$ rpki-client -vvf rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa File: 4D6D5554DB8011ED91D54A2BC4F9AE02.roa (raw, json) Hash identifier: txIJm5SN5mj5ufLae9sOD2bwnfe8kYJIqTNAvBL7Uwo= Subject key identifier: 78:AF:9E:93:6A:46:61:CA:19:5A:AB:23:4F:3C:8C:63:DB:2B:7C:6A Certificate issuer: /CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Certificate serial: 0194 Authority key identifier: 1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa Signing time: Tue 03 Jun 2025 03:21:35 +0000 ROA not before: Tue 03 Jun 2025 03:21:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151183 IP address blocks: 103.131.102.0/24 maxlen: 24 103.131.103.0/24 maxlen: 24 2001:df2:43c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E951, serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Validity Not Before: Jun 3 03:21:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e6a3f-9186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:76:9d:5d:49:7e:4c:09:76:c2:31:a2:29: 9d:84:a2:24:00:d5:90:f2:85:2f:58:2f:02:d1:ea: 26:1f:85:9b:a9:32:24:8a:ad:da:71:0f:48:57:ab: e4:85:70:d2:3e:1b:5a:cb:f1:08:71:8b:0b:db:59: 36:5a:56:f8:9e:80:97:a3:ab:2e:d0:5d:43:13:2a: 23:0b:5b:e2:8d:4a:59:bd:23:72:dc:f1:57:36:16: 36:28:4d:94:db:cb:b4:b9:ea:de:7f:3c:93:8b:e7: 81:03:fe:40:18:3a:d2:a0:4a:c9:03:0b:d9:a5:6e: 88:f7:93:35:b1:47:7e:c7:a4:63:6a:91:14:ec:c2: 58:92:7c:76:f1:db:f8:60:3a:8f:a3:f0:8f:03:fa: f8:7e:53:1c:fe:da:47:a3:cb:ab:6b:c8:ee:a2:b8: 96:5d:46:e4:5a:17:bc:28:92:c7:15:83:a8:93:4e: 9c:ea:1f:bf:e1:85:f8:26:c1:86:a4:19:30:09:9d: ab:b1:92:ea:d7:f1:68:db:db:86:d4:5b:64:f9:ae: e5:bc:a7:89:bc:c2:43:6f:50:e8:98:15:d5:cf:8c: ee:48:28:78:3b:9e:f9:3c:6d:5b:46:98:57:e2:31: 9e:af:d2:05:28:13:e8:2b:95:ea:a5:90:d0:7a:d4: e2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AF:9E:93:6A:46:61:CA:19:5A:AB:23:4F:3C:8C:63:DB:2B:7C:6A X509v3 Authority Key Identifier: keyid:1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/4D6D5554DB8011ED91D54A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.102.0/23 IPv6: 2001:df2:43c0::/48 Signature Algorithm: sha256WithRSAEncryption 99:ce:e9:52:a3:79:b1:95:2b:db:67:b3:b7:5c:74:22:6d:38: ed:80:76:b4:16:05:4a:c9:d6:8c:1e:c8:77:74:1b:d6:50:e9: e0:e5:ac:c5:ee:93:7d:9f:f6:4e:8e:6d:2f:e7:08:e6:32:b8: 3d:82:e9:29:5e:0f:72:8b:a2:d2:96:b9:39:82:cf:0f:3c:64: 8f:3e:f4:57:fe:a2:73:d0:19:7a:00:89:82:29:0b:3b:c1:60: 45:ec:24:7f:a8:40:a0:e1:58:55:74:10:63:cb:0a:09:48:c1: 39:86:81:a8:9c:5b:a8:f5:3b:1d:cb:6d:4a:07:11:33:57:cb: 64:da:36:03:b5:15:c9:02:08:34:ec:75:db:18:0a:c4:08:36: 34:b8:13:27:f9:c9:a4:cd:21:0c:57:5b:aa:39:82:fc:9b:47: 1a:84:05:b1:06:c3:8f:3d:a5:c7:d0:c6:b4:b5:f4:e3:66:6d: c1:cc:8a:6a:e2:74:cf:a4:64:4a:10:91:f5:0b:93:b2:3f:b6: 64:81:2f:2f:0d:39:d0:01:a0:09:2f:7c:69:46:1d:20:71:4c: 95:a9:70:ef:66:a5:e0:d0:59:5c:60:7e:f1:50:16:8e:22:24: 69:a5:b5:78:19:34:16:37:dd:3e:23:51:f6:48:ef:3d:19:51: 4c:9a:78:00 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U5NTExMTAvBgNVBAUTKDFBMEY3ODZGMTFCOEUxN0Q0NURFMUVEQ0U2MUUxNjAw REQ0OTMwQTQwHhcNMjUwNjAzMDMyMTM1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNmEzZi05MTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjV2nV1JfkwJdsIxoimdhKIkANWQ8oUvWC8C0eomH4WbqTIkiq3acQ9IV6vk hXDSPhtay/EIcYsL21k2Wlb4noCXo6su0F1DEyojC1vijUpZvSNy3PFXNhY2KE2U 28u0uerefzyTi+eBA/5AGDrSoErJAwvZpW6I95M1sUd+x6RjapEU7MJYknx28dv4 YDqPo/CPA/r4flMc/tpHo8ura8juoriWXUbkWhe8KJLHFYOok06c6h+/4YX4JsGG pBkwCZ2rsZLq1/Fo29uG1Ftk+a7lvKeJvMJDb1DomBXVz4zuSCh4O575PG1bRphX 4jGer9IFKBPoK5XqpZDQetTiDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHivnpNq RmHKGVqrI088jGPbK3xqMB8GA1UdIwQYMBaAFBoPeG8RuOF9Rd4e3OYeFgDdSTCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTk1MS82RjQ5Qjk5MkRC NzExMUVEOTUwM0Q4NURDNEY5QUUwMi9HZzk0YnhHNDRYMUYzaDdjNWg0V0FOMUpN S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnOTRieEc0NFgxRjNoN2M1aDRXQU4xSk1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U5NTEvNkY0OUI5OTJEQjcxMTFFRDk1MDNEODVEQzRGOUFFMDIvNEQ2RDU1NTRE QjgwMTFFRDkxRDU0QTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFng2YwDwQCAAIwCQMHACABDfJDwDANBgkqhkiG9w0BAQsF AAOCAQEAmc7pUqN5sZUr22ezt1x0Im047YB2tBYFSsnWjB7Id3Qb1lDp4OWsxe6T fZ/2To5tL+cI5jK4PYLpKV4Pcoui0pa5OYLPDzxkjz70V/6ic9AZegCJgikLO8Fg Rewkf6hAoOFYVXQQY8sKCUjBOYaBqJxbqPU7HcttSgcRM1fLZNo2A7UVyQIINOx1 2xgKxAg2NLgTJ/nJpM0hDFdbqjmC/JtHGoQFsQbDjz2lx9DGtLX042ZtwcyKauJ0 z6RkShCR9QuTsj+2ZIEvLw050AGgCS98aUYdIHFMlalw72al4NBZXGB+8VAWjiIk aaW1eBk0FjfdPiNR9kjvPRlRTJp4AA== -----END CERTIFICATE-----Generated at Sun Jul 20 09:59:27 2025 by rpki-client