:f3:bc:ca:0e:55:97: 08:b1:ab:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODU0RDExMC8GA1UEBRMoRDk1NjI5REU2MjQzOUJCMDFFQTQ3OEFDMTVDQTI2RTk5 NUE5Nzg2NDAeFw0yNTA2MjcwNzIxMTFaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWU0NjY3LTk0NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNRsm+xhf8r8OZpUS2ae5VphNDTuuk0pmT7e/v4Z1JgQr4CDvP9kxhyNhEnZSC 7SQPQ/9dz4wWOlIzdFhGkXpLg3QZHd5LF1n1dUuyg1Xwzj7+SuGxMUcQC1WhBB72 R3zdcDL81H85qBNinsTD8zllaQzDSBmO+R2Ql0eGjvUjOqjPR6dNTtMGulkIa7PF Ex0JSuLo0V3k9OaG15oygG+Y26Ixnlm21aJRd10lBP3s4GDYb9mzn2GYnEu531NZ Ea7dH0ggfXvqt1GILnKO8PAHdXZ9s7JIAXQHbRXecCkltQtIzPlQrkYvACRO+E60 0a61c6lB+plm03JX+HRrO+HlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHZtK6Ch6 /J/04BvB/8eW74iyuwgwHwYDVR0jBBgwFoAU2VYp3mJDm7AepHisFcom6ZWpeGQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4NTREL0U3QzhERDJFQzM2 QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVH US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlZZcDNtSkRtN0FlcEhpc0Zjb202WldwZUdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9FN0M4REQyRUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi9BOTk5RTM5RUMz NkMxMUVGQUY4MzhEMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeXczANBgkqhkiG9w0BAQsFAAOCAQEAnSWCeGBZXPwGn6ou vPkKfBii6As/0hhhMZ8w72qHuTw0AFrB8Y1oJHEugqfsrsIxRHM2i/s7UXrMu5vS QMlAUUotY79XKcf2sJS1SjdSC9ef2fEmQXWkqLfV3mjOR2Ll/IzziUPZqtHF9quw LnP9MF6m7LEJan4hgK4M1Mf9fAeimGYfU9QR+/RUk4JmbXlIfqZlwK0seleBzAKy 6PxLMJW/UmUGCylXWfTNydsHJwp+7cZBXZMcRkjX/2MkeKvg/YJnSPuV4qGdOV8a BlrhRix59Aip4VNrEaG3or5ioOuvOgVa9A4nWq2CRyOQIaDHbnq6y+AP87zKDlWX CLGr3A== -----END CERTIFICATE-----Generated at Thu Jul 3 15:04:54 2025 by rpki-client