$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/0ADA583C5DB911F0A54D4C6FC4F9AE02.roa File: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (raw, json) Hash identifier: YIHS3PAvaz4V4QmFJCk8b1AkmK5GNgS8/DelBF3BA28= Subject key identifier: 19:D6:CB:31:0B:DE:E5:74:9C:B1:12:70:3D:EB:9C:DD:51:47:4F:55 Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01D2 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/0ADA583C5DB911F0A54D4C6FC4F9AE02.roa Signing time: Thu 10 Jul 2025 18:09:38 +0000 ROA not before: Thu 10 Jul 2025 18:09:38 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138509 IP address blocks: 103.84.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Jul 10 18:09:38 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=687001e2-2250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2d:31:00:8f:a9:6e:fc:3f:4c:6e:2f:dd:67: e5:e1:f5:2f:35:87:8a:e3:c3:aa:49:4d:c2:dd:17: 60:c9:aa:f2:74:f5:d5:eb:87:67:24:95:c7:73:71: 9e:86:ea:d9:c4:26:d4:b5:3d:97:56:b4:33:e8:39: ff:0d:44:11:e7:b9:ad:8a:e0:17:53:d4:c8:93:15: 49:57:59:e8:2b:ab:0c:45:e1:d7:a5:0c:bb:1b:c6: 99:09:fb:4d:96:37:e3:ca:c6:51:5f:d8:b7:d1:23: f8:be:81:d5:9a:a0:5c:02:e8:1c:4e:2c:8e:b9:ad: 6f:66:d3:bb:17:6b:06:08:42:cc:25:7a:15:26:ac: 20:c9:f5:79:ef:2e:c5:a2:cd:5d:37:fb:a7:56:d4: b7:5d:f4:16:15:e2:16:7a:a3:9b:d1:58:7b:a0:41: c2:8c:41:0e:90:2b:a9:4f:02:86:4f:d2:0f:e0:91: 1b:42:4b:08:2e:5e:16:de:7c:27:10:2c:2a:53:77: f4:4d:83:a7:58:22:bc:7e:1d:8e:1f:f5:40:ae:1c: 3f:b2:05:68:e9:19:05:ad:57:90:15:f8:28:a9:ca: 84:c2:c4:5f:d8:8d:d3:1d:e3:38:22:21:6b:5e:b7: 4c:c7:b7:04:e5:83:79:07:bd:24:7f:17:6f:c3:64: 2c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D6:CB:31:0B:DE:E5:74:9C:B1:12:70:3D:EB:9C:DD:51:47:4F:55 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/0ADA583C5DB911F0A54D4C6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.59.0/24 Signature Algorithm: sha256WithRSAEncryption 91:09:77:19:0b:6a:45:03:eb:a0:51:a3:03:d0:e1:27:71:b2: 54:0f:b3:5f:06:f7:05:08:32:3c:82:50:2a:46:ff:37:bf:54: 26:be:c6:8b:bb:37:64:7a:92:d2:3f:e4:6f:58:16:10:51:63: c8:e8:e5:5e:12:ae:42:63:13:0d:ce:88:10:fe:58:c4:d3:29: 81:75:02:1e:a3:d2:e0:d1:c7:f5:69:e0:e6:5c:cf:a5:41:d9: 0d:a7:69:a2:db:ad:11:b5:8b:78:83:e6:7f:b3:89:00:e6:95: 2b:ff:8e:97:98:18:7b:15:17:35:53:e1:b0:27:a2:ef:cf:35: 58:fd:0c:c7:42:f3:31:f5:be:89:72:ab:2a:da:08:04:27:5e: 56:e7:d7:19:9e:b7:44:77:5d:7b:69:ee:35:95:6a:87:b9:e5: d8:31:39:83:05:86:ee:48:56:c0:1b:ff:52:8d:d7:8f:8f:7b: da:66:12:3b:04:85:3f:7a:b2:ea:0f:9b:73:23:2b:7d:e6:7d: 26:21:a0:01:0f:ca:53:01:7b:ee:e4:69:4b:3a:d3:3f:92:5b: 82:24:1c:81:c0:b8:2b:67:d9:0a:6a:53:19:31:f4:39:3e:3b: aa:33:b2:38:9f:94:2e:4d:d0:a7:fa:2b:ba:0b:ca:14:d9:6b: 95:f4:5d:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwNzEwMTgwOTM4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwMDFlMi0yMjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8S0xAI+pbvw/TG4v3Wfl4fUvNYeK48OqSU3C3RdgyarydPXV64dnJJXHc3Ge hurZxCbUtT2XVrQz6Dn/DUQR57mtiuAXU9TIkxVJV1noK6sMReHXpQy7G8aZCftN ljfjysZRX9i30SP4voHVmqBcAugcTiyOua1vZtO7F2sGCELMJXoVJqwgyfV57y7F os1dN/unVtS3XfQWFeIWeqOb0Vh7oEHCjEEOkCupTwKGT9IP4JEbQksILl4W3nwn ECwqU3f0TYOnWCK8fh2OH/VArhw/sgVo6RkFrVeQFfgoqcqEwsRf2I3THeM4IiFr XrdMx7cE5YN5B70kfxdvw2Qs6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnWyzEL 3uV0nLEScD3rnN1RR09VMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIzMTAvM0VCRDE3QzJBRDEwMTFFRDg1NEEzRTFEQzRGOUFFMDIvMEFEQTU4M0M1 REI5MTFGMEE1NEQ0QzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVDswDQYJKoZIhvcNAQELBQADggEBAJEJdxkLakUD66BR owPQ4SdxslQPs18G9wUIMjyCUCpG/ze/VCa+xou7N2R6ktI/5G9YFhBRY8jo5V4S rkJjEw3OiBD+WMTTKYF1Ah6j0uDRx/Vp4OZcz6VB2Q2naaLbrRG1i3iD5n+ziQDm lSv/jpeYGHsVFzVT4bAnou/PNVj9DMdC8zH1volyqyraCAQnXlbn1xmet0R3XXtp 7jWVaoe55dgxOYMFhu5IVsAb/1KN14+Pe9pmEjsEhT96suoPm3MjK33mfSYhoAEP ylMBe+7kaUs60z+SW4IkHIHAuCtn2QpqUxkx9Dk+O6ozsjiflC5N0Kf6K7oLyhTZ a5X0XdQ= -----END CERTIFICATE-----Generated at Sun Jul 20 07:29:06 2025 by rpki-client