$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa File: AE0AC88EBBF511ECAA816D52C4F9AE02.roa (raw, json) Hash identifier: 5AL2LBzCru+E3YFyKW2P0tt8Zy0ls3uab/1OsnqWv48= Subject key identifier: 55:49:6F:57:F2:35:70:4C:E9:58:D4:FD:76:44:6A:64:41:24:7A:F4 Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Certificate serial: 34E5 Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa Signing time: Thu 31 Jul 2025 15:20:54 +0000 ROA not before: Thu 31 Jul 2025 15:20:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132908 IP address blocks: 103.74.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 15:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B63C, serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Validity Not Before: Jul 31 15:20:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688b89d6-9cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:93:5f:c5:ce:2b:fa:1a:b4:3d:7a:75:21:b5: f5:90:1e:a9:aa:d3:57:eb:c2:b4:9f:44:7e:62:bf: d3:76:79:dd:a3:25:34:c5:d5:0a:a2:b9:bb:02:52: ec:c0:8a:b5:5d:c5:4c:0c:cd:bf:f6:d7:e3:31:fc: 0c:71:e5:2a:6d:a6:7b:ef:16:dc:af:f0:0a:96:d5: 83:e1:d8:19:c5:4b:94:9e:f3:1c:5e:72:95:75:70: 36:c9:e4:40:a9:9c:27:5c:ca:d0:a5:52:25:cb:d7: e1:70:b8:b1:35:f4:c5:58:7f:07:a1:29:f1:b6:9a: 3a:5c:95:9a:b8:dd:08:f1:77:26:d2:36:a9:f6:57: 96:f5:d0:20:3b:64:ef:d3:e1:1a:b7:80:0a:a7:52: d5:cf:1b:8e:4e:24:d9:0b:37:75:f8:1c:46:32:e5: 56:52:f3:69:4a:89:70:8d:e4:66:a6:4a:5b:b6:76: 2c:37:d1:00:c4:a7:a9:36:58:0c:96:59:a6:9e:4a: ce:66:41:68:1f:2a:25:f5:a9:39:90:70:78:43:1d: 23:2b:56:6c:76:72:b6:47:6c:5e:7f:a0:a0:c7:14: 88:c2:77:d1:fe:5a:54:2a:70:5e:e8:3a:d2:d8:b3: ad:45:35:f1:4c:c2:d1:ce:ff:5e:77:61:29:db:ad: ad:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:49:6F:57:F2:35:70:4C:E9:58:D4:FD:76:44:6A:64:41:24:7A:F4 X509v3 Authority Key Identifier: keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/AE0AC88EBBF511ECAA816D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.240.0/22 Signature Algorithm: sha256WithRSAEncryption 10:5e:50:c5:ac:39:97:76:d8:81:31:19:ab:12:80:d0:7e:3b: c3:45:0b:57:2f:72:64:94:96:60:ac:87:fe:b5:22:a8:4c:2a: e3:0c:b6:5a:f0:a8:a8:c1:e6:90:64:f5:a7:1b:4b:f8:fc:e2: 58:44:3b:5f:80:35:72:8b:ba:2c:ee:c1:2d:b1:90:b5:aa:55: ed:d0:ae:81:74:b3:be:38:2f:17:61:61:cd:88:8e:46:13:0e: 26:9f:f3:c2:fe:d7:65:f3:29:01:69:f5:74:de:93:0d:ae:bb: b5:6f:f9:25:d1:28:12:5b:67:f8:67:44:fb:27:ab:f5:b2:49: 67:8b:a0:e7:6f:32:42:2d:0c:f0:91:43:e5:74:71:bf:fd:7a: c9:ca:0d:05:08:a5:48:d1:95:0b:2d:91:f9:e5:da:47:d4:07: 78:e6:ea:7b:63:fd:8e:4d:cd:34:58:eb:88:70:55:1e:b8:09: b1:45:f0:4f:52:93:c2:9a:90:64:33:d3:e0:2c:89:4c:e5:86: 88:4d:e6:d0:de:c1:f3:6e:f4:fc:ac:ee:ca:01:3e:32:92:e9: 9d:66:71:b1:6d:01:73:97:4c:a3:75:35:60:a3:85:1e:b8:97: 6d:6b:ae:c2:4a:e7:4d:fd:e1:c4:45:e4:39:9e:a0:2c:1c:6f: f9:9a:5d:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI2M0MxMTAvBgNVBAUTKDI1ODVEQTBCOTgwQTQ3RkVCQTBFMjM1MjA1REVFRTQw MkYyMEIzQ0IwHhcNMjUwNzMxMTUyMDU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiODlkNi05Y2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35Nfxc4r+hq0PXp1IbX1kB6pqtNX68K0n0R+Yr/TdnndoyU0xdUKorm7AlLs wIq1XcVMDM2/9tfjMfwMceUqbaZ77xbcr/AKltWD4dgZxUuUnvMcXnKVdXA2yeRA qZwnXMrQpVIly9fhcLixNfTFWH8HoSnxtpo6XJWauN0I8Xcm0jap9leW9dAgO2Tv 0+Eat4AKp1LVzxuOTiTZCzd1+BxGMuVWUvNpSolwjeRmpkpbtnYsN9EAxKepNlgM llmmnkrOZkFoHyol9ak5kHB4Qx0jK1ZsdnK2R2xef6CgxxSIwnfR/lpUKnBe6DrS 2LOtRTXxTMLRzv9ed2Ep262tMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFVJb1fy NXBM6VjU/XZEamRBJHr0MB8GA1UdIwQYMBaAFCWF2guYCkf+ug4jUgXe7kAvILPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjYzQy9CN0FDQzI2QzFE OTgxMUUyOEYxMEYwODIwOEIwMkNEMi9KWVhhQzVnS1JfNjZEaU5TQmQ3dVFDOGdz OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZWGFDNWdLUl82NkRpTlNCZDd1UUM4Z3M4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI2M0MvQjdBQ0MyNkMxRDk4MTFFMjhGMTBGMDgyMDhCMDJDRDIvQUUwQUM4OEVC QkY1MTFFQ0FBODE2RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSvAwDQYJKoZIhvcNAQELBQADggEBABBeUMWsOZd22IEx GasSgNB+O8NFC1cvcmSUlmCsh/61IqhMKuMMtlrwqKjB5pBk9acbS/j84lhEO1+A NXKLuizuwS2xkLWqVe3QroF0s744LxdhYc2IjkYTDiaf88L+12XzKQFp9XTekw2u u7Vv+SXRKBJbZ/hnRPsnq/WySWeLoOdvMkItDPCRQ+V0cb/9esnKDQUIpUjRlQst kfnl2kfUB3jm6ntj/Y5NzTRY64hwVR64CbFF8E9Sk8KakGQz0+AsiUzlhohN5tDe wfNu9Pys7soBPjKS6Z1mcbFtAXOXTKN1NWCjhR64l21rrsJK50394cRF5DmeoCwc b/maXZs= -----END CERTIFICATE-----Generated at Fri Aug 1 18:17:19 2025 by rpki-client