$ rpki-client -vvf rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa File: A48E2B14A73B11EF9933C14AC4F9AE02.roa (raw, json) Hash identifier: Pi9jvcspA1D49dJkl4PL8lZ8CXbTkLcOR5O9MkCQurg= Subject key identifier: A3:3D:18:ED:0B:1E:EC:8E:E5:FE:F8:26:8A:4C:FE:58:F9:85:75:D9 Certificate issuer: /CN=A917270F/serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Certificate serial: 02EB Authority key identifier: 7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa Signing time: Sun 17 Aug 2025 02:08:34 +0000 ROA not before: Sun 17 Aug 2025 02:08:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140269 IP address blocks: 103.191.162.0/24 maxlen: 24 2400:96e0::/32 maxlen: 32 2400:96e0:1000::/36 maxlen: 36 2400:96e0:1000::/40 maxlen: 40 2400:96e0:1001::/48 maxlen: 48 2400:96e0:1002::/48 maxlen: 48 2400:96e0:2000::/40 maxlen: 40 2400:96e0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917270F, serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Validity Not Before: Aug 17 02:08:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a139a2-1bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1c:0e:e9:6c:84:d0:33:6b:f4:dc:b9:0e:bd: a4:f2:15:db:bf:a1:98:3e:06:71:04:f5:19:8e:9a: 91:50:16:31:0c:7f:6c:21:65:d9:b0:b3:f7:9c:b9: b4:38:d4:95:95:b1:1c:80:80:16:6d:6c:89:22:89: a0:a0:31:aa:35:0a:4b:64:fb:8a:61:0e:55:4c:fb: c5:e9:0c:a8:cb:83:1d:d0:92:59:a9:6f:b6:b1:50: 39:c1:be:2c:ac:c7:84:44:5b:c6:e5:a9:ec:37:2a: 1f:8f:b3:48:c6:22:03:c2:e7:48:b8:9a:c3:51:62: 44:49:ff:95:d0:e3:9d:ac:c7:7f:2c:0d:57:72:12: aa:d9:e9:2d:88:20:e9:a2:80:93:5a:1b:f5:3b:9f: 53:76:dd:0d:a6:94:c7:50:57:bd:e0:e8:b6:5a:88: 0a:12:c1:b4:49:9e:84:0f:1a:88:5a:33:d4:74:9f: 26:5f:66:c0:c4:36:63:75:ae:4d:1c:3e:29:a5:d2: 82:9e:05:0d:77:14:ce:6a:6e:81:14:34:93:6e:72: 38:18:e3:14:ec:54:5e:9a:6c:40:90:8f:02:e2:ca: 61:38:21:f2:97:23:50:66:94:fb:c6:b0:36:15:9c: be:03:25:97:3a:12:d3:c0:11:fd:c3:d5:5a:dc:5b: 3c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3D:18:ED:0B:1E:EC:8E:E5:FE:F8:26:8A:4C:FE:58:F9:85:75:D9 X509v3 Authority Key Identifier: keyid:7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.162.0/24 IPv6: 2400:96e0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:8f:54:29:69:ba:3d:95:d0:7b:34:f2:d2:28:8e:ff:fe:37: 10:99:52:2d:eb:1c:44:5e:32:74:16:26:29:61:77:43:4d:78: 3b:aa:16:7c:cd:96:39:ac:f6:17:0e:d5:fd:e9:8d:88:70:7e: ce:0c:cc:b7:dd:4c:a2:f9:c6:26:c8:fb:ac:91:73:d7:03:2f: 12:6f:58:77:25:ec:c9:4f:7a:3d:a0:fb:ba:41:e4:36:f3:a6: 53:1a:be:92:aa:2b:02:0e:39:20:c1:74:76:17:9f:f8:1a:85: 3a:2e:97:cf:fd:3c:e2:de:9c:96:3d:0e:83:96:fc:68:ca:cd: f3:43:27:42:f2:e9:da:a8:3e:ae:2c:1f:45:69:ab:48:40:e3: 73:c4:78:47:cd:1f:8c:f2:50:cc:1b:b6:68:b8:68:7b:6a:61: 39:e5:44:2f:da:9e:17:6b:e3:96:76:68:bc:a7:7f:e6:b1:c7: 1b:3d:e3:2f:4e:5e:62:05:f6:14:80:43:c0:b4:99:e0:e5:b6: 0d:17:1c:25:00:15:c7:90:09:d2:b7:ff:35:8f:83:a6:86:7a: dd:ab:34:6a:23:cc:f4:5c:d5:83:92:f8:8a:d1:1a:7a:42:a0: dc:72:1f:ef:2c:a0:7e:46:c3:ed:34:2b:c7:fb:54:75:0d:7d: 51:b6:56:a3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3MEYxMTAvBgNVBAUTKDdFNDREQ0U5NzJGMTNDODBFNTM0QjJFNjg1RkUxRDJB MEQ3NjE1MTIwHhcNMjUwODE3MDIwODM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExMzlhMi0xYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhwO6WyE0DNr9Ny5Dr2k8hXbv6GYPgZxBPUZjpqRUBYxDH9sIWXZsLP3nLm0 ONSVlbEcgIAWbWyJIomgoDGqNQpLZPuKYQ5VTPvF6Qyoy4Md0JJZqW+2sVA5wb4s rMeERFvG5ansNyofj7NIxiIDwudIuJrDUWJESf+V0OOdrMd/LA1XchKq2ektiCDp ooCTWhv1O59Tdt0NppTHUFe94Oi2WogKEsG0SZ6EDxqIWjPUdJ8mX2bAxDZjda5N HD4ppdKCngUNdxTOam6BFDSTbnI4GOMU7FRemmxAkI8C4sphOCHylyNQZpT7xrA2 FZy+AyWXOhLTwBH9w9Va3Fs8aQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKM9GO0L HuyO5f74JopM/lj5hXXZMB8GA1UdIwQYMBaAFH5E3Oly8TyA5TSy5oX+HSoNdhUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjcwRi9EQzVFNzRDQTA4 RTgxMUVEQjlFMUI2MzNDNEY5QUUwMi9ma1RjNlhMeFBJRGxOTExtaGY0ZEtnMTJG UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZrVGM2WEx4UElEbE5MTG1oZjRkS2cxMkZSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI3MEYvREM1RTc0Q0EwOEU4MTFFREI5RTFCNjMzQzRGOUFFMDIvQTQ4RTJCMTRB NzNCMTFFRjk5MzNDMTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnv6IwDQQCAAIwBwMFACQAluAwDQYJKoZIhvcNAQELBQAD ggEBAI2PVClpuj2V0Hs08tIojv/+NxCZUi3rHEReMnQWJilhd0NNeDuqFnzNljms 9hcO1f3pjYhwfs4MzLfdTKL5xibI+6yRc9cDLxJvWHcl7MlPej2g+7pB5DbzplMa vpKqKwIOOSDBdHYXn/gahToul8/9POLenJY9DoOW/GjKzfNDJ0Ly6dqoPq4sH0Vp q0hA43PEeEfNH4zyUMwbtmi4aHtqYTnlRC/anhdr45Z2aLynf+axxxs94y9OXmIF 9hSAQ8C0meDltg0XHCUAFceQCdK3/zWPg6aGet2rNGojzPRc1YOS+IrRGnpCoNxy H+8soH5Gw+00K8f7VHUNfVG2VqM= -----END CERTIFICATE-----Generated at Sat Aug 23 19:58:46 2025 by rpki-client