$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/AB05727AFE8C11EE81FDAB6FC4F9AE02.roa File: AB05727AFE8C11EE81FDAB6FC4F9AE02.roa (raw, json) Hash identifier: kL+8sBegJ1XGnndePATDLqR1ij+F7xDhoLyLkaA0qyw= Subject key identifier: 65:5C:4A:C1:78:23:4A:FB:14:70:6F:40:6D:84:03:B1:94:E8:DB:C6 Certificate issuer: /CN=A914FA48/serialNumber=19794F3CAA375527BA0FD334480C7E0338E79E2A Certificate serial: DF Authority key identifier: 19:79:4F:3C:AA:37:55:27:BA:0F:D3:34:48:0C:7E:03:38:E7:9E:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GXlPPKo3VSe6D9M0SAx-Azjnnio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/AB05727AFE8C11EE81FDAB6FC4F9AE02.roa Signing time: Wed 25 Jun 2025 04:55:18 +0000 ROA not before: Wed 25 Jun 2025 04:55:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135650 IP address blocks: 103.24.78.0/23 maxlen: 23 103.24.78.0/24 maxlen: 24 103.24.79.0/24 maxlen: 24 2001:df3:b140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/GXlPPKo3VSe6D9M0SAx-Azjnnio.crl rsync://rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/GXlPPKo3VSe6D9M0SAx-Azjnnio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GXlPPKo3VSe6D9M0SAx-Azjnnio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA48, serialNumber=19794F3CAA375527BA0FD334480C7E0338E79E2A Validity Not Before: Jun 25 04:55:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685b8136-c0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:fe:03:ed:23:26:b2:83:b2:35:41:9e:d4: 92:31:f4:f5:9e:fe:b2:8f:dd:33:63:ce:a6:cc:55: 1c:82:1a:1b:fb:86:00:62:9d:e1:0d:59:12:3f:2c: 49:71:33:77:50:96:04:63:25:30:43:16:44:ed:69: 47:8c:fb:aa:10:cd:03:c0:50:a2:72:f5:6f:d2:ad: 88:06:43:cd:eb:9d:1a:68:5b:3b:b8:c6:e7:d0:66: 00:c2:79:da:77:ef:74:9a:93:09:51:62:a8:fe:31: fa:c4:c8:34:3d:23:2a:bd:71:3d:75:31:a5:72:4e: d0:7f:c7:65:9a:ca:87:0a:7d:da:f6:b1:e5:36:38: 15:7e:b6:af:02:6b:62:df:70:4a:fb:ed:a6:a6:a2: 71:9b:41:31:11:d3:07:27:e3:55:fe:0c:47:98:67: df:1f:15:65:06:e3:03:b1:a5:26:63:6b:d2:4d:ad: 0e:19:6d:5f:3b:ca:87:b2:fb:89:b6:a3:a5:23:aa: ec:07:69:6a:b5:0d:40:79:2b:96:48:9a:6a:1b:7a: d3:0f:61:da:f4:0c:b1:91:98:e5:37:68:62:1f:a9: 76:50:67:e5:06:90:64:b8:4e:b6:68:dd:23:b9:33: 26:f3:c1:22:be:68:00:31:1d:7c:52:e2:78:08:e0: d7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5C:4A:C1:78:23:4A:FB:14:70:6F:40:6D:84:03:B1:94:E8:DB:C6 X509v3 Authority Key Identifier: keyid:19:79:4F:3C:AA:37:55:27:BA:0F:D3:34:48:0C:7E:03:38:E7:9E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/GXlPPKo3VSe6D9M0SAx-Azjnnio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GXlPPKo3VSe6D9M0SAx-Azjnnio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA48/B9E2ACA0FE5411EE9619A314C4F9AE02/AB05727AFE8C11EE81FDAB6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.78.0/23 IPv6: 2001:df3:b140::/48 Signature Algorithm: sha256WithRSAEncryption 26:37:b6:0c:14:64:3a:6f:76:ef:39:9e:c4:72:c6:e9:8f:de: 92:8c:2a:20:23:37:d2:20:ba:f4:3e:ce:df:1f:49:e5:b5:66: 59:9e:e0:b4:42:10:cb:71:01:c2:f1:59:13:21:05:0f:78:61: 2d:28:4a:fe:3b:b9:2a:6b:86:4f:ad:5b:3b:b4:47:d8:90:fd: e7:2d:33:27:54:04:07:32:db:82:81:31:c6:46:8d:87:d6:f8: 2b:27:81:5f:1d:93:8a:17:1f:26:90:63:d2:06:4f:5f:f5:ee: a6:75:f0:bd:a2:1d:eb:c4:af:44:df:a7:42:0d:83:d8:7f:09: 7d:99:f1:d2:72:92:45:dc:09:83:e9:d6:5f:f7:3a:a0:59:01: f1:2c:0e:50:c5:2a:7b:a6:25:cc:5c:3b:e9:80:4a:24:79:a1: d7:a8:93:6d:d1:f8:3d:b8:6b:c2:28:20:cb:2b:cb:96:04:f9: 0d:e8:ae:69:e3:4e:0a:55:ef:d9:eb:72:f8:54:85:c4:54:cb: b9:4b:ee:47:03:fa:fc:d2:0e:09:f8:d1:29:10:59:af:db:65: 66:b6:d0:e2:5f:a0:85:96:b8:0e:bc:31:e9:c4:59:d2:62:3c: 68:7e:bd:a4:80:5d:3c:af:1c:c2:10:b5:2c:55:8f:b7:25:e3: 5b:e2:79:55 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZBNDgxMTAvBgNVBAUTKDE5Nzk0RjNDQUEzNzU1MjdCQTBGRDMzNDQ4MEM3RTAz MzhFNzlFMkEwHhcNMjUwNjI1MDQ1NTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViODEzNi1jMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKv+A+0jJrKDsjVBntSSMfT1nv6yj90zY86mzFUcghob+4YAYp3hDVkSPyxJ cTN3UJYEYyUwQxZE7WlHjPuqEM0DwFCicvVv0q2IBkPN650aaFs7uMbn0GYAwnna d+90mpMJUWKo/jH6xMg0PSMqvXE9dTGlck7Qf8dlmsqHCn3a9rHlNjgVfravAmti 33BK++2mpqJxm0ExEdMHJ+NV/gxHmGffHxVlBuMDsaUmY2vSTa0OGW1fO8qHsvuJ tqOlI6rsB2lqtQ1AeSuWSJpqG3rTD2Ha9AyxkZjlN2hiH6l2UGflBpBkuE62aN0j uTMm88EivmgAMR18UuJ4CODXHQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGVcSsF4 I0r7FHBvQG2EA7GU6NvGMB8GA1UdIwQYMBaAFBl5TzyqN1Unug/TNEgMfgM4554q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkE0OC9COUUyQUNBMEZF NTQxMUVFOTYxOUEzMTRDNEY5QUUwMi9HWGxQUEtvM1ZTZTZEOU0wU0F4LUF6am5u aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dYbFBQS28zVlNlNkQ5TTBTQXgtQXpqbm5pby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZBNDgvQjlFMkFDQTBGRTU0MTFFRTk2MTlBMzE0QzRGOUFFMDIvQUIwNTcyN0FG RThDMTFFRTgxRkRBQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGE4wDwQCAAIwCQMHACABDfOxQDANBgkqhkiG9w0BAQsF AAOCAQEAJje2DBRkOm927zmexHLG6Y/ekowqICM30iC69D7O3x9J5bVmWZ7gtEIQ y3EBwvFZEyEFD3hhLShK/ju5KmuGT61bO7RH2JD95y0zJ1QEBzLbgoExxkaNh9b4 KyeBXx2TihcfJpBj0gZPX/XupnXwvaId68SvRN+nQg2D2H8JfZnx0nKSRdwJg+nW X/c6oFkB8SwOUMUqe6YlzFw76YBKJHmh16iTbdH4PbhrwiggyyvLlgT5DeiuaeNO ClXv2ety+FSFxFTLuUvuRwP6/NIOCfjRKRBZr9tlZrbQ4l+ghZa4Drwx6cRZ0mI8 aH69pIBdPK8cwhC1LFWPtyXjW+J5VQ== -----END CERTIFICATE-----Generated at Wed Jul 2 07:07:43 2025 by rpki-client