$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/BA33C4CC638A11F090002541C4F9AE02.roa File: BA33C4CC638A11F090002541C4F9AE02.roa (raw, json) Hash identifier: SYp3+Qw2NUOxAP2PI8VyKC4eZrJ7XxwyTmQykIlzc3s= Subject key identifier: B2:13:31:FF:26:FC:C0:03:66:74:FA:2E:0C:09:F1:90:0C:71:F5:68 Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 086D Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/BA33C4CC638A11F090002541C4F9AE02.roa Signing time: Fri 18 Jul 2025 03:53:13 +0000 ROA not before: Fri 18 Jul 2025 03:53:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45638 IP address blocks: 103.207.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 20:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Jul 18 03:53:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6879c529-666e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1c:31:75:77:32:0f:36:f2:89:3d:89:92:5b: d3:e7:55:c3:ef:81:83:26:22:ea:30:68:5d:10:67: 52:8d:26:35:66:44:f4:e2:66:43:fc:4a:0c:00:cd: 2f:58:59:3d:b6:f6:56:64:48:2b:05:c5:33:f2:1d: 6d:25:d1:0b:39:49:71:b9:4b:f6:2c:e6:b1:d6:64: 76:e4:da:f5:36:53:54:97:2d:f8:05:b8:4a:27:42: be:8d:d0:7d:4e:cc:be:42:6f:17:de:27:2c:fe:ee: ce:e0:63:bf:f1:1f:72:c3:ef:dc:ad:1b:46:be:b1: 8b:5f:58:aa:dd:17:76:5c:88:a4:7c:93:79:30:da: 05:6f:1c:80:3e:7b:8b:e6:31:60:17:69:72:2c:9b: 9d:b5:1f:5a:f8:51:53:3d:46:82:04:97:70:d3:be: 24:bf:1d:f5:84:95:2e:ff:c0:a1:ff:b2:6d:04:37: d6:52:92:dd:7b:45:73:34:41:05:52:4a:ea:f2:59: c2:70:4e:b3:fe:35:7e:48:3e:a2:d4:e4:96:44:7d: bd:64:65:2b:c8:02:13:48:6d:40:94:9c:fe:f2:7e: c8:50:2a:fc:a1:ea:71:75:87:96:0e:07:ff:7b:c1: c1:91:c0:af:d0:08:7c:cc:7c:ee:d7:29:9b:f3:67: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:13:31:FF:26:FC:C0:03:66:74:FA:2E:0C:09:F1:90:0C:71:F5:68 X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/BA33C4CC638A11F090002541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.28.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:1f:dc:6f:8d:34:78:0e:fa:11:d8:e1:d2:45:58:52:9b:de: af:2d:a5:df:70:f9:7a:63:cb:39:bf:3e:34:20:25:9d:92:3b: d1:a9:29:5f:d1:1f:32:f3:6b:27:81:7f:78:7e:fb:ce:c9:a9: 24:2d:da:cd:ec:04:f7:37:4e:92:9c:ea:22:81:0d:4b:1e:c3: 26:05:b9:b0:5f:d4:c8:a1:d7:59:8c:ab:12:c1:22:42:d8:0a: 6a:0a:d5:aa:9e:68:e6:29:1d:36:b6:e2:53:5b:e2:df:36:fd: 84:6e:28:62:08:8f:c6:54:15:0b:46:7d:bc:05:6e:3d:5f:55: 69:d2:94:06:64:cc:6c:f7:64:6e:55:dd:bd:fa:ed:52:ba:2a: 75:fd:32:2c:d7:a6:ea:5c:b1:e7:25:fb:54:35:7c:09:47:0e: ea:e6:b4:21:69:ea:05:70:40:a2:9f:ee:68:d3:1a:db:b4:45: e4:aa:e0:da:b4:87:62:97:fa:4c:6e:05:8f:b9:94:15:b2:e5: bc:34:ad:26:78:d5:ef:b8:8f:e1:dc:5a:87:06:18:62:b3:0e: 5c:a1:ad:8b:e1:37:56:3d:0b:a8:ab:70:1a:c2:29:a6:90:29: a2:2c:14:94:c2:1a:c6:b9:39:19:89:36:25:be:1d:49:40:58: 91:01:84:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUwNzE4MDM1MzEzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc5YzUyOS02NjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRwxdXcyDzbyiT2JklvT51XD74GDJiLqMGhdEGdSjSY1ZkT04mZD/EoMAM0v WFk9tvZWZEgrBcUz8h1tJdELOUlxuUv2LOax1mR25Nr1NlNUly34BbhKJ0K+jdB9 Tsy+Qm8X3ics/u7O4GO/8R9yw+/crRtGvrGLX1iq3Rd2XIikfJN5MNoFbxyAPnuL 5jFgF2lyLJudtR9a+FFTPUaCBJdw074kvx31hJUu/8Ch/7JtBDfWUpLde0VzNEEF Ukrq8lnCcE6z/jV+SD6i1OSWRH29ZGUryAITSG1AlJz+8n7IUCr8oepxdYeWDgf/ e8HBkcCv0Ah8zHzu1ymb82cMQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLITMf8m /MADZnT6LgwJ8ZAMcfVoMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q5Q0IvM0ZEMkQ5QzRDQTJBMTFFQTk1RUE4ODdGQzRGOUFFMDIvQkEzM0M0Q0M2 MzhBMTFGMDkwMDAyNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzxwwDQYJKoZIhvcNAQELBQADggEBAI0f3G+NNHgO+hHY 4dJFWFKb3q8tpd9w+Xpjyzm/PjQgJZ2SO9GpKV/RHzLzayeBf3h++87JqSQt2s3s BPc3TpKc6iKBDUsewyYFubBf1Mih11mMqxLBIkLYCmoK1aqeaOYpHTa24lNb4t82 /YRuKGIIj8ZUFQtGfbwFbj1fVWnSlAZkzGz3ZG5V3b367VK6KnX9MizXpupcsecl +1Q1fAlHDurmtCFp6gVwQKKf7mjTGtu0ReSq4Nq0h2KX+kxuBY+5lBWy5bw0rSZ4 1e+4j+HcWocGGGKzDlyhrYvhN1Y9C6ircBrCKaaQKaIsFJTCGsa5ORmJNiW+HUlA WJEBhPo= -----END CERTIFICATE-----Generated at Sun Jul 27 00:59:51 2025 by rpki-client