$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa File: 71B7688645AB11F0949A471EC4F9AE02.roa (raw, json) Hash identifier: OOybTQy1tXbxj/OFzkMaOGN0e7LlqdktJQlDDwMZpUE= Subject key identifier: 0B:2F:30:3B:1F:D5:9C:05:D9:C3:99:BF:BF:27:20:EF:C3:92:4F:4B Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 37 Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa Signing time: Wed 17 Sep 2025 00:56:44 +0000 ROA not before: Wed 17 Sep 2025 00:56:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137399 IP address blocks: 103.107.128.0/22 maxlen: 24 2001:df3:d500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Sep 17 00:56:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ca074c-905d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ec:af:3f:cf:ef:8f:2c:3f:24:c4:f9:43:d6: 62:ae:f6:c0:40:e8:ce:98:8d:d1:ae:67:8e:52:58: 3d:e2:83:c0:ac:c6:f6:29:62:da:80:f2:bd:76:93: dc:7c:ef:1c:d8:18:9c:e0:45:7b:80:c7:27:47:18: 5b:bc:c2:92:66:99:b0:09:5d:6e:30:ae:cf:58:4e: 09:64:6b:52:33:01:ea:fc:34:fa:5a:b5:bc:5d:02: 0c:cb:d2:ed:ba:75:10:c3:18:c4:e3:58:e5:79:05: ce:80:ce:17:54:7f:23:85:30:f2:bb:4f:ed:a7:00: dd:79:ae:3b:f6:fb:64:96:43:10:7d:bd:ef:ff:bf: a3:f9:fc:58:d2:1b:e0:00:6e:b6:76:49:05:51:10: 0e:c8:15:a2:2e:e3:90:da:a7:99:af:9d:a3:86:c9: 28:7e:8a:55:71:27:1d:27:c7:65:7d:a3:da:13:2d: 28:7a:86:9d:47:2f:e4:15:4b:02:92:f6:7c:49:39: 5e:6d:73:27:b1:3e:a6:31:d5:70:a2:b7:b2:96:f5: 9f:a8:b9:03:ec:e5:68:cc:91:0e:d5:26:a6:d6:55: d0:36:06:9c:a6:2e:a5:a2:30:ec:30:0f:3e:42:6d: 8b:a1:84:86:55:49:c9:72:2b:1f:e6:5a:19:75:2b: 4f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2F:30:3B:1F:D5:9C:05:D9:C3:99:BF:BF:27:20:EF:C3:92:4F:4B X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.128.0/22 IPv6: 2001:df3:d500::/48 Signature Algorithm: sha256WithRSAEncryption 2a:f6:80:ae:94:73:84:7b:77:62:01:d9:0c:a9:31:1a:9a:e7: 34:86:8a:ef:86:17:b3:48:07:7b:78:03:24:a1:48:1c:64:a3: 3f:79:47:a3:ae:f0:09:22:82:e2:93:06:97:8d:97:d6:3b:08: af:63:24:ba:2e:be:8e:5d:3f:d9:c7:63:2a:a8:4a:ca:4e:5f: ea:53:4e:f8:7d:8a:88:b6:88:b7:5a:98:23:3b:a8:cf:4f:8e: b3:9d:11:53:37:ad:9d:1e:00:42:9a:ef:12:14:54:64:ea:ed: b4:cd:1f:a3:00:ce:1e:b2:74:68:ff:24:0a:09:2e:84:5a:17: cb:6c:e6:92:6a:90:61:a7:fc:bc:c2:1a:7b:2b:21:2b:6f:12: 4c:14:69:4c:cb:80:98:d1:6f:aa:d8:4e:f0:56:48:0d:79:15: 90:fb:68:a1:8a:f0:36:da:83:20:ae:d8:c4:94:73:aa:2d:b4: 28:f9:35:62:a4:49:93:d3:90:3c:77:e7:39:02:4e:7d:7d:85: f1:39:70:f5:91:bb:95:28:37:52:84:f3:61:e1:9b:3a:47:89: 61:0c:99:12:33:b8:7d:47:69:57:0e:80:06:2e:2a:d2:97:bf: f3:bb:07:f8:77:ef:61:a7:a0:1d:e8:1b:31:4a:c5:4b:97:1e: 6f:c0:48:83 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTA5MTcwMDU2NDRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2EwNzRjLTkwNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+7K8/z++PLD8kxPlD1mKu9sBA6M6YjdGuZ45SWD3ig8CsxvYpYtqA8r12k9x8 7xzYGJzgRXuAxydHGFu8wpJmmbAJXW4wrs9YTglka1IzAer8NPpatbxdAgzL0u26 dRDDGMTjWOV5Bc6AzhdUfyOFMPK7T+2nAN15rjv2+2SWQxB9ve//v6P5/FjSG+AA brZ2SQVREA7IFaIu45Dap5mvnaOGySh+ilVxJx0nx2V9o9oTLSh6hp1HL+QVSwKS 9nxJOV5tcyexPqYx1XCit7KW9Z+ouQPs5WjMkQ7VJqbWVdA2BpymLqWiMOwwDz5C bYuhhIZVSclyKx/mWhl1K0/VAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUCy8wOx/V nAXZw5m/vycg78OST0swHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkEyNy9FQTRFNjY5QzQ1OEMxMUYwQjJCRUI2NERDNEY5QUUwMi83MUI3Njg4NjQ1 QUIxMUYwOTQ5QTQ3MUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAmdrgDAPBAIAAjAJAwcAIAEN89UAMA0GCSqGSIb3DQEBCwUA A4IBAQAq9oCulHOEe3diAdkMqTEamuc0horvhhezSAd7eAMkoUgcZKM/eUejrvAJ IoLikwaXjZfWOwivYyS6Lr6OXT/Zx2MqqErKTl/qU074fYqItoi3WpgjO6jPT46z nRFTN62dHgBCmu8SFFRk6u20zR+jAM4esnRo/yQKCS6EWhfLbOaSapBhp/y8whp7 KyErbxJMFGlMy4CY0W+q2E7wVkgNeRWQ+2ihivA22oMgrtjElHOqLbQo+TVipEmT 05A8d+c5Ak59fYXxOXD1kbuVKDdShPNh4Zs6R4lhDJkSM7h9R2lXDoAGLirSl7/z uwf4d+9hp6Ad6BsxSsVLlx5vwEiD -----END CERTIFICATE-----Generated at Mon Oct 20 22:44:18 2025 by rpki-client