$ rpki-client -vvf rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa File: 71C4845EDD9A11EF8CFB3566C4F9AE02.roa (raw, json) Hash identifier: q8qRZFfAVzgIauqz1ihRf+xBJuLgyAO5SwoBoXxRRHU= Subject key identifier: 55:3B:77:9C:1A:DC:11:93:A3:B0:38:A9:C7:64:9F:19:5E:98:E3:4D Certificate issuer: /CN=A9153E2E/serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Certificate serial: 6C Authority key identifier: 25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa Signing time: Fri 15 Aug 2025 07:45:15 +0000 ROA not before: Fri 15 Aug 2025 07:45:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45337 IP address blocks: 103.11.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153E2E, serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Validity Not Before: Aug 15 07:45:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=689ee58a-948e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:36:4e:68:03:60:56:c9:16:89:81:26:29:dd: ee:86:ca:8c:6b:37:5b:a9:d6:6b:b8:44:8f:0c:8c: 89:d8:00:08:41:ea:1d:2f:40:c1:e6:e5:bd:ee:31: 3d:64:3d:1e:e3:ae:ca:e6:11:c5:20:b8:87:67:7f: 42:df:38:32:7c:f4:87:40:f0:d2:83:32:bc:cb:ae: 80:3c:f0:d1:ee:0c:0d:1f:50:02:94:c8:0b:51:af: a5:2b:6c:fe:f2:7c:f7:c9:dd:11:06:6b:ea:da:e4: e9:ef:dd:53:04:f2:f0:03:ee:2c:61:db:e3:e3:b2: 20:76:10:ed:5d:36:5d:23:94:b0:6c:c7:db:9f:0c: 55:bc:61:5f:96:94:86:0a:a2:a2:31:09:cd:87:db: 54:12:24:ac:d5:e7:e6:1c:6e:8a:c6:51:5c:c2:90: 6c:be:e6:2a:c3:e6:5a:e7:a2:26:65:8a:97:92:09: 1f:bd:56:77:5d:69:5e:a1:62:53:f5:8e:d4:35:39: af:8c:da:2b:ee:6a:f6:22:5a:44:48:af:e9:1e:61: c6:86:83:cd:f6:50:a7:39:2a:a8:21:a7:f4:4f:57: 06:53:89:6a:10:8e:dd:dc:21:52:02:db:ed:a8:64: 4e:5e:0c:06:3e:14:41:18:90:5d:ca:88:5e:2c:64: 00:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3B:77:9C:1A:DC:11:93:A3:B0:38:A9:C7:64:9F:19:5E:98:E3:4D X509v3 Authority Key Identifier: keyid:25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.20.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:41:ad:25:4b:48:75:f5:2a:2d:7e:30:9c:3c:48:7d:a3:56: 41:55:74:85:e3:f3:e4:55:02:70:6e:ae:28:32:85:7f:58:6e: 2e:86:d4:e7:39:74:54:11:2d:55:6b:cc:7d:df:1f:79:a5:e9: 34:4a:3e:6a:07:1a:43:0d:22:36:ca:fe:96:42:05:74:21:24: eb:22:b2:cd:01:c0:ec:6b:8c:5c:2b:67:e1:f9:ae:8c:6d:eb: 67:e2:92:c2:eb:a4:0d:12:17:d0:55:2d:32:87:5d:31:eb:49: 68:bc:e7:51:6d:43:23:92:34:cf:79:96:e5:23:bd:8d:94:de: 35:10:38:c6:f0:df:28:f1:07:23:aa:c9:0a:ad:93:ba:6d:97: f1:80:39:98:f4:04:ce:56:50:7c:d5:7a:f2:c7:7a:2c:1c:12: 42:e5:b0:d6:a4:2f:1c:57:fd:60:fa:dd:30:63:01:ad:4f:df: ce:22:4d:c5:7e:05:37:80:86:2b:3c:2c:81:d7:18:56:44:24: cd:82:67:e2:a6:03:8b:e5:3b:e3:36:de:d2:57:d0:6d:91:aa: fc:18:3e:63:4d:fc:ba:2d:72:4f:1f:af:a8:97:0a:80:6d:f9: 42:02:15:9f:f8:e8:ca:32:f9:9e:9c:a0:7c:a9:41:00:2d:4f: 95:fb:cf:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 M0UyRTExMC8GA1UEBRMoMjVBQzNFNDhGMkU1OEU4OEM2MDU0NDc5OEVDNjcyNDA3 NkI1MzQxMzAeFw0yNTA4MTUwNzQ1MTVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OWVlNThhLTk0OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Nk5oA2BWyRaJgSYp3e6GyoxrN1up1mu4RI8MjInYAAhB6h0vQMHm5b3uMT1k PR7jrsrmEcUguIdnf0LfODJ89IdA8NKDMrzLroA88NHuDA0fUAKUyAtRr6UrbP7y fPfJ3REGa+ra5Onv3VME8vAD7ixh2+PjsiB2EO1dNl0jlLBsx9ufDFW8YV+WlIYK oqIxCc2H21QSJKzV5+YcborGUVzCkGy+5irD5lrnoiZlipeSCR+9VnddaV6hYlP1 jtQ1Oa+M2ivuavYiWkRIr+keYcaGg832UKc5Kqghp/RPVwZTiWoQjt3cIVIC2+2o ZE5eDAY+FEEYkF3KiF4sZABZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVTt3nBrc EZOjsDipx2SfGV6Y400wHwYDVR0jBBgwFoAUJaw+SPLljojGBUR5jsZyQHa1NBMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzRTJFL0ZGQTM1RjA0REQ5 ODExRUZBOUFGNDM0NkM0RjlBRTAyL0phdy1TUExsam9qR0JVUjVqc1p5UUhhMU5C TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmF3LVNQTGxqb2pHQlVSNWpzWnlRSGExTkJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0UyRS9GRkEzNUYwNEREOTgxMUVGQTlBRjQzNDZDNEY5QUUwMi83MUM0ODQ1RURE OUExMUVGOENGQjM1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcLFDANBgkqhkiG9w0BAQsFAAOCAQEADEGtJUtIdfUqLX4w nDxIfaNWQVV0hePz5FUCcG6uKDKFf1huLobU5zl0VBEtVWvMfd8feaXpNEo+agca Qw0iNsr+lkIFdCEk6yKyzQHA7GuMXCtn4fmujG3rZ+KSwuukDRIX0FUtModdMetJ aLznUW1DI5I0z3mW5SO9jZTeNRA4xvDfKPEHI6rJCq2Tum2X8YA5mPQEzlZQfNV6 8sd6LBwSQuWw1qQvHFf9YPrdMGMBrU/fziJNxX4FN4CGKzwsgdcYVkQkzYJn4qYD i+U74zbe0lfQbZGq/Bg+Y038ui1yTx+vqJcKgG35QgIVn/joyjL5npygfKlBAC1P lfvPmA== -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:14 2025 by rpki-client