$ rpki-client -vvf rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa File: 5F57D01A5EA511EFB0E1B468C4F9AE02.roa (raw, json) Hash identifier: gUWx0NFdXc+5m0GyQOzPhC8d8WUCa2XrObn3BWMcy0w= Subject key identifier: 86:5F:C3:C7:B3:39:D0:B7:33:F0:C6:9E:A1:E6:09:AE:44:CA:6B:BE Certificate issuer: /CN=A912C0DE/serialNumber=EAE2BCE835E42B115F18B3FE0E8F27F84A474996 Certificate serial: 0136 Authority key identifier: EA:E2:BC:E8:35:E4:2B:11:5F:18:B3:FE:0E:8F:27:F8:4A:47:49:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa Signing time: Mon 07 Jul 2025 05:10:40 +0000 ROA not before: Mon 07 Jul 2025 05:10:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151552 IP address blocks: 103.68.106.0/24 maxlen: 24 2001:df2:9440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.crl rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 04:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C0DE, serialNumber=EAE2BCE835E42B115F18B3FE0E8F27F84A474996 Validity Not Before: Jul 7 05:10:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686b56d0-a2ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:44:d4:9a:aa:e7:29:c2:a4:86:27:9c:bc: 44:b4:ae:f8:70:9e:11:91:6e:24:76:05:17:9a:44: a3:10:48:73:6c:1f:fa:f0:a8:1e:30:76:87:e0:9f: 91:57:d1:30:16:24:5f:4a:35:62:03:b5:87:04:a1: 5a:aa:8f:47:51:57:35:86:9e:92:b8:a5:cf:36:d1: 2b:ce:d0:34:46:96:97:db:58:d9:aa:11:76:3a:82: 78:bc:e2:46:61:ae:26:b3:b4:0e:a2:4d:90:f3:8a: a1:e8:ee:87:d0:4e:1d:34:46:65:10:bd:d3:01:87: b7:a8:6f:e4:36:49:a5:eb:a9:c9:0f:d9:08:7a:f9: ac:8d:df:c3:d9:0b:57:f0:ec:7e:d6:a0:ac:df:7b: 02:e1:7b:43:8a:4a:88:c7:82:27:4b:41:58:da:5e: 85:91:03:bf:88:1d:01:db:8e:66:35:51:9b:b8:aa: 4f:07:12:ee:d3:77:2e:aa:3e:f8:af:12:b4:d8:07: c7:7a:2f:43:6c:fa:41:dd:d0:23:df:68:bd:ff:59: 88:71:bb:ca:a8:8e:e3:25:60:2a:a5:ad:de:5c:72: c6:bf:df:6e:f6:ee:a1:81:0b:fd:42:e7:89:2a:15: b3:a7:23:ef:4b:19:c1:44:82:87:e1:c4:fd:19:a4: cf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5F:C3:C7:B3:39:D0:B7:33:F0:C6:9E:A1:E6:09:AE:44:CA:6B:BE X509v3 Authority Key Identifier: keyid:EA:E2:BC:E8:35:E4:2B:11:5F:18:B3:FE:0E:8F:27:F8:4A:47:49:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.106.0/24 IPv6: 2001:df2:9440::/48 Signature Algorithm: sha256WithRSAEncryption 0c:cc:f7:8e:47:5a:bd:01:20:58:06:84:91:62:35:7f:37:1d: 2e:20:3f:86:fc:07:f5:a8:31:e8:a3:b5:84:a0:bf:39:14:5a: a2:60:b6:66:74:08:97:b9:37:d3:d8:92:a4:fe:33:9e:26:00: 06:07:d3:22:80:75:db:41:67:0f:cc:4a:3d:08:b1:7c:bb:8e: dd:a5:38:63:7a:1d:04:6b:5e:a4:11:42:42:f0:2b:34:0f:2f: c4:46:bf:ea:a5:6c:a3:14:be:dc:6a:6e:3b:fe:1e:27:5b:22: 58:a0:bc:d4:3b:71:bb:a0:89:c9:6b:9d:99:de:e8:06:db:18: 08:ca:74:e2:2e:1d:42:23:92:92:76:eb:ff:8e:93:f4:b0:7f: ae:01:96:35:92:9a:57:14:11:12:d9:e2:2b:cf:3a:ef:97:8e: 1f:6c:84:0f:e9:c5:19:82:1b:c9:68:f8:6e:17:47:ed:8d:8e: 4e:17:10:ca:8f:8a:85:35:b7:f8:84:6d:a6:31:8a:aa:34:f1: 2d:f3:71:63:e6:d4:e5:a0:47:23:63:b2:53:f1:3e:53:d8:a9: 85:8b:ff:49:ef:c0:be:2f:af:f0:7d:09:bf:a7:bd:88:ff:4a: ab:77:75:bb:6a:f1:1f:d7:d4:2a:5c:a9:a7:43:df:cc:83:2d: ab:e2:23:93 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwREUxMTAvBgNVBAUTKEVBRTJCQ0U4MzVFNDJCMTE1RjE4QjNGRTBFOEYyN0Y4 NEE0NzQ5OTYwHhcNMjUwNzA3MDUxMDQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiNTZkMC1hMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsVE1Jqq5ynCpIYnnLxEtK74cJ4RkW4kdgUXmkSjEEhzbB/68KgeMHaH4J+R V9EwFiRfSjViA7WHBKFaqo9HUVc1hp6SuKXPNtErztA0RpaX21jZqhF2OoJ4vOJG Ya4ms7QOok2Q84qh6O6H0E4dNEZlEL3TAYe3qG/kNkml66nJD9kIevmsjd/D2QtX 8Ox+1qCs33sC4XtDikqIx4InS0FY2l6FkQO/iB0B245mNVGbuKpPBxLu03cuqj74 rxK02AfHei9DbPpB3dAj32i9/1mIcbvKqI7jJWAqpa3eXHLGv99u9u6hgQv9QueJ KhWzpyPvSxnBRIKH4cT9GaTPawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIZfw8ez OdC3M/DGnqHmCa5Eymu+MB8GA1UdIwQYMBaAFOrivOg15CsRXxiz/g6PJ/hKR0mW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzBERS9FNDc0NDNENjhG RUUxMUVFOTAzODlFMUNDNEY5QUUwMi82dUs4NkRYa0t4RmZHTFAtRG84bi1FcEhT WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ1Szg2RFhrS3hGZkdMUC1EbzhuLUVwSFNaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkMwREUvRTQ3NDQzRDY4RkVFMTFFRTkwMzg5RTFDQzRGOUFFMDIvNUY1N0QwMUE1 RUE1MTFFRkIwRTFCNDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnRGowDwQCAAIwCQMHACABDfKUQDANBgkqhkiG9w0BAQsF AAOCAQEADMz3jkdavQEgWAaEkWI1fzcdLiA/hvwH9agx6KO1hKC/ORRaomC2ZnQI l7k309iSpP4zniYABgfTIoB120FnD8xKPQixfLuO3aU4Y3odBGtepBFCQvArNA8v xEa/6qVsoxS+3GpuO/4eJ1siWKC81Dtxu6CJyWudmd7oBtsYCMp04i4dQiOSknbr /46T9LB/rgGWNZKaVxQREtniK88675eOH2yED+nFGYIbyWj4bhdH7Y2OThcQyo+K hTW3+IRtpjGKqjTxLfNxY+bU5aBHI2OyU/E+U9iphYv/Se/Avi+v8H0Jv6e9iP9K q3d1u2rxH9fUKlypp0PfzIMtq+Ijkw== -----END CERTIFICATE-----Generated at Mon Jul 28 11:49:41 2025 by rpki-client