$ rpki-client -vvf rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa File: F2E707C4CB2D11E6B15E0480C4F9AE02.roa (raw, json) Hash identifier: /prr9YJCzmst/EHhwq+RVn+bdS5HeKi3OTJCcnb49ks= Subject key identifier: F4:D7:FB:90:BB:0F:0E:F7:33:35:E7:CA:A2:A7:CD:1C:BD:EF:5D:2A Certificate issuer: /CN=A919992D/serialNumber=FF7704E4A7333F69372D9F3341F8D002CB4AC0CF Certificate serial: 1D4C Authority key identifier: FF:77:04:E4:A7:33:3F:69:37:2D:9F:33:41:F8:D0:02:CB:4A:C0:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa Signing time: Fri 22 Aug 2025 16:24:15 +0000 ROA not before: Fri 22 Aug 2025 16:24:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 63998 IP address blocks: 103.61.8.0/22 maxlen: 22 103.61.8.0/22 maxlen: 24 103.61.8.0/22 maxlen: 30 103.61.8.0/23 maxlen: 23 103.61.8.0/24 maxlen: 24 103.61.9.0/24 maxlen: 24 103.61.10.0/23 maxlen: 23 103.61.10.0/24 maxlen: 24 103.61.11.0/24 maxlen: 24 2403:6a80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.crl rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7500 (0x1d4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919992D, serialNumber=FF7704E4A7333F69372D9F3341F8D002CB4AC0CF Validity Not Before: Aug 22 16:24:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a899af-3e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:77:0f:d4:24:f0:8c:56:1c:60:50:a7:2f: 85:39:95:03:74:a4:b4:1e:ed:57:12:62:7f:80:05: 20:42:52:cc:16:21:18:df:df:6f:35:7a:2c:b9:86: 2b:c2:34:31:d1:d8:ca:97:75:c0:d7:ef:dd:8c:c8: 47:09:a1:9b:27:c7:51:70:51:64:68:fc:50:63:7f: 8d:bc:91:5e:c2:9b:71:3a:d1:0a:93:d3:68:ac:9a: d8:b5:aa:b4:c0:8d:a7:81:0d:01:07:2b:5e:8a:60: c3:13:a9:e1:d7:f3:b7:5a:76:dd:cc:36:0a:bc:40: 1b:74:fa:4a:ac:da:b0:13:b2:b5:e0:4b:d7:0e:13: 7e:7f:4b:7f:2f:de:cb:3c:b0:74:98:b5:01:ff:fb: 30:71:7c:75:3e:97:6e:1d:d3:59:5e:44:5f:cb:3a: ba:58:8a:7a:40:b0:43:5c:cf:c7:3e:fb:b3:a3:1b: 4b:51:a5:52:8e:67:b6:d2:f2:27:e3:4f:3a:9b:14: c5:30:72:e2:1e:a2:d5:a2:a1:a5:fb:36:d3:09:ee: c1:4c:e1:72:1f:50:9e:da:f9:3d:6d:43:c8:5b:7d: 9d:e9:d4:06:48:dd:d8:8a:c8:3e:69:b3:e4:14:76: 9b:4b:12:e7:65:f9:cf:52:e8:03:b9:dc:ea:4b:0a: 5e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D7:FB:90:BB:0F:0E:F7:33:35:E7:CA:A2:A7:CD:1C:BD:EF:5D:2A X509v3 Authority Key Identifier: keyid:FF:77:04:E4:A7:33:3F:69:37:2D:9F:33:41:F8:D0:02:CB:4A:C0:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/_3cE5KczP2k3LZ8zQfjQAstKwM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3cE5KczP2k3LZ8zQfjQAstKwM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919992D/913329F4BBA611E68FC1212DC4F9AE02/F2E707C4CB2D11E6B15E0480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.8.0/22 IPv6: 2403:6a80::/32 Signature Algorithm: sha256WithRSAEncryption 7f:6f:cb:1f:ef:3a:7f:10:60:ea:9b:ea:5b:48:ca:f1:51:dd: ad:f0:11:fc:ac:82:d7:43:ec:86:38:13:80:bd:6f:9f:7f:a2: 91:ed:39:c6:29:15:ca:e5:60:9c:26:f4:65:fd:99:96:fe:df: 5e:ae:e3:8a:fa:6c:61:11:7b:b2:d8:71:fd:e7:2f:ed:d2:df: 36:6e:70:67:3a:3b:df:b1:9d:97:0d:cc:84:43:04:c4:a1:0e: 09:d3:9a:76:ce:9c:35:a9:85:1a:48:bd:a0:76:38:55:86:a7: 56:b5:20:41:b5:79:cb:67:13:43:df:75:2e:ac:aa:e7:a8:c0: 85:ad:2b:2f:fd:3f:a1:bb:61:85:60:46:c3:78:08:b4:43:b2: 5b:01:81:50:37:3b:5c:60:a0:b2:27:3e:a7:31:05:c3:18:77: df:9c:21:a2:50:67:ac:c4:1d:11:c9:06:a1:35:26:a3:21:b9: 33:ea:7e:9f:e6:44:51:ad:ab:c2:30:26:33:96:a1:35:74:60: 64:bb:e8:da:e1:4a:4f:f6:60:22:15:d0:1c:ce:33:14:4b:5d: b1:38:b7:05:3e:49:5f:73:a7:a1:fa:a2:9d:c3:39:ff:3e:e5: 16:44:5f:18:d3:f8:08:68:6f:df:2b:5c:ac:c5:90:75:30:ea: d7:25:bc:d4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5MkQxMTAvBgNVBAUTKEZGNzcwNEU0QTczMzNGNjkzNzJEOUYzMzQxRjhEMDAy Q0I0QUMwQ0YwHhcNMjUwODIyMTYyNDE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4OTlhZi0zZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYB3D9Qk8IxWHGBQpy+FOZUDdKS0Hu1XEmJ/gAUgQlLMFiEY399vNXosuYYr wjQx0djKl3XA1+/djMhHCaGbJ8dRcFFkaPxQY3+NvJFewptxOtEKk9NorJrYtaq0 wI2ngQ0BByteimDDE6nh1/O3WnbdzDYKvEAbdPpKrNqwE7K14EvXDhN+f0t/L97L PLB0mLUB//swcXx1PpduHdNZXkRfyzq6WIp6QLBDXM/HPvuzoxtLUaVSjme20vIn 4086mxTFMHLiHqLVoqGl+zbTCe7BTOFyH1Ce2vk9bUPIW32d6dQGSN3Yisg+abPk FHabSxLnZfnPUugDudzqSwpeIwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPTX+5C7 Dw73MzXnyqKnzRy9710qMB8GA1UdIwQYMBaAFP93BOSnMz9pNy2fM0H40ALLSsDP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTkyRC85MTMzMjlGNEJC QTYxMUU2OEZDMTIxMkRDNEY5QUUwMi9fM2NFNUtjelAyazNMWjh6UWZqUUFzdEt3 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18zY0U1S2N6UDJrM0xaOHpRZmpRQXN0S3dNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk5MkQvOTEzMzI5RjRCQkE2MTFFNjhGQzEyMTJEQzRGOUFFMDIvRjJFNzA3QzRD QjJEMTFFNkIxNUUwNDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnPQgwDQQCAAIwBwMFACQDaoAwDQYJKoZIhvcNAQELBQAD ggEBAH9vyx/vOn8QYOqb6ltIyvFR3a3wEfysgtdD7IY4E4C9b59/opHtOcYpFcrl YJwm9GX9mZb+316u44r6bGERe7LYcf3nL+3S3zZucGc6O9+xnZcNzIRDBMShDgnT mnbOnDWphRpIvaB2OFWGp1a1IEG1ectnE0PfdS6squeowIWtKy/9P6G7YYVgRsN4 CLRDslsBgVA3O1xgoLInPqcxBcMYd9+cIaJQZ6zEHRHJBqE1JqMhuTPqfp/mRFGt q8IwJjOWoTV0YGS76NrhSk/2YCIV0BzOMxRLXbE4twU+SV9zp6H6op3DOf8+5RZE XxjT+Ahob98rXKzFkHUw6tclvNQ= -----END CERTIFICATE-----Generated at Sun Aug 24 02:33:17 2025 by rpki-client