$ rpki-client -vvf rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa File: 2D197F6E52E611F087152212C4F9AE02.roa (raw, json) Hash identifier: zVOqM+RoWZN/wECjUDwPT1Rps1jHUz0kOOj8NAvGv1U= Subject key identifier: 55:61:09:FE:41:87:9F:46:B5:A3:E8:CA:38:7A:04:80:D2:49:74:2D Certificate issuer: /CN=A913C0C6/serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B Certificate serial: 051A Authority key identifier: 00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa Signing time: Thu 26 Jun 2025 23:35:00 +0000 ROA not before: Thu 26 Jun 2025 23:35:00 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138521 IP address blocks: 103.127.162.0/23 maxlen: 24 2404:2440::/32 maxlen: 32 2404:2440:a0a0::/48 maxlen: 48 2404:2440:abcd::/48 maxlen: 48 2404:2440:b0b0::/48 maxlen: 48 2404:2440:beef::/48 maxlen: 48 2404:2440:c0c0::/48 maxlen: 48 2404:2440:cafe::/48 maxlen: 48 2404:2440:d0d0::/48 maxlen: 48 2404:2440:dada::/48 maxlen: 48 2404:2440:e0e0::/48 maxlen: 48 2404:2440:eeee::/48 maxlen: 48 2404:2440:f0f0::/48 maxlen: 48 2404:2440:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.crl rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C0C6, serialNumber=00334B8F218FA525339886C8FBC94093C88ED57B Validity Not Before: Jun 26 23:35:00 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=685dd924-a230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8f:a3:28:dd:7b:95:d5:f9:e9:63:d6:c4:a0: 14:3a:72:20:26:73:3b:b0:47:ce:fc:29:b2:36:a9: 3b:68:bf:b8:40:31:23:37:59:be:1d:db:86:28:1b: 8d:a1:b5:57:83:09:55:80:38:13:d5:a9:1d:e6:77: 84:57:57:72:bb:cb:cf:d4:6b:b6:d0:21:85:60:da: 49:05:68:a8:9f:89:8b:05:bc:ea:76:32:d1:13:4d: e9:87:c3:82:0d:55:0a:bf:d1:5b:50:a9:b7:78:a7: 0b:f1:c5:34:9f:04:5d:6f:8b:54:c6:33:59:27:d7: 73:8f:3c:b9:6b:1f:e4:f2:68:b7:00:26:04:1a:66: c7:2b:0f:05:7d:4c:8d:4f:35:a5:05:41:82:d5:49: ff:40:5a:f5:b5:45:1c:cc:c5:55:72:31:ec:84:dc: 4c:5d:c8:06:e3:68:78:b5:63:59:b3:a7:31:7d:3c: c3:2c:2d:74:d5:6a:03:15:65:d1:45:5e:1b:56:62: e4:8e:31:38:be:ac:8b:9f:f3:ca:fa:5c:79:96:ff: 2c:99:0c:6d:a0:52:71:4a:db:36:ee:2a:02:b1:0f: f5:91:bc:23:bd:61:e3:c6:8d:f4:67:92:d9:a5:08: 81:11:45:a0:2a:6a:9c:b6:3d:5b:34:b3:30:72:91: 88:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:61:09:FE:41:87:9F:46:B5:A3:E8:CA:38:7A:04:80:D2:49:74:2D X509v3 Authority Key Identifier: keyid:00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/2D197F6E52E611F087152212C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.162.0/23 IPv6: 2404:2440::/32 Signature Algorithm: sha256WithRSAEncryption 27:a1:96:d9:65:19:b3:62:4a:39:b2:ac:a6:e3:f3:e6:e9:d5: 2a:80:a3:9c:ba:a3:85:9a:48:c8:42:c8:dd:3a:6f:8b:d5:ee: b8:eb:31:c7:0e:e9:a1:a2:07:f4:13:fe:6d:0f:16:97:37:40: 82:d2:bf:76:14:6b:5d:e4:bc:0d:0f:ed:11:79:e4:db:7c:7f: e1:78:50:51:5b:a7:fe:27:f0:c4:bf:b7:60:4b:fb:94:92:9e: 21:40:38:c0:78:14:df:2e:2a:ca:d6:a4:7b:9a:ec:02:f3:f0: 8f:36:86:01:ef:73:44:6f:c9:00:82:c7:2f:ec:96:ce:d3:4d: 36:a2:ad:b0:b2:71:6d:2b:7e:fb:f1:cb:e0:18:97:28:cc:48: fa:b6:17:d3:94:15:7e:f0:fd:37:14:2f:67:d8:ff:22:56:13: 1d:e6:02:d8:fd:f8:f3:d4:95:a2:d0:eb:00:bf:61:4a:8b:38: 06:43:c9:75:61:f4:d6:2b:1b:bb:6a:35:3e:25:fd:70:a8:d2: a6:c6:b5:98:94:09:23:49:22:0a:9e:04:44:3c:27:95:e8:90: 43:75:a6:27:8f:4e:6b:07:60:8a:a4:54:e6:d2:4d:6d:d4:f6: 33:b5:0f:72:9b:3e:15:b8:18:7f:7e:f8:63:27:08:9e:38:a5: 68:c3:0c:fc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwQzYxMTAvBgNVBAUTKDAwMzM0QjhGMjE4RkE1MjUzMzk4ODZDOEZCQzk0MDkz Qzg4RUQ1N0IwHhcNMjUwNjI2MjMzNTAwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkZDkyNC1hMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxY+jKN17ldX56WPWxKAUOnIgJnM7sEfO/CmyNqk7aL+4QDEjN1m+HduGKBuN obVXgwlVgDgT1akd5neEV1dyu8vP1Gu20CGFYNpJBWion4mLBbzqdjLRE03ph8OC DVUKv9FbUKm3eKcL8cU0nwRdb4tUxjNZJ9dzjzy5ax/k8mi3ACYEGmbHKw8FfUyN TzWlBUGC1Un/QFr1tUUczMVVcjHshNxMXcgG42h4tWNZs6cxfTzDLC101WoDFWXR RV4bVmLkjjE4vqyLn/PK+lx5lv8smQxtoFJxSts27ioCsQ/1kbwjvWHjxo30Z5LZ pQiBEUWgKmqctj1bNLMwcpGI6wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFVhCf5B h59GtaPoyjh6BIDSSXQtMB8GA1UdIwQYMBaAFAAzS48hj6UlM5iGyPvJQJPIjtV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzBDNi8xODNGODRBRTIz NEIxMUVDQjhBMkRFN0VDNEY5QUUwMi9BRE5ManlHUHBTVXptSWJJLThsQWs4aU8x WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FETkxqeUdQcFNVem1JYkktOGxBazhpTzFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MwQzYvMTgzRjg0QUUyMzRCMTFFQ0I4QTJERTdFQzRGOUFFMDIvMkQxOTdGNkU1 MkU2MTFGMDg3MTUyMjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnf6IwDQQCAAIwBwMFACQEJEAwDQYJKoZIhvcNAQELBQAD ggEBACehltllGbNiSjmyrKbj8+bp1SqAo5y6o4WaSMhCyN06b4vV7rjrMccO6aGi B/QT/m0PFpc3QILSv3YUa13kvA0P7RF55Nt8f+F4UFFbp/4n8MS/t2BL+5SSniFA OMB4FN8uKsrWpHua7ALz8I82hgHvc0RvyQCCxy/sls7TTTairbCycW0rfvvxy+AY lyjMSPq2F9OUFX7w/TcUL2fY/yJWEx3mAtj9+PPUlaLQ6wC/YUqLOAZDyXVh9NYr G7tqNT4l/XCo0qbGtZiUCSNJIgqeBEQ8J5XokEN1piePTmsHYIqkVObSTW3U9jO1 D3KbPhW4GH9++GMnCJ44pWjDDPw= -----END CERTIFICATE-----Generated at Thu Jul 3 13:17:05 2025 by rpki-client