$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa File: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (raw, json) Hash identifier: 5TUKEfy6g0GeyNMiU+/ZPkSDtLBvBaGEjV4EvzvhmZg= Subject key identifier: D4:EE:2A:56:67:33:1B:3A:98:CA:6D:2E:2C:FD:99:3F:8B:91:26:83 Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0E59 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa Signing time: Mon 30 Jun 2025 18:29:48 +0000 ROA not before: Mon 30 Jun 2025 18:29:48 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135323 IP address blocks: 103.215.128.0/24 maxlen: 24 103.215.129.0/24 maxlen: 24 103.215.130.0/24 maxlen: 24 103.215.131.0/24 maxlen: 24 202.58.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Jun 30 18:29:48 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6862d79c-8e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:a9:28:e9:01:e6:99:22:36:5e:10:0e:1a: a1:7d:f6:bd:bd:06:48:1b:c5:51:04:0e:6d:1a:ad: 99:62:28:ec:df:16:17:38:51:56:06:85:a1:c6:e9: 42:31:c8:a6:4d:a4:1f:1f:24:3d:bf:de:5e:91:7e: e8:e5:56:2a:0b:e4:86:a1:11:7c:c6:5c:d1:2a:20: e3:03:2c:d6:82:65:43:ab:f6:05:98:c9:bc:80:47: 2e:21:ec:48:69:28:34:73:61:4a:53:52:6b:64:e5: 58:83:4d:63:5d:32:31:e2:53:c7:d0:68:70:f8:e6: 8e:b1:ea:14:fb:7d:40:6c:00:3c:ce:52:89:19:b7: 43:2e:ea:d0:b0:b6:46:86:e1:13:11:2e:9f:97:91: 01:83:fb:d3:7c:7b:1a:5d:4c:35:e3:5c:da:21:35: 51:37:86:65:60:bd:54:92:d2:a6:ff:4d:4c:5d:e2: 64:db:f3:a5:04:0b:ea:f2:89:64:09:63:a9:e9:df: af:7a:47:dc:aa:65:32:00:d0:e1:45:fc:9f:bd:2d: 57:f4:0d:3f:4f:6b:72:03:ae:ae:7d:7a:0e:91:a5: 87:74:86:f7:c5:91:27:60:95:d2:b3:23:fa:53:d1: 28:39:66:39:fc:25:51:c1:b6:32:76:24:df:77:70: 76:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EE:2A:56:67:33:1B:3A:98:CA:6D:2E:2C:FD:99:3F:8B:91:26:83 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.128.0/22 202.58.233.0/24 Signature Algorithm: sha256WithRSAEncryption 93:75:6d:38:a6:36:41:06:12:bc:20:71:41:e7:11:3c:8c:80: 93:bc:9e:ee:f6:b1:f2:2a:5d:46:38:60:2f:a9:08:45:26:55: 6d:ba:49:0c:c2:2e:3c:2e:74:b2:16:f6:d4:3d:b3:64:09:68: 63:1d:da:7d:6e:ae:24:52:e0:6e:12:2f:c3:e4:22:4e:1b:d6: 7e:84:64:7c:7e:80:8b:59:6b:11:c3:c2:1e:0f:35:2a:00:ce: 07:0b:c9:36:98:fb:64:e7:76:ca:bf:dc:90:a8:46:66:4f:e4: 38:6c:9d:30:a3:d3:f5:ff:54:18:96:a5:68:e5:e3:b7:b3:ef: b8:26:5d:43:7d:51:80:be:6b:ff:3f:f1:22:5c:1c:e7:0f:b5: 97:86:3d:9f:f6:33:4a:a6:26:c9:d8:19:73:94:75:c6:0b:85: cd:75:9c:97:44:17:69:dd:2c:db:25:72:2c:da:cd:97:4e:9a: 1d:88:41:79:4b:8a:0e:0c:89:85:f2:3a:1e:bf:16:5a:86:3c: 73:08:e6:c9:06:ba:f5:e9:65:8e:b5:da:7f:ad:88:1c:da:0e: a5:1e:42:10:45:75:ff:90:c6:f1:57:f6:56:a3:02:d2:9a:a9: 23:7e:2c:67:a8:22:93:1e:30:72:84:83:6f:94:b2:d0:29:85: c0:52:58:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjUwNjMwMTgyOTQ4WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyZDc5Yy04ZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiWpKOkB5pkiNl4QDhqhffa9vQZIG8VRBA5tGq2ZYijs3xYXOFFWBoWhxulC McimTaQfHyQ9v95ekX7o5VYqC+SGoRF8xlzRKiDjAyzWgmVDq/YFmMm8gEcuIexI aSg0c2FKU1JrZOVYg01jXTIx4lPH0Ghw+OaOseoU+31AbAA8zlKJGbdDLurQsLZG huETES6fl5EBg/vTfHsaXUw141zaITVRN4ZlYL1UktKm/01MXeJk2/OlBAvq8olk CWOp6d+vekfcqmUyANDhRfyfvS1X9A0/T2tyA66ufXoOkaWHdIb3xZEnYJXSsyP6 U9EoOWY5/CVRwbYydiTfd3B2qQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNTuKlZn Mxs6mMptLiz9mT+LkSaDMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA0N0YvRkQ3MkRFMTRBM0E5MTFFOTlGNzU3NzdCQzRGOUFFMDIvMDZGRDYwQUFB OENFMTFFQkJENERCOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn14ADBADKOukwDQYJKoZIhvcNAQELBQADggEBAJN1bTim NkEGErwgcUHnETyMgJO8nu72sfIqXUY4YC+pCEUmVW26SQzCLjwudLIW9tQ9s2QJ aGMd2n1uriRS4G4SL8PkIk4b1n6EZHx+gItZaxHDwh4PNSoAzgcLyTaY+2Tndsq/ 3JCoRmZP5DhsnTCj0/X/VBiWpWjl47ez77gmXUN9UYC+a/8/8SJcHOcPtZeGPZ/2 M0qmJsnYGXOUdcYLhc11nJdEF2ndLNslcizazZdOmh2IQXlLig4MiYXyOh6/FlqG PHMI5skGuvXpZY612n+tiBzaDqUeQhBFdf+QxvFX9lajAtKaqSN+LGeoIpMeMHKE g2+UstAphcBSWGA= -----END CERTIFICATE-----Generated at Thu Jul 3 07:08:03 2025 by rpki-client