$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa File: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (raw, json) Hash identifier: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0= Subject key identifier: 76:29:48:3D:27:F9:D8:90:5C:54:F5:5F:CD:8C:8C:DA:7B:F3:D1:DC Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 0137 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa Signing time: Fri 27 Jun 2025 04:23:08 +0000 ROA not before: Fri 27 Jun 2025 04:23:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134484 IP address blocks: 103.197.156.0/23 maxlen: 23 103.197.156.0/24 maxlen: 24 103.197.157.0/24 maxlen: 24 2001:df2:6f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Jun 27 04:23:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e1cab-47dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1c:d7:7c:ad:d6:35:b5:3c:cf:b1:fa:89:ab: 37:ce:60:64:d3:fe:dd:73:84:38:66:6e:20:83:b4: 5a:1a:19:62:1a:26:c5:73:50:53:60:3e:e9:ac:59: 19:05:8b:0c:64:c4:33:06:e4:e4:10:80:59:62:ad: 76:9f:7c:62:11:c5:ba:e6:6f:a2:39:23:42:c7:14: e6:ef:db:5d:cc:46:0c:ff:0c:ec:e1:b7:72:ac:23: 70:b2:49:e4:dd:ea:4d:43:28:49:55:07:1a:43:0f: 73:4b:ce:c8:e3:95:53:46:82:1a:5a:12:3a:ca:af: 8d:53:4e:a2:27:ba:51:39:60:4a:11:33:bc:0b:bd: b9:3a:20:9a:1b:e1:7c:aa:47:49:bd:f1:3b:eb:3d: 3b:68:ad:5b:41:80:89:b0:52:07:e0:e8:9a:6f:4f: ab:ba:1a:0f:11:04:8f:6e:1f:0f:32:f8:69:6c:da: 8b:b9:a5:df:26:b3:9a:9c:66:0e:c3:13:ce:a0:2c: 41:42:ba:4f:99:bb:c3:36:4a:e2:b0:e7:e2:8a:c6: 4c:4c:e9:ae:f2:73:7e:73:d2:ff:a5:38:51:b6:47: 48:41:ce:f2:08:bf:34:67:db:73:44:1b:69:a1:89: fb:f6:a6:be:f0:f0:2b:6c:ed:e0:6f:e5:a0:20:e7: 75:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:29:48:3D:27:F9:D8:90:5C:54:F5:5F:CD:8C:8C:DA:7B:F3:D1:DC X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/27178D9E7FBC11EEAF80B825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.156.0/23 IPv6: 2001:df2:6f40::/48 Signature Algorithm: sha256WithRSAEncryption 93:f6:56:b5:8e:6a:04:c6:12:05:cf:ac:c4:cd:7c:02:a4:07: 44:76:bf:46:e4:85:1e:eb:28:7c:5d:62:44:1b:44:2a:d9:d1: aa:9a:84:5c:4e:1c:e5:36:16:9d:4f:a9:50:27:54:ae:19:d1: bf:d1:1e:b1:8e:17:f6:b2:84:1e:a3:d3:1f:ee:8a:7b:7a:8d: e0:f5:8a:d6:01:f4:bd:47:35:19:6e:83:69:e9:11:9e:a0:9f: 23:b1:d6:30:48:f2:fd:ef:8a:7f:2e:1e:f0:ae:3c:4f:a5:12: 4d:85:ae:5d:c9:08:1a:2e:aa:f3:e4:30:71:4a:e0:50:33:9f: 1a:c0:1d:6e:a6:39:f8:38:fe:bf:7e:7a:d1:df:84:6d:60:0d: 01:6f:04:8f:c0:4a:07:b7:38:77:04:05:81:36:bb:a9:2b:2c: 57:fe:fe:a1:85:80:4b:cb:5c:d9:d5:80:28:fa:ad:8f:3e:0f: 32:94:10:4a:e6:62:cf:2d:01:cc:12:7b:dd:05:b9:f5:73:6b: d0:c2:f8:0c:19:f9:dd:cf:b8:20:fd:b4:31:8e:13:7d:ba:f5: 66:94:0c:93:c5:ff:72:94:5d:21:e4:56:cd:72:99:d4:d5:fc: 05:1a:29:71:c2:88:cb:91:25:aa:55:51:ac:9e:5a:12:b1:59: f0:b9:92:67 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjUwNjI3MDQyMzA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMWNhYi00N2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRzXfK3WNbU8z7H6ias3zmBk0/7dc4Q4Zm4gg7RaGhliGibFc1BTYD7prFkZ BYsMZMQzBuTkEIBZYq12n3xiEcW65m+iOSNCxxTm79tdzEYM/wzs4bdyrCNwsknk 3epNQyhJVQcaQw9zS87I45VTRoIaWhI6yq+NU06iJ7pROWBKETO8C725OiCaG+F8 qkdJvfE76z07aK1bQYCJsFIH4Oiab0+ruhoPEQSPbh8PMvhpbNqLuaXfJrOanGYO wxPOoCxBQrpPmbvDNkrisOfiisZMTOmu8nN+c9L/pThRtkdIQc7yCL80Z9tzRBtp oYn79qa+8PArbO3gb+WgIOd1RQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHYpSD0n +diQXFT1X82MjNp789HcMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIwMkYvRDdDMzNBQjg3RkJCMTFFRUE2OTgzOTI1QzRGOUFFMDIvMjcxNzhEOUU3 RkJDMTFFRUFGODBCODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnxZwwDwQCAAIwCQMHACABDfJvQDANBgkqhkiG9w0BAQsF AAOCAQEAk/ZWtY5qBMYSBc+sxM18AqQHRHa/RuSFHusofF1iRBtEKtnRqpqEXE4c 5TYWnU+pUCdUrhnRv9EesY4X9rKEHqPTH+6Ke3qN4PWK1gH0vUc1GW6DaekRnqCf I7HWMEjy/e+Kfy4e8K48T6USTYWuXckIGi6q8+QwcUrgUDOfGsAdbqY5+Dj+v356 0d+EbWANAW8Ej8BKB7c4dwQFgTa7qSssV/7+oYWAS8tc2dWAKPqtjz4PMpQQSuZi zy0BzBJ73QW59XNr0ML4DBn53c+4IP20MY4Tfbr1ZpQMk8X/cpRdIeRWzXKZ1NX8 BRopccKIy5ElqlVRrJ5aErFZ8LmSZw== -----END CERTIFICATE-----Generated at Sun Jul 6 10:05:46 2025 by rpki-client