$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/388342E06BB911F089CE7580C4F9AE02.roa File: 388342E06BB911F089CE7580C4F9AE02.roa (raw, json) Hash identifier: rOVEHU2UU8t52B+8KBLIZbGwXL9rBVgFqwmJKW2YWdA= Subject key identifier: 67:11:77:A6:79:C0:D0:D9:C8:3D:30:12:DB:46:16:D7:E3:A9:DA:6B Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 1039 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/388342E06BB911F089CE7580C4F9AE02.roa Signing time: Fri 22 Aug 2025 05:04:43 +0000 ROA not before: Fri 22 Aug 2025 05:04:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138981 IP address blocks: 103.138.24.0/22 maxlen: 22 103.138.24.0/24 maxlen: 24 2404:bec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4153 (0x1039) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: Aug 22 05:04:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a7fa6b-46fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:be:f3:d3:f2:ce:36:fa:6a:fb:df:40:02: 07:04:a2:80:62:00:83:a3:fb:e5:e6:7e:8f:bc:aa: 10:89:38:e8:b1:65:ce:d8:59:8b:ca:13:12:47:cc: f1:bc:58:31:06:8a:e4:dd:aa:de:9f:81:af:e9:d7: 96:00:b4:20:0e:73:db:40:cc:c7:ae:b0:e4:ad:34: 5f:f3:cf:24:c6:08:60:a6:34:20:d7:7f:56:c4:0b: f3:ee:e6:4a:bc:28:5a:ae:77:5b:98:4e:97:75:cb: 83:bf:cf:e0:f6:c9:87:4a:03:80:7a:24:18:3f:5e: 60:a4:bc:be:b5:0c:94:74:8a:2b:4f:0a:2d:3a:aa: 86:db:fd:84:b0:16:c5:e1:50:be:4a:21:06:e1:ee: f7:18:fd:59:62:25:17:6f:ec:f9:3a:9a:a2:e4:44: 20:cc:26:9c:2e:22:2b:ec:13:8b:a1:c7:56:75:24: c4:a8:5f:e8:d6:76:df:59:9e:6b:af:01:05:66:01: 9a:7b:40:71:c3:a7:82:48:c2:72:4d:fe:d5:8e:14: 64:e7:cb:f4:49:65:75:7c:df:dd:e0:4b:b1:a0:b9: bb:d9:c3:0c:43:68:f3:35:77:7c:56:02:b5:e8:bf: d5:31:44:62:fa:8f:e9:3f:28:97:9a:66:1a:1c:01: e3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:11:77:A6:79:C0:D0:D9:C8:3D:30:12:DB:46:16:D7:E3:A9:DA:6B X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/388342E06BB911F089CE7580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.24.0/22 IPv6: 2404:bec0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:53:f2:8c:3b:cb:5b:40:89:d4:82:25:0f:2f:0f:b1:c8:b1: 6c:2d:f3:9e:89:7e:c1:c0:bc:23:fc:77:3c:ec:54:19:1d:83: 34:f2:74:d5:3e:de:05:d7:03:85:50:42:c5:d4:3c:1f:53:c3: 5a:5d:b5:93:65:4a:a9:62:c3:6c:9f:61:0a:d5:21:97:d2:75: c6:ff:55:70:29:61:fa:d0:47:a4:78:25:b9:93:97:f3:98:06: e2:74:7e:fc:21:04:e3:c5:51:34:a3:10:42:63:00:ed:78:5c: 6c:ce:9b:e6:99:24:80:86:a9:08:59:2d:dd:ac:00:d1:b4:6a: 35:1e:2e:18:63:3b:b2:a3:d9:6f:43:61:64:dd:d3:c0:2b:cd: cf:d0:89:df:0b:fb:49:11:7d:47:30:07:86:3e:2e:8c:32:8f: 32:19:24:de:e9:7c:28:4a:5a:a7:23:2e:80:ac:bb:13:b1:a4: 76:9d:8e:a7:e1:00:f4:6c:70:92:b9:52:fd:8e:97:bf:9e:8c: cd:44:58:a9:54:4d:7f:67:95:c9:47:59:c4:3e:d4:42:3c:fa: 8d:9f:b8:93:b2:93:99:a9:01:c6:84:a4:fa:ee:3e:48:25:17: 91:fd:87:7d:b4:79:5d:a8:86:37:02:3a:b5:2b:f4:38:37:39: d2:19:1f:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwODIyMDUwNDQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE3ZmE2Yi00NmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmi+89Pyzjb6avvfQAIHBKKAYgCDo/vl5n6PvKoQiTjosWXO2FmLyhMSR8zx vFgxBork3aren4Gv6deWALQgDnPbQMzHrrDkrTRf888kxghgpjQg139WxAvz7uZK vCharndbmE6XdcuDv8/g9smHSgOAeiQYP15gpLy+tQyUdIorTwotOqqG2/2EsBbF 4VC+SiEG4e73GP1ZYiUXb+z5Opqi5EQgzCacLiIr7BOLocdWdSTEqF/o1nbfWZ5r rwEFZgGae0Bxw6eCSMJyTf7VjhRk58v0SWV1fN/d4EuxoLm72cMMQ2jzNXd8VgK1 6L/VMURi+o/pPyiXmmYaHAHjLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGcRd6Z5 wNDZyD0wEttGFtfjqdprMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvMzg4MzQyRTA2 QkI5MTFGMDg5Q0U3NTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnihgwDQQCAAIwBwMFACQEvsAwDQYJKoZIhvcNAQELBQAD ggEBAD9T8ow7y1tAidSCJQ8vD7HIsWwt856JfsHAvCP8dzzsVBkdgzTydNU+3gXX A4VQQsXUPB9Tw1pdtZNlSqliw2yfYQrVIZfSdcb/VXApYfrQR6R4JbmTl/OYBuJ0 fvwhBOPFUTSjEEJjAO14XGzOm+aZJICGqQhZLd2sANG0ajUeLhhjO7Kj2W9DYWTd 08Arzc/Qid8L+0kRfUcwB4Y+LowyjzIZJN7pfChKWqcjLoCsuxOxpHadjqfhAPRs cJK5Uv2Ol7+ejM1EWKlUTX9nlclHWcQ+1EI8+o2fuJOyk5mpAcaEpPruPkglF5H9 h320eV2ohjcCOrUr9Dg3OdIZH8w= -----END CERTIFICATE-----Generated at Sun Aug 24 08:28:20 2025 by rpki-client