$ rpki-client -vvf rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/07C387B6898E11EC9543A60FC4F9AE02.roa File: 07C387B6898E11EC9543A60FC4F9AE02.roa (raw, json) Hash identifier: wmX3QKZrSQQ7FG7PQhgo2nOfqEWOBLWRdVunA8VWCRo= Subject key identifier: E2:5E:B3:C3:E8:C2:DE:F8:F5:D5:CA:40:AB:F0:70:85:35:A3:83:41 Certificate issuer: /CN=A916F536/serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Certificate serial: 03E9 Authority key identifier: 6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/07C387B6898E11EC9543A60FC4F9AE02.roa Signing time: Fri 25 Jul 2025 01:07:31 +0000 ROA not before: Fri 25 Jul 2025 01:07:31 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138915 IP address blocks: 103.154.242.0/24 maxlen: 24 103.154.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F536, serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Validity Not Before: Jul 25 01:07:31 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6882d8d3-4d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a3:19:17:b6:d1:fd:35:f1:7e:1c:bd:51:5e: ca:37:a6:7f:20:be:f3:31:ba:29:67:e9:23:0b:6f: f8:c2:84:12:7f:36:17:b6:1d:19:5d:e7:5e:02:09: 26:fa:27:14:dd:e5:df:89:d4:e1:bc:da:08:8a:fc: f9:1e:1c:fc:94:42:27:19:0a:1c:31:b8:c3:59:8a: fb:a7:72:91:d6:d5:9e:21:9c:4a:81:2c:66:e0:f0: e1:43:de:cc:4d:e1:ce:16:45:71:98:af:af:37:7a: 6a:4a:e7:8a:6d:89:82:57:32:2f:83:d4:bb:a9:dc: a1:0d:9e:43:74:67:c8:89:82:58:1d:bf:f4:06:8c: 46:d3:5f:f9:e2:a0:ad:76:5e:4c:16:b8:75:c2:84: aa:24:a1:6b:21:c3:3a:91:08:17:4e:cf:07:93:2e: 72:a7:9b:40:9b:c5:dc:40:0a:52:93:cb:4f:9a:0c: 57:37:19:15:0d:e3:b2:0e:f9:e7:93:14:88:b2:fc: 5d:62:6c:bc:b9:db:dd:77:16:d5:64:14:9e:bf:f6: d3:af:ee:57:9d:d3:b8:f9:64:bc:69:9a:61:d6:bd: c0:e4:6a:64:0f:c3:a0:b1:69:87:8b:e5:84:87:1d: c8:cf:14:7d:60:b2:a6:d5:14:c9:37:d8:35:1a:8a: aa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5E:B3:C3:E8:C2:DE:F8:F5:D5:CA:40:AB:F0:70:85:35:A3:83:41 X509v3 Authority Key Identifier: keyid:6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/07C387B6898E11EC9543A60FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.242.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:f5:25:96:b4:0f:25:c5:e8:2e:13:c4:a1:87:58:c9:87:c3: 89:96:8c:35:41:fb:82:da:80:b1:ff:9c:39:93:60:aa:b1:f9: 94:51:1e:24:b5:c8:c1:af:31:16:23:4d:d1:3b:a5:69:4d:40: 0c:8c:99:33:38:6c:29:e4:f2:26:25:ec:86:a9:9e:2a:5c:bd: 34:96:4d:d1:c6:ec:7d:1a:a6:bf:e5:8b:1c:0b:f6:6c:fa:1d: 21:bc:40:3a:3c:c0:8b:cf:2c:38:ec:1e:01:d3:2d:4d:37:75: 7a:1e:67:16:38:68:78:2d:19:c7:ec:09:e3:41:cf:9c:12:5e: 19:d3:80:7b:e2:25:eb:f5:8b:64:e9:41:18:c3:03:ca:56:ba: 55:e0:d5:0e:0a:0f:33:79:df:ef:52:3b:0f:5f:50:9a:44:55: 6d:27:1f:2b:5c:05:c5:e1:39:54:e3:ec:5c:dc:ca:e9:0d:fd: 78:22:13:48:88:b4:cc:44:40:b5:03:9b:f8:46:f8:03:e3:ac: 36:70:bc:2b:b5:ec:82:5e:97:23:0a:8f:9c:bd:e1:4d:fe:69: 6d:2c:55:23:06:9f:0e:4a:7b:50:4a:62:ce:38:cc:ba:5d:c3: 38:9a:ce:85:e5:bf:a1:fe:67:22:f0:31:73:86:af:da:cc:ca: a0:76:3f:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY1MzYxMTAvBgNVBAUTKDZEQThBNTI2NEE3REM2RkNEODhEM0Q0Q0RDRjQ4Njc5 QzI2MkY3MEUwHhcNMjUwNzI1MDEwNzMxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyZDhkMy00ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6MZF7bR/TXxfhy9UV7KN6Z/IL7zMbopZ+kjC2/4woQSfzYXth0ZXedeAgkm +icU3eXfidThvNoIivz5Hhz8lEInGQocMbjDWYr7p3KR1tWeIZxKgSxm4PDhQ97M TeHOFkVxmK+vN3pqSueKbYmCVzIvg9S7qdyhDZ5DdGfIiYJYHb/0BoxG01/54qCt dl5MFrh1woSqJKFrIcM6kQgXTs8Hky5yp5tAm8XcQApSk8tPmgxXNxkVDeOyDvnn kxSIsvxdYmy8udvddxbVZBSev/bTr+5XndO4+WS8aZph1r3A5GpkD8OgsWmHi+WE hx3IzxR9YLKm1RTJN9g1Goqq0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOJes8Po wt749dXKQKvwcIU1o4NBMB8GA1UdIwQYMBaAFG2opSZKfcb82I09TNz0hnnCYvcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjUzNi9FQUFFREVEMDg5 OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2ellqVDFNM1BTR2VjSmk5 dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhaWxKa3A5eHZ6WWpUMU0zUFNHZWNKaTl3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkY1MzYvRUFBRURFRDA4OThBMTFFQ0I2QTRGNzBCQzRGOUFFMDIvMDdDMzg3QjY4 OThFMTFFQzk1NDNBNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmvIwDQYJKoZIhvcNAQELBQADggEBAI/1JZa0DyXF6C4T xKGHWMmHw4mWjDVB+4LagLH/nDmTYKqx+ZRRHiS1yMGvMRYjTdE7pWlNQAyMmTM4 bCnk8iYl7IapnipcvTSWTdHG7H0apr/lixwL9mz6HSG8QDo8wIvPLDjsHgHTLU03 dXoeZxY4aHgtGcfsCeNBz5wSXhnTgHviJev1i2TpQRjDA8pWulXg1Q4KDzN53+9S Ow9fUJpEVW0nHytcBcXhOVTj7FzcyukN/XgiE0iItMxEQLUDm/hG+APjrDZwvCu1 7IJelyMKj5y94U3+aW0sVSMGnw5Ke1BKYs44zLpdwziazoXlv6H+ZyLwMXOGr9rM yqB2P2Y= -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:29 2025 by rpki-client