$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa File: DB6928E4635411EF8B6D364BC4F9AE02.roa (raw, json) Hash identifier: hIfGEZpVGRuqTYaqcdzSTwoH6LvOfzrGbr0BYVenTJE= Subject key identifier: 3B:32:42:84:C2:F9:C7:BC:97:C5:CF:4E:A9:06:02:0D:CF:9F:84:F5 Certificate issuer: /CN=A918E2A5/serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Certificate serial: 013B Authority key identifier: 8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa Signing time: Fri 27 Jun 2025 04:22:48 +0000 ROA not before: Fri 27 Jun 2025 04:22:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58528 IP address blocks: 103.57.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2A5, serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Validity Not Before: Jun 27 04:22:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e1c97-ffb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:03:6f:e0:4b:89:5d:d2:f3:fc:46:f1:f2: ac:32:94:32:8e:4d:e7:bf:cc:ba:45:c2:c9:70:7f: 41:75:1a:72:65:b3:ae:d0:10:74:eb:a9:98:e2:0e: 9e:8e:e3:c3:cd:65:df:7c:0a:3d:23:d7:99:7e:0f: ad:54:a1:a6:3a:31:da:b8:87:1d:27:da:f8:f9:c7: 34:ff:a2:10:a3:8d:40:70:90:cb:9b:9a:27:68:1a: d1:36:3e:78:a4:aa:0d:ca:88:16:16:2f:ee:41:4b: e2:2c:90:9d:74:02:41:bb:05:f5:4d:cc:b3:9d:77: 0c:20:1e:1d:57:e2:85:3f:8f:fa:9c:c5:39:93:33: 6f:92:c8:a7:61:b3:35:03:66:40:b4:cc:0b:29:5c: 96:21:20:6c:f0:a5:8f:94:29:82:3b:3d:77:b2:9b: b6:10:9b:ff:8f:d9:a0:83:07:ec:a5:6c:2d:c3:0d: e8:41:b6:35:41:ff:86:45:a0:ed:02:64:55:b5:c7: 0a:44:d9:21:23:d5:be:34:1f:1b:05:be:6f:d4:4a: 40:47:69:ea:b3:33:cb:55:cb:de:be:73:0f:51:f4: df:c7:b8:6a:81:ae:5c:ee:64:d8:56:16:fc:b8:14: f5:20:98:e6:4f:97:38:8c:6c:ba:1f:29:99:f9:7b: b5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:32:42:84:C2:F9:C7:BC:97:C5:CF:4E:A9:06:02:0D:CF:9F:84:F5 X509v3 Authority Key Identifier: keyid:8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.89.0/24 Signature Algorithm: sha256WithRSAEncryption ab:06:64:ed:cd:b5:06:d5:ca:52:b8:08:56:e1:36:58:05:6c: 0f:79:36:54:c3:f0:07:e6:f0:78:a5:99:6d:1b:cf:23:d4:ed: 23:99:3b:d2:06:41:ff:35:35:e2:a9:07:48:16:70:62:11:88: ed:80:86:75:de:af:11:4b:fd:55:b7:c6:bb:e8:20:68:a1:5f: 5b:b6:8f:b9:05:32:f8:49:eb:fa:b6:cc:b6:e3:9b:fd:a6:c9: 81:ad:e4:16:a9:9f:f1:b3:29:94:29:35:79:3a:a5:7e:82:68: be:bf:8e:6c:9a:3b:be:30:4c:85:27:8b:6b:58:a8:96:47:e3: 70:01:2e:1b:44:83:d4:60:e6:93:94:b2:30:9b:7a:24:02:10: db:db:34:86:d4:92:71:95:46:b8:fc:ce:56:5e:66:cd:22:61: 27:2d:21:a3:0f:35:02:3c:19:f9:26:9a:6c:38:82:e6:94:26: 7d:01:87:54:6b:dd:47:ce:7c:35:3f:e3:0b:93:45:be:dd:de: 80:33:1c:de:4b:03:3a:6e:32:3c:18:b8:4c:cb:79:1f:14:fd: 92:76:ca:45:13:67:5d:46:e0:eb:cf:f7:1b:ea:2a:04:2d:bc: f0:87:41:ca:53:e0:68:f0:01:1b:c2:4c:07:d9:62:ad:d1:05: 72:7e:84:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQTUxMTAvBgNVBAUTKDhDRENFNTc4QTIzOUU1OENFN0ZFNzY4M0JCNDc2OUY5 REM1NTIyQkEwHhcNMjUwNjI3MDQyMjQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMWM5Ny1mZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/0Db+BLiV3S8/xG8fKsMpQyjk3nv8y6RcLJcH9BdRpyZbOu0BB066mY4g6e juPDzWXffAo9I9eZfg+tVKGmOjHauIcdJ9r4+cc0/6IQo41AcJDLm5onaBrRNj54 pKoNyogWFi/uQUviLJCddAJBuwX1TcyznXcMIB4dV+KFP4/6nMU5kzNvksinYbM1 A2ZAtMwLKVyWISBs8KWPlCmCOz13spu2EJv/j9mggwfspWwtww3oQbY1Qf+GRaDt AmRVtccKRNkhI9W+NB8bBb5v1EpAR2nqszPLVcvevnMPUfTfx7hqga5c7mTYVhb8 uBT1IJjmT5c4jGy6HymZ+Xu1fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDsyQoTC +ce8l8XPTqkGAg3Pn4T1MB8GA1UdIwQYMBaAFIzc5XiiOeWM5/52g7tHafncVSK6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBNS9BMUMwNEQwQTc2 Q0IxMUVFOTNGNTg3NDdDNEY5QUUwMi9qTnpsZUtJNTVZem5fbmFEdTBkcC1keFZJ cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOemxlS0k1NVl6bl9uYUR1MGRwLWR4Vklyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQTUvQTFDMDREMEE3NkNCMTFFRTkzRjU4NzQ3QzRGOUFFMDIvREI2OTI4RTQ2 MzU0MTFFRjhCNkQzNjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOVkwDQYJKoZIhvcNAQELBQADggEBAKsGZO3NtQbVylK4 CFbhNlgFbA95NlTD8Afm8HilmW0bzyPU7SOZO9IGQf81NeKpB0gWcGIRiO2AhnXe rxFL/VW3xrvoIGihX1u2j7kFMvhJ6/q2zLbjm/2myYGt5Bapn/GzKZQpNXk6pX6C aL6/jmyaO74wTIUni2tYqJZH43ABLhtEg9Rg5pOUsjCbeiQCENvbNIbUknGVRrj8 zlZeZs0iYSctIaMPNQI8Gfkmmmw4guaUJn0Bh1Rr3UfOfDU/4wuTRb7d3oAzHN5L AzpuMjwYuEzLeR8U/ZJ2ykUTZ11G4OvP9xvqKgQtvPCHQcpT4GjwARvCTAfZYq3R BXJ+hFc= -----END CERTIFICATE-----Generated at Sun Jul 6 10:32:40 2025 by rpki-client