$ rpki-client -vvf rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa File: B695C976638F11EDB427BF33C4F9AE02.roa (raw, json) Hash identifier: Bfu/ALycXYH90jyLAqZWBRVy+FwJZTHe9HY8IeLE+Bc= Subject key identifier: AD:67:34:64:AB:D3:18:67:96:1F:79:BE:EF:B8:57:A5:9A:BF:61:BB Certificate issuer: /CN=A911E74F/serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Certificate serial: 01DF Authority key identifier: F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa Signing time: Sat 31 May 2025 02:30:18 +0000 ROA not before: Sat 31 May 2025 02:30:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137704 IP address blocks: 103.113.196.0/22 maxlen: 24 2402:c140::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E74F, serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Validity Not Before: May 31 02:30:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a69ba-f2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f6:43:e2:53:fa:e8:c4:19:aa:ef:2f:e2:59: a4:c2:72:76:8c:8c:e8:3f:9a:79:cd:08:68:e0:db: 45:37:e1:1e:ce:a6:54:e8:2d:75:64:1f:e2:07:c7: 34:1f:e4:87:69:c4:33:3b:6a:58:fa:25:3c:67:1c: 3c:88:bc:fa:a8:a1:d8:ee:00:56:9a:1a:68:9a:86: 8c:d4:44:51:9b:6e:99:7d:54:31:f9:53:76:7b:1c: 48:fe:9b:e7:8e:e9:87:cc:cb:bc:c3:84:0f:cf:db: 89:89:bb:ca:e2:f2:c7:27:d2:54:dc:a6:cf:0a:c9: 35:d6:de:0f:fc:c7:92:35:10:1f:8f:8d:a6:dd:c8: 00:04:9e:42:b1:90:96:9e:6d:80:b6:98:7a:73:db: fb:f9:76:08:2b:90:51:51:33:8b:20:48:ca:f5:82: d0:5f:df:8a:07:7f:87:2c:7f:ed:55:83:d9:ad:0a: 85:23:30:78:12:1c:24:b9:eb:e6:1b:15:fc:bc:7d: f5:f3:4e:eb:67:f0:8a:d9:72:39:7d:fe:b4:6e:be: 6c:6c:e5:47:56:a4:0a:c8:96:57:8e:31:92:50:ca: 25:50:80:2e:50:76:f5:1f:a7:6a:25:98:87:45:09: 91:27:dc:76:33:36:3a:c4:98:3c:06:2f:5c:be:60: f8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:67:34:64:AB:D3:18:67:96:1F:79:BE:EF:B8:57:A5:9A:BF:61:BB X509v3 Authority Key Identifier: keyid:F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/B695C976638F11EDB427BF33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.196.0/22 IPv6: 2402:c140::/32 Signature Algorithm: sha256WithRSAEncryption 13:0a:7b:89:db:b7:95:31:5d:08:67:f4:8d:5a:75:4d:96:88: e9:e0:7a:14:ff:1e:7b:1b:21:04:d8:b7:d5:5e:e9:9a:76:be: 51:2a:1d:69:06:26:3d:12:10:8b:35:6a:77:03:e5:1c:c9:f0: e3:8f:c8:f3:36:b3:b8:a0:c6:c5:c4:7b:37:b7:46:e3:d8:9c: 8f:80:95:6a:90:d1:fd:18:99:8c:40:0b:7c:79:84:4f:02:93: b3:99:88:b4:bb:70:33:bb:fe:dc:9a:59:de:0a:c4:70:f4:46: 91:82:2e:38:ad:b7:5a:c9:6b:78:31:6b:03:4e:73:6f:01:18: 37:12:84:55:f2:a4:74:e9:a1:d7:18:6b:15:f1:32:8f:ba:08: 2a:e0:74:83:ca:6d:9d:a9:e8:7d:b4:c4:ad:f8:10:6c:47:86: ee:01:09:5d:b5:52:97:e3:49:66:d1:57:4c:54:21:f5:dd:93: 80:fe:ce:f5:0e:7a:b9:12:9d:e7:2f:75:67:a6:54:50:33:12: ee:38:81:1c:a0:99:18:02:9a:d6:50:49:91:d6:36:cc:62:9c: 83:c4:74:9d:05:79:26:b7:38:64:ff:87:a8:d1:10:60:5d:13: 09:ef:ad:53:f1:f4:63:92:46:02:dd:67:99:02:2e:01:c6:b6: f5:6e:5f:35 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU3NEYxMTAvBgNVBAUTKEY2MDJBNjI5M0Y3RTY0OTIwNzdFN0I0RDYwMTYzMDdF RDEyQzFDMzEwHhcNMjUwNTMxMDIzMDE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNjliYS1mMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPZD4lP66MQZqu8v4lmkwnJ2jIzoP5p5zQho4NtFN+EezqZU6C11ZB/iB8c0 H+SHacQzO2pY+iU8Zxw8iLz6qKHY7gBWmhpomoaM1ERRm26ZfVQx+VN2exxI/pvn jumHzMu8w4QPz9uJibvK4vLHJ9JU3KbPCsk11t4P/MeSNRAfj42m3cgABJ5CsZCW nm2Atph6c9v7+XYIK5BRUTOLIEjK9YLQX9+KB3+HLH/tVYPZrQqFIzB4Ehwkuevm GxX8vH31807rZ/CK2XI5ff60br5sbOVHVqQKyJZXjjGSUMolUIAuUHb1H6dqJZiH RQmRJ9x2MzY6xJg8Bi9cvmD4uQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK1nNGSr 0xhnlh95vu+4V6Wav2G7MB8GA1UdIwQYMBaAFPYCpik/fmSSB357TWAWMH7RLBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTc0Ri8xRTE1NzAzODYz OEIxMUVEQjEwM0MwMkNDNEY5QUUwMi85Z0ttS1Q5LVpKSUhmbnROWUJZd2Z0RXNI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlnS21LVDktWkpJSGZudE5ZQll3ZnRFc0hERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU3NEYvMUUxNTcwMzg2MzhCMTFFREIxMDNDMDJDQzRGOUFFMDIvQjY5NUM5NzY2 MzhGMTFFREI0MjdCRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnccQwDQQCAAIwBwMFACQCwUAwDQYJKoZIhvcNAQELBQAD ggEBABMKe4nbt5UxXQhn9I1adU2WiOngehT/HnsbIQTYt9Ve6Zp2vlEqHWkGJj0S EIs1ancD5RzJ8OOPyPM2s7igxsXEeze3RuPYnI+AlWqQ0f0YmYxAC3x5hE8Ck7OZ iLS7cDO7/tyaWd4KxHD0RpGCLjitt1rJa3gxawNOc28BGDcShFXypHTpodcYaxXx Mo+6CCrgdIPKbZ2p6H20xK34EGxHhu4BCV21UpfjSWbRV0xUIfXdk4D+zvUOerkS necvdWemVFAzEu44gRygmRgCmtZQSZHWNsxinIPEdJ0FeSa3OGT/h6jREGBdEwnv rVPx9GOSRgLdZ5kCLgHGtvVuXzU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:07 2025 by rpki-client