$ rpki-client -vvf rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa File: 2D197F6E52E611F087152212C4F9AE02.roa (raw, json) Hash identifier: CiJQQxhDCCCQD8vktVOuYMhsjAd42UiB+ub/sDeCltU= Subject key identifier: E5:0C:D9:FC:3B:91:B7:85:20:B2:60:A9:4F:DB:EA:D7:EB:9B:84:79 Certificate issuer: /CN=A913C0C6/serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B Certificate serial: 053B Authority key identifier: 00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa Signing time: Thu 21 Aug 2025 00:05:53 +0000 ROA not before: Thu 21 Aug 2025 00:05:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138521 IP address blocks: 103.127.162.0/23 maxlen: 24 2404:2440::/32 maxlen: 32 2404:2440:a0a0::/48 maxlen: 48 2404:2440:abcd::/48 maxlen: 48 2404:2440:b0b0::/48 maxlen: 48 2404:2440:beef::/48 maxlen: 48 2404:2440:c0c0::/48 maxlen: 48 2404:2440:cafe::/48 maxlen: 48 2404:2440:d0d0::/48 maxlen: 48 2404:2440:dada::/48 maxlen: 48 2404:2440:e0e0::/48 maxlen: 48 2404:2440:eeee::/48 maxlen: 48 2404:2440:f0f0::/48 maxlen: 48 2404:2440:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.crl rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C0C6, serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B Validity Not Before: Aug 21 00:05:53 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68a662e1-21ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:d0:ab:3e:b8:50:e5:a1:bb:04:d1:d2:85: e4:59:7b:08:9c:7a:a9:51:d3:ef:68:40:f0:0d:88: ab:3b:66:4b:6f:4e:e7:a9:19:04:ce:19:3f:3c:26: 24:27:0b:7a:63:62:25:a8:69:68:df:7b:95:2e:64: 81:cb:52:c7:43:f1:c8:fd:c0:3c:82:6a:57:30:5c: 37:fa:27:db:ba:93:7b:21:af:b3:12:d0:e3:d7:83: 1c:f5:c3:6c:3e:ae:7b:0a:c5:c4:2b:1d:c6:63:53: 0a:93:7d:74:d1:3b:75:15:a6:bb:aa:60:49:28:87: a5:da:26:31:7b:b8:fa:87:53:b5:d7:ac:de:ab:65: 89:c3:ef:fc:06:63:8f:03:2e:b3:c1:f0:6c:f5:86: 0f:36:16:f9:e8:b8:ac:69:bd:51:2c:cb:be:64:b7: 6f:a4:d2:35:28:66:83:ad:a4:fe:7a:b3:46:f3:a3: 17:0f:98:bf:32:d6:b0:de:a4:83:8d:96:68:ce:95: 09:02:05:aa:f9:55:e2:a0:a9:34:13:78:ac:61:76: ce:f2:fd:ea:3b:81:04:e6:d2:f8:ca:fd:0c:cf:86: 2c:72:95:bd:8a:da:52:a7:35:ac:17:8c:58:e2:94: ef:0e:f2:f8:86:e6:f2:c9:09:19:d4:0c:a1:db:75: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:0C:D9:FC:3B:91:B7:85:20:B2:60:A9:4F:DB:EA:D7:EB:9B:84:79 X509v3 Authority Key Identifier: keyid:00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.162.0/23 IPv6: 2404:2440::/32 Signature Algorithm: sha256WithRSAEncryption 0c:d8:2d:a9:57:ea:05:48:4f:26:72:da:5a:07:12:94:5d:54: a9:ad:bf:46:90:10:2f:80:02:6a:a2:63:b3:88:a3:68:95:9c: be:c8:b3:18:8e:1e:b5:6c:e8:dd:1c:9a:79:0a:1e:b0:56:bd: 66:8e:69:3d:52:52:7e:d2:52:58:a3:18:53:a7:bd:df:5f:da: d8:91:31:c0:90:3c:14:90:88:8f:35:ad:31:02:f3:41:73:84: 29:2b:d6:fc:29:8f:34:63:f0:9b:6c:a4:0c:9e:16:38:35:c7: 2c:32:1a:a9:af:be:69:8c:f3:29:b5:02:04:0b:5a:62:c6:ce: ee:2d:19:e6:7e:7d:65:a6:f2:b7:95:87:1c:91:8d:81:d6:58: 45:96:1e:04:68:d4:8e:6a:ac:81:1b:35:0c:fc:46:c1:8e:3c: 4c:ed:6f:5c:d1:d1:a3:04:5d:f7:6c:42:32:70:ac:65:8a:fa: 1b:91:69:de:c0:db:81:94:fd:c9:b3:3e:a4:16:5c:1f:b9:34: 47:b9:50:fd:70:40:ec:9f:c3:88:a1:9c:54:16:ab:20:9b:bb: b4:93:0a:9a:8e:6d:c3:e5:33:b6:0b:58:e5:5b:60:87:bb:de: ab:b7:60:06:8b:5b:68:7b:81:03:76:cb:e7:b0:98:12:30:4f: b3:fd:72:50 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwQzYxMTAvBgNVBAUTKDAwMzM0QjhGMjE4RkE1MjUzMzk4ODZDOEZCQzk0MDkz Qzg4RUQ1N0IwHhcNMjUwODIxMDAwNTUzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2NjJlMS0yMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kfQqz64UOWhuwTR0oXkWXsInHqpUdPvaEDwDYirO2ZLb07nqRkEzhk/PCYk Jwt6Y2IlqGlo33uVLmSBy1LHQ/HI/cA8gmpXMFw3+ifbupN7Ia+zEtDj14Mc9cNs Pq57CsXEKx3GY1MKk3100Tt1Faa7qmBJKIel2iYxe7j6h1O116zeq2WJw+/8BmOP Ay6zwfBs9YYPNhb56Lisab1RLMu+ZLdvpNI1KGaDraT+erNG86MXD5i/Mtaw3qSD jZZozpUJAgWq+VXioKk0E3isYXbO8v3qO4EE5tL4yv0Mz4YscpW9itpSpzWsF4xY 4pTvDvL4hubyyQkZ1Ayh23UzBwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOUM2fw7 kbeFILJgqU/b6tfrm4R5MB8GA1UdIwQYMBaAFAAzS48hj6UlM5iGyPvJQJPIjtV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzBDNi8xODNGODRBRTIz NEIxMUVDQjhBMkRFN0VDNEY5QUUwMi9BRE5ManlHUHBTVXptSWJJLThsQWs4aU8x WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FETkxqeUdQcFNVem1JYkktOGxBazhpTzFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwQzYvMTgzRjg0QUUyMzRCMTFFQ0I4QTJERTdFQzRGOUFFMDIvMkQxOTdGNkU1 MkU2MTFGMDg3MTUyMjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnf6IwDQQCAAIwBwMFACQEJEAwDQYJKoZIhvcNAQELBQAD ggEBAAzYLalX6gVITyZy2loHEpRdVKmtv0aQEC+AAmqiY7OIo2iVnL7IsxiOHrVs 6N0cmnkKHrBWvWaOaT1SUn7SUlijGFOnvd9f2tiRMcCQPBSQiI81rTEC80FzhCkr 1vwpjzRj8JtspAyeFjg1xywyGqmvvmmM8ym1AgQLWmLGzu4tGeZ+fWWm8reVhxyR jYHWWEWWHgRo1I5qrIEbNQz8RsGOPEztb1zR0aMEXfdsQjJwrGWK+huRad7A24GU /cmzPqQWXB+5NEe5UP1wQOyfw4ihnFQWqyCbu7STCpqObcPlM7YLWOVbYIe73qu3 YAaLW2h7gQN2y+ewmBIwT7P9clA= -----END CERTIFICATE-----Generated at Sun Aug 24 04:28:40 2025 by rpki-client