$ rpki-client -vvf rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa File: 1E573054C36111E9A37AC46EC4F9AE02.roa (raw, json) Hash identifier: 9F91+IUTL7h3rCEta0BAPCIgikPUjvwFDwgS+OoqM04= Subject key identifier: 29:3E:66:F2:7E:5D:61:77:7B:3B:37:A6:E1:E8:AF:95:DA:E6:D4:BB Certificate issuer: /CN=A915D529/serialNumber=C98AFBB4BB9AE9B1A27A3DD3AD5956B34EDA9C63 Certificate serial: 0DBA Authority key identifier: C9:8A:FB:B4:BB:9A:E9:B1:A2:7A:3D:D3:AD:59:56:B3:4E:DA:9C:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa Signing time: Fri 04 Jul 2025 18:27:31 +0000 ROA not before: Fri 04 Jul 2025 18:27:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58976 IP address blocks: 103.29.28.0/24 maxlen: 24 103.250.31.0/24 maxlen: 24 2001:df7:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.crl rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3514 (0xdba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D529, serialNumber=C98AFBB4BB9AE9B1A27A3DD3AD5956B34EDA9C63 Validity Not Before: Jul 4 18:27:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68681d13-74b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b1:54:ba:8f:43:3c:74:1b:aa:9c:b2:f9:aa: cf:46:4c:1c:e9:48:97:c2:31:07:dc:54:fd:dd:41: 30:30:e5:5e:7f:fa:bd:1f:d6:ff:c5:86:13:75:cb: 3e:04:c1:80:b3:25:3f:77:be:54:6d:7d:6e:87:cc: cc:a5:39:50:b9:05:4a:f8:c3:e7:73:08:b2:12:5f: f1:ae:05:0d:6f:c5:bd:dd:36:24:a0:96:b1:4b:60: 8e:df:85:eb:f0:9c:14:88:89:9d:de:17:c0:e2:df: 63:1c:69:b6:bf:3a:c9:c0:ea:f0:71:d5:cd:f9:8d: 9c:c9:4b:4f:d2:69:a4:ee:64:b5:c3:8a:a5:e6:f3: 64:da:78:ad:84:76:ea:d0:2e:3d:36:88:5b:2a:f1: e5:f1:a7:0f:6b:98:10:39:ac:9d:24:99:d9:70:1f: e6:03:3f:7a:5a:4a:7e:c5:b0:8e:d3:e9:cf:3c:df: 97:1a:87:9d:3a:66:66:f5:28:d8:98:93:bf:e4:1d: 96:0e:c4:6d:8d:43:3f:54:d3:23:85:4a:74:08:d0: 95:a8:10:b2:44:b0:1e:72:22:07:ee:5d:23:d4:ee: 96:41:af:bb:fe:05:73:86:d4:5c:7c:a7:d8:65:d6: 87:8a:01:12:76:de:6e:de:a0:b7:14:4c:10:5b:a3: 44:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3E:66:F2:7E:5D:61:77:7B:3B:37:A6:E1:E8:AF:95:DA:E6:D4:BB X509v3 Authority Key Identifier: keyid:C9:8A:FB:B4:BB:9A:E9:B1:A2:7A:3D:D3:AD:59:56:B3:4E:DA:9C:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/yYr7tLua6bGiej3TrVlWs07anGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYr7tLua6bGiej3TrVlWs07anGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D529/20CF2E14C36011E98A5C026DC4F9AE02/1E573054C36111E9A37AC46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.28.0/24 103.250.31.0/24 IPv6: 2001:df7:6000::/48 Signature Algorithm: sha256WithRSAEncryption 29:be:8f:39:39:89:43:2d:4e:8f:bb:51:06:33:9b:eb:d8:a0: 17:21:be:35:1d:37:5f:06:f2:54:89:a3:87:9d:94:a3:50:b6: 1e:a9:81:eb:0a:1a:50:9b:9f:b7:50:40:d8:8f:dc:59:fa:ef: 05:d2:c1:e7:e9:a9:9e:19:de:84:56:e3:8a:f7:25:16:8e:ce: 86:bf:ae:57:01:90:ce:37:ca:e7:78:b6:e6:a6:96:d7:01:85: e8:ff:5e:37:4b:71:76:5f:d2:c5:31:f5:38:63:33:f0:9d:f8: b6:0e:c1:f2:4c:c0:54:4a:da:6e:68:26:b6:50:f0:f4:89:4a: cb:6f:33:a3:f7:59:78:4f:56:69:df:43:3a:c0:9e:34:1e:c6: 14:88:dd:d7:a8:10:d4:5d:a8:24:4e:95:1d:c6:97:d0:55:f9: 5d:e0:48:20:91:1e:3d:84:64:d3:ee:58:48:24:8f:0b:7f:dc: b7:84:b7:58:4f:66:ef:f4:f8:f8:5b:32:9c:9f:0a:e3:ad:75: 53:e5:dd:0d:0c:c3:a8:86:1f:e0:5a:08:f5:9d:f7:b3:b5:4f: 44:4f:c5:6e:44:0d:40:47:9c:66:08:b6:1c:44:3e:83:59:fd: ed:db:72:96:88:ca:7e:a0:fe:f4:7d:83:de:a9:f7:e1:d1:03: f4:d8:e9:a4 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1MjkxMTAvBgNVBAUTKEM5OEFGQkI0QkI5QUU5QjFBMjdBM0REM0FENTk1NkIz NEVEQTlDNjMwHhcNMjUwNzA0MTgyNzMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4MWQxMy03NGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LFUuo9DPHQbqpyy+arPRkwc6UiXwjEH3FT93UEwMOVef/q9H9b/xYYTdcs+ BMGAsyU/d75UbX1uh8zMpTlQuQVK+MPncwiyEl/xrgUNb8W93TYkoJaxS2CO34Xr 8JwUiImd3hfA4t9jHGm2vzrJwOrwcdXN+Y2cyUtP0mmk7mS1w4ql5vNk2nithHbq 0C49NohbKvHl8acPa5gQOaydJJnZcB/mAz96Wkp+xbCO0+nPPN+XGoedOmZm9SjY mJO/5B2WDsRtjUM/VNMjhUp0CNCVqBCyRLAeciIH7l0j1O6WQa+7/gVzhtRcfKfY ZdaHigESdt5u3qC3FEwQW6NEPwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCk+ZvJ+ XWF3ezs3puHor5Xa5tS7MB8GA1UdIwQYMBaAFMmK+7S7mumxono9061ZVrNO2pxj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDUyOS8yMENGMkUxNEMz NjAxMUU5OEE1QzAyNkRDNEY5QUUwMi95WXI3dEx1YTZiR2llajNUclZsV3MwN2Fu R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lZcjd0THVhNmJHaWVqM1RyVmxXczA3YW5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ1MjkvMjBDRjJFMTRDMzYwMTFFOThBNUMwMjZEQzRGOUFFMDIvMUU1NzMwNTRD MzYxMTFFOUEzN0FDNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnHRwDBABn+h8wDwQCAAIwCQMHACABDfdgADANBgkqhkiG 9w0BAQsFAAOCAQEAKb6POTmJQy1Oj7tRBjOb69igFyG+NR03XwbyVImjh52Uo1C2 HqmB6woaUJuft1BA2I/cWfrvBdLB5+mpnhnehFbjivclFo7Ohr+uVwGQzjfK53i2 5qaW1wGF6P9eN0txdl/SxTH1OGMz8J34tg7B8kzAVErabmgmtlDw9IlKy28zo/dZ eE9Wad9DOsCeNB7GFIjd16gQ1F2oJE6VHcaX0FX5XeBIIJEePYRk0+5YSCSPC3/c t4S3WE9m7/T4+FsynJ8K4611U+XdDQzDqIYf4FoI9Z33s7VPRE/FbkQNQEecZgi2 HEQ+g1n97dtylojKfqD+9H2D3qn34dED9NjppA== -----END CERTIFICATE-----Generated at Sun Jul 20 22:48:48 2025 by rpki-client