$ rpki-client -vvf rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa File: C3A5D7A482EC11EAB62A4C48C4F9AE02.roa (raw, json) Hash identifier: 0V1hKLm+r4dSC+e7G/qlJanKA86/g6SLREXYPfiyVTo= Subject key identifier: 01:B0:8C:E6:84:4F:F6:02:03:51:86:6F:8D:04:4A:DA:6A:27:AA:B0 Certificate issuer: /CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Certificate serial: 0CA8 Authority key identifier: 7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa Signing time: Sat 28 Jun 2025 18:31:51 +0000 ROA not before: Sat 28 Jun 2025 18:31:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137885 IP address blocks: 103.66.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AF08, serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Validity Not Before: Jun 28 18:31:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68603516-609a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:8b:a8:7b:23:4f:42:ce:24:2c:18:6f:27: 55:16:18:d5:94:87:7e:52:d7:2b:d6:ff:32:a2:dd: 59:b9:80:74:7c:ff:bf:a1:41:54:55:07:f6:e6:56: bd:9b:02:fa:64:64:34:2c:4e:57:e5:cc:d1:d6:44: e7:ea:4f:2b:97:a9:10:12:51:af:8b:c4:e7:c4:f1: 15:8a:f6:29:83:9d:e1:c0:5f:b8:b5:fd:75:f8:e6: 99:d5:d1:64:b1:42:94:a0:93:1e:ed:24:48:c3:a8: 8c:3f:9e:73:84:d1:6c:3a:b0:38:ed:24:77:83:53: ea:b9:ad:ad:ca:5b:da:4c:ce:e1:e4:f4:80:ea:b8: 79:63:38:8d:52:6e:f0:f7:13:2f:f9:a0:ac:cc:c4: bd:6e:de:67:38:07:af:72:3d:7a:76:b1:29:12:5a: af:1f:49:65:af:2f:e3:1e:c9:55:14:37:df:1c:c0: e0:38:0b:1c:36:e3:63:68:bd:fc:d8:91:12:26:a2: 44:9b:e8:0a:22:14:6f:8f:86:c7:7c:4a:83:42:69: ec:a1:92:8a:71:e3:65:27:25:cf:13:fc:29:f3:23: bf:a0:54:c3:dc:bb:bc:3b:5d:21:57:f0:6b:54:d7: 36:8c:ac:59:13:3b:70:d6:ec:2f:0e:a5:67:de:f4: ec:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B0:8C:E6:84:4F:F6:02:03:51:86:6F:8D:04:4A:DA:6A:27:AA:B0 X509v3 Authority Key Identifier: keyid:7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.131.0/24 Signature Algorithm: sha256WithRSAEncryption c1:c4:e5:c1:f5:e6:93:52:07:d4:83:6c:fe:7b:1d:86:47:03: 28:31:27:57:61:05:e1:e0:41:27:fb:d8:99:61:5a:11:aa:e7: 49:8a:22:c1:5e:eb:2b:6a:ae:8f:c2:22:48:38:db:be:a4:c8: 52:8d:80:a9:64:e4:cc:19:55:b8:dc:3c:ca:76:99:4f:7f:d3: 8b:a4:99:4d:22:0e:79:6f:cd:84:6a:32:2c:4c:2f:7d:56:41: 6c:bf:ad:f1:85:5c:44:61:5b:e8:54:ce:1a:b6:88:45:1c:83: db:36:fd:74:b6:fb:a7:23:ee:e4:93:50:a4:08:8c:c1:1a:e6: 28:16:f3:6a:1f:7f:28:e4:ed:63:18:72:67:8c:e5:ef:02:c0: 72:46:5f:90:7d:02:e1:3e:56:b7:ee:68:4d:6f:02:a4:83:9c: b3:85:e3:f9:c6:b5:04:6e:97:9c:d8:1f:cc:d9:e6:39:85:c2: 18:77:60:85:70:66:69:e9:0d:af:55:7f:31:27:e1:f8:8e:5c: da:10:71:b2:1b:33:06:48:26:b5:6e:a0:d0:49:d7:3c:d1:0d: c7:83:aa:3e:c5:c2:9d:a1:5b:f9:02:e6:53:df:a3:47:ff:ae: 64:04:e8:0f:77:24:ed:94:3f:d1:da:da:7b:d7:9a:a9:9f:88: e3:77:5e:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFGMDgxMTAvBgNVBAUTKDdFRTBDNkEyOEI3NTlGNzJENURDOUE1ODk1MDM4QkJB Qjk0QTg2MTQwHhcNMjUwNjI4MTgzMTUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwMzUxNi02MDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn6LqHsjT0LOJCwYbydVFhjVlId+Utcr1v8yot1ZuYB0fP+/oUFUVQf25la9 mwL6ZGQ0LE5X5czR1kTn6k8rl6kQElGvi8TnxPEVivYpg53hwF+4tf11+OaZ1dFk sUKUoJMe7SRIw6iMP55zhNFsOrA47SR3g1Pqua2tylvaTM7h5PSA6rh5YziNUm7w 9xMv+aCszMS9bt5nOAevcj16drEpElqvH0llry/jHslVFDffHMDgOAscNuNjaL38 2JESJqJEm+gKIhRvj4bHfEqDQmnsoZKKceNlJyXPE/wp8yO/oFTD3Lu8O10hV/Br VNc2jKxZEztw1uwvDqVn3vTsnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGwjOaE T/YCA1GGb40EStpqJ6qwMB8GA1UdIwQYMBaAFH7gxqKLdZ9y1dyaWJUDi7q5SoYU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUYwOC9CMEY1Mzc2Q0ZB QzAxMUU5OTREOTIwNjVDNEY5QUUwMi9mdURHb290MW4zTFYzSnBZbFFPTHVybEto aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1REdvb3QxbjNMVjNKcFlsUU9MdXJsS2hoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFGMDgvQjBGNTM3NkNGQUMwMTFFOTk0RDkyMDY1QzRGOUFFMDIvQzNBNUQ3QTQ4 MkVDMTFFQUI2MkE0QzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQoMwDQYJKoZIhvcNAQELBQADggEBAMHE5cH15pNSB9SD bP57HYZHAygxJ1dhBeHgQSf72JlhWhGq50mKIsFe6ytqro/CIkg4276kyFKNgKlk 5MwZVbjcPMp2mU9/04ukmU0iDnlvzYRqMixML31WQWy/rfGFXERhW+hUzhq2iEUc g9s2/XS2+6cj7uSTUKQIjMEa5igW82offyjk7WMYcmeM5e8CwHJGX5B9AuE+Vrfu aE1vAqSDnLOF4/nGtQRul5zYH8zZ5jmFwhh3YIVwZmnpDa9VfzEn4fiOXNoQcbIb MwZIJrVuoNBJ1zzRDceDqj7Fwp2hW/kC5lPfo0f/rmQE6A93JO2UP9Ha2nvXmqmf iON3Xo4= -----END CERTIFICATE-----Generated at Fri Jul 4 08:27:18 2025 by rpki-client