$ rpki-client -vvf rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa File: F145A4846C3E11EEA0F26B63C4F9AE02.roa (raw, json) Hash identifier: rFNdBE/l2Q3OnzMQ6TN5aUj23PCHorUgqebxmyTEGXU= Subject key identifier: 89:16:89:5F:F2:51:96:33:4F:0B:EF:30:93:1C:BC:12:80:05:85:53 Certificate issuer: /CN=A916D0D2/serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Certificate serial: 07CD Authority key identifier: D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:31:17 +0000 ROA not before: Wed 02 Jul 2025 22:31:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149448 IP address blocks: 103.54.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D0D2, serialNumber=D5E53AF115997C7FA3B86552F95F5114AF3405E9 Validity Not Before: Jul 2 22:31:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6865b335-93bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ed:39:43:d5:e2:5f:69:07:e3:01:6a:9d:8c: c6:7f:a4:bc:2d:40:69:52:cc:4e:2f:54:93:e1:e7: a2:ea:f1:ef:7e:2d:dd:9c:32:f8:89:1e:6c:6a:c4: 19:39:66:c8:e9:7c:dd:49:23:0c:fc:b9:89:6e:76: c2:f5:1a:f7:cb:7b:fd:77:68:5b:01:d8:f2:80:b3: bf:47:ed:4a:4b:ba:29:36:2e:1e:43:c9:44:75:57: b4:6d:83:59:66:b2:41:8d:e7:cf:56:82:2d:52:85: 92:12:03:b1:64:fc:21:63:01:40:9c:19:27:bd:4e: 39:98:7d:b5:a3:d0:f8:82:6b:7c:64:9d:10:27:80: 04:ac:d9:a4:b2:b4:9d:03:d2:f4:3e:c6:1f:94:53: b5:bf:0b:de:91:c4:bc:96:d1:28:0e:e5:ce:84:e9: b7:6f:20:14:a6:0c:b3:01:a5:9e:7c:0b:2e:f3:f0: 29:6c:3a:6d:9c:c5:71:1b:92:ea:13:9e:76:03:e0: 0e:d5:5b:32:58:fc:db:23:3f:80:37:98:ab:7f:90: 4b:b1:11:8f:07:e4:71:db:70:ed:24:ea:62:65:b5: 6e:58:1c:ae:65:2a:94:5e:82:d5:34:08:65:07:d8: 86:01:2d:7e:bf:1d:ba:14:4d:74:9a:f3:e1:85:d6: b4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:16:89:5F:F2:51:96:33:4F:0B:EF:30:93:1C:BC:12:80:05:85:53 X509v3 Authority Key Identifier: keyid:D5:E5:3A:F1:15:99:7C:7F:A3:B8:65:52:F9:5F:51:14:AF:34:05:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/1eU68RWZfH-juGVS-V9RFK80Bek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1eU68RWZfH-juGVS-V9RFK80Bek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D0D2/5937D43E35AD11EB81EEAD12C4F9AE02/F145A4846C3E11EEA0F26B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.152.0/24 Signature Algorithm: sha256WithRSAEncryption 22:86:d1:e6:be:40:c1:5a:9f:4c:58:0a:bb:fd:a0:5a:76:51: fc:ce:c7:f3:d8:1e:66:26:7a:6d:bd:62:8f:61:31:67:48:e4: 48:af:e0:d4:47:38:dc:2f:8b:36:61:98:d2:b9:7d:44:7d:6d: b3:e9:a0:81:77:45:74:06:09:8f:1a:59:fe:8a:e5:4e:79:ce: 21:86:d9:1d:3c:9c:44:48:e4:4e:2f:5f:c2:0b:ee:0f:fb:4d: d5:a0:26:95:46:c9:f0:52:d2:48:69:26:d5:27:7d:33:d5:9d: 75:0b:fb:05:45:a3:30:4f:40:94:d6:72:ad:6f:0a:a7:6f:ed: c9:5b:9c:c9:db:fc:9e:83:ff:75:07:9b:39:2b:a9:cc:12:98: a0:86:93:d5:74:eb:0b:16:35:c6:a5:b4:23:8f:83:10:68:f7: 92:38:97:dc:24:cd:b5:d0:1f:10:6c:3c:47:8e:4b:13:f4:ab: 8d:1f:cc:45:ee:a0:60:f2:da:b8:69:a1:f0:9b:97:99:a1:13: eb:1f:d4:e2:ee:59:e3:d3:95:1a:23:4d:9e:04:8d:23:77:39: c5:9c:31:7c:95:39:33:9e:ee:25:4e:83:d3:9f:7c:40:ef:c5: 81:9f:6b:9b:1f:04:12:db:34:e4:68:44:97:1b:a7:c7:a9:aa: 5a:73:b3:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQwRDIxMTAvBgNVBAUTKEQ1RTUzQUYxMTU5OTdDN0ZBM0I4NjU1MkY5NUY1MTE0 QUYzNDA1RTkwHhcNMjUwNzAyMjIzMTE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YjMzNS05M2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+05Q9XiX2kH4wFqnYzGf6S8LUBpUsxOL1ST4eei6vHvfi3dnDL4iR5sasQZ OWbI6XzdSSMM/LmJbnbC9Rr3y3v9d2hbAdjygLO/R+1KS7opNi4eQ8lEdVe0bYNZ ZrJBjefPVoItUoWSEgOxZPwhYwFAnBknvU45mH21o9D4gmt8ZJ0QJ4AErNmksrSd A9L0PsYflFO1vwvekcS8ltEoDuXOhOm3byAUpgyzAaWefAsu8/ApbDptnMVxG5Lq E552A+AO1VsyWPzbIz+AN5irf5BLsRGPB+Rx23DtJOpiZbVuWByuZSqUXoLVNAhl B9iGAS1+vx26FE10mvPhhda0JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIkWiV/y UZYzTwvvMJMcvBKABYVTMB8GA1UdIwQYMBaAFNXlOvEVmXx/o7hlUvlfURSvNAXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDBEMi81OTM3RDQzRTM1 QUQxMUVCODFFRUFEMTJDNEY5QUUwMi8xZVU2OFJXWmZILWp1R1ZTLVY5UkZLODBC ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFlVTY4UldaZkgtanVHVlMtVjlSRks4MEJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQwRDIvNTkzN0Q0M0UzNUFEMTFFQjgxRUVBRDEyQzRGOUFFMDIvRjE0NUE0ODQ2 QzNFMTFFRUEwRjI2QjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnNpgwDQYJKoZIhvcNAQELBQADggEBACKG0ea+QMFan0xY Crv9oFp2UfzOx/PYHmYmem29Yo9hMWdI5Eiv4NRHONwvizZhmNK5fUR9bbPpoIF3 RXQGCY8aWf6K5U55ziGG2R08nERI5E4vX8IL7g/7TdWgJpVGyfBS0khpJtUnfTPV nXUL+wVFozBPQJTWcq1vCqdv7clbnMnb/J6D/3UHmzkrqcwSmKCGk9V06wsWNcal tCOPgxBo95I4l9wkzbXQHxBsPEeOSxP0q40fzEXuoGDy2rhpofCbl5mhE+sf1OLu WePTlRojTZ4EjSN3OcWcMXyVOTOe7iVOg9OffEDvxYGfa5sfBBLbNORoRJcbp8ep qlpzs1s= -----END CERTIFICATE-----Generated at Thu Jul 3 07:07:09 2025 by rpki-client