$ rpki-client -vvf rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/F843F2B4127E11EE9694E22BC4F9AE02.roa File: F843F2B4127E11EE9694E22BC4F9AE02.roa (raw, json) Hash identifier: qOmmIPq2Qh4GMQ9MZ82z7MtasQjOaJFStGSpMCV249M= Subject key identifier: 67:CF:AF:0D:CF:CF:82:83:F3:B8:9C:77:26:7B:74:AA:3F:E6:70:EC Certificate issuer: /CN=A913CDE5/serialNumber=F9941694B6A77B24C583FA78B527E54BB6D5BF9F Certificate serial: 0179 Authority key identifier: F9:94:16:94:B6:A7:7B:24:C5:83:FA:78:B5:27:E5:4B:B6:D5:BF:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/F843F2B4127E11EE9694E22BC4F9AE02.roa Signing time: Tue 17 Jun 2025 03:01:57 +0000 ROA not before: Tue 17 Jun 2025 03:01:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151422 IP address blocks: 103.228.38.0/23 maxlen: 23 103.228.38.0/24 maxlen: 24 103.228.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.crl rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CDE5, serialNumber=F9941694B6A77B24C583FA78B527E54BB6D5BF9F Validity Not Before: Jun 17 03:01:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6850daa5-b5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:49:0a:0f:f9:ce:d4:65:d0:98:1a:72:2b:ba: 31:0c:fc:ae:67:16:cb:12:83:0c:e2:84:c8:20:03: 62:ab:65:c3:3e:18:a4:1b:c9:3b:58:02:00:a1:58: c3:fd:ae:01:a3:02:ad:46:4f:03:e5:d2:d2:bd:04: 7f:f8:c8:13:a4:42:d6:56:da:64:d2:13:00:64:66: 7d:32:01:7e:ec:bf:a4:02:ad:67:75:1e:53:a9:c4: e2:83:f8:c7:b9:05:7f:fd:1d:ed:db:64:5a:03:f3: 5f:c0:39:88:e4:ff:7a:01:54:4a:19:1a:d0:a7:8e: ee:a7:b9:bc:80:a4:1b:1e:45:c8:38:28:98:30:76: 48:5a:1f:8e:96:ad:6c:dc:63:68:fb:78:ae:a7:92: 86:8a:ca:c8:2a:2e:70:2c:5b:3a:a4:1d:7d:d0:80: e4:58:04:8a:40:bd:04:98:d7:8d:a3:7a:0e:5d:9f: a1:e7:57:76:1d:35:9b:bb:f9:95:d9:02:01:7b:a3: 6d:90:f3:72:00:44:ff:06:2c:fb:45:00:1d:40:c7: ef:87:9b:3e:59:2f:af:44:28:13:24:ae:c2:e8:93: 7c:a0:a5:21:6f:8e:50:db:8d:70:87:05:1d:2d:1b: 1e:9d:dd:c9:97:27:4b:c9:ab:dd:d1:f2:52:ae:43: 66:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CF:AF:0D:CF:CF:82:83:F3:B8:9C:77:26:7B:74:AA:3F:E6:70:EC X509v3 Authority Key Identifier: keyid:F9:94:16:94:B6:A7:7B:24:C5:83:FA:78:B5:27:E5:4B:B6:D5:BF:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/F843F2B4127E11EE9694E22BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.38.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:2a:78:d9:d5:e9:3b:cd:76:d7:0f:67:f9:36:ba:57:ad:c3: aa:b2:95:e6:31:f0:86:b5:fd:8a:99:74:8a:84:07:fd:3f:7b: 3b:23:64:0f:02:6d:38:b2:99:95:2d:d4:84:aa:33:98:da:0a: fb:3b:2c:b3:0f:66:eb:27:42:96:22:d9:35:f6:3f:a1:cb:6b: ad:be:72:4e:74:ba:13:a6:59:9d:22:ba:d3:da:28:dd:2a:db: a5:88:7a:de:7a:5a:d5:3e:13:0f:e1:33:02:ca:f5:e8:1c:04: c6:80:03:0b:2e:8b:66:bc:2f:56:f2:94:d7:b1:e0:9d:b6:dc: b1:b9:b7:44:32:3d:55:42:8b:28:d7:a4:7a:71:67:e0:aa:b1: 00:2f:30:97:91:be:6b:41:87:85:d9:89:57:b2:09:11:80:50: 60:6e:55:35:ae:0e:33:a8:0a:da:c3:93:fa:e1:8d:58:a1:fe: 73:8c:28:c5:cf:4b:c9:b1:20:58:3d:9b:9a:de:c3:cc:d6:e1: b4:7c:56:6d:7d:3c:7f:ce:18:c0:5e:9f:a1:fe:9f:0e:04:0b: 83:22:20:5b:e9:c9:ef:83:24:f1:f4:70:46:4d:f3:3b:8c:a5: 42:61:78:4e:1d:e1:35:92:a0:e6:71:fa:3c:18:e4:c1:fd:71: a2:65:3d:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NERTUxMTAvBgNVBAUTKEY5OTQxNjk0QjZBNzdCMjRDNTgzRkE3OEI1MjdFNTRC QjZENUJGOUYwHhcNMjUwNjE3MDMwMTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwZGFhNS1iNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEkKD/nO1GXQmBpyK7oxDPyuZxbLEoMM4oTIIANiq2XDPhikG8k7WAIAoVjD /a4BowKtRk8D5dLSvQR/+MgTpELWVtpk0hMAZGZ9MgF+7L+kAq1ndR5TqcTig/jH uQV//R3t22RaA/NfwDmI5P96AVRKGRrQp47up7m8gKQbHkXIOCiYMHZIWh+Olq1s 3GNo+3iup5KGisrIKi5wLFs6pB190IDkWASKQL0EmNeNo3oOXZ+h51d2HTWbu/mV 2QIBe6NtkPNyAET/Biz7RQAdQMfvh5s+WS+vRCgTJK7C6JN8oKUhb45Q241whwUd LRsend3JlydLyavd0fJSrkNmSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGfPrw3P z4KD87icdyZ7dKo/5nDsMB8GA1UdIwQYMBaAFPmUFpS2p3skxYP6eLUn5Uu21b+f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0RFNS80OTkzQjdGQzEy N0IxMUVFQjI3RThDMkJDNEY5QUUwMi8tWlFXbExhbmV5VEZnX3A0dFNmbFM3YlZ2 NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1aUVdsTGFuZXlURmdfcDR0U2ZsUzdiVnY1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NERTUvNDk5M0I3RkMxMjdCMTFFRUIyN0U4QzJCQzRGOUFFMDIvRjg0M0YyQjQx MjdFMTFFRTk2OTRFMjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5CYwDQYJKoZIhvcNAQELBQADggEBAE8qeNnV6TvNdtcP Z/k2uletw6qyleYx8Ia1/YqZdIqEB/0/ezsjZA8CbTiymZUt1ISqM5jaCvs7LLMP ZusnQpYi2TX2P6HLa62+ck50uhOmWZ0iutPaKN0q26WIet56WtU+Ew/hMwLK9egc BMaAAwsui2a8L1bylNex4J223LG5t0QyPVVCiyjXpHpxZ+CqsQAvMJeRvmtBh4XZ iVeyCRGAUGBuVTWuDjOoCtrDk/rhjVih/nOMKMXPS8mxIFg9m5rew8zW4bR8Vm19 PH/OGMBen6H+nw4EC4MiIFvpye+DJPH0cEZN8zuMpUJheE4d4TWSoOZx+jwY5MH9 caJlPaU= -----END CERTIFICATE-----Generated at Sat Jul 5 05:39:22 2025 by rpki-client