$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa File: BF6649687AC811EDAE44E656C4F9AE02.roa (raw, json) Hash identifier: LcpUVsxOJi3t+CPRAWzqjfdnmFogw8cF+SJQm5U5O4I= Subject key identifier: 4D:BB:CB:14:06:F6:57:CE:44:46:30:A4:5D:97:42:1B:89:91:38:29 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 390D Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:25 +0000 ROA not before: Fri 04 Jul 2025 14:50:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 131887 IP address blocks: 103.104.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14605 (0x390d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea31-fda8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:07:79:aa:2c:23:f9:e0:4c:c4:22:b6:db: 87:21:55:61:74:3b:e6:cf:e0:ef:07:f3:c0:34:f3: 1d:df:b6:f9:16:5c:c5:34:ae:d1:c2:e8:ce:dd:cc: ec:6f:bc:9c:76:22:34:2a:e3:e3:a7:3b:77:db:e6: 81:eb:76:f2:39:40:8a:f4:23:3c:d4:eb:77:c7:39: 1a:d1:e9:e0:26:51:f1:1d:e7:0a:f6:7b:a7:6e:f8: a5:d6:18:4d:63:e0:5c:92:00:1e:3a:11:d1:d2:f7: cd:e5:2f:67:bc:7f:d0:fa:8d:77:bf:1e:15:0b:40: c3:ab:f9:47:48:75:49:1d:f1:2f:05:c6:2b:1b:c7: f6:6f:0b:f8:35:17:93:cb:1c:63:fa:d7:2a:11:da: d1:73:cb:39:d5:0b:21:4d:d4:40:ca:df:48:26:19: bd:a3:23:15:b9:c3:18:8a:75:42:0a:c2:22:5c:d9: da:8f:15:64:fb:b9:fd:43:08:09:3a:c5:1b:3a:f0: f3:73:c6:ea:98:42:95:48:3f:28:c7:cc:e3:d2:ac: 72:23:c2:94:c5:94:67:e1:5d:f0:33:fc:38:12:36: 43:f4:b8:44:fc:2e:19:e5:d6:89:e6:3f:16:36:50: 14:7e:73:f8:32:8a:7a:4a:e4:5e:83:68:4c:25:e8: 6b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BB:CB:14:06:F6:57:CE:44:46:30:A4:5D:97:42:1B:89:91:38:29 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/BF6649687AC811EDAE44E656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.86.0/24 Signature Algorithm: sha256WithRSAEncryption db:a3:d0:74:01:ad:ee:b6:eb:32:aa:db:b0:68:07:4f:7f:1a: 58:e9:8d:5e:36:e0:9a:08:1f:6c:1f:93:57:b6:8e:ef:af:96: 5a:b6:03:9c:c2:52:55:b0:a1:e9:1c:a0:3b:cd:c2:c0:7a:ed: 46:d2:da:7f:0e:2f:7b:6d:6a:db:76:6f:5e:9a:bb:ef:19:5b: 2a:69:07:5e:d3:b2:ce:1d:14:c4:9b:1d:56:91:b8:d0:e6:0e: ea:30:c4:1e:db:52:8b:f6:ca:34:f1:6c:db:be:18:2c:ea:4a: 83:a2:43:64:a2:99:6c:07:84:e2:e5:38:5e:f6:4e:c4:3e:10: 68:0f:80:6d:f7:0b:a5:fd:63:80:70:7d:f9:c5:3d:c8:34:d5: a9:94:f1:db:90:dd:37:df:48:38:cd:4f:7e:61:8f:8e:c5:cf: d2:c7:91:dc:c0:20:41:16:e8:20:9b:78:4b:6b:ae:e9:46:b1: 45:e5:3e:a3:03:3c:48:67:a3:24:b4:6d:1f:28:54:17:79:7d: ba:f8:94:5a:db:72:a5:5b:52:f4:5f:f8:d0:19:49:3f:5d:3b: 8d:37:bb:9c:6b:fa:cf:5f:5b:8a:cc:66:9c:1d:24:bd:1c:56: b6:94:c9:2b:14:e3:6e:e2:e6:f8:be:0f:37:11:30:f7:38:79: 6c:fc:c8:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWEzMS1mZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwIHeaosI/ngTMQittuHIVVhdDvmz+DvB/PANPMd37b5FlzFNK7RwujO3czs b7ycdiI0KuPjpzt32+aB63byOUCK9CM81Ot3xzka0engJlHxHecK9nunbvil1hhN Y+BckgAeOhHR0vfN5S9nvH/Q+o13vx4VC0DDq/lHSHVJHfEvBcYrG8f2bwv4NReT yxxj+tcqEdrRc8s51QshTdRAyt9IJhm9oyMVucMYinVCCsIiXNnajxVk+7n9QwgJ OsUbOvDzc8bqmEKVSD8ox8zj0qxyI8KUxZRn4V3wM/w4EjZD9LhE/C4Z5daJ5j8W NlAUfnP4Mop6SuReg2hMJehrMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE27yxQG 9lfOREYwpF2XQhuJkTgpMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQkY2NjQ5Njg3 QUM4MTFFREFFNDRFNjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaFYwDQYJKoZIhvcNAQELBQADggEBANuj0HQBre626zKq 27BoB09/GljpjV424JoIH2wfk1e2ju+vllq2A5zCUlWwoekcoDvNwsB67UbS2n8O L3ttatt2b16au+8ZWyppB17Tss4dFMSbHVaRuNDmDuowxB7bUov2yjTxbNu+GCzq SoOiQ2SimWwHhOLlOF72TsQ+EGgPgG33C6X9Y4BwffnFPcg01amU8duQ3TffSDjN T35hj47Fz9LHkdzAIEEW6CCbeEtrrulGsUXlPqMDPEhnoyS0bR8oVBd5fbr4lFrb cqVbUvRf+NAZST9dO403u5xr+s9fW4rMZpwdJL0cVraUySsU427i5vi+DzcRMPc4 eWz8yKE= -----END CERTIFICATE-----Generated at Tue Jul 22 11:55:04 2025 by rpki-client