$ rpki-client -vvf rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/34788E285FD711F0AE80057FC4F9AE02.roa File: 34788E285FD711F0AE80057FC4F9AE02.roa (raw, json) Hash identifier: NHQlMr+Fs6uSbsfQLgv2iNTEsZYm+SpOv0roctNIT7Q= Subject key identifier: C5:6F:F4:5B:D9:E0:D3:2C:51:FF:5F:83:E7:29:6C:B4:B7:26:B9:DE Certificate issuer: /CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A Certificate serial: 04AE Authority key identifier: 48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/34788E285FD711F0AE80057FC4F9AE02.roa Signing time: Sun 13 Jul 2025 10:50:35 +0000 ROA not before: Sun 13 Jul 2025 10:50:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134562 IP address blocks: 103.175.242.0/24 maxlen: 24 103.175.243.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C1CB, serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A Validity Not Before: Jul 13 10:50:35 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68738f7b-236f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:40:fd:e5:9a:a6:86:44:34:e5:5b:31:d6: a5:e6:f3:29:70:58:bf:6b:c6:d1:2b:71:97:96:f4: 1c:65:50:d9:0f:df:08:2f:90:93:93:a0:76:be:45: 9b:fe:10:e9:6c:b1:5c:a7:f7:6b:de:10:92:b6:ee: 5d:9f:5b:54:75:4e:94:8f:0f:65:54:90:9d:6c:6a: 59:8f:70:90:da:81:db:d1:2d:dc:52:ee:c5:4f:49: 57:23:16:96:e8:38:d1:88:65:44:df:5f:9d:ce:ce: dc:f4:23:b1:63:ad:66:b4:cb:9d:73:c7:bd:cb:55: cc:b5:2a:c2:ff:d5:20:89:bc:c7:8a:97:e7:44:4a: fb:55:4a:bd:84:4b:9e:d8:d2:a4:4d:00:12:7a:2c: 5d:5a:9d:51:24:e2:26:21:c3:c8:5c:42:1d:a1:a0: ae:c0:fa:62:5b:74:e4:a1:7e:a4:71:4a:41:0d:22: 1c:1b:3b:51:a8:a4:48:34:bf:57:95:70:d7:1f:2f: 49:92:42:6d:19:d8:e8:8a:eb:3c:33:f3:f7:9a:08: 0e:37:9d:8f:2e:e0:25:b8:2f:a8:66:e6:33:80:bd: 4e:c5:da:44:c8:71:7c:46:8f:65:c6:da:00:7c:ca: c9:33:c1:a4:62:af:bd:27:30:62:65:3b:cb:61:d1: 65:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6F:F4:5B:D9:E0:D3:2C:51:FF:5F:83:E7:29:6C:B4:B7:26:B9:DE X509v3 Authority Key Identifier: keyid:48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/34788E285FD711F0AE80057FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.242.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:5e:ca:fd:05:08:4c:a9:15:70:2f:8f:49:89:a9:92:89:d6: 0e:7e:9c:2d:ba:00:98:8d:82:53:28:29:3b:4d:cd:47:35:38: 34:45:6e:69:9f:8d:ae:b6:35:48:82:49:b4:b6:2f:d9:61:e7: 67:6f:2c:8b:66:b7:f2:a4:28:13:42:8f:ab:a3:fa:a0:d3:6d: 55:c4:43:fc:26:13:1b:4b:97:7c:34:6e:a2:7c:ff:96:1b:cf: e6:c6:ca:56:85:ed:a9:04:0c:2c:78:e9:8d:1e:62:49:38:91: 38:70:40:f4:9a:ed:7a:91:fe:a2:f1:a2:90:47:d6:34:d8:f4: cc:fd:27:39:ce:1b:9c:2c:43:c7:66:74:1a:f6:6c:a6:b0:af: 9f:c9:10:be:2f:9f:f1:f0:9e:af:1d:42:8a:a6:52:cb:f7:8f: 8b:6b:66:8c:27:ef:f2:fe:7f:a5:9c:6f:ef:23:aa:79:d9:7e: bd:40:4e:e6:0c:c6:ad:b3:a7:d7:51:68:c9:a0:fe:73:a7:1d: e2:e2:6d:7d:fb:a0:83:2a:9e:9d:08:69:15:4d:44:e1:70:c2: 5f:1c:9c:ee:95:2b:3a:39:63:72:06:b1:b1:0f:94:7f:9e:47: 37:9a:c2:cc:f9:e0:ce:1f:fa:77:86:02:99:c5:a6:90:70:30: 13:4b:d2:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MxQ0IxMTAvBgNVBAUTKDQ4QzVEQjVBMUJCREVCMjIxMTA1OEMwN0QyNzY3MEI0 MkI2RDg3NkEwHhcNMjUwNzEzMTA1MDM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODczOGY3Yi0yMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcVA/eWapoZENOVbMdal5vMpcFi/a8bRK3GXlvQcZVDZD98IL5CTk6B2vkWb /hDpbLFcp/dr3hCStu5dn1tUdU6Ujw9lVJCdbGpZj3CQ2oHb0S3cUu7FT0lXIxaW 6DjRiGVE31+dzs7c9COxY61mtMudc8e9y1XMtSrC/9UgibzHipfnREr7VUq9hEue 2NKkTQASeixdWp1RJOImIcPIXEIdoaCuwPpiW3TkoX6kcUpBDSIcGztRqKRINL9X lXDXHy9JkkJtGdjoius8M/P3mggON52PLuAluC+oZuYzgL1OxdpEyHF8Ro9lxtoA fMrJM8GkYq+9JzBiZTvLYdFllQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMVv9FvZ 4NMsUf9fg+cpbLS3JrneMB8GA1UdIwQYMBaAFEjF21obvesiEQWMB9J2cLQrbYdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzFDQi9FMzhFMzI4MDQw NUMxMUVDQjE3RjY4MTlDNEY5QUUwMi9TTVhiV2h1OTZ5SVJCWXdIMG5ad3RDdHRo Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NNWGJXaHU5NnlJUkJZd0gwblp3dEN0dGgyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MxQ0IvRTM4RTMyODA0MDVDMTFFQ0IxN0Y2ODE5QzRGOUFFMDIvMzQ3ODhFMjg1 RkQ3MTFGMEFFODAwNTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnr/IwDQYJKoZIhvcNAQELBQADggEBAC9eyv0FCEypFXAv j0mJqZKJ1g5+nC26AJiNglMoKTtNzUc1ODRFbmmfja62NUiCSbS2L9lh52dvLItm t/KkKBNCj6uj+qDTbVXEQ/wmExtLl3w0bqJ8/5Ybz+bGylaF7akEDCx46Y0eYkk4 kThwQPSa7XqR/qLxopBH1jTY9Mz9JznOG5wsQ8dmdBr2bKawr5/JEL4vn/Hwnq8d QoqmUsv3j4trZown7/L+f6Wcb+8jqnnZfr1ATuYMxq2zp9dRaMmg/nOnHeLibX37 oIMqnp0IaRVNROFwwl8cnO6VKzo5Y3IGsbEPlH+eRzeawsz54M4f+neGApnFppBw MBNL0oE= -----END CERTIFICATE-----Generated at Sun Jul 20 19:01:56 2025 by rpki-client