$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa File: B62B9156280611ED8BEBC536C4F9AE02.roa (raw, json) Hash identifier: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90= Subject key identifier: 2F:22:39:B3:C8:54:56:1E:2F:D2:67:2F:98:45:30:71:68:55:07:C4 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 18BE Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa Signing time: Tue 08 Jul 2025 17:25:59 +0000 ROA not before: Tue 08 Jul 2025 17:25:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149167 IP address blocks: 103.239.74.0/24 maxlen: 24 103.239.75.0/24 maxlen: 24 203.167.23.0/24 maxlen: 24 2405:f080:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6334 (0x18be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jul 8 17:25:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d54a7-371c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:88:9b:81:4e:f8:a4:45:5f:5e:ef:ee:f5: 65:7a:ee:1c:4f:75:ab:d4:16:d1:e9:12:11:4c:99: 27:d7:5b:f4:83:52:a5:b3:7c:c5:ac:52:82:d7:33: f5:9c:da:c9:a1:1e:48:3a:88:8c:a6:9b:62:7b:9c: 6f:24:f4:a0:d1:47:7f:fb:a3:c0:80:a8:d5:97:63: 8a:32:23:fd:89:b1:e3:5c:95:67:5c:01:4e:43:de: bf:3c:d9:fd:12:08:4d:68:26:b0:94:d7:87:f6:6d: 43:dd:98:de:ec:e3:6d:2d:80:4a:5c:a4:61:57:5b: 51:89:5d:0a:fa:99:7d:a3:54:aa:64:08:6e:fe:2d: f4:47:c0:01:09:52:4a:62:e1:9f:c0:fc:f6:ab:0e: 4d:3b:0f:76:c9:69:b2:55:d5:ff:1f:6f:7e:fc:42: 42:fd:9d:d8:82:c0:a4:cf:05:b9:ec:0b:bb:28:34: 15:30:d6:8a:69:1b:4d:92:bd:37:67:6f:f8:c8:3e: c5:12:a7:3f:27:ee:0c:0f:d9:af:08:13:97:3c:a6: 9d:a1:a9:08:87:a3:f6:37:e3:ca:03:3d:0c:18:36: ec:55:a7:c6:7a:20:b5:38:2f:01:4d:4f:02:03:e9: fb:43:69:de:a4:ea:00:ce:8c:30:6f:f2:87:61:bc: bd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:22:39:B3:C8:54:56:1E:2F:D2:67:2F:98:45:30:71:68:55:07:C4 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.74.0/23 203.167.23.0/24 IPv6: 2405:f080:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 84:33:9d:24:cf:c2:b0:f9:92:23:91:b8:23:a2:1c:15:0c:81: d0:21:00:a0:34:57:f4:3f:d6:c8:2d:fe:97:ab:fd:92:49:bb: b8:c8:70:e7:26:37:be:86:e6:da:f9:b4:55:4e:b5:2d:79:e3: 6c:1d:67:32:bb:d8:73:08:77:6b:38:98:02:fc:22:c2:71:89: 46:fc:90:54:37:cf:ca:2f:4e:86:f5:56:2f:fd:8d:00:fe:e1: 5c:99:f1:c8:ee:dc:3a:a1:86:07:a5:da:7d:33:3c:41:bb:48: 57:a7:67:ea:18:8a:3f:b1:51:44:29:a6:9d:ab:90:74:c1:31: bd:8b:9d:c0:bf:09:6c:63:45:fc:fd:90:bb:27:f5:14:8e:13: f1:85:9d:39:76:9e:00:22:0a:09:d3:e0:5d:b4:66:92:cc:8c: ea:3d:f8:21:57:28:30:29:b1:de:9d:75:da:7a:41:32:25:9f: d0:0b:f2:9c:b5:a4:2b:c5:1e:8f:9d:88:4b:80:08:0e:29:c3: 62:f6:73:65:5a:bc:7b:c9:ff:f1:d0:e3:4c:0f:1e:9a:0e:c8: 92:7f:f6:e8:7e:dd:ef:26:38:3f:a2:2f:78:0d:52:37:8d:b2: 65:d5:3e:4e:7f:ca:32:d2:95:1f:6f:ee:f9:06:cf:56:cf:93: 6f:37:2d:f7 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICGL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUwNzA4MTcyNTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkNTRhNy0zNzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9SIm4FO+KRFX17v7vVleu4cT3Wr1BbR6RIRTJkn11v0g1Kls3zFrFKC1zP1 nNrJoR5IOoiMpptie5xvJPSg0Ud/+6PAgKjVl2OKMiP9ibHjXJVnXAFOQ96/PNn9 EghNaCawlNeH9m1D3Zje7ONtLYBKXKRhV1tRiV0K+pl9o1SqZAhu/i30R8ABCVJK YuGfwPz2qw5NOw92yWmyVdX/H29+/EJC/Z3YgsCkzwW57Au7KDQVMNaKaRtNkr03 Z2/4yD7FEqc/J+4MD9mvCBOXPKadoakIh6P2N+PKAz0MGDbsVafGeiC1OC8BTU8C A+n7Q2nepOoAzowwb/KHYby9HwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFC8iObPI VFYeL9JnL5hFMHFoVQfEMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvQjYyQjkxNTYy ODA2MTFFRDhCRUJDNTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAFn70oDBADLpxcwDgQCAAIwCAMGACQF8ID/MA0GCSqGSIb3 DQEBCwUAA4IBAQCEM50kz8Kw+ZIjkbgjohwVDIHQIQCgNFf0P9bILf6Xq/2SSbu4 yHDnJje+huba+bRVTrUteeNsHWcyu9hzCHdrOJgC/CLCcYlG/JBUN8/KL06G9VYv /Y0A/uFcmfHI7tw6oYYHpdp9MzxBu0hXp2fqGIo/sVFEKaadq5B0wTG9i53Avwls Y0X8/ZC7J/UUjhPxhZ05dp4AIgoJ0+BdtGaSzIzqPfghVygwKbHenXXaekEyJZ/Q C/KctaQrxR6PnYhLgAgOKcNi9nNlWrx7yf/x0ONMDx6aDsiSf/boft3vJjg/oi94 DVI3jbJl1T5Of8oy0pUfb+75Bs9Wz5NvNy33 -----END CERTIFICATE-----Generated at Mon Jul 21 08:11:23 2025 by rpki-client