$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa File: 47E67066B82A11E9843DEE0AC4F9AE02.roa (raw, json) Hash identifier: xh37AiJohCRfHSRUDjcvxE7B1+32xaC/K8WdUvsEnhs= Subject key identifier: 28:52:92:0B:8A:61:A4:60:60:66:1E:65:B1:3D:7B:0E:BB:DC:5B:7E Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0E26 Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa Signing time: Thu 28 Aug 2025 18:08:39 +0000 ROA not before: Thu 28 Aug 2025 18:08:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23864 IP address blocks: 103.5.240.0/24 maxlen: 24 2401:c7c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3622 (0xe26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4, serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: Aug 28 18:08:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b09b26-6380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3f:69:58:20:28:e2:6e:92:b2:a4:16:c8:84: ae:20:27:7a:c2:96:de:2c:ea:2a:5e:5d:43:ef:aa: 0e:80:28:cc:f8:fe:af:b3:11:a8:13:4f:92:fe:13: 2b:b5:27:b2:55:60:c3:7b:d1:3a:34:43:d4:a6:7a: e4:36:d1:99:73:20:d2:31:5b:cc:e9:f0:1f:7b:d4: 08:3b:de:9a:70:2b:db:20:53:1a:40:98:57:8a:4d: ba:a6:6a:13:e2:e3:19:3c:28:91:92:a0:1e:25:9a: 32:de:c5:54:85:30:e0:7d:34:05:29:13:90:b3:01: 68:5c:81:52:df:32:00:e5:07:54:ed:a3:c2:da:fe: 2a:c0:b1:bb:59:b1:83:d0:f7:b6:b1:96:17:e0:f3: 52:4f:df:d9:9e:cc:fe:d9:86:aa:3d:df:31:5c:96: 89:df:ec:6d:e7:99:18:70:b2:62:87:af:cb:97:d2: e8:58:d3:70:e5:a4:7a:1e:2e:d0:e4:92:01:37:23: a9:95:02:19:62:ec:b6:62:28:93:ba:74:0e:a5:57: a9:ae:ae:3d:d0:1e:a4:25:3f:48:4c:98:e8:d3:e0: fe:5f:6a:e2:15:a2:c2:3d:08:34:12:09:c3:47:4b: 90:89:5c:7f:50:14:f0:ef:4d:52:cf:d0:93:f2:9d: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:52:92:0B:8A:61:A4:60:60:66:1E:65:B1:3D:7B:0E:BB:DC:5B:7E X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.240.0/24 IPv6: 2401:c7c0:2::/48 Signature Algorithm: sha256WithRSAEncryption a9:f5:e7:19:af:45:99:7b:f9:30:a3:4a:7a:1e:a8:b3:cf:62: ce:c4:8d:00:c1:43:f8:4b:4a:25:55:a3:3b:49:38:11:ed:e0: ed:e0:18:fa:99:4c:f7:6c:f0:0e:92:1a:1f:ac:c5:75:9c:2f: d2:af:dc:07:2c:ec:87:6d:c6:58:d1:44:da:15:23:31:8d:4e: eb:ac:61:07:25:34:b5:cf:11:0f:d7:7b:31:69:ea:20:50:d1: 8b:38:9d:68:6b:4a:1c:06:db:61:0b:d0:ec:98:4b:0e:bf:d7: 17:ad:74:fb:40:01:a5:3c:62:ae:ee:86:46:79:21:cd:d5:1e: 02:ce:83:b3:c1:e4:94:88:0e:1f:ca:c2:38:77:0f:34:a6:e0: 38:00:71:ec:16:95:a1:da:10:c4:cf:50:cc:75:22:a9:b6:70: 36:36:d8:09:3d:32:3f:44:51:62:16:e1:7a:18:81:19:af:f5: 95:c2:5f:21:f5:d6:41:55:08:dd:a6:1d:18:13:4c:d2:3d:ee: 8c:df:c8:07:94:28:fd:a2:70:98:c2:65:2f:0b:0f:e6:91:d4: c4:91:83:c8:32:5c:e8:58:8b:f4:51:32:80:cf:c8:76:bf:29: aa:b1:88:d9:f0:c4:5a:eb:98:cf:76:f7:49:9a:79:fe:1b:be: de:14:d7:03 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjUwODI4MTgwODM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOWIyNi02MzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z9pWCAo4m6SsqQWyISuICd6wpbeLOoqXl1D76oOgCjM+P6vsxGoE0+S/hMr tSeyVWDDe9E6NEPUpnrkNtGZcyDSMVvM6fAfe9QIO96acCvbIFMaQJhXik26pmoT 4uMZPCiRkqAeJZoy3sVUhTDgfTQFKROQswFoXIFS3zIA5QdU7aPC2v4qwLG7WbGD 0Pe2sZYX4PNST9/Znsz+2YaqPd8xXJaJ3+xt55kYcLJih6/Ll9LoWNNw5aR6Hi7Q 5JIBNyOplQIZYuy2YiiTunQOpVeprq490B6kJT9ITJjo0+D+X2riFaLCPQg0EgnD R0uQiVx/UBTw701Sz9CT8p2rUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFChSkguK YaRgYGYeZbE9ew673Ft+MB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjQvNzA5RjdBMjZCODI5MTFFOTkzNzM4QTA5QzRGOUFFMDIvNDdFNjcwNjZC ODJBMTFFOTg0M0RFRTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnBfAwDwQCAAIwCQMHACQBx8AAAjANBgkqhkiG9w0BAQsF AAOCAQEAqfXnGa9FmXv5MKNKeh6os89izsSNAMFD+EtKJVWjO0k4Ee3g7eAY+plM 92zwDpIaH6zFdZwv0q/cByzsh23GWNFE2hUjMY1O66xhByU0tc8RD9d7MWnqIFDR izidaGtKHAbbYQvQ7JhLDr/XF610+0ABpTxiru6GRnkhzdUeAs6Ds8HklIgOH8rC OHcPNKbgOABx7BaVodoQxM9QzHUiqbZwNjbYCT0yP0RRYhbhehiBGa/1lcJfIfXW QVUI3aYdGBNM0j3ujN/IB5Qo/aJwmMJlLwsP5pHUxJGDyDJc6FiL9FEygM/Idr8p qrGI2fDEWuuYz3b3SZp5/hu+3hTXAw== -----END CERTIFICATE-----Generated at Fri Sep 19 16:48:09 2025 by rpki-client