$ rpki-client -vvf rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa File: D3B421A2366811F0A18FF40AC4F9AE02.roa (raw, json) Hash identifier: m0A4bmKYQpyQxbJtwty9jze7vG5EqP7rfA85eJFYPgg= Subject key identifier: CC:E4:EC:DD:EC:3F:E4:6F:F9:A9:74:D2:21:A9:22:36:8C:08:9D:7C Certificate issuer: /CN=A916A703/serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Certificate serial: 06F8 Authority key identifier: 72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa Signing time: Wed 21 May 2025 17:29:38 +0000 ROA not before: Wed 21 May 2025 17:29:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139012 IP address blocks: 103.138.125.0/24 maxlen: 24 2404:cd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A703, serialNumber=72A19F6BAFA6EEEE66DC3B1A6C67822E5330CF78 Validity Not Before: May 21 17:29:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682e0d81-3d82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:1a:bc:14:b7:24:38:d1:42:fe:54:af:70:79: 13:61:82:c0:91:51:ea:b6:fe:41:1a:eb:60:a4:42: 00:a0:4d:b0:00:1c:70:b6:23:62:11:b2:31:1d:a1: c8:7c:32:28:73:4b:46:7f:a7:f5:e5:98:b2:5c:4b: dc:6a:c8:3a:36:76:bc:09:2a:5f:cf:7b:f7:63:b6: ea:ef:f7:89:df:50:27:28:29:f8:21:e5:ab:fd:33: bc:7a:a8:21:6e:ef:84:5f:33:f9:b1:a7:52:47:a4: b9:d4:af:fe:1d:40:14:f4:49:d7:70:3f:19:aa:58: 0d:64:40:eb:3d:be:d7:7c:93:1e:4a:56:95:de:7a: 39:e3:78:f2:63:09:69:4c:8b:e6:40:73:8d:08:85: 14:14:89:04:f3:13:ed:43:b7:7d:e9:f4:1e:07:a5: ec:24:00:35:31:5e:af:14:45:5c:91:be:47:75:2e: 76:f1:8a:30:2f:b6:e7:be:9b:8a:22:f0:32:74:43: 68:0e:6d:3d:9c:1e:82:2f:a4:a9:29:6e:99:1e:73: a7:ac:2c:37:e3:7b:96:29:a6:30:15:50:dc:1c:7d: 2e:0b:d9:dc:25:e1:9c:be:ef:04:f1:ff:d3:8c:86: 1b:b3:53:dd:a9:84:7e:f5:ea:2c:f3:9e:88:73:cc: 2b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E4:EC:DD:EC:3F:E4:6F:F9:A9:74:D2:21:A9:22:36:8C:08:9D:7C X509v3 Authority Key Identifier: keyid:72:A1:9F:6B:AF:A6:EE:EE:66:DC:3B:1A:6C:67:82:2E:53:30:CF:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/cqGfa6-m7u5m3DsabGeCLlMwz3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqGfa6-m7u5m3DsabGeCLlMwz3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A703/7C83BDEA490311EB8447B26BC4F9AE02/D3B421A2366811F0A18FF40AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.125.0/24 IPv6: 2404:cd40::/32 Signature Algorithm: sha256WithRSAEncryption a9:33:fa:3d:2e:42:7e:54:db:a4:a9:de:f8:87:73:57:f9:2e: 96:65:b0:89:03:ff:b3:25:52:76:2e:d5:bf:c5:16:84:42:62: 24:87:06:03:ef:50:3b:54:0a:0b:8b:d7:03:b5:4d:a0:c3:0d: 88:59:48:e8:9b:bd:e1:c6:23:e9:9e:d7:39:a7:dd:17:96:52: a5:43:cd:22:2f:61:ee:8f:8e:ff:bd:ce:05:dd:ee:27:0a:91: 9d:ea:9e:20:76:15:0f:c0:97:3e:9e:ef:ba:3a:c8:86:11:6e: 08:91:e0:71:24:11:91:5f:0b:61:6a:cd:4c:96:0f:da:b8:bd: 5b:49:d2:59:26:70:c2:d5:b0:b2:8d:21:d1:17:22:b1:62:ec: 8e:2a:2e:47:f7:f4:fb:70:df:07:9b:af:82:f7:c8:29:9e:a1: 09:51:b2:3e:8a:0b:17:a0:fd:da:56:7b:bb:1d:9a:15:0c:6d: 38:e1:47:fe:44:91:e8:3f:43:0b:ea:f1:d4:b3:56:f6:26:d7: b1:bd:e4:5b:17:36:00:95:9d:b9:46:71:6c:63:1b:0c:5a:b2: 7e:e4:2b:23:8e:6c:e9:b8:6a:3f:33:c8:53:b4:32:60:6f:cd: 03:ef:bd:55:7b:5b:2d:4a:ca:be:bd:44:b6:e6:50:a0:e2:22: a9:86:1f:03 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE3MDMxMTAvBgNVBAUTKDcyQTE5RjZCQUZBNkVFRUU2NkRDM0IxQTZDNjc4MjJF NTMzMENGNzgwHhcNMjUwNTIxMTcyOTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJlMGQ4MS0zZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Bq8FLckONFC/lSvcHkTYYLAkVHqtv5BGutgpEIAoE2wABxwtiNiEbIxHaHI fDIoc0tGf6f15ZiyXEvcasg6Nna8CSpfz3v3Y7bq7/eJ31AnKCn4IeWr/TO8eqgh bu+EXzP5sadSR6S51K/+HUAU9EnXcD8ZqlgNZEDrPb7XfJMeSlaV3no543jyYwlp TIvmQHONCIUUFIkE8xPtQ7d96fQeB6XsJAA1MV6vFEVckb5HdS528YowL7bnvpuK IvAydENoDm09nB6CL6SpKW6ZHnOnrCw343uWKaYwFVDcHH0uC9ncJeGcvu8E8f/T jIYbs1PdqYR+9eos856Ic8wrzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMzk7N3s P+Rv+al00iGpIjaMCJ18MB8GA1UdIwQYMBaAFHKhn2uvpu7uZtw7Gmxngi5TMM94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTcwMy83QzgzQkRFQTQ5 MDMxMUVCODQ0N0IyNkJDNEY5QUUwMi9jcUdmYTYtbTd1NW0zRHNhYkdlQ0xsTXd6 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxR2ZhNi1tN3U1bTNEc2FiR2VDTGxNd3ozZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE3MDMvN0M4M0JERUE0OTAzMTFFQjg0NDdCMjZCQzRGOUFFMDIvRDNCNDIxQTIz NjY4MTFGMEExOEZGNDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnin0wDQQCAAIwBwMFACQEzUAwDQYJKoZIhvcNAQELBQAD ggEBAKkz+j0uQn5U26Sp3viHc1f5LpZlsIkD/7MlUnYu1b/FFoRCYiSHBgPvUDtU CguL1wO1TaDDDYhZSOibveHGI+me1zmn3ReWUqVDzSIvYe6Pjv+9zgXd7icKkZ3q niB2FQ/Alz6e77o6yIYRbgiR4HEkEZFfC2FqzUyWD9q4vVtJ0lkmcMLVsLKNIdEX IrFi7I4qLkf39Ptw3webr4L3yCmeoQlRsj6KCxeg/dpWe7sdmhUMbTjhR/5Ekeg/ Qwvq8dSzVvYm17G95FsXNgCVnblGcWxjGwxasn7kKyOObOm4aj8zyFO0MmBvzQPv vVV7Wy1Kyr69RLbmUKDiIqmGHwM= -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:59 2025 by rpki-client