$ rpki-client -vvf rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa File: A89C497E6D1911ED9C34360FC4F9AE02.roa (raw, json) Hash identifier: Ir6olLnhCGZYy0iMT1MpvP5cPRTYc1RU4xFD3VOPJhU= Subject key identifier: 0A:AC:D9:35:22:86:E7:8B:A0:CB:23:1C:4D:EB:E1:55:26:20:B7:DC Certificate issuer: /CN=A913F478/serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Certificate serial: 0210 Authority key identifier: 56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa Signing time: Sun 17 Aug 2025 02:39:56 +0000 ROA not before: Sun 17 Aug 2025 02:39:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150447 IP address blocks: 103.17.148.0/23 maxlen: 23 103.17.148.0/24 maxlen: 24 103.17.149.0/24 maxlen: 24 125.253.130.0/24 maxlen: 24 125.253.131.0/24 maxlen: 24 2001:df1:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F478, serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Validity Not Before: Aug 17 02:39:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68a140fb-19f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b0:09:9d:43:a5:88:5c:67:08:74:f9:6c:d1: e1:a9:87:d4:b8:d9:d7:ac:59:5b:4d:86:31:e5:cc: 22:7a:74:f4:b1:0c:38:08:3e:d1:de:9a:68:bf:8d: f5:5b:33:d7:de:ec:45:f0:88:bb:62:96:0a:72:0c: c3:ba:34:e8:d7:fc:70:7a:7f:32:ef:80:cb:47:6f: 00:6b:61:f1:a1:b8:00:9e:9c:1c:b0:14:77:8d:52: 7f:0f:35:9f:fc:f8:69:1e:3c:60:1b:36:fb:6b:3c: 80:9e:3a:40:42:d2:6b:f5:f0:fd:ad:78:cc:3e:ed: f7:34:78:52:d5:45:af:7c:61:5e:b5:a4:53:7c:19: 87:c6:cc:56:ff:c3:8a:32:10:6a:cd:7d:c3:d1:73: a1:34:00:29:15:4e:9b:3e:2d:6e:c7:2d:f6:25:ee: 17:82:22:26:16:84:ab:af:a5:5c:c2:da:55:ca:3d: 2a:31:14:33:fd:27:79:d5:32:54:c4:a0:e3:22:f0: 7e:49:ab:8b:a6:f2:a5:4f:10:86:a5:2b:4b:ed:54: c3:f9:7a:c3:40:fa:ce:b9:de:18:ad:5e:51:fb:12: 10:9b:d1:b9:89:19:c9:2b:9b:91:23:61:0b:75:b4: d4:fe:c4:4b:11:a1:d1:00:9c:fa:9d:6f:ad:d6:c3: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AC:D9:35:22:86:E7:8B:A0:CB:23:1C:4D:EB:E1:55:26:20:B7:DC X509v3 Authority Key Identifier: keyid:56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.148.0/23 125.253.130.0/23 IPv6: 2001:df1:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:25:ea:b4:3e:d7:d9:b5:4c:90:9e:08:96:a6:2d:07:3a:f5: 80:bf:09:54:05:19:7b:3a:13:be:54:00:53:a7:6e:fd:d5:c7: 6b:9b:3d:28:c9:13:15:6a:b4:50:72:e7:a7:24:53:e6:5c:e9: aa:3e:c2:87:52:19:da:49:63:3f:47:0c:84:89:de:91:cf:86: c1:a3:b8:f4:1f:0b:c2:7a:bc:70:22:07:e3:74:7a:86:f7:24: 93:ba:c1:30:8e:4f:f4:70:be:36:ff:c3:1e:f3:55:36:73:f7: 77:1b:39:6f:c8:62:86:84:3d:b3:ed:8b:06:86:38:59:a9:f9: 5c:38:2a:5e:7f:90:c9:88:68:16:b0:84:6f:6b:08:06:ef:f9: ca:90:f3:c0:2d:bd:87:dc:14:58:0f:7e:05:c2:cc:91:f1:f0: d7:6e:77:7d:d0:ce:29:7f:99:85:54:80:22:27:11:d7:be:7d: 59:20:60:55:cd:a0:6b:b8:fd:a7:93:fc:03:95:63:63:94:db: 09:8e:0e:9a:5a:9b:74:69:18:ca:08:8c:54:2f:02:b7:17:bb: 1c:ab:97:a3:51:d5:67:98:cc:af:03:1d:35:5a:ea:1f:1e:86: 5d:ef:d7:ad:a2:a4:aa:98:80:00:ba:93:17:c3:e9:27:7f:85: 7b:51:99:6f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0NzgxMTAvBgNVBAUTKDU2OEY3NjVDQ0FCNDJDNTIzMDc5OEU2OEZCQzM3QzhB QTQ5RjVGNDQwHhcNMjUwODE3MDIzOTU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExNDBmYi0xOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrAJnUOliFxnCHT5bNHhqYfUuNnXrFlbTYYx5cwienT0sQw4CD7R3ppov431 WzPX3uxF8Ii7YpYKcgzDujTo1/xwen8y74DLR28Aa2HxobgAnpwcsBR3jVJ/DzWf /PhpHjxgGzb7azyAnjpAQtJr9fD9rXjMPu33NHhS1UWvfGFetaRTfBmHxsxW/8OK MhBqzX3D0XOhNAApFU6bPi1uxy32Je4XgiImFoSrr6VcwtpVyj0qMRQz/Sd51TJU xKDjIvB+SauLpvKlTxCGpStL7VTD+XrDQPrOud4YrV5R+xIQm9G5iRnJK5uRI2EL dbTU/sRLEaHRAJz6nW+t1sN4GwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAqs2TUi hueLoMsjHE3r4VUmILfcMB8GA1UdIwQYMBaAFFaPdlzKtCxSMHmOaPvDfIqkn19E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjQ3OC80OTlBOTE1RTZE MTYxMUVEQkUxMjA1MENDNEY5QUUwMi9WbzkyWE1xMExGSXdlWTVvLThOOGlxU2ZY MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvOTJYTXEwTEZJd2VZNW8tOE44aXFTZlgwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0NzgvNDk5QTkxNUU2RDE2MTFFREJFMTIwNTBDQzRGOUFFMDIvQTg5QzQ5N0U2 RDE5MTFFRDlDMzQzNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnEZQDBAF9/YIwDwQCAAIwCQMHACABDfFbwDANBgkqhkiG 9w0BAQsFAAOCAQEATiXqtD7X2bVMkJ4IlqYtBzr1gL8JVAUZezoTvlQAU6du/dXH a5s9KMkTFWq0UHLnpyRT5lzpqj7Ch1IZ2kljP0cMhInekc+GwaO49B8Lwnq8cCIH 43R6hvckk7rBMI5P9HC+Nv/DHvNVNnP3dxs5b8hihoQ9s+2LBoY4Wan5XDgqXn+Q yYhoFrCEb2sIBu/5ypDzwC29h9wUWA9+BcLMkfHw1253fdDOKX+ZhVSAIicR1759 WSBgVc2ga7j9p5P8A5VjY5TbCY4OmlqbdGkYygiMVC8Ctxe7HKuXo1HVZ5jMrwMd NVrqHx6GXe/XraKkqpiAALqTF8PpJ3+Fe1GZbw== -----END CERTIFICATE-----Generated at Fri Aug 22 19:00:39 2025 by rpki-client