$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7335D310574D11F0AAD7F54FC4F9AE02.roa File: 7335D310574D11F0AAD7F54FC4F9AE02.roa (raw, json) Hash identifier: xURVh+ChbrSR0lpzPQkCTnrBUDPfvUF8oOayADi2CXQ= Subject key identifier: 31:60:40:7C:58:AF:BA:03:75:EF:3D:0D:71:1C:7A:E0:FD:51:08:E9 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D8C Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7335D310574D11F0AAD7F54FC4F9AE02.roa Signing time: Wed 02 Jul 2025 20:30:16 +0000 ROA not before: Wed 02 Jul 2025 20:30:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9009 IP address blocks: 103.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3468 (0xd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 2 20:30:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686596d8-1ab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:89:41:ba:ea:ad:25:f2:37:9a:29:55:ab: b3:ed:ea:56:0d:20:81:47:67:1f:ba:a2:dc:9a:cd: 6d:99:b9:16:2f:7d:65:be:09:ea:f5:ca:40:38:0a: 09:b3:87:5f:bf:71:7e:b7:eb:79:0e:11:38:a6:e8: 9d:22:7c:5b:13:34:73:22:6f:8d:c1:17:2f:00:06: 8e:32:32:2c:3c:8e:6e:47:bd:82:3d:3c:f6:65:ae: c6:1f:77:8e:60:d7:a3:21:74:66:28:03:e2:c4:51: db:30:5b:bc:ae:fd:d4:fb:fd:ef:d5:7f:07:8d:d5: c2:97:c2:21:d8:49:4c:4d:e7:83:f8:01:5d:e9:00: 50:3f:97:91:4c:b3:6f:ce:79:7a:09:6b:15:4e:31: 05:70:ce:34:b4:0f:33:d8:1c:91:c6:1c:99:26:da: 81:cd:3e:31:8e:4d:9c:5a:fb:6d:16:ba:43:8a:83: ca:f0:f6:44:94:10:78:47:ca:43:a5:8a:33:82:8f: ae:24:97:09:0e:83:1c:ad:10:28:46:c3:56:77:de: 99:f2:c1:45:b6:ad:d8:8e:f5:59:ef:4c:32:92:32: c2:e9:56:a3:91:67:4a:a3:e0:62:3d:8c:68:bb:9b: b6:9e:fa:4a:1e:0c:4b:03:5b:28:b2:fd:5c:38:29: 94:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:60:40:7C:58:AF:BA:03:75:EF:3D:0D:71:1C:7A:E0:FD:51:08:E9 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/7335D310574D11F0AAD7F54FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.135.0/24 Signature Algorithm: sha256WithRSAEncryption 48:32:7e:f4:dc:01:d1:f8:09:64:43:3f:8b:fa:9a:62:c1:68: 4d:76:0d:19:ca:13:a9:1d:0f:21:ff:6d:35:22:f2:2d:b9:22: d5:81:f7:6f:1b:ec:52:fb:2e:88:c3:4d:4f:09:a9:2a:62:d1: 05:30:cc:96:b1:2c:21:9d:1e:8b:5a:0d:d9:6e:ef:2b:77:91: 85:4a:5e:68:6b:9c:5b:69:bf:f8:4f:71:01:a0:fe:44:5d:81: d3:66:5b:52:dd:9e:82:6b:c3:54:06:aa:f4:8e:db:f6:1e:e1: d6:db:5f:c7:35:c3:1f:85:88:18:e5:3c:28:9e:60:51:64:5e: 38:a2:fe:65:1b:7c:ac:41:a6:fd:75:a1:8e:05:27:fd:0f:e9: b3:64:e4:45:a9:40:4c:43:06:8f:72:4a:ef:ef:92:af:d9:89: 72:c9:df:5d:e9:9a:85:5e:d6:00:cd:78:48:5b:4c:3b:a1:e1: fa:04:bc:7e:b9:ec:72:31:b1:bd:e5:3b:7c:3d:74:dd:ab:ec: 5a:81:91:cc:6d:a9:3c:d6:cc:8e:d9:ee:4f:be:77:10:9b:0b: 56:4a:a6:97:0b:80:14:14:8e:5f:51:0e:11:0d:81:cd:2f:fb: ae:d5:03:19:31:d4:48:dc:bc:f9:4a:e0:ce:ac:e9:64:0b:30: e0:91:d1:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNzAyMjAzMDE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZkOC0xYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzASJQbrqrSXyN5opVauz7epWDSCBR2cfuqLcms1tmbkWL31lvgnq9cpAOAoJ s4dfv3F+t+t5DhE4puidInxbEzRzIm+NwRcvAAaOMjIsPI5uR72CPTz2Za7GH3eO YNejIXRmKAPixFHbMFu8rv3U+/3v1X8HjdXCl8Ih2ElMTeeD+AFd6QBQP5eRTLNv znl6CWsVTjEFcM40tA8z2ByRxhyZJtqBzT4xjk2cWvttFrpDioPK8PZElBB4R8pD pYozgo+uJJcJDoMcrRAoRsNWd96Z8sFFtq3YjvVZ70wykjLC6VajkWdKo+BiPYxo u5u2nvpKHgxLA1sosv1cOCmU6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDFgQHxY r7oDde89DXEceuD9UQjpMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNzMzNUQzMTA1 NzREMTFGMEFBRDdGNTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFIcwDQYJKoZIhvcNAQELBQADggEBAEgyfvTcAdH4CWRD P4v6mmLBaE12DRnKE6kdDyH/bTUi8i25ItWB928b7FL7LojDTU8JqSpi0QUwzJax LCGdHotaDdlu7yt3kYVKXmhrnFtpv/hPcQGg/kRdgdNmW1LdnoJrw1QGqvSO2/Ye 4dbbX8c1wx+FiBjlPCieYFFkXjii/mUbfKxBpv11oY4FJ/0P6bNk5EWpQExDBo9y Su/vkq/ZiXLJ313pmoVe1gDNeEhbTDuh4foEvH657HIxsb3lO3w9dN2r7FqBkcxt qTzWzI7Z7k++dxCbC1ZKppcLgBQUjl9RDhENgc0v+67VAxkx1EjcvPlK4M6s6WQL MOCR0Vw= -----END CERTIFICATE-----Generated at Fri Jul 4 08:04:13 2025 by rpki-client