$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa File: 71B7688645AB11F0949A471EC4F9AE02.roa (raw, json) Hash identifier: yl2cL3cHIW46lNiv/5lOmjEF6XN4CiYiCi/4pbPGnEk= Subject key identifier: D4:CA:97:81:E3:54:96:DB:19:5A:F1:9D:F7:2F:A5:36:F1:88:20:E2 Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 03 Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa Signing time: Tue 10 Jun 2025 03:31:50 +0000 ROA not before: Tue 10 Jun 2025 03:31:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137399 IP address blocks: 103.107.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Jun 10 03:31:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6847a726-a52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:6e:c1:73:6b:4a:bc:0e:be:ed:99:73:01: 13:af:99:3b:40:26:7f:79:61:3c:f0:ec:02:00:9b: 5f:80:54:49:0a:b1:da:b5:ac:f5:7f:67:a9:d9:e6: 7e:cc:4e:dc:31:ff:f0:e6:c5:bb:37:39:d8:b5:2b: c0:23:ff:f2:0f:9e:14:66:71:f1:69:2b:ee:6f:74: 5e:c5:bc:9f:53:0f:ce:30:04:cf:b1:46:17:a3:9c: 43:99:24:7e:ca:f3:72:33:7d:49:46:8d:6a:e3:ff: fb:cd:e9:7d:bd:23:4e:59:8b:a1:a2:c3:d0:7f:ba: 12:66:63:f7:8c:e2:36:11:40:56:aa:71:31:37:29: 79:13:f4:c5:62:94:31:3b:5d:67:1e:4e:38:ab:ce: da:1f:2d:f1:0f:36:61:27:77:6c:e7:65:65:4e:5e: 0c:9a:33:d1:9a:cb:3b:c2:4f:75:8c:e7:c1:5e:02: 47:b4:72:cb:01:2e:c9:47:b8:55:1f:08:c6:e8:46: 22:34:e0:04:cd:72:ed:43:6b:c8:23:ed:e4:52:43: f8:56:d5:8e:54:08:3f:f2:3e:68:53:1b:e9:c5:23: 54:07:7e:f3:2a:2f:ce:42:fc:e6:91:17:36:a1:3c: de:ec:41:82:8e:63:bb:aa:d1:34:b3:c7:66:8f:9f: 9a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CA:97:81:E3:54:96:DB:19:5A:F1:9D:F7:2F:A5:36:F1:88:20:E2 X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/71B7688645AB11F0949A471EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.128.0/22 Signature Algorithm: sha256WithRSAEncryption 87:a5:47:a4:6e:42:84:ad:16:67:ad:ed:09:34:80:06:a5:c4: 69:00:14:fa:eb:8e:14:31:ed:a1:a0:5b:79:1c:dd:12:0f:18: 84:8a:7b:ba:d9:a3:65:8f:66:06:53:1d:fa:b0:9b:54:f0:e8: dd:7b:09:d1:1c:50:4d:56:1e:52:05:a7:ea:e2:52:d7:b1:a2: 85:6a:bd:76:4d:44:86:d0:99:28:13:66:db:0a:8e:2a:bf:6d: bb:4f:13:ab:d3:5e:78:f1:bc:39:99:18:6d:45:94:02:8e:3d: f1:93:8b:ce:7a:f1:0a:9a:a6:cb:cc:b2:3d:3c:d1:8f:8e:6a: ac:06:32:6c:16:d6:eb:22:09:01:e9:da:f3:5a:5f:55:4e:e3: 86:03:89:4c:14:52:c9:7e:49:af:f4:52:cd:ec:63:6c:63:37: 31:80:9c:c0:55:05:34:a9:4d:52:ba:5d:7c:60:d6:1e:be:bc: ce:3c:50:7c:e9:9c:e4:b0:38:b9:84:15:b2:cf:8e:e8:a6:04: ae:d2:ce:1c:91:4c:54:99:ec:ed:6b:8f:f8:fc:d1:79:86:39: d4:3b:aa:53:dc:54:b8:82:3c:c7:0e:af:2f:f5:07:3b:46:51: 22:d0:27:b4:fb:02:4f:0c:02:90:28:17:6a:9e:e3:c1:25:d3: 6a:f5:87:d3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTA2MTAwMzMxNTBaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDdhNzI2LWE1MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDASG7Bc2tKvA6+7ZlzAROvmTtAJn95YTzw7AIAm1+AVEkKsdq1rPV/Z6nZ5n7M Ttwx//Dmxbs3Odi1K8Aj//IPnhRmcfFpK+5vdF7FvJ9TD84wBM+xRhejnEOZJH7K 83IzfUlGjWrj//vN6X29I05Zi6Giw9B/uhJmY/eM4jYRQFaqcTE3KXkT9MVilDE7 XWceTjirztofLfEPNmEnd2znZWVOXgyaM9GayzvCT3WM58FeAke0cssBLslHuFUf CMboRiI04ATNcu1Da8gj7eRSQ/hW1Y5UCD/yPmhTG+nFI1QHfvMqL85C/OaRFzah PN7sQYKOY7uq0TSzx2aPn5rzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1MqXgeNU ltsZWvGd9y+lNvGIIOIwHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkEyNy9FQTRFNjY5QzQ1OEMxMUYwQjJCRUI2NERDNEY5QUUwMi83MUI3Njg4NjQ1 QUIxMUYwOTQ5QTQ3MUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdrgDANBgkqhkiG9w0BAQsFAAOCAQEAh6VHpG5ChK0WZ63t CTSABqXEaQAU+uuOFDHtoaBbeRzdEg8YhIp7utmjZY9mBlMd+rCbVPDo3XsJ0RxQ TVYeUgWn6uJS17GihWq9dk1EhtCZKBNm2wqOKr9tu08Tq9NeePG8OZkYbUWUAo49 8ZOLznrxCpqmy8yyPTzRj45qrAYybBbW6yIJAena81pfVU7jhgOJTBRSyX5Jr/RS zexjbGM3MYCcwFUFNKlNUrpdfGDWHr68zjxQfOmc5LA4uYQVss+O6KYErtLOHJFM VJns7WuP+PzReYY51DuqU9xUuII8xw6vL/UHO0ZRItAntPsCTwwCkCgXap7jwSXT avWH0w== -----END CERTIFICATE-----Generated at Fri Jun 13 13:56:02 2025 by rpki-client