$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa File: 282282B60D3011ED8DC4D26BC4F9AE02.roa (raw, json) Hash identifier: MWEsRQVRa9qaHn6fTEOexcENWAVY9rzeLcSk3zwVJV0= Subject key identifier: D4:31:06:B1:1A:A3:A6:5B:BC:C7:7C:AD:4D:25:61:3F:E8:1F:03:26 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 028D Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa Signing time: Thu 03 Jul 2025 02:06:44 +0000 ROA not before: Thu 03 Jul 2025 02:06:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137890 IP address blocks: 103.116.156.0/24 maxlen: 24 2001:df5:5700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37, serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Jul 3 02:06:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865e5b4-bf94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:df:b5:f4:a5:3c:85:4c:ce:dd:21:23:03:c8: af:d6:f2:9e:46:45:48:e0:99:e2:28:57:d2:d3:71: bb:b9:39:ee:e5:b7:c5:35:79:cb:85:bb:b1:85:77: fb:8a:db:fe:c5:56:6d:c7:d5:68:6e:e5:3a:81:a3: 75:4a:9f:31:4d:d9:f2:40:ef:5d:4f:9c:b5:88:70: e6:c2:0b:d8:96:82:a7:2e:62:58:d4:77:72:ee:24: 74:50:2d:38:4d:fb:54:4f:ee:fd:89:22:5d:1e:f6: 5e:68:85:aa:1f:e0:34:70:9c:12:3b:72:08:36:07: e4:35:c5:d4:26:6a:4a:00:6f:85:39:e5:9e:89:81: 91:b3:f4:a5:3d:03:4a:05:6c:23:02:b0:85:a2:76: 92:5c:1a:59:5e:3c:65:45:b4:2b:4a:7a:c6:33:bb: cc:75:5e:61:19:94:4a:bb:77:b0:ab:c9:5c:71:42: 55:40:c9:79:88:d2:dd:5f:91:27:5d:6b:4c:f4:97: bc:47:ab:00:a2:6d:e7:4b:e8:91:14:70:f6:15:d6: ed:3e:92:a1:5b:b9:00:d6:64:68:93:7b:b8:3f:5b: 28:12:3d:e4:c3:7a:be:e0:fc:08:7f:77:81:b5:7f: 68:d6:bf:9e:94:d6:e4:d0:ba:84:81:f3:30:db:fe: 00:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:31:06:B1:1A:A3:A6:5B:BC:C7:7C:AD:4D:25:61:3F:E8:1F:03:26 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.156.0/24 IPv6: 2001:df5:5700::/48 Signature Algorithm: sha256WithRSAEncryption 6b:7c:4d:60:c7:ea:d2:5b:a2:74:f2:fd:23:b6:e5:44:9b:b4: 09:27:91:20:fc:e6:73:fa:07:5a:7b:09:dc:9d:33:b5:01:44: f8:62:6b:7f:d7:12:a5:d3:3a:73:ca:27:e0:7d:b4:7d:60:2c: eb:0d:b8:ae:5c:c4:1e:8e:78:11:93:d2:af:85:84:00:31:55: f9:7b:23:ba:72:af:ac:ff:61:e3:ce:98:ae:4d:9d:3d:0e:89: 3a:42:d0:fc:06:98:9e:26:cf:75:54:74:db:9d:d4:a6:b1:1e: 8f:7d:6d:ad:0f:9c:ca:ec:b1:5d:21:44:47:fe:79:e8:95:89: 7b:a4:8f:5b:d0:f8:2d:e8:12:83:e9:c5:12:58:f4:cf:20:42: 8b:8e:78:c4:5f:50:75:eb:d8:e2:67:7d:38:09:cc:59:21:6f: a5:32:54:e2:22:76:5b:bd:d1:d0:a4:00:2c:7d:2f:4e:f1:d8: 07:69:13:cd:8c:4c:5f:5a:23:bf:c9:e6:fa:43:99:9d:7b:f6: 10:8f:b1:13:6d:0e:c0:b3:31:4c:e8:7f:e3:7d:3b:94:7d:21: 4c:0c:f7:f2:54:cd:fe:06:f5:ed:fe:9c:99:10:e0:c5:04:bf: c8:67:c4:32:cb:d3:3d:7c:ae:8b:50:2f:99:44:87:c3:07:69: d7:29:37:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjUwNzAzMDIwNjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZTViNC1iZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N+19KU8hUzO3SEjA8iv1vKeRkVI4JniKFfS03G7uTnu5bfFNXnLhbuxhXf7 itv+xVZtx9VobuU6gaN1Sp8xTdnyQO9dT5y1iHDmwgvYloKnLmJY1Hdy7iR0UC04 TftUT+79iSJdHvZeaIWqH+A0cJwSO3IINgfkNcXUJmpKAG+FOeWeiYGRs/SlPQNK BWwjArCFonaSXBpZXjxlRbQrSnrGM7vMdV5hGZRKu3ewq8lccUJVQMl5iNLdX5En XWtM9Je8R6sAom3nS+iRFHD2FdbtPpKhW7kA1mRok3u4P1soEj3kw3q+4PwIf3eB tX9o1r+elNbk0LqEgfMw2/4AUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNQxBrEa o6ZbvMd8rU0lYT/oHwMmMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGMzcvQzhDQzVBQjQwRDJEMTFFREIyQzlCQjY5QzRGOUFFMDIvMjgyMjgyQjYw RDMwMTFFRDhEQzREMjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABndJwwDwQCAAIwCQMHACABDfVXADANBgkqhkiG9w0BAQsF AAOCAQEAa3xNYMfq0luidPL9I7blRJu0CSeRIPzmc/oHWnsJ3J0ztQFE+GJrf9cS pdM6c8on4H20fWAs6w24rlzEHo54EZPSr4WEADFV+XsjunKvrP9h486Yrk2dPQ6J OkLQ/AaYnibPdVR0253UprEej31trQ+cyuyxXSFER/556JWJe6SPW9D4LegSg+nF Elj0zyBCi454xF9QdevY4md9OAnMWSFvpTJU4iJ2W73R0KQALH0vTvHYB2kTzYxM X1ojv8nm+kOZnXv2EI+xE20OwLMxTOh/4307lH0hTAz38lTN/gb17f6cmRDgxQS/ yGfEMsvTPXyui1AvmUSHwwdp1yk3iQ== -----END CERTIFICATE-----Generated at Sat Jul 5 21:01:02 2025 by rpki-client