$ rpki-client -vvf rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/243B94A23E7A11EBBFFAC96BC4F9AE02.roa File: 243B94A23E7A11EBBFFAC96BC4F9AE02.roa (raw, json) Hash identifier: KByBfekrOF7xvSI1YrE4YztTsj8rnTQtS9LcKWosd+s= Subject key identifier: 15:59:F9:24:F5:7F:91:11:42:35:2B:63:7F:A2:76:C0:30:0F:1A:82 Certificate issuer: /CN=A912A138/serialNumber=E889DDD5542C6D2C9DC740E1246A9E748E751352 Certificate serial: 0750 Authority key identifier: E8:89:DD:D5:54:2C:6D:2C:9D:C7:40:E1:24:6A:9E:74:8E:75:13:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ind1VQsbSydx0DhJGqedI51E1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/243B94A23E7A11EBBFFAC96BC4F9AE02.roa Signing time: Sat 12 Jul 2025 22:02:42 +0000 ROA not before: Sat 12 Jul 2025 22:02:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.140.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/6Ind1VQsbSydx0DhJGqedI51E1I.crl rsync://rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/6Ind1VQsbSydx0DhJGqedI51E1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ind1VQsbSydx0DhJGqedI51E1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A138, serialNumber=E889DDD5542C6D2C9DC740E1246A9E748E751352 Validity Not Before: Jul 12 22:02:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6872db82-51dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:73:59:61:73:40:5f:29:7a:4c:63:5e:ba: b0:40:0d:f8:2c:15:79:73:78:bb:93:05:b7:80:7e: 1f:6b:d2:24:52:e9:c9:9d:be:ac:0c:ac:aa:a5:da: 79:02:1a:93:c2:8f:96:8a:98:3e:ea:1f:bb:68:ec: 8a:d5:65:ee:bc:3e:d8:60:87:d0:9c:55:1e:2c:b2: 7c:55:ce:79:a8:93:34:c1:f1:1c:b4:a4:c1:ce:cf: c2:83:a9:95:98:10:ff:f4:d5:f1:d2:8d:71:fa:c2: e5:8c:1d:27:f8:a9:63:23:bd:56:1f:f2:1b:08:bd: 54:5e:cf:ce:40:70:4c:d5:d0:a1:6d:5d:28:c8:7f: ad:ba:a5:04:58:7c:15:d8:3c:ab:0d:e6:f4:08:a6: a0:cf:8c:71:fd:31:74:9d:0c:12:98:36:af:08:b5: 51:60:9a:f1:5e:e6:80:77:a0:c3:ee:11:46:7d:04: c1:97:3c:60:73:d5:94:5a:67:e1:c9:e8:cf:d7:6d: 16:03:a0:bd:65:63:13:39:06:a8:b4:03:a9:37:ff: 91:65:58:9e:8a:b6:1c:40:05:24:a7:1a:a0:ee:a5: 04:d0:7b:a1:cd:6c:34:68:02:9a:15:a6:8c:45:0e: e0:32:8d:54:c5:1d:d0:68:91:0e:76:d0:cb:f7:a1: 15:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:59:F9:24:F5:7F:91:11:42:35:2B:63:7F:A2:76:C0:30:0F:1A:82 X509v3 Authority Key Identifier: keyid:E8:89:DD:D5:54:2C:6D:2C:9D:C7:40:E1:24:6A:9E:74:8E:75:13:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/6Ind1VQsbSydx0DhJGqedI51E1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ind1VQsbSydx0DhJGqedI51E1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A138/BB06B338392711EB9F955E7EC4F9AE02/243B94A23E7A11EBBFFAC96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.210.0/24 Signature Algorithm: sha256WithRSAEncryption 13:c9:6e:ff:d2:b1:67:27:5f:e5:f2:ee:f1:bc:8e:e3:45:84: 91:2e:c0:62:43:c5:c9:58:c4:8e:d8:cd:72:3e:c3:02:e4:72: 65:6b:36:d5:76:41:e1:70:06:b4:0d:bc:bd:41:2d:bb:e1:64: 83:67:fb:ff:1b:78:6d:13:27:04:66:cc:de:e9:6a:35:db:46: ba:4a:ae:f9:8b:ea:fb:19:e1:14:fd:a4:5d:6e:fd:e7:6f:9c: 21:1d:66:0a:45:ab:aa:b0:a3:66:4d:29:42:8d:8c:80:64:33: 99:98:ff:cd:9c:b7:04:a0:87:84:96:3a:fb:df:e3:d2:dd:12: f7:7a:8a:75:71:70:91:bd:e0:8d:ce:4e:e8:13:2e:f3:68:da: 47:dc:02:f3:24:06:c7:95:bf:f2:cf:7f:a0:15:04:82:79:0c: 9d:0f:d3:7e:1d:25:00:84:36:04:59:96:9c:18:fe:32:b4:d9: 0b:39:30:d2:a9:4b:25:0f:9a:90:5e:0a:a4:f7:6a:b9:d3:b4: 37:2f:05:ad:8a:f8:18:54:c9:61:51:3e:4f:25:f3:5b:9e:a5: 62:19:1e:2a:b4:ac:70:07:2e:5e:77:fa:a5:ad:9f:2a:20:4e: 92:47:35:b6:0f:42:6a:e4:bb:4c:86:26:a2:e5:a8:b0:47:65: b2:30:fa:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExMzgxMTAvBgNVBAUTKEU4ODlEREQ1NTQyQzZEMkM5REM3NDBFMTI0NkE5RTc0 OEU3NTEzNTIwHhcNMjUwNzEyMjIwMjQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyZGI4Mi01MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AhzWWFzQF8pekxjXrqwQA34LBV5c3i7kwW3gH4fa9IkUunJnb6sDKyqpdp5 AhqTwo+Wipg+6h+7aOyK1WXuvD7YYIfQnFUeLLJ8Vc55qJM0wfEctKTBzs/Cg6mV mBD/9NXx0o1x+sLljB0n+KljI71WH/IbCL1UXs/OQHBM1dChbV0oyH+tuqUEWHwV 2DyrDeb0CKagz4xx/TF0nQwSmDavCLVRYJrxXuaAd6DD7hFGfQTBlzxgc9WUWmfh yejP120WA6C9ZWMTOQaotAOpN/+RZVieirYcQAUkpxqg7qUE0HuhzWw0aAKaFaaM RQ7gMo1UxR3QaJEOdtDL96EVZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBVZ+ST1 f5ERQjUrY3+idsAwDxqCMB8GA1UdIwQYMBaAFOiJ3dVULG0sncdA4SRqnnSOdRNS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEzOC9CQjA2QjMzODM5 MjcxMUVCOUY5NTVFN0VDNEY5QUUwMi82SW5kMVZRc2JTeWR4MERoSkdxZWRJNTFF MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZJbmQxVlFzYlN5ZHgwRGhKR3FlZEk1MUUxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkExMzgvQkIwNkIzMzgzOTI3MTFFQjlGOTU1RTdFQzRGOUFFMDIvMjQzQjk0QTIz RTdBMTFFQkJGRkFDOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjNIwDQYJKoZIhvcNAQELBQADggEBABPJbv/SsWcnX+Xy 7vG8juNFhJEuwGJDxclYxI7YzXI+wwLkcmVrNtV2QeFwBrQNvL1BLbvhZINn+/8b eG0TJwRmzN7pajXbRrpKrvmL6vsZ4RT9pF1u/edvnCEdZgpFq6qwo2ZNKUKNjIBk M5mY/82ctwSgh4SWOvvf49LdEvd6inVxcJG94I3OTugTLvNo2kfcAvMkBseVv/LP f6AVBIJ5DJ0P034dJQCENgRZlpwY/jK02Qs5MNKpSyUPmpBeCqT3arnTtDcvBa2K +BhUyWFRPk8l81uepWIZHiq0rHAHLl53+qWtnyogTpJHNbYPQmrku0yGJqLlqLBH ZbIw+lA= -----END CERTIFICATE-----Generated at Mon Jul 21 07:07:53 2025 by rpki-client