$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F814A546C01411EA912AC365C4F9AE02.roa File: F814A546C01411EA912AC365C4F9AE02.roa (raw, json) Hash identifier: /CldUEY4cGDwhLiLYXGQ01djQa6ApY49jgcW3InFkyE= Subject key identifier: 66:32:3A:8E:76:B6:8A:19:3F:40:32:83:A6:47:D4:BF:27:84:F8:F4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 08B5 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F814A546C01411EA912AC365C4F9AE02.roa Signing time: Fri 20 Jun 2025 21:18:33 +0000 ROA not before: Fri 20 Jun 2025 21:18:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.16.56.0/24 maxlen: 24 103.16.58.0/24 maxlen: 24 103.16.59.0/24 maxlen: 24 103.16.101.0/24 maxlen: 24 150.242.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2229 (0x8b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Jun 20 21:18:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6855d029-2e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:80:15:26:3c:89:1e:a0:53:b3:a0:7f:90:23: f0:97:fc:5d:e9:b7:be:f7:32:93:cf:48:3c:06:f7: 00:9a:de:35:fa:4a:a2:13:e2:37:78:14:6a:16:f1: 28:d3:ce:cc:74:6a:82:e1:75:87:67:97:ed:96:ed: 6b:43:b1:61:87:9f:04:b5:dc:a2:3e:02:64:07:7f: d2:fd:27:a8:04:53:39:8c:4c:8e:59:de:09:af:d5: 10:01:7a:66:e2:a6:5e:5e:f4:1f:88:20:9c:c2:e6: b9:62:00:87:e9:d0:52:ff:ac:95:bb:6c:0b:83:98: 3e:73:a1:bb:9b:9b:c1:73:85:8a:54:c7:58:11:a7: 06:96:7a:b2:7d:3a:ae:bd:9b:0c:c0:47:85:17:35: 83:e9:64:dd:aa:38:ab:aa:cb:f9:93:4c:a7:a8:11: 86:48:58:79:8e:f6:48:20:11:bd:09:4d:d4:46:ea: 8e:7f:ad:aa:e2:4c:11:78:f6:3e:01:38:0c:cc:f8: 35:fc:f3:a1:c4:77:bb:14:e0:2c:2b:bc:7e:ec:c4: 30:c3:1b:19:25:b6:9e:b1:67:c0:c3:8e:2d:d0:eb: 46:54:a5:0e:bc:95:59:6e:e9:f0:3c:52:b6:f3:52: b6:27:35:da:d8:ca:38:15:77:a2:92:ae:05:59:26: 43:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:32:3A:8E:76:B6:8A:19:3F:40:32:83:A6:47:D4:BF:27:84:F8:F4 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F814A546C01411EA912AC365C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.56.0/24 103.16.58.0/23 103.16.101.0/24 150.242.68.0/24 Signature Algorithm: sha256WithRSAEncryption 40:d4:1e:51:e4:0c:43:2a:f3:7c:78:af:5c:af:c7:69:b0:31: f9:18:28:c5:19:39:a8:bb:1c:1b:22:bf:6a:66:e5:b7:83:4d: ee:39:63:c8:20:0a:17:f4:f9:93:40:2a:43:e6:76:f8:09:c3: 4f:dc:77:a0:63:f5:19:17:18:82:04:4a:55:30:1c:f2:7f:57: 4e:a6:45:f6:9c:fc:9b:74:93:fa:5d:dd:fe:25:62:3b:a1:d1: 4f:80:b6:b3:f6:a1:5f:38:58:fe:7d:ee:71:49:19:3c:b0:5c: 20:f3:17:ca:de:06:df:fa:2d:d0:be:d5:30:21:bd:d2:a7:1e: ca:a4:99:e5:55:e1:2b:63:14:eb:4b:b7:1d:82:51:4e:63:6f: c4:f3:5d:4f:39:06:8a:a5:bb:64:39:d8:7c:43:47:6d:80:c1: 38:71:fb:5c:9c:50:a9:ee:46:a5:00:ba:69:0c:74:70:2c:21: 1c:49:47:d4:7e:65:fe:92:b3:68:ec:80:1d:eb:e2:4d:61:59: 5f:75:eb:19:ed:e2:e2:3f:cc:91:ee:2d:49:00:ef:35:05:aa: 17:26:6f:1f:83:e2:b0:69:c0:ca:a6:97:00:7e:38:f4:66:e1: 78:93:76:b8:4f:80:b7:2c:2b:3c:4a:ac:9e:54:f5:aa:02:5b: ad:c0:50:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUwNjIwMjExODMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1ZDAyOS0yZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoAVJjyJHqBTs6B/kCPwl/xd6be+9zKTz0g8BvcAmt41+kqiE+I3eBRqFvEo 087MdGqC4XWHZ5ftlu1rQ7Fhh58EtdyiPgJkB3/S/SeoBFM5jEyOWd4Jr9UQAXpm 4qZeXvQfiCCcwua5YgCH6dBS/6yVu2wLg5g+c6G7m5vBc4WKVMdYEacGlnqyfTqu vZsMwEeFFzWD6WTdqjirqsv5k0ynqBGGSFh5jvZIIBG9CU3URuqOf62q4kwRePY+ ATgMzPg1/POhxHe7FOAsK7x+7MQwwxsZJbaesWfAw44t0OtGVKUOvJVZbunwPFK2 81K2JzXa2Mo4FXeikq4FWSZDqQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFGYyOo52 tooZP0Ayg6ZH1L8nhPj0MB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE2NEYvM0M5RTJCNUNDMDE0MTFFQTgxNjg5MDY1QzRGOUFFMDIvRjgxNEE1NDZD MDE0MTFFQTkxMkFDMzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnEDgDBAFnEDoDBABnEGUDBACW8kQwDQYJKoZIhvcNAQEL BQADggEBAEDUHlHkDEMq83x4r1yvx2mwMfkYKMUZOai7HBsiv2pm5beDTe45Y8gg Chf0+ZNAKkPmdvgJw0/cd6Bj9RkXGIIESlUwHPJ/V06mRfac/Jt0k/pd3f4lYjuh 0U+AtrP2oV84WP597nFJGTywXCDzF8reBt/6LdC+1TAhvdKnHsqkmeVV4StjFOtL tx2CUU5jb8TzXU85Boqlu2Q52HxDR22AwThx+1ycUKnuRqUAumkMdHAsIRxJR9R+ Zf6Ss2jsgB3r4k1hWV916xnt4uI/zJHuLUkA7zUFqhcmbx+D4rBpwMqmlwB+OPRm 4XiTdrhPgLcsKzxKrJ5U9aoCW63AUKE= -----END CERTIFICATE-----Generated at Fri Jul 4 02:57:06 2025 by rpki-client