$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa File: 221A3064480411F0A14D5A83C4F9AE02.roa (raw, json) Hash identifier: sKzlG98yhfvA0cZ5DMZFsMl5sTXVOn8rst+hGNnB2OA= Subject key identifier: 5C:A6:CB:EC:5D:D8:3E:73:CD:83:AD:F6:95:67:B5:39:62:1A:E3:F8 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 01C7 Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa Signing time: Fri 29 Aug 2025 03:52:26 +0000 ROA not before: Fri 29 Aug 2025 03:52:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152700 IP address blocks: 103.120.12.0/24 maxlen: 24 103.120.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D, serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Aug 29 03:52:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b123fa-f15d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:0c:69:a7:d6:56:ab:2d:1a:aa:17:94:67: bc:9f:55:f1:66:3a:ed:0e:24:6d:78:5b:7c:85:24: 38:1d:e3:3c:3b:76:5d:cc:c7:e6:64:eb:44:77:33: ab:fb:9b:ea:e4:72:26:d2:3f:dc:e3:6f:fd:e2:a3: 15:28:32:d3:f2:0d:71:6b:de:fe:c7:98:3c:20:da: 8c:9f:8f:1e:8d:ea:10:d3:3a:cd:15:50:92:ac:23: de:13:00:27:92:0e:ce:46:a7:2c:b9:11:16:09:42: 6d:87:b6:4a:e8:93:07:48:92:43:a9:f7:41:e7:b8: 31:d0:81:8b:25:5e:ce:c4:24:7d:f7:33:7d:a3:2f: 24:d8:3b:aa:6b:15:0b:5a:be:9f:10:55:42:24:db: f6:ba:10:2b:1a:1c:56:4e:92:1e:7e:18:ca:c1:d2: 9f:a1:51:4d:cd:10:1f:f7:83:41:f9:ea:30:e6:e9: 5c:0d:74:3d:17:08:e0:5b:53:ee:f5:79:41:24:6e: 5d:4e:2a:b0:88:ec:8b:e5:c8:c9:0d:f2:18:5b:f2: d5:fc:15:70:68:0a:90:74:70:ea:96:85:af:3a:f6: 7e:fa:b0:eb:48:86:2d:9d:6e:9c:27:f2:b8:95:3f: 8e:59:65:e5:b1:67:68:b0:11:70:0e:60:a0:f2:03: 31:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A6:CB:EC:5D:D8:3E:73:CD:83:AD:F6:95:67:B5:39:62:1A:E3:F8 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.12.0/24 103.120.15.0/24 Signature Algorithm: sha256WithRSAEncryption bd:70:7b:6c:72:b0:12:58:6b:e2:c6:3f:9b:56:74:00:cb:b4: c2:0d:5f:fe:24:6a:5e:b6:fb:14:aa:aa:4f:0b:48:bb:60:63: 82:a0:f2:f4:0d:e2:a4:d6:d2:38:86:92:63:58:c4:55:47:d2: 5f:68:68:7a:34:93:1b:a2:56:ea:6a:a6:c4:f3:e0:49:7c:f3: 29:8a:cb:76:a8:aa:12:52:27:4c:ec:05:b4:d7:25:db:57:8b: 1d:10:a7:49:3b:d9:39:05:2d:ca:60:df:79:63:8a:84:44:be: e4:32:ce:7b:19:97:e8:6a:2a:eb:19:74:6d:38:ff:8c:72:25: fb:40:e3:9a:35:8b:cd:05:17:f5:cf:0c:4f:2d:60:6e:78:47: ee:36:bf:b4:ab:31:1d:06:ab:22:4f:a3:42:54:8d:d0:81:c8: d2:39:a5:c6:95:c8:43:9e:1c:42:93:43:65:67:ba:03:37:ec: 91:4a:3f:07:4d:f2:6d:de:c5:8a:32:44:74:d5:01:fe:42:3c: 60:13:c6:0d:a1:5b:97:3b:2b:d8:09:d7:1b:24:80:7d:33:33: c0:a5:cc:2a:dc:74:0f:49:26:24:c1:7c:79:f7:63:53:0d:28: 45:d8:40:13:12:95:a0:91:c6:61:c0:33:10:b0:1c:d3:d8:e4: fe:fc:50:f5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwODI5MDM1MjI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMjNmYS1mMTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuAMaafWVqstGqoXlGe8n1XxZjrtDiRteFt8hSQ4HeM8O3ZdzMfmZOtEdzOr +5vq5HIm0j/c42/94qMVKDLT8g1xa97+x5g8INqMn48ejeoQ0zrNFVCSrCPeEwAn kg7ORqcsuREWCUJth7ZK6JMHSJJDqfdB57gx0IGLJV7OxCR99zN9oy8k2DuqaxUL Wr6fEFVCJNv2uhArGhxWTpIefhjKwdKfoVFNzRAf94NB+eow5ulcDXQ9FwjgW1Pu 9XlBJG5dTiqwiOyL5cjJDfIYW/LV/BVwaAqQdHDqloWvOvZ++rDrSIYtnW6cJ/K4 lT+OWWXlsWdosBFwDmCg8gMxlQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFymy+xd 2D5zzYOt9pVntTliGuP4MB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvMjIxQTMwNjQ0 ODA0MTFGMEExNEQ1QTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneAwDBABneA8wDQYJKoZIhvcNAQELBQADggEBAL1we2xy sBJYa+LGP5tWdADLtMINX/4kal62+xSqqk8LSLtgY4Kg8vQN4qTW0jiGkmNYxFVH 0l9oaHo0kxuiVupqpsTz4El88ymKy3aoqhJSJ0zsBbTXJdtXix0Qp0k72TkFLcpg 33ljioREvuQyznsZl+hqKusZdG04/4xyJftA45o1i80FF/XPDE8tYG54R+42v7Sr MR0GqyJPo0JUjdCByNI5pcaVyEOeHEKTQ2VnugM37JFKPwdN8m3exYoyRHTVAf5C PGATxg2hW5c7K9gJ1xskgH0zM8ClzCrcdA9JJiTBfHn3Y1MNKEXYQBMSlaCRxmHA MxCwHNPY5P78UPU= -----END CERTIFICATE-----Generated at Sun Sep 7 08:58:52 2025 by rpki-client