$ rpki-client -vvf rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa File: 3D8179B431AE11F0A7D0076FC4F9AE02.roa (raw, json) Hash identifier: XfxZHGEC6L2I7lf4RHsiD8/699vyTVMdYrB6wZFXmUY= Subject key identifier: A5:20:08:3F:7B:42:46:C3:FB:7A:9C:37:D4:57:47:3C:72:74:9A:7C Certificate issuer: /CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Certificate serial: 0D81 Authority key identifier: E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa Signing time: Mon 02 Jun 2025 18:20:41 +0000 ROA not before: Mon 02 Jun 2025 18:20:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139202 IP address blocks: 103.139.196.0/23 maxlen: 23 103.139.196.0/24 maxlen: 24 2001:df0:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B361, serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Validity Not Before: Jun 2 18:20:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683deb79-4c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:2f:aa:70:ef:78:13:50:02:6b:97:b6:c3: fa:9c:10:0f:6c:e5:e6:54:e5:ca:e0:24:2d:c6:2f: 93:c3:fb:ab:0b:cd:c2:cb:91:f4:02:c0:4c:b2:6f: c5:4a:26:b6:bb:a0:e4:bb:90:b5:b1:12:54:ed:f6: c0:dc:c7:90:26:e7:89:7e:81:e5:63:d0:d5:36:b9: 00:ed:0f:31:ae:bd:b5:37:e5:c9:c7:3b:9e:95:4c: 82:0b:13:ec:d7:7b:df:0a:6f:dc:20:46:13:01:6c: 93:bf:9d:8d:35:cd:52:d8:17:79:47:f9:b3:99:c6: ab:06:a6:5c:e2:b6:39:80:9f:10:3c:79:99:db:c8: 42:46:68:bd:5c:4e:dd:9c:66:4f:f0:95:7f:bc:6d: b3:fa:bb:bd:4b:b9:27:f5:a0:96:9f:5d:2c:3c:3c: 0c:12:b8:36:10:53:ad:44:86:2e:17:89:86:c2:2b: 29:40:54:75:d2:a3:27:49:5a:63:eb:8f:65:a9:2c: 45:df:6f:21:e9:fe:48:94:d8:6c:e2:e6:b0:bc:af: 17:2a:29:d9:6c:7f:76:9c:9e:36:99:42:fd:61:f9: de:27:e7:2d:99:e6:79:16:35:63:26:ae:84:01:24: 63:8c:69:04:73:dc:3c:c5:bb:5b:9b:20:88:cc:21: e2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:20:08:3F:7B:42:46:C3:FB:7A:9C:37:D4:57:47:3C:72:74:9A:7C X509v3 Authority Key Identifier: keyid:E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/3D8179B431AE11F0A7D0076FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.196.0/23 IPv6: 2001:df0:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 23:77:7e:fb:e7:5e:65:cd:20:28:c6:23:8f:4c:00:5f:a2:d0: af:23:3f:1d:06:3d:60:b6:b6:5d:d4:99:b3:d6:10:ae:d0:6c: 9b:f4:51:ea:a2:c1:41:d5:29:5d:ed:5e:5c:9e:53:a2:55:bc: 7c:b9:14:af:b9:f1:a1:08:93:64:0a:3f:6a:e6:3e:a2:c1:b2: ab:91:2d:9c:bd:d0:2e:bb:ea:f1:2a:25:05:a7:19:ef:9b:e7: e2:ef:d8:d6:f0:66:37:d0:3b:4a:23:4d:b0:cd:21:32:87:a1: dd:81:f8:8a:13:06:ad:2a:18:34:d2:f7:d3:e3:af:0d:a8:ad: 4d:9b:04:28:92:93:5e:a1:7f:e6:05:33:f6:4a:de:50:37:6b: 0b:6e:b5:1c:f7:60:05:a0:85:8b:ea:15:73:c9:38:bd:3c:c7: 6f:52:d4:58:4b:ed:ce:ea:6f:12:80:b3:e5:a7:ef:35:4f:2e: 1b:07:5e:ee:40:d2:5d:2c:42:47:bb:c3:be:9d:92:c0:e9:d2: 36:73:8a:8d:a8:61:57:a7:e6:84:6c:38:08:00:be:aa:cd:b1: df:5c:0e:d5:c3:88:c1:69:71:f1:20:f9:da:89:77:b1:25:cb: 2f:40:f9:1e:62:44:1f:32:03:a8:d4:3c:66:41:12:d0:63:03: c9:36:ac:05 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzNjExMTAvBgNVBAUTKEUwQjlBMkU5OTM5RDU1OEYxOEJFNjIxNzVDOTVENzY4 RDI0NUQzMUYwHhcNMjUwNjAyMTgyMDQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkZWI3OS00YzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqgvqnDveBNQAmuXtsP6nBAPbOXmVOXK4CQtxi+Tw/urC83Cy5H0AsBMsm/F Sia2u6Dku5C1sRJU7fbA3MeQJueJfoHlY9DVNrkA7Q8xrr21N+XJxzuelUyCCxPs 13vfCm/cIEYTAWyTv52NNc1S2Bd5R/mzmcarBqZc4rY5gJ8QPHmZ28hCRmi9XE7d nGZP8JV/vG2z+ru9S7kn9aCWn10sPDwMErg2EFOtRIYuF4mGwispQFR10qMnSVpj 649lqSxF328h6f5IlNhs4uawvK8XKinZbH92nJ42mUL9YfneJ+ctmeZ5FjVjJq6E ASRjjGkEc9w8xbtbmyCIzCHicwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKUgCD97 QkbD+3qcN9RXRzxydJp8MB8GA1UdIwQYMBaAFOC5oumTnVWPGL5iF1yV12jSRdMf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjM2MS83QzhEODAwQUNB MzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZOFl2bUlYWEpYWGFOSkYw eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRMbWk2Wk9kVlk4WXZtSVhYSlhYYU5KRjB4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUIzNjEvN0M4RDgwMEFDQTMzMTFFOTgxMTNBMzU0QzRGOUFFMDIvM0Q4MTc5QjQz MUFFMTFGMEE3RDAwNzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFni8QwDwQCAAIwCQMHACABDfCOgDANBgkqhkiG9w0BAQsF AAOCAQEAI3d+++deZc0gKMYjj0wAX6LQryM/HQY9YLa2XdSZs9YQrtBsm/RR6qLB QdUpXe1eXJ5TolW8fLkUr7nxoQiTZAo/auY+osGyq5EtnL3QLrvq8SolBacZ75vn 4u/Y1vBmN9A7SiNNsM0hMoeh3YH4ihMGrSoYNNL30+OvDaitTZsEKJKTXqF/5gUz 9kreUDdrC261HPdgBaCFi+oVc8k4vTzHb1LUWEvtzupvEoCz5afvNU8uGwde7kDS XSxCR7vDvp2SwOnSNnOKjahhV6fmhGw4CAC+qs2x31wO1cOIwWlx8SD52ol3sSXL L0D5HmJEHzIDqNQ8ZkES0GMDyTasBQ== -----END CERTIFICATE-----Generated at Fri Jul 4 01:28:15 2025 by rpki-client