$ rpki-client -vvf rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa File: 7DE2804AB4BC11EEA02E9A19C4F9AE02.roa (raw, json) Hash identifier: mx+hZNnEHjoWsdsKMFKjqe1rg9GBHxL9Qf87GWS5aXU= Subject key identifier: FC:89:B4:88:C1:49:30:0B:3B:A2:88:28:40:F7:94:49:D7:67:BA:8E Certificate issuer: /CN=A912B85B/serialNumber=C275F7B8AECC2948D4B4BA999FA9C0E2AD54EA59 Certificate serial: 0103 Authority key identifier: C2:75:F7:B8:AE:CC:29:48:D4:B4:BA:99:9F:A9:C0:E2:AD:54:EA:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa Signing time: Tue 27 May 2025 05:40:19 +0000 ROA not before: Tue 27 May 2025 05:40:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139000 IP address blocks: 103.138.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.crl rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B85B, serialNumber=C275F7B8AECC2948D4B4BA999FA9C0E2AD54EA59 Validity Not Before: May 27 05:40:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68355043-65bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e5:eb:28:e2:2f:b0:1e:f7:d9:9e:59:b7:dc: 7e:e3:0d:aa:c1:78:43:8a:4f:63:0a:af:86:c9:b1: fc:d9:f4:8b:64:b2:5e:15:e4:14:be:13:af:22:28: 91:92:18:cb:9e:5b:76:ce:0b:97:46:c6:02:4f:3d: 55:a3:4c:18:f0:7c:35:a5:95:2e:c9:94:a6:ab:d0: 2b:67:d1:20:3e:c3:0d:b2:fa:b0:00:6f:a6:af:8f: 29:d1:dd:f5:ce:4b:aa:b5:66:18:5f:69:6d:14:39: 1b:46:0f:1c:eb:40:3a:52:f5:2d:72:da:0e:61:df: 0a:7f:b7:a4:ee:08:c9:c3:cc:30:86:df:f5:be:37: 66:95:a2:a5:15:0b:a1:2b:be:59:63:89:b0:6d:92: 35:a4:73:f9:99:36:c0:1c:1f:4e:34:1c:36:fd:2b: bd:80:e4:49:86:17:ff:2b:20:e0:fe:02:d3:e5:10: f6:6d:14:5a:0d:20:5e:4e:f1:6b:d7:21:56:1e:a2: 34:81:ea:0e:51:5f:68:ab:fe:32:52:84:ac:f1:80: f7:ae:38:8c:77:d8:2b:4b:d4:41:a5:ea:8a:3b:eb: 58:54:bb:37:70:ce:1f:e3:e8:a6:64:b9:1d:24:4c: bd:e6:ad:1c:6b:30:40:69:75:94:b5:9b:83:7e:51: 98:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:89:B4:88:C1:49:30:0B:3B:A2:88:28:40:F7:94:49:D7:67:BA:8E X509v3 Authority Key Identifier: keyid:C2:75:F7:B8:AE:CC:29:48:D4:B4:BA:99:9F:A9:C0:E2:AD:54:EA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.87.0/24 Signature Algorithm: sha256WithRSAEncryption 36:31:19:b0:5f:3d:d9:44:0a:d9:37:de:aa:10:db:6b:6d:eb: ae:15:a8:5d:dc:a9:ec:fb:04:c1:eb:d2:c1:91:40:33:68:1f: 0e:2e:56:55:a7:ed:2d:f7:b5:c3:12:aa:15:81:d2:56:dc:a6: 8d:9c:ea:22:90:b4:76:4c:c7:48:44:b1:c0:30:3a:e0:75:1f: f3:44:66:32:40:4d:7d:31:a6:37:c6:87:d0:c1:98:9a:f1:70: e8:f2:e0:c3:9b:b3:66:c6:f9:91:e3:2e:fa:d2:85:69:22:41: 80:fb:eb:c9:ea:89:38:7d:0a:87:d1:86:5f:bc:3e:82:21:16: 22:db:7a:1b:0f:36:e5:8f:bb:d6:9b:12:b8:b5:80:86:0a:06: 78:05:f3:4f:e8:62:33:99:87:50:89:60:99:9b:9c:ed:a1:47: 0d:52:f6:db:20:bb:0b:c0:fb:05:64:cb:4e:88:9d:ee:ec:30: 4b:de:83:45:3d:f6:4b:4e:2e:1f:cc:51:ce:b2:e5:bd:8f:17: 47:d9:56:3f:42:80:6a:b9:c6:30:2a:31:2d:5b:b2:40:39:f2: f5:ab:8a:83:ef:0e:d7:77:e6:84:46:2a:9f:b7:c0:7e:cd:56: 4f:26:68:88:cc:7d:1d:48:55:e4:f6:18:bf:ae:cd:8a:5f:e0: b5:5f:3a:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI4NUIxMTAvBgNVBAUTKEMyNzVGN0I4QUVDQzI5NDhENEI0QkE5OTlGQTlDMEUy QUQ1NEVBNTkwHhcNMjUwNTI3MDU0MDE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NTA0My02NWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueXrKOIvsB732Z5Zt9x+4w2qwXhDik9jCq+GybH82fSLZLJeFeQUvhOvIiiR khjLnlt2zguXRsYCTz1Vo0wY8Hw1pZUuyZSmq9ArZ9EgPsMNsvqwAG+mr48p0d31 zkuqtWYYX2ltFDkbRg8c60A6UvUtctoOYd8Kf7ek7gjJw8wwht/1vjdmlaKlFQuh K75ZY4mwbZI1pHP5mTbAHB9ONBw2/Su9gORJhhf/KyDg/gLT5RD2bRRaDSBeTvFr 1yFWHqI0geoOUV9oq/4yUoSs8YD3rjiMd9grS9RBpeqKO+tYVLs3cM4f4+imZLkd JEy95q0cazBAaXWUtZuDflGYHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPyJtIjB STALO6KIKED3lEnXZ7qOMB8GA1UdIwQYMBaAFMJ197iuzClI1LS6mZ+pwOKtVOpZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjg1Qi8yMDQ3RDc0NkI0 QkMxMUVFOEQwM0E1MThDNEY5QUUwMi93blgzdUs3TUtValV0THFabjZuQTRxMVU2 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3duWDN1SzdNS1VqVXRMcVpuNm5BNHExVTZsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI4NUIvMjA0N0Q3NDZCNEJDMTFFRThEMDNBNTE4QzRGOUFFMDIvN0RFMjgwNEFC NEJDMTFFRUEwMkU5QTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnilcwDQYJKoZIhvcNAQELBQADggEBADYxGbBfPdlECtk3 3qoQ22tt664VqF3cqez7BMHr0sGRQDNoHw4uVlWn7S33tcMSqhWB0lbcpo2c6iKQ tHZMx0hEscAwOuB1H/NEZjJATX0xpjfGh9DBmJrxcOjy4MObs2bG+ZHjLvrShWki QYD768nqiTh9CofRhl+8PoIhFiLbehsPNuWPu9abEri1gIYKBngF80/oYjOZh1CJ YJmbnO2hRw1S9tsguwvA+wVky06Ine7sMEveg0U99ktOLh/MUc6y5b2PF0fZVj9C gGq5xjAqMS1bskA58vWrioPvDtd35oRGKp+3wH7NVk8maIjMfR1IVeT2GL+uzYpf 4LVfOjc= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:21 2025 by rpki-client