$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa File: 547D2C14BBDF11ECA1F12A0DC4F9AE02.roa (raw, json) Hash identifier: y580eZMTmYYpiPdGANCgGD9h1bATBcJx0pEL7nWorJ4= Subject key identifier: 0B:AF:03:30:E2:3E:17:2A:C8:7B:DF:53:74:F7:94:5D:59:C5:B4:5A Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Certificate serial: 34E6 Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa Signing time: Thu 31 Jul 2025 15:20:55 +0000 ROA not before: Thu 31 Jul 2025 15:20:55 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133435 IP address blocks: 103.228.212.0/23 maxlen: 24 103.228.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 15:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B63C, serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Validity Not Before: Jul 31 15:20:55 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688b89d7-13a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:06:0b:ec:88:52:76:ea:1b:47:00:fe:14:e1: e2:de:f0:97:a4:80:d4:69:16:77:0f:6c:ef:f5:06: d1:3e:97:73:c1:00:ad:75:a7:5c:e2:c0:ae:89:41: 60:83:fb:bb:b5:56:14:0d:a0:8e:76:e4:af:ba:8f: 7b:a8:99:7c:b7:2f:ec:26:a2:b7:f9:3c:56:3a:75: 45:e8:b5:5f:33:aa:e0:28:82:89:68:db:3e:d9:94: 8c:2d:15:24:ce:d0:b2:86:d3:aa:58:f2:46:c3:54: 51:f2:8a:37:0f:f4:b9:6a:a1:fc:a5:d3:42:b5:ee: 37:cf:27:06:66:84:a9:fc:6d:32:36:c0:0e:3a:49: 4b:b0:73:e9:e4:d7:78:af:fa:60:5e:64:b1:d0:9d: a9:3f:c2:d3:5a:64:c8:08:b9:1d:ac:2b:20:2a:2f: 0c:e0:a6:eb:b7:0d:7c:24:ac:25:c0:69:4f:47:4a: 5d:d6:e4:c2:62:47:bc:4d:40:7d:99:a1:67:6a:3b: bc:87:74:0a:c8:0d:3e:71:30:e9:ee:08:14:92:9f: e7:69:83:29:58:2d:ad:2e:85:5f:88:21:20:41:d8: b0:3e:24:7b:76:89:06:ad:42:8a:ef:f2:a9:6d:b6: c2:09:28:d8:71:8c:ea:dc:05:8b:90:47:f7:4d:9f: 52:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AF:03:30:E2:3E:17:2A:C8:7B:DF:53:74:F7:94:5D:59:C5:B4:5A X509v3 Authority Key Identifier: keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/547D2C14BBDF11ECA1F12A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.212.0/22 Signature Algorithm: sha256WithRSAEncryption 66:12:da:87:fc:5b:db:67:cc:44:01:87:0f:48:42:4c:81:4b: f2:fb:3c:e6:53:17:c8:46:a1:1e:28:d7:a7:56:8f:86:04:a9: 58:0e:43:8f:ae:aa:de:ba:53:b9:d1:81:94:90:f3:7a:58:cf: 44:2f:ff:25:59:d1:7e:88:10:b8:93:b9:96:ca:0f:43:16:12: 16:f3:8b:33:3a:d5:41:f0:b3:43:1b:21:66:06:28:3d:5f:fc: b3:2e:71:04:21:0b:30:0d:0b:7f:e0:52:6c:10:ac:bb:aa:ea: 0f:c1:95:3d:ee:e1:4c:48:03:7a:db:e5:01:3b:ad:d5:3d:e1: 72:bf:eb:75:ed:6f:47:97:e2:06:55:5e:8a:29:8c:15:f1:08: 50:83:8a:49:f0:8c:ad:fb:7c:a0:07:86:ad:1d:d1:a1:6c:ae: 46:bf:0f:a2:9a:af:17:f4:af:d1:d1:1f:f2:54:33:60:5c:0d: 77:cf:01:95:a9:61:39:8c:68:f8:a8:2e:f3:cb:42:19:80:8c: c6:f1:38:ef:b4:c5:e0:1f:8f:f4:00:82:b6:75:ba:46:47:92: 75:f6:ea:67:03:3b:a0:6e:ba:6e:b9:7b:0f:80:6b:72:dc:16: c6:40:3b:07:53:8e:22:73:31:21:e9:4a:4d:af:00:b3:3e:65: 0c:24:fe:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI2M0MxMTAvBgNVBAUTKDI1ODVEQTBCOTgwQTQ3RkVCQTBFMjM1MjA1REVFRTQw MkYyMEIzQ0IwHhcNMjUwNzMxMTUyMDU1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiODlkNy0xM2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AYL7IhSduobRwD+FOHi3vCXpIDUaRZ3D2zv9QbRPpdzwQCtdadc4sCuiUFg g/u7tVYUDaCOduSvuo97qJl8ty/sJqK3+TxWOnVF6LVfM6rgKIKJaNs+2ZSMLRUk ztCyhtOqWPJGw1RR8oo3D/S5aqH8pdNCte43zycGZoSp/G0yNsAOOklLsHPp5Nd4 r/pgXmSx0J2pP8LTWmTICLkdrCsgKi8M4Kbrtw18JKwlwGlPR0pd1uTCYke8TUB9 maFnaju8h3QKyA0+cTDp7ggUkp/naYMpWC2tLoVfiCEgQdiwPiR7dokGrUKK7/Kp bbbCCSjYcYzq3AWLkEf3TZ9SOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAuvAzDi PhcqyHvfU3T3lF1ZxbRaMB8GA1UdIwQYMBaAFCWF2guYCkf+ug4jUgXe7kAvILPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjYzQy9CN0FDQzI2QzFE OTgxMUUyOEYxMEYwODIwOEIwMkNEMi9KWVhhQzVnS1JfNjZEaU5TQmQ3dVFDOGdz OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZWGFDNWdLUl82NkRpTlNCZDd1UUM4Z3M4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI2M0MvQjdBQ0MyNkMxRDk4MTFFMjhGMTBGMDgyMDhCMDJDRDIvNTQ3RDJDMTRC QkRGMTFFQ0ExRjEyQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn5NQwDQYJKoZIhvcNAQELBQADggEBAGYS2of8W9tnzEQB hw9IQkyBS/L7POZTF8hGoR4o16dWj4YEqVgOQ4+uqt66U7nRgZSQ83pYz0Qv/yVZ 0X6IELiTuZbKD0MWEhbzizM61UHws0MbIWYGKD1f/LMucQQhCzANC3/gUmwQrLuq 6g/BlT3u4UxIA3rb5QE7rdU94XK/63Xtb0eX4gZVXoopjBXxCFCDiknwjK37fKAH hq0d0aFsrka/D6Karxf0r9HRH/JUM2BcDXfPAZWpYTmMaPioLvPLQhmAjMbxOO+0 xeAfj/QAgrZ1ukZHknX26mcDO6Buum65ew+Aa3LcFsZAOwdTjiJzMSHpSk2vALM+ ZQwk/vg= -----END CERTIFICATE-----Generated at Fri Aug 1 18:19:23 2025 by rpki-client