$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6A9E6940B10511E591A3E484C4F9AE02.roa File: 6A9E6940B10511E591A3E484C4F9AE02.roa (raw, json) Hash identifier: 1AXC4CdSqCeZreg7Kdx8zTNNLCij2RY2Acpk7gs3UmA= Subject key identifier: 99:B7:09:1B:2F:09:02:9D:7F:31:85:11:D0:D0:70:27:DD:A9:32:C8 Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 34C5 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6A9E6940B10511E591A3E484C4F9AE02.roa Signing time: Thu 10 Jul 2025 15:51:05 +0000 ROA not before: Thu 10 Jul 2025 15:51:05 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58624 IP address blocks: 103.13.39.0/24 maxlen: 24 2001:df0:2c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Jul 10 15:51:05 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686fe169-a9ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4b:c2:8f:f3:84:0f:90:a8:5b:aa:1e:b5:25: 2c:fe:52:2d:b5:40:bc:33:f2:6b:1f:b1:13:47:36: 41:57:e4:fd:4c:e5:02:d0:ec:4a:f0:2c:48:62:bf: fe:30:c4:b4:a8:23:0f:8f:1d:16:e3:6b:38:ba:fb: 80:2e:7b:0d:9e:bb:a9:c1:cf:6a:04:18:59:c8:71: 03:4d:1c:d0:a2:fb:c0:3f:fb:0b:fb:49:cf:ab:06: 7a:a3:8f:19:e4:b0:df:78:c1:8c:bc:8b:5f:7b:07: 02:90:dd:83:a4:b6:94:ff:9d:21:16:5c:d0:d6:e1: 4e:2d:ca:5d:68:91:9a:7b:7c:36:33:8c:ac:00:71: e3:b1:67:e4:90:34:90:71:43:df:e5:f9:73:1a:08: 10:9e:75:b7:e8:b5:8c:fc:cc:63:a5:53:2e:d2:85: 60:2a:1c:26:34:b7:de:26:18:81:69:af:80:b0:aa: dc:67:3b:be:20:9e:9d:a9:32:4f:01:e7:0b:8d:47: 90:84:d6:29:cb:93:95:9e:70:a8:de:c3:23:31:1a: 19:d7:32:1c:ec:cb:83:32:cc:c5:82:fc:5b:78:c1: f6:88:cc:78:8d:b5:e1:b6:c2:06:43:61:c8:18:93: 3d:53:6d:79:6d:c4:39:05:a3:d1:be:cc:1c:52:23: 68:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B7:09:1B:2F:09:02:9D:7F:31:85:11:D0:D0:70:27:DD:A9:32:C8 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/6A9E6940B10511E591A3E484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.39.0/24 IPv6: 2001:df0:2c1::/48 Signature Algorithm: sha256WithRSAEncryption 17:f7:71:df:6a:5c:cb:eb:62:7e:8f:41:23:af:32:cc:ed:ec: 5f:27:e4:50:1e:8e:ba:3e:a4:48:45:8e:75:0b:8d:c4:a9:90: e5:71:10:b1:6b:9a:cc:40:3c:5a:4d:f9:bc:e9:58:5f:d1:d4: ac:fc:19:b8:5e:f1:ef:91:a9:b8:04:ba:60:6f:f4:dc:50:52: 69:19:4d:1e:fc:01:11:1a:f5:f1:9f:af:aa:ed:6a:c9:32:47: 81:de:53:68:ef:b8:66:84:99:3e:d9:7d:2f:6d:07:c6:81:f8: 5d:73:d6:32:ef:aa:6c:e7:11:0d:da:cd:c0:b3:38:54:e6:81: 24:05:c2:e8:e0:f8:d6:5e:a6:aa:66:06:84:8e:20:8b:aa:93: 21:ea:6f:df:81:fa:52:d2:82:7a:6a:5b:82:1e:87:9a:e8:52: d2:17:3c:b6:9a:3c:cd:11:a1:04:01:6d:eb:7b:fd:f4:02:f5: 0b:9d:2d:24:de:0a:6d:fa:da:c8:5e:14:47:66:99:e7:84:30: 87:24:16:e9:d2:12:8c:d9:cb:f8:7e:ee:24:98:d7:86:5e:2b: 2c:73:69:cb:af:21:64:04:c5:13:33:ac:32:e2:15:bd:f7:f0: 6a:9a:b8:87:0e:44:9a:27:1c:df:88:f8:49:26:33:8d:74:fe: 9c:b9:05:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUwNzEwMTU1MTA1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZmZTE2OS1hOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kvCj/OED5CoW6oetSUs/lIttUC8M/JrH7ETRzZBV+T9TOUC0OxK8CxIYr/+ MMS0qCMPjx0W42s4uvuALnsNnrupwc9qBBhZyHEDTRzQovvAP/sL+0nPqwZ6o48Z 5LDfeMGMvItfewcCkN2DpLaU/50hFlzQ1uFOLcpdaJGae3w2M4ysAHHjsWfkkDSQ cUPf5flzGggQnnW36LWM/MxjpVMu0oVgKhwmNLfeJhiBaa+AsKrcZzu+IJ6dqTJP AecLjUeQhNYpy5OVnnCo3sMjMRoZ1zIc7MuDMszFgvxbeMH2iMx4jbXhtsIGQ2HI GJM9U215bcQ5BaPRvswcUiNobQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJm3CRsv CQKdfzGFEdDQcCfdqTLIMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMxRkUvRDExOEFBQkExREFBMTFFMkEyRUNDQUE2MDhCMDJDRDIvNkE5RTY5NDBC MTA1MTFFNTkxQTNFNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnDScwDwQCAAIwCQMHACABDfACwTANBgkqhkiG9w0BAQsF AAOCAQEAF/dx32pcy+tifo9BI68yzO3sXyfkUB6Ouj6kSEWOdQuNxKmQ5XEQsWua zEA8Wk35vOlYX9HUrPwZuF7x75GpuAS6YG/03FBSaRlNHvwBERr18Z+vqu1qyTJH gd5TaO+4ZoSZPtl9L20HxoH4XXPWMu+qbOcRDdrNwLM4VOaBJAXC6OD41l6mqmYG hI4gi6qTIepv34H6UtKCempbgh6HmuhS0hc8tpo8zRGhBAFt63v99AL1C50tJN4K bfrayF4UR2aZ54QwhyQW6dISjNnL+H7uJJjXhl4rLHNpy68hZATFEzOsMuIVvffw apq4hw5Emicc34j4SSYzjXT+nLkFWA== -----END CERTIFICATE-----Generated at Sun Jul 20 06:42:10 2025 by rpki-client