$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/6F4F0F4230AA11F0AD39210DC4F9AE02.roa File: 6F4F0F4230AA11F0AD39210DC4F9AE02.roa (raw, json) Hash identifier: YHLvsfLb9vn+sTC103ywcZHpPAhWQQaEGzE/L4SadW0= Subject key identifier: FD:99:55:DD:0F:37:59:0A:37:41:57:06:A5:E6:31:F6:F5:DE:6E:46 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 01C9 Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/6F4F0F4230AA11F0AD39210DC4F9AE02.roa Signing time: Fri 29 Aug 2025 03:52:28 +0000 ROA not before: Fri 29 Aug 2025 03:52:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 214143 IP address blocks: 103.120.12.0/24 maxlen: 24 103.120.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D, serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Aug 29 03:52:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b123fc-cae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:6d:8c:f0:eb:49:11:68:b1:2b:fa:2d:e0: e1:1d:79:ab:ce:fb:c6:5b:f6:93:5e:55:83:0a:85: 0e:9b:14:e0:d2:e8:35:8c:22:10:46:f3:90:4a:aa: 2e:15:28:e5:48:d2:4f:93:6f:f4:59:8b:5b:19:0a: 59:3e:4e:74:2d:71:96:74:98:66:43:b8:7e:bd:92: ff:65:b7:01:ff:34:e9:74:95:f3:57:e9:9e:b6:4a: 29:44:cc:50:07:b5:13:0b:c3:39:ab:67:fe:b2:c9: 13:61:2e:3d:bd:1b:7a:72:18:1e:97:58:d0:89:31: 32:f9:34:74:b6:20:e6:ab:4a:6b:e4:ab:5c:f7:41: 58:86:cb:a6:7b:d6:40:66:b8:03:50:ca:5a:42:7c: 30:ab:4a:a1:2a:3d:5b:6a:db:59:64:2d:5c:cb:69: 1e:6b:25:6f:cc:82:40:5e:15:5a:8b:ba:30:2f:fb: 67:87:23:22:6a:99:56:77:c5:3f:48:44:28:d5:40: 76:43:ab:9a:7d:9e:84:ab:f7:47:cc:ae:8b:e8:e9: 79:bf:dd:74:af:35:44:0a:a8:1c:61:17:cc:f9:85: 3b:a2:e4:7c:a0:d0:c3:be:c4:db:89:ea:f6:d9:07: ec:ec:77:ef:ce:67:12:56:63:cc:9b:50:46:fc:fe: 0f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:99:55:DD:0F:37:59:0A:37:41:57:06:A5:E6:31:F6:F5:DE:6E:46 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/6F4F0F4230AA11F0AD39210DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.12.0/24 103.120.15.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:27:88:e4:f8:79:77:49:a7:12:2f:05:f0:18:ee:86:ac:9e: c7:e2:d3:42:8e:39:5b:39:7c:78:d5:0d:dc:9d:d4:59:2b:c7: 7a:ba:37:91:9c:79:54:a0:3e:fc:aa:1e:26:d5:63:29:95:69: 9c:6c:1a:69:5d:47:63:e4:5c:63:fe:6f:7d:3f:59:f3:d7:b4: 3e:f0:c7:3a:7b:5a:df:f2:5e:be:7f:ab:21:8f:90:d0:96:c8: fd:62:af:59:91:86:bf:87:8b:1d:45:ab:26:5d:fd:24:f3:ce: 69:3f:54:6d:a5:91:54:2d:bb:8e:c8:c9:d1:3c:b3:a7:51:01: 3d:f2:7b:cf:47:f1:68:e2:11:32:e5:ca:3c:3d:07:3f:ce:7f: ab:38:4a:0e:97:9e:d4:a4:3a:a0:d0:f0:12:d2:52:7c:9e:aa: 22:3b:d6:01:15:0c:86:07:4f:9c:98:07:24:a2:c4:5b:4c:15: d7:9d:9d:62:a9:6f:2b:fe:e5:3b:96:ae:98:53:10:33:12:03: 05:7d:5c:47:2c:9a:1b:a4:ef:2b:a8:b3:6d:17:5d:ca:a3:f6: ec:0d:4e:a5:42:e3:21:88:b2:28:c4:72:84:19:9f:fd:bc:0b: 60:c8:2f:bb:3c:ee:7a:03:b2:74:83:2c:47:7d:13:71:b0:67: 93:39:f2:fa -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwODI5MDM1MjI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMjNmYy1jYWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d5tjPDrSRFosSv6LeDhHXmrzvvGW/aTXlWDCoUOmxTg0ug1jCIQRvOQSqou FSjlSNJPk2/0WYtbGQpZPk50LXGWdJhmQ7h+vZL/ZbcB/zTpdJXzV+metkopRMxQ B7UTC8M5q2f+sskTYS49vRt6chgel1jQiTEy+TR0tiDmq0pr5Ktc90FYhsume9ZA ZrgDUMpaQnwwq0qhKj1battZZC1cy2keayVvzIJAXhVai7owL/tnhyMiaplWd8U/ SEQo1UB2Q6uafZ6Eq/dHzK6L6Ol5v910rzVECqgcYRfM+YU7ouR8oNDDvsTbier2 2Qfs7HfvzmcSVmPMm1BG/P4PxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP2ZVd0P N1kKN0FXBqXmMfb13m5GMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvNkY0RjBGNDIz MEFBMTFGMEFEMzkyMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneAwDBABneA8wDQYJKoZIhvcNAQELBQADggEBAD8niOT4 eXdJpxIvBfAY7oasnsfi00KOOVs5fHjVDdyd1Fkrx3q6N5GceVSgPvyqHibVYymV aZxsGmldR2PkXGP+b30/WfPXtD7wxzp7Wt/yXr5/qyGPkNCWyP1ir1mRhr+Hix1F qyZd/STzzmk/VG2lkVQtu47IydE8s6dRAT3ye89H8WjiETLlyjw9Bz/Of6s4Sg6X ntSkOqDQ8BLSUnyeqiI71gEVDIYHT5yYBySixFtMFdednWKpbyv+5TuWrphTEDMS AwV9XEcsmhuk7yuos20XXcqj9uwNTqVC4yGIsijEcoQZn/28C2DIL7s87noDsnSD LEd9E3GwZ5M58vo= -----END CERTIFICATE-----Generated at Sun Sep 7 12:41:55 2025 by rpki-client