$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/D0D7EE48343211EFBF2C280DC4F9AE02.roa File: D0D7EE48343211EFBF2C280DC4F9AE02.roa (raw, json) Hash identifier: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98= Subject key identifier: 75:67:94:72:5B:86:BC:07:C0:CF:51:A1:8F:2E:1E:95:9B:69:7E:3C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07C0 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/D0D7EE48343211EFBF2C280DC4F9AE02.roa Signing time: Tue 08 Jul 2025 22:02:12 +0000 ROA not before: Tue 08 Jul 2025 22:02:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135596 IP address blocks: 103.67.204.0/24 maxlen: 24 103.67.205.0/24 maxlen: 24 103.67.206.0/24 maxlen: 24 103.67.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1984 (0x7c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Jul 8 22:02:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d9564-73f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:ba:72:d5:99:b2:dc:de:a8:a9:11:5d:41: 97:94:24:4c:54:ae:ef:74:d0:91:87:fa:90:ea:3a: 25:ce:de:06:82:55:2c:4e:f7:d0:0b:74:b0:5d:8d: 04:e4:8d:a3:78:06:42:69:16:54:06:e1:30:a2:cf: 16:a7:74:8e:47:c9:96:36:34:21:2b:62:47:9a:8e: ac:58:06:92:03:66:ff:f1:c8:3f:f5:9f:59:e3:9e: ab:26:e5:e7:15:d0:2c:79:83:f0:ca:97:b0:3e:0e: cd:a9:45:fe:df:eb:d6:91:e0:d4:d8:6a:2d:0a:65: d2:f3:2f:db:3d:29:82:46:51:75:ca:6c:3d:a7:87: f8:b1:1f:e1:1d:73:c8:e5:2e:4d:b1:d7:43:a8:5d: 5e:55:64:62:d9:6c:a0:db:43:11:f6:66:31:b0:ab: eb:77:55:27:03:0a:f1:fa:38:5c:2c:04:ca:b3:2e: 13:02:13:97:28:8d:b3:b5:24:5d:19:17:ec:5e:1a: 63:4a:de:e3:d1:77:71:03:49:5a:cd:8b:58:ca:af: 0e:1c:87:8f:d1:53:af:44:53:fe:81:ce:26:9f:46: 63:89:fd:3f:e3:7e:35:63:84:12:d2:8e:4b:eb:73: c9:a9:df:b9:07:b0:42:20:a3:aa:7e:71:4a:61:ac: c7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:67:94:72:5B:86:BC:07:C0:CF:51:A1:8F:2E:1E:95:9B:69:7E:3C X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/D0D7EE48343211EFBF2C280DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.204.0/22 Signature Algorithm: sha256WithRSAEncryption 24:41:83:6f:b4:0b:f7:13:40:84:31:5a:69:cb:0f:9f:01:6a: 25:38:24:67:fe:d6:06:fd:b2:83:2c:f7:d5:b0:f0:f4:cd:18: 15:ec:df:8e:b1:6c:0d:1a:88:0b:f3:2e:1c:ea:1b:02:3e:a1: 97:9b:52:8f:c7:83:2d:66:bf:07:50:e5:ae:70:5f:dc:7a:b3: af:a4:85:19:42:b3:30:b3:3b:32:41:72:f3:85:06:da:71:71: 0f:c0:16:b7:cf:c6:4a:ab:1d:82:3a:c0:c1:8d:10:a8:f7:5d: f3:24:e7:7c:54:c0:95:bb:ee:b8:c2:34:61:01:25:da:4d:ec: f4:a1:4d:39:ce:86:47:98:11:d2:d1:e0:67:e9:93:69:f0:ac: 66:fb:eb:b8:72:6e:22:e2:de:5a:c9:f0:a6:91:c6:99:0c:2c: 3a:c1:c1:99:2d:0b:e3:cf:3a:4e:8b:0b:fc:d0:fe:17:ea:f3: 1e:2b:7d:80:86:ca:d9:34:5e:fd:4f:22:90:a1:cf:42:4d:2a: ba:7e:95:a8:5b:26:44:71:3f:fa:dd:c5:45:b4:36:7d:a4:07: 0b:28:2d:4d:2e:af:2e:50:01:81:fe:8c:bd:8c:78:6f:5b:72: 41:77:47:bb:6e:23:d8:7b:1b:3e:71:1f:e9:63:0b:51:b0:a8: 5d:02:f3:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwNzA4MjIwMjEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkOTU2NC03M2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzy6ctWZstzeqKkRXUGXlCRMVK7vdNCRh/qQ6jolzt4GglUsTvfQC3SwXY0E 5I2jeAZCaRZUBuEwos8Wp3SOR8mWNjQhK2JHmo6sWAaSA2b/8cg/9Z9Z456rJuXn FdAseYPwypewPg7NqUX+3+vWkeDU2GotCmXS8y/bPSmCRlF1ymw9p4f4sR/hHXPI 5S5NsddDqF1eVWRi2Wyg20MR9mYxsKvrd1UnAwrx+jhcLATKsy4TAhOXKI2ztSRd GRfsXhpjSt7j0XdxA0lazYtYyq8OHIeP0VOvRFP+gc4mn0Zjif0/4341Y4QS0o5L 63PJqd+5B7BCIKOqfnFKYazHiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHVnlHJb hrwHwM9RoY8uHpWbaX48MB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYzQkEvRkYyMEVCREMwMTNEMTFFQkEwMDAxMjZCQzRGOUFFMDIvRDBEN0VFNDgz NDMyMTFFRkJGMkMyODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnQ8wwDQYJKoZIhvcNAQELBQADggEBACRBg2+0C/cTQIQx WmnLD58BaiU4JGf+1gb9soMs99Ww8PTNGBXs346xbA0aiAvzLhzqGwI+oZebUo/H gy1mvwdQ5a5wX9x6s6+khRlCszCzOzJBcvOFBtpxcQ/AFrfPxkqrHYI6wMGNEKj3 XfMk53xUwJW77rjCNGEBJdpN7PShTTnOhkeYEdLR4Gfpk2nwrGb767hybiLi3lrJ 8KaRxpkMLDrBwZktC+PPOk6LC/zQ/hfq8x4rfYCGytk0Xv1PIpChz0JNKrp+lahb JkRxP/rdxUW0Nn2kBwsoLU0ury5QAYH+jL2MeG9bckF3R7tuI9h7Gz5xH+ljC1Gw qF0C8x8= -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:57 2025 by rpki-client