$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa File: 65674CAE2CC911F085E9B54FC4F9AE02.roa (raw, json) Hash identifier: sVwxj8pb/X0KOyVBfmu/JHCV32hFIOXFbfXDeMrIHO4= Subject key identifier: E8:64:D6:D5:A1:FB:78:D8:0F:BC:4F:F0:6E:55:7F:CF:8A:C2:B1:C7 Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0CC3 Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa Signing time: Thu 12 Jun 2025 04:31:31 +0000 ROA not before: Thu 12 Jun 2025 04:31:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139623 IP address blocks: 103.93.232.0/22 maxlen: 24 103.142.158.0/23 maxlen: 23 2401:31c0::/32 maxlen: 32 2405:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F, serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: Jun 12 04:31:31 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=684a5823-ebf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:23:52:c9:7d:9b:d9:03:40:54:45:e9:e9: 2d:31:70:43:2c:bf:5b:6e:e2:34:62:29:5c:31:cc: 69:e8:c4:b2:7f:13:05:06:4e:29:0e:cc:52:5e:49: b9:d7:6c:5f:6a:39:d6:99:0b:97:f6:12:76:7b:f8: 26:73:94:dd:f5:35:f4:10:7d:af:d5:24:c3:c8:12: d4:54:ad:fe:a1:3b:0d:59:92:3e:38:b5:89:00:a8: 8f:75:a3:bc:06:54:ff:a5:8b:b7:b7:8a:19:a3:4c: 89:2f:b0:26:21:2f:86:05:8c:36:81:0d:38:93:7c: 19:10:fe:6a:a1:33:3f:5f:ac:33:5c:8f:0e:c0:24: 83:57:d8:4c:bc:f3:dc:b7:96:39:ee:fd:c4:44:ea: 54:d1:96:a7:9b:f0:33:ca:ad:a4:34:d6:50:1d:e1: 39:9d:bd:93:15:dd:cf:86:d1:30:11:74:ff:71:29: 52:8a:bd:e0:47:61:22:2b:80:8e:80:1b:e0:be:1c: 41:d4:80:d7:37:bb:4c:5c:b4:ec:c1:42:20:cd:6c: 2c:3f:9d:13:87:69:cc:40:cf:03:30:dc:07:66:51: 31:b9:b5:e2:d3:b5:26:8c:db:6c:de:ce:e7:e0:04: 08:2b:a4:9c:97:f0:63:ca:28:90:76:1f:c1:5b:62: 7d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:64:D6:D5:A1:FB:78:D8:0F:BC:4F:F0:6E:55:7F:CF:8A:C2:B1:C7 X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.232.0/22 103.142.158.0/23 IPv6: 2401:31c0::/32 2405:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 56:43:33:18:94:05:14:f8:3e:30:a1:7f:5d:33:c4:51:44:80: 71:6e:98:16:93:0a:c8:a1:2a:5c:1a:a0:c0:62:32:e0:9e:f1: 4a:c1:3e:11:99:27:27:39:6f:46:5d:8b:94:ec:96:90:b7:c4: 25:c4:cb:90:da:a0:92:d7:5e:1d:9c:3f:22:c6:d0:82:62:51: 61:70:ef:e4:f0:bc:cc:02:ab:61:73:03:93:9b:b5:0b:57:c7: de:12:5c:dc:80:27:1b:02:18:71:b2:96:f4:4a:86:1f:5f:d6: 87:9e:87:6b:33:80:3b:46:00:ee:b4:a5:08:80:3f:5a:a1:d3: bd:6a:4f:b4:2e:74:69:f3:35:9d:09:2c:cd:60:40:d5:d2:33: 3e:a6:11:89:46:1c:4d:ff:ea:66:c9:80:11:36:ca:cc:45:b7: 13:e3:22:46:0d:56:f7:ba:e4:34:0d:f0:97:47:ab:34:20:17: e6:bf:07:7d:2d:ac:9e:45:14:3a:d7:d8:9d:38:0a:a3:cb:ae: a3:2b:22:54:0e:8e:0f:b4:cc:74:7b:37:62:6d:c0:89:d2:6f: 35:b9:89:bb:f5:04:bb:a7:37:8b:bd:58:6e:30:9d:d4:96:d8: d5:fc:2b:7c:1c:af:58:02:2f:4d:a0:5e:11:3d:9b:e7:36:e0: 99:04:79:e6 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjUwNjEyMDQzMTMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhNTgyMy1lYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlMjUsl9m9kDQFRF6ektMXBDLL9bbuI0YilcMcxp6MSyfxMFBk4pDsxSXkm5 12xfajnWmQuX9hJ2e/gmc5Td9TX0EH2v1STDyBLUVK3+oTsNWZI+OLWJAKiPdaO8 BlT/pYu3t4oZo0yJL7AmIS+GBYw2gQ04k3wZEP5qoTM/X6wzXI8OwCSDV9hMvPPc t5Y57v3EROpU0Zanm/Azyq2kNNZQHeE5nb2TFd3PhtEwEXT/cSlSir3gR2EiK4CO gBvgvhxB1IDXN7tMXLTswUIgzWwsP50Th2nMQM8DMNwHZlExubXi07UmjNts3s7n 4AQIK6Scl/BjyiiQdh/BW2J9pwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFOhk1tWh +3jYD7xP8G5Vf8+KwrHHMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvNjU2NzRDQUUy Q0M5MTFGMDg1RTlCNTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBIEAgABMAwDBAJnXegDBAFnjp4wFAQCAAIwDgMFACQBMcADBQAkBTzAMA0G CSqGSIb3DQEBCwUAA4IBAQBWQzMYlAUU+D4woX9dM8RRRIBxbpgWkwrIoSpcGqDA YjLgnvFKwT4RmScnOW9GXYuU7JaQt8QlxMuQ2qCS114dnD8ixtCCYlFhcO/k8LzM AqthcwOTm7ULV8feElzcgCcbAhhxspb0SoYfX9aHnodrM4A7RgDutKUIgD9aodO9 ak+0LnRp8zWdCSzNYEDV0jM+phGJRhxN/+pmyYARNsrMRbcT4yJGDVb3uuQ0DfCX R6s0IBfmvwd9LayeRRQ619idOAqjy66jKyJUDo4PtMx0ezdibcCJ0m81uYm79QS7 pzeLvVhuMJ3UltjV/Ct8HK9YAi9NoF4RPZvnNuCZBHnm -----END CERTIFICATE-----Generated at Wed Jul 2 23:29:37 2025 by rpki-client