$ rpki-client -vvf rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa File: 41C460BE1BE911ED81DB667EC4F9AE02.roa (raw, json) Hash identifier: utZX5ySaw+fRg+Lh06bBkb/YXcN+yf0Mo1jgBt8t3jI= Subject key identifier: 94:A1:66:87:E6:3E:6C:DE:52:91:6F:F4:4B:73:2E:04:DA:04:B1:18 Certificate issuer: /CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Certificate serial: 0323 Authority key identifier: AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa Signing time: Fri 15 Aug 2025 02:07:40 +0000 ROA not before: Fri 15 Aug 2025 02:07:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.189.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917414E, serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Validity Not Before: Aug 15 02:07:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e966c-53fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:58:10:72:fa:7f:60:d5:2c:6f:e5:90:60: 83:5f:46:7c:5b:f1:18:3b:ef:14:7d:c5:3c:c9:47: 65:e5:f8:74:74:1d:48:d8:97:c8:e4:f0:dd:8f:c6: 23:65:c9:43:45:8e:42:68:67:d1:cf:80:47:16:83: 51:82:16:ab:3a:1a:a0:82:bc:8d:3b:72:46:dc:38: ed:98:67:54:4f:cd:73:a4:03:98:23:eb:13:92:f1: dc:c5:ea:e7:bd:f0:3c:21:dc:1c:33:10:a9:e1:e2: f2:a5:34:c4:17:ce:bf:5c:b7:8e:50:e2:2c:35:7a: 01:4c:c6:dc:0d:a5:be:57:e1:06:4f:2e:e0:67:cc: 55:39:e6:81:5a:d1:f0:ad:4c:2d:3d:6e:81:c9:01: a2:7f:8e:06:ba:fc:90:82:85:f5:41:ad:ec:79:a2: b9:1c:e6:9a:3a:e1:54:60:ae:0b:1b:14:26:9f:d5: e5:7d:b2:5a:ba:93:f1:23:73:9a:2f:31:89:5f:23: 68:ef:06:8a:db:71:69:03:6f:11:e3:46:e6:3f:ff: c0:18:57:b8:69:47:0e:5b:c6:9f:e9:1c:86:01:2e: e2:23:2c:b7:8b:4d:67:0d:e6:a0:0d:c7:70:e3:b6: 57:90:d8:1c:d7:83:2a:c2:8e:b1:e9:ed:79:da:87: b6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A1:66:87:E6:3E:6C:DE:52:91:6F:F4:4B:73:2E:04:DA:04:B1:18 X509v3 Authority Key Identifier: keyid:AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.11.0/24 Signature Algorithm: sha256WithRSAEncryption 43:fe:82:ec:f8:9b:2e:23:40:66:5a:3c:8a:47:84:63:85:8c: 03:3d:a8:4e:0a:8b:6e:1f:95:92:d6:f2:9c:30:2c:05:6d:03: 9d:4c:0d:55:47:f7:5d:73:48:21:8f:83:61:38:f4:a9:13:73: 6a:4a:03:01:9c:85:7f:c7:48:01:82:6c:dc:94:fe:bb:47:c1: 27:db:05:56:73:b5:e8:94:46:21:d6:3b:cf:9b:72:43:bc:87: 5d:92:7f:99:30:86:5b:24:96:9d:4a:57:10:1c:50:76:f8:38: cf:3a:9a:74:71:74:4e:bb:ad:ae:cd:93:8b:7c:bb:ec:36:6e: e5:ea:39:cc:1d:6d:93:c4:cd:16:0b:26:0f:b4:56:3b:14:48: 26:cc:64:91:70:cd:86:f1:f7:31:20:e9:fd:56:f1:72:08:ac: 67:52:2c:6c:20:12:19:e4:f7:6b:3c:cb:77:cc:9d:d3:d7:e6: 3f:36:67:c5:29:d1:03:a7:43:c9:c4:55:47:e5:66:9a:2c:1d: 18:1d:1f:9a:3e:be:a6:ec:5b:b8:be:08:8e:d0:89:0b:38:cf: a9:79:24:d7:08:0b:ed:b9:5c:27:19:ea:9f:6c:b7:c9:bb:3b: 8c:77:cc:c3:b8:b8:0b:53:4d:b3:3f:0f:d2:92:c3:8b:fe:2f: 83:85:c6:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxNEUxMTAvBgNVBAUTKEFGNjcxMzJEODM3RDU3NkZGRjc3NzIyN0EzNzI1RDYw MUVEOTEwNUQwHhcNMjUwODE1MDIwNzQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllOTY2Yy01M2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq1YEHL6f2DVLG/lkGCDX0Z8W/EYO+8UfcU8yUdl5fh0dB1I2JfI5PDdj8Yj ZclDRY5CaGfRz4BHFoNRgharOhqggryNO3JG3DjtmGdUT81zpAOYI+sTkvHcxern vfA8IdwcMxCp4eLypTTEF86/XLeOUOIsNXoBTMbcDaW+V+EGTy7gZ8xVOeaBWtHw rUwtPW6ByQGif44GuvyQgoX1Qa3seaK5HOaaOuFUYK4LGxQmn9XlfbJaupPxI3Oa LzGJXyNo7waK23FpA28R40bmP//AGFe4aUcOW8af6RyGAS7iIyy3i01nDeagDcdw 47ZXkNgc14Mqwo6x6e152oe2RwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJShZofm PmzeUpFv9EtzLgTaBLEYMB8GA1UdIwQYMBaAFK9nEy2DfVdv/3dyJ6NyXWAe2RBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE0RS80QzVFMkZCOEUz RkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYyX19kM0lubzNKZFlCN1pF RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IyY1RMWU45VjJfX2QzSW5vM0pkWUI3WkVGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxNEUvNEM1RTJGQjhFM0ZGMTFFQ0FDMjEwNTcyQzRGOUFFMDIvNDFDNDYwQkUx QkU5MTFFRDgxREI2NjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQswDQYJKoZIhvcNAQELBQADggEBAEP+guz4my4jQGZa PIpHhGOFjAM9qE4Ki24flZLW8pwwLAVtA51MDVVH911zSCGPg2E49KkTc2pKAwGc hX/HSAGCbNyU/rtHwSfbBVZzteiURiHWO8+bckO8h12Sf5kwhlsklp1KVxAcUHb4 OM86mnRxdE67ra7Nk4t8u+w2buXqOcwdbZPEzRYLJg+0VjsUSCbMZJFwzYbx9zEg 6f1W8XIIrGdSLGwgEhnk92s8y3fMndPX5j82Z8Up0QOnQ8nEVUflZposHRgdH5o+ vqbsW7i+CI7QiQs4z6l5JNcIC+25XCcZ6p9st8m7O4x3zMO4uAtTTbM/D9KSw4v+ L4OFxlQ= -----END CERTIFICATE-----Generated at Sun Aug 24 00:02:11 2025 by rpki-client