$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa File: 5284A644D3DC11EB9FCD6135C4F9AE02.roa (raw, json) Hash identifier: Gc4mTCPUdqsBkKm2JhVYgTwfshOEbNkn17lOcZFZIzM= Subject key identifier: 46:CF:C6:27:DA:7A:21:4F:84:C0:57:73:E2:DA:6F:F5:64:70:31:A8 Certificate issuer: /CN=A911F8BC/serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Certificate serial: 05B9 Authority key identifier: 5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa Signing time: Fri 11 Jul 2025 00:05:47 +0000 ROA not before: Fri 11 Jul 2025 00:05:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142542 IP address blocks: 103.168.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8BC, serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Validity Not Before: Jul 11 00:05:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6870555b-cd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e3:82:cc:b0:1c:e8:4c:30:e3:7d:ac:bd:f6: 60:8f:bf:f4:ec:c8:91:ca:69:62:ab:a8:a6:81:14: c0:7b:45:71:0b:13:5a:c1:cf:5e:da:36:68:f8:45: 82:0c:d6:2d:bd:cd:50:a9:fc:71:b6:52:23:6e:09: 3c:4d:7f:d9:e2:5f:bc:3d:5c:df:91:38:e2:e8:0b: 93:ab:ce:ec:be:1d:b0:6d:33:c5:b0:15:75:94:bc: 6a:99:22:0e:4e:8e:31:44:38:a4:e6:b9:60:37:7f: a7:a6:3e:35:04:4d:99:97:da:e0:88:2b:27:6a:5b: 0b:62:1a:06:e9:b7:81:ff:14:e7:ae:6a:92:f3:ea: 46:d0:26:dc:38:75:87:74:83:71:d3:ef:58:64:69: 46:a0:bc:79:30:0f:59:fb:a8:d7:d1:62:41:e1:00: 47:e8:6a:d3:ab:43:81:76:ed:5b:72:4b:b7:da:36: fb:be:98:bb:71:cb:f0:bd:24:88:0f:ed:48:22:91: f5:e5:72:be:e6:2b:b1:1f:a7:f9:f9:c0:9d:ac:b6: 5e:56:ae:05:51:c9:6f:2c:80:49:7d:89:3f:9a:45: b7:82:e8:bc:95:8a:30:3c:d5:a0:21:d3:15:17:98: 2b:78:6b:b1:34:b2:59:51:62:f3:13:e5:4c:45:09: 1a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CF:C6:27:DA:7A:21:4F:84:C0:57:73:E2:DA:6F:F5:64:70:31:A8 X509v3 Authority Key Identifier: keyid:5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.206.0/24 Signature Algorithm: sha256WithRSAEncryption 17:df:3c:9a:78:94:d4:24:f8:30:03:78:a0:58:01:af:97:2f: f9:16:63:a7:4f:a1:53:5f:b9:f2:4c:26:0f:1e:c3:ea:27:ed: 4e:57:0f:23:a6:33:bf:0c:e4:e4:88:9f:58:7b:24:9c:b0:92: 29:d6:2e:1f:c1:2a:9b:14:5e:cd:16:e8:7c:25:69:66:be:d7: df:24:9a:75:df:f8:af:30:0e:a0:d4:59:99:4d:f9:15:cb:62: 59:63:d0:2d:16:f7:f4:28:05:cb:d7:19:14:80:75:62:99:cb: ec:3a:b6:7d:2b:05:eb:8f:52:be:c6:03:9d:d0:69:f6:fa:a7: af:65:21:1c:c9:63:de:65:bd:f2:a4:25:76:af:6c:68:e5:e9: ca:d6:e6:d3:75:f0:bf:7a:9b:28:c7:2a:92:5d:17:ea:38:a5: aa:bf:d5:92:52:c6:85:11:83:2f:e2:c6:26:8b:5b:e0:27:56: b9:e0:09:99:7e:2b:12:aa:23:f1:4e:68:3e:1c:e6:c6:e4:33: e4:45:9d:24:05:fc:c8:e5:61:c5:58:e1:d7:bf:56:d2:6b:ec: f0:6d:fc:4c:f9:95:d4:c2:2b:4e:5f:24:dc:5c:2b:db:9f:1a: 48:a4:f4:b3:79:81:ac:86:c0:bf:ed:61:fe:cc:4c:75:4e:9e: 81:26:ec:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QkMxMTAvBgNVBAUTKDVBMDdFNkQ4RjcxOTdFMzRBOTM5NDRFQUY2OTM5OEU0 QUE3NDI4RTkwHhcNMjUwNzExMDAwNTQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNTU1Yi1jZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eOCzLAc6Eww432svfZgj7/07MiRymliq6imgRTAe0VxCxNawc9e2jZo+EWC DNYtvc1QqfxxtlIjbgk8TX/Z4l+8PVzfkTji6AuTq87svh2wbTPFsBV1lLxqmSIO To4xRDik5rlgN3+npj41BE2Zl9rgiCsnalsLYhoG6beB/xTnrmqS8+pG0CbcOHWH dINx0+9YZGlGoLx5MA9Z+6jX0WJB4QBH6GrTq0OBdu1bcku32jb7vpi7ccvwvSSI D+1IIpH15XK+5iuxH6f5+cCdrLZeVq4FUclvLIBJfYk/mkW3gui8lYowPNWgIdMV F5greGuxNLJZUWLzE+VMRQkaCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEbPxifa eiFPhMBXc+Lab/VkcDGoMB8GA1UdIwQYMBaAFFoH5tj3GX40qTlE6vaTmOSqdCjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhCQy9CMTcwNkY0OEQz RDgxMUVCQUExQkY0MTBDNEY5QUUwMi9XZ2ZtMlBjWmZqU3BPVVRxOXBPWTVLcDBL T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnZm0yUGNaZmpTcE9VVHE5cE9ZNUtwMEtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY4QkMvQjE3MDZGNDhEM0Q4MTFFQkFBMUJGNDEwQzRGOUFFMDIvNTI4NEE2NDRE M0RDMTFFQjlGQ0Q2MTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqM4wDQYJKoZIhvcNAQELBQADggEBABffPJp4lNQk+DAD eKBYAa+XL/kWY6dPoVNfufJMJg8ew+on7U5XDyOmM78M5OSIn1h7JJywkinWLh/B KpsUXs0W6HwlaWa+198kmnXf+K8wDqDUWZlN+RXLYllj0C0W9/QoBcvXGRSAdWKZ y+w6tn0rBeuPUr7GA53Qafb6p69lIRzJY95lvfKkJXavbGjl6crW5tN18L96myjH KpJdF+o4paq/1ZJSxoURgy/ixiaLW+AnVrngCZl+KxKqI/FOaD4c5sbkM+RFnSQF /MjlYcVY4de/VtJr7PBt/Ez5ldTCK05fJNxcK9ufGkik9LN5gayGwL/tYf7MTHVO noEm7GM= -----END CERTIFICATE-----Generated at Wed Jul 23 12:19:36 2025 by rpki-client