$ rpki-client -vvf rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/AD6517B64B0A11F091DD7F1EC4F9AE02.roa File: AD6517B64B0A11F091DD7F1EC4F9AE02.roa (raw, json) Hash identifier: cnh03ssQexM4iFssIdQKBnnbxErXLE4ffEBnB9YmxQI= Subject key identifier: B2:E0:48:FB:91:49:D5:AC:D5:3D:87:DC:A2:50:F2:A9:26:B4:67:B1 Certificate issuer: /CN=A916378F/serialNumber=3588F1BB5CB699B034811D179279BF5B9BBC1E5B Certificate serial: 07B1 Authority key identifier: 35:88:F1:BB:5C:B6:99:B0:34:81:1D:17:92:79:BF:5B:9B:BC:1E:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/AD6517B64B0A11F091DD7F1EC4F9AE02.roa Signing time: Mon 16 Jun 2025 23:36:08 +0000 ROA not before: Mon 16 Jun 2025 23:36:08 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 15830 IP address blocks: 103.58.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.crl rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916378F, serialNumber=3588F1BB5CB699B034811D179279BF5B9BBC1E5B Validity Not Before: Jun 16 23:36:08 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6850aa68-9eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e5:52:73:1d:61:a0:f2:6a:1c:33:2d:0b:35: dd:fb:96:de:9d:a9:54:08:00:0b:9c:24:8b:ae:cb: 04:36:0d:c1:f4:10:04:11:96:05:a7:28:4f:31:ef: c3:63:58:9f:27:08:ce:13:2b:57:00:32:b2:06:4b: f2:f0:6a:ab:35:72:20:03:e1:5d:cc:2c:a9:e1:74: 4c:2b:28:42:56:52:b4:91:bc:28:70:fc:c6:38:fc: 68:c0:88:4b:df:4d:65:51:ef:38:12:1c:4b:69:e9: ee:37:23:b0:55:1a:f2:1d:52:c1:dc:f9:cf:70:eb: 9c:6b:99:2f:1a:4f:66:fe:34:0b:7d:fc:d9:21:8e: 7b:ad:88:5b:47:05:58:12:7b:12:c0:5d:da:b6:00: 39:5d:c4:13:4c:66:6f:2d:3a:b9:ff:10:6f:32:6c: 1c:08:66:3c:00:f0:5f:9d:4f:7c:7c:4e:bd:60:23: 83:f5:86:d1:02:6e:61:20:53:88:b6:20:0f:04:eb: 63:aa:13:61:f3:c7:87:5a:78:e0:df:e2:3a:d6:44: 44:22:5d:87:06:60:f7:7f:35:99:b2:14:80:3b:37: e4:8a:b5:94:b4:20:05:da:80:a2:40:14:00:ff:e3: 8c:cc:f6:ae:fc:bb:1b:69:16:4c:0d:03:36:34:a5: d1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E0:48:FB:91:49:D5:AC:D5:3D:87:DC:A2:50:F2:A9:26:B4:67:B1 X509v3 Authority Key Identifier: keyid:35:88:F1:BB:5C:B6:99:B0:34:81:1D:17:92:79:BF:5B:9B:BC:1E:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/NYjxu1y2mbA0gR0Xknm_W5u8Hls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYjxu1y2mbA0gR0Xknm_W5u8Hls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916378F/A5A9C4A8127111EB88D4BD80C4F9AE02/AD6517B64B0A11F091DD7F1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.212.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:74:4a:15:29:6c:d0:f1:c3:ae:1c:75:69:79:d6:82:01:a9: 9d:e4:df:47:c0:a5:07:c6:9a:b1:62:05:f0:0b:62:4e:14:cc: 02:5a:ba:99:69:f3:2b:f6:d6:1c:a5:65:93:52:b6:8d:dc:a5: ba:f8:05:10:c0:f6:f7:98:3b:20:6f:e0:e4:36:01:13:bc:1c: 62:e6:d6:a9:03:1d:0a:6a:97:2d:b0:f2:e9:44:07:2d:d2:b8: 62:f4:b3:e8:ff:f4:34:8d:8f:01:10:8d:46:ed:25:ad:04:36: 76:06:ad:ba:e5:7e:74:16:d5:6a:f6:4f:53:2f:4c:a6:87:1d: 14:59:a9:93:5c:23:93:7c:fc:e1:83:88:bb:55:5e:1b:60:14: 23:e2:e5:48:d3:52:5f:27:c7:11:0f:87:2a:bb:db:5e:6b:88: e2:5a:65:57:03:8c:9f:43:e6:47:25:b3:35:6a:83:84:6b:5b: 8c:24:fc:0e:b5:16:72:13:33:36:77:88:aa:d0:29:27:70:89: 60:3d:ec:90:60:2c:d4:87:3d:26:e4:44:a5:f5:98:48:cf:e1: d7:35:02:6e:26:30:6f:6d:a2:0d:a6:12:91:2a:02:88:a4:57: 68:67:f7:8c:72:10:6f:f2:6f:53:cf:49:0a:2b:d0:e6:9c:31: 31:ae:05:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM3OEYxMTAvBgNVBAUTKDM1ODhGMUJCNUNCNjk5QjAzNDgxMUQxNzkyNzlCRjVC OUJCQzFFNUIwHhcNMjUwNjE2MjMzNjA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwYWE2OC05ZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7uVScx1hoPJqHDMtCzXd+5benalUCAALnCSLrssENg3B9BAEEZYFpyhPMe/D Y1ifJwjOEytXADKyBkvy8GqrNXIgA+FdzCyp4XRMKyhCVlK0kbwocPzGOPxowIhL 301lUe84EhxLaenuNyOwVRryHVLB3PnPcOuca5kvGk9m/jQLffzZIY57rYhbRwVY EnsSwF3atgA5XcQTTGZvLTq5/xBvMmwcCGY8APBfnU98fE69YCOD9YbRAm5hIFOI tiAPBOtjqhNh88eHWnjg3+I61kREIl2HBmD3fzWZshSAOzfkirWUtCAF2oCiQBQA /+OMzPau/LsbaRZMDQM2NKXRuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLgSPuR SdWs1T2H3KJQ8qkmtGexMB8GA1UdIwQYMBaAFDWI8btctpmwNIEdF5J5v1ubvB5b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzc4Ri9BNUE5QzRBODEy NzExMUVCODhENEJEODBDNEY5QUUwMi9OWWp4dTF5Mm1iQTBnUjBYa25tX1c1dThI bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Zanh1MXkybWJBMGdSMFhrbm1fVzV1OEhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM3OEYvQTVBOUM0QTgxMjcxMTFFQjg4RDRCRDgwQzRGOUFFMDIvQUQ2NTE3QjY0 QjBBMTFGMDkxREQ3RjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOtQwDQYJKoZIhvcNAQELBQADggEBAI90ShUpbNDxw64c dWl51oIBqZ3k30fApQfGmrFiBfALYk4UzAJauplp8yv21hylZZNSto3cpbr4BRDA 9veYOyBv4OQ2ARO8HGLm1qkDHQpqly2w8ulEBy3SuGL0s+j/9DSNjwEQjUbtJa0E NnYGrbrlfnQW1Wr2T1MvTKaHHRRZqZNcI5N8/OGDiLtVXhtgFCPi5UjTUl8nxxEP hyq7215riOJaZVcDjJ9D5kclszVqg4RrW4wk/A61FnITMzZ3iKrQKSdwiWA97JBg LNSHPSbkRKX1mEjP4dc1Am4mMG9tog2mEpEqAoikV2hn94xyEG/yb1PPSQor0Oac MTGuBfA= -----END CERTIFICATE-----Generated at Tue Jul 1 15:28:05 2025 by rpki-client