$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa File: 743770A0C06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: m0ywv3h/BJrsw2LOsXx/0+PQM3NArl9eNZt1OPifoLA= Subject key identifier: 65:F8:F8:33:94:83:3E:00:C8:F6:98:3C:88:2B:AE:4C:F9:9D:C1:AB Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 152C Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa Signing time: Sat 12 Jul 2025 16:55:44 +0000 ROA not before: Sat 12 Jul 2025 16:55:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.209.125.0/24 maxlen: 24 103.209.126.0/24 maxlen: 24 103.209.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5420 (0x152c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Jul 12 16:55:44 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68729390-ca8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:56:c6:8d:5c:a1:8b:08:ce:97:68:0d:c7:6b: 52:cd:45:cf:35:f8:ee:28:c6:3b:71:9e:91:69:96: 72:8f:46:e4:33:1e:b2:4f:48:53:c9:41:98:8f:02: 4b:52:e5:97:03:16:29:3f:da:f9:11:69:a4:32:4f: 43:52:36:e7:b5:08:fa:e7:0d:c2:c9:6f:78:c7:c3: 5d:ca:0d:4e:c6:da:ce:2b:a1:0b:f3:f0:27:07:25: 41:3a:67:f3:79:21:02:de:0f:ed:77:4d:d9:2a:12: 4f:f9:88:74:95:80:dc:ed:d6:5c:14:f6:e0:85:f0: 77:86:51:21:dc:e1:5c:2d:a8:18:da:9a:2f:b3:c9: 38:2e:7a:1f:d1:89:05:66:14:9f:0f:3a:d6:d9:30: 5c:5c:0b:01:5e:57:e5:3f:9f:d3:87:2b:2e:f8:a3: 92:d7:72:93:0a:64:bd:b0:2e:e8:22:c4:2b:02:40: ff:10:05:51:a2:b7:82:91:0c:b8:71:f7:0d:a8:0e: d5:66:18:e5:7c:cd:b6:27:0a:f9:4d:a0:92:3d:a5: c1:1b:fd:9c:e2:66:7e:fd:da:c6:52:d3:07:de:c6: b1:6b:d2:f6:04:7a:4b:cd:14:41:69:d7:41:12:93: 41:df:da:aa:66:7a:92:81:65:2a:35:62:83:f4:e6: 23:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F8:F8:33:94:83:3E:00:C8:F6:98:3C:88:2B:AE:4C:F9:9D:C1:AB X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.125.0-103.209.127.255 Signature Algorithm: sha256WithRSAEncryption 99:4c:7f:9c:da:c1:46:7a:51:9c:60:e9:15:a7:ad:3e:eb:70: 93:84:82:d4:d9:e0:3e:8c:6d:6c:4b:d8:b5:00:10:ef:80:e1: b6:0f:9b:29:34:3a:0d:7d:88:72:4e:07:e2:89:52:83:46:d9: 95:64:ae:3b:d3:ec:8c:a3:e7:67:6f:b5:84:37:6d:97:f1:57: 91:80:b7:c1:48:d5:17:05:bb:b9:fd:51:2a:8a:81:14:4f:60: dc:25:1d:04:b6:d3:72:97:a5:ca:9d:51:76:9a:43:1a:93:67: d1:54:c8:b1:9a:83:89:63:59:6a:b7:38:05:5a:b2:71:a9:92: ae:7f:63:b6:5e:a3:67:a1:09:f7:48:be:da:76:04:3d:75:df: 8c:ac:cb:54:16:38:5f:7f:a3:f1:4e:07:89:3b:5f:bd:37:74: f3:2f:46:8f:75:54:d5:da:d5:6e:12:42:08:49:8d:5d:b6:20: c8:ea:72:09:95:14:ae:b9:03:ad:8d:91:30:90:6a:a7:10:49: af:33:d2:ae:29:c7:f7:00:84:ea:e9:9e:b9:e3:37:1f:66:77: cd:4d:91:3a:29:b8:68:e0:39:3f:f5:48:4b:5a:73:5c:9d:04: 65:ba:44:10:65:68:95:57:48:73:97:4a:89:4a:7a:f4:12:d1: 12:ec:d1:13 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICFSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwNzEyMTY1NTQ0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyOTM5MC1jYThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1bGjVyhiwjOl2gNx2tSzUXPNfjuKMY7cZ6RaZZyj0bkMx6yT0hTyUGYjwJL UuWXAxYpP9r5EWmkMk9DUjbntQj65w3CyW94x8Ndyg1OxtrOK6EL8/AnByVBOmfz eSEC3g/td03ZKhJP+Yh0lYDc7dZcFPbghfB3hlEh3OFcLagY2povs8k4Lnof0YkF ZhSfDzrW2TBcXAsBXlflP5/Thysu+KOS13KTCmS9sC7oIsQrAkD/EAVRoreCkQy4 cfcNqA7VZhjlfM22Jwr5TaCSPaXBG/2c4mZ+/drGUtMH3saxa9L2BHpLzRRBaddB EpNB39qqZnqSgWUqNWKD9OYjKwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGX4+DOU gz4AyPaYPIgrrkz5ncGrMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzQzNzcwQTBD MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfRfQMEB2fRADANBgkqhkiG9w0BAQsFAAOCAQEAmUx/ nNrBRnpRnGDpFaetPutwk4SC1NngPoxtbEvYtQAQ74Dhtg+bKTQ6DX2Ick4H4olS g0bZlWSuO9PsjKPnZ2+1hDdtl/FXkYC3wUjVFwW7uf1RKoqBFE9g3CUdBLbTcpel yp1RdppDGpNn0VTIsZqDiWNZarc4BVqycamSrn9jtl6jZ6EJ90i+2nYEPXXfjKzL VBY4X3+j8U4HiTtfvTd08y9Gj3VU1drVbhJCCEmNXbYgyOpyCZUUrrkDrY2RMJBq pxBJrzPSrinH9wCE6umeueM3H2Z3zU2ROim4aOA5P/VIS1pzXJ0EZbpEEGVolVdI c5dKiUp69BLREuzREw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:34:15 2025 by rpki-client