$ rpki-client -vvf rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/4707F6CCB10F11E5A010921EC4F9AE02.roa File: 4707F6CCB10F11E5A010921EC4F9AE02.roa (raw, json) Hash identifier: 6zEasgx8d2eADPMA/likvG6cMgeT4lG28KVag9Ik7+Q= Subject key identifier: DB:F8:25:23:8E:E2:6C:CB:B2:A6:91:FA:E3:81:83:F5:FE:2A:37:0B Certificate issuer: /CN=A917FA93/serialNumber=325B2A6FD4B7BD40895562719FFD8D9AA1A8766D Certificate serial: 239E Authority key identifier: 32:5B:2A:6F:D4:B7:BD:40:89:55:62:71:9F:FD:8D:9A:A1:A8:76:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/4707F6CCB10F11E5A010921EC4F9AE02.roa Signing time: Mon 18 Aug 2025 16:23:45 +0000 ROA not before: Mon 18 Aug 2025 16:23:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55532 IP address blocks: 103.15.168.0/24 maxlen: 24 103.15.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.crl rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9118 (0x239e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FA93, serialNumber=325B2A6FD4B7BD40895562719FFD8D9AA1A8766D Validity Not Before: Aug 18 16:23:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a35391-f4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bd:29:5f:16:18:7c:76:00:34:f3:9f:f0:2a: 0c:48:61:03:76:ac:d9:42:db:92:fd:6f:7a:b5:88: 7b:25:8a:c7:ea:fe:ed:27:4a:83:90:36:2e:d3:4a: 9d:11:a9:f5:12:a0:a9:48:da:00:7b:37:d9:99:9b: 6c:78:35:db:65:c3:a5:77:9b:31:ac:67:b4:f7:55: 91:72:4d:fe:01:07:a4:69:7e:28:7d:59:82:55:17: c0:8d:73:81:6b:2d:5a:93:90:cb:9b:42:81:70:5a: 53:09:14:fa:01:66:05:db:8e:37:d2:93:43:57:29: 37:db:a4:fd:53:58:3f:6c:53:f3:26:2e:06:03:ea: 45:d0:7e:c7:a9:5f:9c:df:a6:99:6e:5f:0a:35:7c: f8:8b:f2:48:a0:47:82:08:60:8c:d2:b2:8f:0f:79: a9:4b:15:69:1d:20:38:d9:9f:2e:05:66:1c:dd:ca: f2:a0:67:6c:f3:9a:5b:12:78:d0:f8:23:2d:ed:64: a7:7d:67:ee:61:05:5a:b3:4d:0c:13:99:67:22:95: 9d:bc:5e:79:31:3d:35:4e:47:f2:9f:9d:3c:ca:a3: c6:d1:56:36:1d:ab:94:07:e2:e4:05:5c:89:04:a7: ad:10:11:a7:7c:5c:6c:1b:d3:a6:b4:d9:be:42:ab: 76:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F8:25:23:8E:E2:6C:CB:B2:A6:91:FA:E3:81:83:F5:FE:2A:37:0B X509v3 Authority Key Identifier: keyid:32:5B:2A:6F:D4:B7:BD:40:89:55:62:71:9F:FD:8D:9A:A1:A8:76:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/Mlsqb9S3vUCJVWJxn_2NmqGodm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mlsqb9S3vUCJVWJxn_2NmqGodm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FA93/E9013B76840711E592E9472DC4F9AE02/4707F6CCB10F11E5A010921EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.168.0/23 Signature Algorithm: sha256WithRSAEncryption 04:f2:48:4e:be:34:11:1b:ab:ff:a9:b6:69:3b:7c:ab:d4:93: 49:e0:96:ef:98:55:16:a8:d4:a8:03:70:3f:07:da:f5:ff:7f: f4:98:50:ee:23:6c:6b:53:39:c9:0e:c6:73:21:9d:50:93:0b: 26:4a:aa:82:58:f0:72:91:2b:08:ad:c6:da:ee:2d:a3:5f:d9: 54:d7:d0:4b:34:2d:4d:cb:b8:5f:42:8f:18:c7:34:58:4c:f6: d8:93:a3:a7:08:f0:e4:9a:3b:07:b8:95:07:96:aa:7e:ec:f3: ff:f5:65:11:2b:a3:2c:f9:75:8a:62:69:96:52:0e:9a:f3:a7: 77:d8:ae:e0:9e:54:d0:b5:f4:8b:66:40:11:2b:fb:80:49:64: 73:b8:a4:aa:55:dc:bd:20:5f:3e:47:1d:6f:e2:42:4a:c8:2e: be:7a:37:50:d8:ce:26:7c:87:97:9b:62:5a:73:18:05:c3:72: d6:8c:d8:00:9d:b7:71:ac:1d:b1:76:61:a9:84:f4:06:60:ab: 61:1c:50:b0:23:63:e7:cd:1a:12:6f:e1:b9:41:77:d6:7f:58: 76:42:46:ad:64:8e:a1:af:2c:63:87:98:83:d0:d4:4d:c2:97: c5:85:90:30:b8:91:c1:91:a0:89:8b:bd:b2:79:5c:9e:4a:8a: f8:26:62:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICI54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBOTMxMTAvBgNVBAUTKDMyNUIyQTZGRDRCN0JENDA4OTU1NjI3MTlGRkQ4RDlB QTFBODc2NkQwHhcNMjUwODE4MTYyMzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzNTM5MS1mNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1L0pXxYYfHYANPOf8CoMSGEDdqzZQtuS/W96tYh7JYrH6v7tJ0qDkDYu00qd Ean1EqCpSNoAezfZmZtseDXbZcOld5sxrGe091WRck3+AQekaX4ofVmCVRfAjXOB ay1ak5DLm0KBcFpTCRT6AWYF24430pNDVyk326T9U1g/bFPzJi4GA+pF0H7HqV+c 36aZbl8KNXz4i/JIoEeCCGCM0rKPD3mpSxVpHSA42Z8uBWYc3cryoGds85pbEnjQ +CMt7WSnfWfuYQVas00ME5lnIpWdvF55MT01Tkfyn508yqPG0VY2HauUB+LkBVyJ BKetEBGnfFxsG9OmtNm+Qqt2HwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNv4JSOO 4mzLsqaR+uOBg/X+KjcLMB8GA1UdIwQYMBaAFDJbKm/Ut71AiVVicZ/9jZqhqHZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkE5My9FOTAxM0I3Njg0 MDcxMUU1OTJFOTQ3MkRDNEY5QUUwMi9NbHNxYjlTM3ZVQ0pWV0p4bl8yTm1xR29k bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01sc3FiOVMzdlVDSlZXSnhuXzJObXFHb2RtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZBOTMvRTkwMTNCNzY4NDA3MTFFNTkyRTk0NzJEQzRGOUFFMDIvNDcwN0Y2Q0NC MTBGMTFFNUEwMTA5MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnD6gwDQYJKoZIhvcNAQELBQADggEBAATySE6+NBEbq/+p tmk7fKvUk0nglu+YVRao1KgDcD8H2vX/f/SYUO4jbGtTOckOxnMhnVCTCyZKqoJY 8HKRKwitxtruLaNf2VTX0Es0LU3LuF9CjxjHNFhM9tiTo6cI8OSaOwe4lQeWqn7s 8//1ZREroyz5dYpiaZZSDprzp3fYruCeVNC19ItmQBEr+4BJZHO4pKpV3L0gXz5H HW/iQkrILr56N1DYziZ8h5ebYlpzGAXDctaM2ACdt3GsHbF2YamE9AZgq2EcULAj Y+fNGhJv4blBd9Z/WHZCRq1kjqGvLGOHmIPQ1E3Cl8WFkDC4kcGRoImLvbJ5XJ5K ivgmYuc= -----END CERTIFICATE-----Generated at Sat Aug 23 22:15:43 2025 by rpki-client