$ rpki-client -vvf rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa File: 995AA100551611E9BDD3CB66C4F9AE02.roa (raw, json) Hash identifier: vKUrCad/wDAN8DcFXzUyprhlGMmsi4Oqt3ZrPDf4rA8= Subject key identifier: 63:F4:F5:45:50:B7:E8:BF:79:8B:8B:03:E5:50:40:1F:EE:83:C8:51 Certificate issuer: /CN=A912190F/serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Certificate serial: 1038 Authority key identifier: 34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa Signing time: Tue 15 Jul 2025 02:06:37 +0000 ROA not before: Tue 15 Jul 2025 02:06:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138699 IP address blocks: 103.136.220.0/24 maxlen: 24 103.136.221.0/24 maxlen: 24 103.136.222.0/24 maxlen: 24 103.136.223.0/24 maxlen: 24 118.26.132.0/24 maxlen: 24 2404:9dc0:cd01::/48 maxlen: 48 2404:9dc0:cd02::/48 maxlen: 48 2404:9dc0:cd03::/48 maxlen: 48 2404:9dc0:cd04::/48 maxlen: 48 2404:9dc0:cd05::/48 maxlen: 48 2404:9dc0:cd06::/48 maxlen: 48 2404:9dc0:cd07::/48 maxlen: 48 2404:9dc0:cd08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4152 (0x1038) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912190F, serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Validity Not Before: Jul 15 02:06:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6875b7ad-4e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:37:fd:b5:f1:21:32:08:e7:b8:5c:ae:4a: a2:34:dd:6c:ec:ae:1f:2e:d3:ef:b7:60:6f:9e:39: 65:09:ab:ab:5c:b0:01:93:cb:1f:78:9b:d7:de:77: f8:91:6e:5a:b3:32:ee:76:5d:02:95:db:1d:ef:07: 55:bd:b6:42:8e:9e:0c:c1:be:a1:a7:b2:7f:0b:e4: 9d:03:c2:b9:d8:bc:cf:77:46:0b:7a:35:d9:2b:74: d0:76:7f:73:f3:e0:b1:83:fe:1f:3d:23:5f:65:b0: 9b:48:1e:e3:84:62:f6:32:18:bb:f5:bd:60:33:f5: 58:8f:0f:a6:86:5d:7d:f5:e3:4a:a3:81:73:d6:31: 74:64:b1:b2:47:d7:a8:45:bb:f7:3d:8c:72:d5:ea: fe:bd:94:91:9a:31:1a:25:2f:58:74:ed:11:29:fd: 45:a6:cf:b4:3c:53:78:3e:0b:e5:94:ca:c2:35:82: c7:cc:e5:a2:9c:34:57:45:51:d6:35:50:a4:69:ff: 15:ac:f1:ff:5c:a3:37:7b:04:e9:6b:65:fe:1b:e8: 8a:67:dc:e6:b7:2e:be:17:a3:f5:b7:b9:27:22:35: e1:e1:38:54:1f:f8:6a:f8:8c:2d:97:35:0d:0e:4c: 65:48:b3:8f:d1:3a:a0:10:e8:51:4e:b9:9e:fc:c0: 37:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F4:F5:45:50:B7:E8:BF:79:8B:8B:03:E5:50:40:1F:EE:83:C8:51 X509v3 Authority Key Identifier: keyid:34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.220.0/22 118.26.132.0/24 IPv6: 2404:9dc0:cd01::-2404:9dc0:cd08:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4e:bd:0a:e1:5b:5c:49:3a:55:87:54:3a:05:8e:43:b5:65:b4: fa:4d:b2:a5:e9:85:02:58:8e:80:0d:24:33:3e:74:ed:2a:35: b4:aa:cb:67:b2:d9:15:1f:cd:43:eb:39:15:a4:b8:90:fd:e3: 22:c7:35:67:bd:bb:d0:52:49:17:a6:9f:25:14:ef:fc:de:5d: 07:33:71:0e:68:6b:94:18:9b:7b:be:f9:d3:c4:ed:5b:52:93: 68:6e:78:32:bd:b5:8c:ec:01:3e:f3:1f:85:50:9b:94:43:90: d3:d7:1a:de:ec:0e:30:49:a5:2e:7d:f5:a5:f8:99:3e:a6:ba: 17:6b:38:d1:a9:bd:f1:1f:04:8e:fc:78:c7:c5:40:c0:be:0c: bf:37:34:f4:cb:c5:eb:7b:ee:72:46:5c:1f:90:53:d2:91:51: 7a:ba:c1:83:43:50:c1:30:35:18:95:42:7f:7a:a3:c1:ab:f9: c3:2c:2e:05:5d:82:26:07:b8:58:34:c7:db:35:5a:a2:8d:69: ab:f9:c7:33:84:ef:6a:ef:36:86:b3:60:66:08:7f:3e:ec:2b: a5:17:c3:21:a4:84:97:51:e9:5e:55:b3:c3:32:c3:1b:57:2e: ec:3e:59:2d:c8:94:46:d0:3a:ce:d7:b0:3e:e9:b9:ee:9d:b6: 5d:d6:3f:6a -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICEDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE5MEYxMTAvBgNVBAUTKDM0NEZCNDk5QTZBMzdEMjYzMjlBQjdENUZGNTI2MjUx MDk4RTVERjIwHhcNMjUwNzE1MDIwNjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1YjdhZC00ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWQ3/bXxITII57hcrkqiNN1s7K4fLtPvt2BvnjllCaurXLABk8sfeJvX3nf4 kW5aszLudl0Cldsd7wdVvbZCjp4Mwb6hp7J/C+SdA8K52LzPd0YLejXZK3TQdn9z 8+Cxg/4fPSNfZbCbSB7jhGL2Mhi79b1gM/VYjw+mhl199eNKo4Fz1jF0ZLGyR9eo Rbv3PYxy1er+vZSRmjEaJS9YdO0RKf1Fps+0PFN4PgvllMrCNYLHzOWinDRXRVHW NVCkaf8VrPH/XKM3ewTpa2X+G+iKZ9zmty6+F6P1t7knIjXh4ThUH/hq+IwtlzUN DkxlSLOP0TqgEOhRTrme/MA3ZQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFGP09UVQ t+i/eYuLA+VQQB/ug8hRMB8GA1UdIwQYMBaAFDRPtJmmo30mMpq31f9SYlEJjl3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTkwRi82Q0MwRjlGNDQ3 QjExMUU5OUZDQ0EwNTlDNEY5QUUwMi9ORS0wbWFhamZTWXltcmZWXzFKaVVRbU9Y ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FLTBtYWFqZlNZeW1yZlZfMUppVVFtT1hmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE5MEYvNkNDMEY5RjQ0N0IxMTFFOTlGQ0NBMDU5QzRGOUFFMDIvOTk1QUExMDA1 NTE2MTFFOUJERDNDQjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJniNwDBAB2GoQwGgQCAAIwFDASAwcAJASdwM0BAwcAJASd wM0IMA0GCSqGSIb3DQEBCwUAA4IBAQBOvQrhW1xJOlWHVDoFjkO1ZbT6TbKl6YUC WI6ADSQzPnTtKjW0qstnstkVH81D6zkVpLiQ/eMixzVnvbvQUkkXpp8lFO/83l0H M3EOaGuUGJt7vvnTxO1bUpNobngyvbWM7AE+8x+FUJuUQ5DT1xre7A4wSaUuffWl +Jk+proXazjRqb3xHwSO/HjHxUDAvgy/NzT0y8Xre+5yRlwfkFPSkVF6usGDQ1DB MDUYlUJ/eqPBq/nDLC4FXYImB7hYNMfbNVqijWmr+cczhO9q7zaGs2BmCH8+7Cul F8MhpISXUeleVbPDMsMbVy7sPlktyJRG0DrO17A+6bnunbZd1j9q -----END CERTIFICATE-----Generated at Wed Jul 23 23:29:51 2025 by rpki-client