$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa File: 425602A0AD2111EA9510AC0DC4F9AE02.roa (raw, json) Hash identifier: eiGSH0P7OA/wuySnx+L4WnNP4YI49fVfK6qem5HgBnk= Subject key identifier: 40:F7:8D:F3:1C:0F:CC:B6:06:71:26:42:E8:DE:EF:4B:94:4B:51:0D Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Certificate serial: 08E2 Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa Signing time: Thu 08 May 2025 20:47:41 +0000 ROA not before: Thu 08 May 2025 20:47:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140635 IP address blocks: 103.151.76.0/23 maxlen: 23 103.151.76.0/24 maxlen: 24 103.151.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914331D, serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Validity Not Before: May 8 20:47:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681d186c-f22b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:45:b2:6d:b8:4e:a3:dc:a1:6a:11:7e:ea: c6:be:37:50:e5:60:66:b7:8f:78:bd:a8:a7:37:aa: ef:bd:ce:89:78:47:66:5c:68:43:08:6e:f8:86:7e: 66:16:3b:e4:f3:bd:7a:f3:c7:c3:36:c6:fb:fb:f3: 74:90:c5:5b:62:67:bf:ee:9f:40:0c:39:65:04:f3: c1:c9:12:fe:7c:26:1d:02:76:c3:9b:e1:3f:fe:c3: e2:cd:f1:f5:24:a1:22:5d:de:c9:7c:7d:95:72:79: 70:42:da:c3:d5:ae:b5:1b:fb:a2:fd:a7:12:59:d4: a6:0f:d0:a9:2f:d7:4f:1e:ec:d8:b4:8a:0d:55:f0: 57:3e:09:22:8a:f9:1b:6f:33:39:78:93:82:f0:2c: df:b9:51:b9:38:4b:8e:00:76:99:f7:89:21:26:06: 1a:ee:cd:ae:66:95:ed:7a:f1:4b:89:16:8e:50:9c: c5:4a:44:64:bb:90:55:88:ce:85:28:5d:5a:d8:c9: 31:5b:1d:2e:7e:0d:2d:25:ec:73:34:9d:b6:9d:ec: c8:f2:30:99:f8:7f:78:29:3a:a6:19:80:03:07:9a: 0a:56:4e:cd:36:92:01:56:fb:ca:6e:67:d0:d8:71: 99:97:7e:54:a7:c6:5b:9d:a1:ac:a7:31:de:ab:4b: cd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F7:8D:F3:1C:0F:CC:B6:06:71:26:42:E8:DE:EF:4B:94:4B:51:0D X509v3 Authority Key Identifier: keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.76.0/23 Signature Algorithm: sha256WithRSAEncryption b9:3f:04:6e:c6:0d:20:54:22:b0:f7:07:56:0c:71:bd:fa:d9: 8e:5f:23:02:af:a7:67:f2:9b:d2:eb:6a:b2:c3:b6:5a:a9:83: ff:dd:9f:6e:9c:0e:ca:8f:14:8e:28:69:0d:5f:c6:1a:0d:0a: f3:ce:ff:99:7e:2c:9f:5a:cb:bf:e9:50:7e:9c:30:fd:df:33: 33:c6:84:d6:9a:94:10:4f:46:25:bc:8b:12:22:2c:6d:ef:93: 98:10:14:6e:ba:8b:67:4a:53:28:ac:fb:cd:37:92:fe:a3:c0: a9:67:e9:70:0a:d8:96:18:ad:a4:74:cb:58:69:f1:7a:34:97: 2b:01:95:54:a1:47:60:ff:26:3b:61:e4:6e:77:ae:45:d0:10: df:99:3e:5b:1f:ae:f4:80:ed:f3:e5:fc:ab:88:5d:71:02:bc: 12:81:30:24:24:cc:75:a9:5c:ba:1e:fa:ea:e7:cc:f9:8c:ee: 2b:51:03:2f:66:77:29:37:d9:73:38:22:e9:c6:ad:4c:02:3c: a5:51:a5:db:17:0c:27:63:02:56:c3:5c:b3:30:e4:e6:d6:cc: be:8a:7e:fa:71:73:be:27:c7:e7:45:69:5b:70:4f:d3:ef:15: 97:34:be:0f:74:2d:46:0e:8c:5c:77:39:84:39:ac:57:11:e1: 71:a2:1a:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMUQxMTAvBgNVBAUTKEQzQTlCNENFNzkzOEQ3MkEyNTUwNTRBMEMwODVCRjc4 OEVCMDY5QjAwHhcNMjUwNTA4MjA0NzQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkMTg2Yy1mMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokFFsm24TqPcoWoRfurGvjdQ5WBmt494vainN6rvvc6JeEdmXGhDCG74hn5m Fjvk871688fDNsb7+/N0kMVbYme/7p9ADDllBPPByRL+fCYdAnbDm+E//sPizfH1 JKEiXd7JfH2VcnlwQtrD1a61G/ui/acSWdSmD9CpL9dPHuzYtIoNVfBXPgkiivkb bzM5eJOC8CzfuVG5OEuOAHaZ94khJgYa7s2uZpXtevFLiRaOUJzFSkRku5BViM6F KF1a2MkxWx0ufg0tJexzNJ22nezI8jCZ+H94KTqmGYADB5oKVk7NNpIBVvvKbmfQ 2HGZl35Up8ZbnaGspzHeq0vNcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFED3jfMc D8y2BnEmQuje70uUS1ENMB8GA1UdIwQYMBaAFNOptM55ONcqJVBUoMCFv3iOsGmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMxRC80QjQ1QkZFOEFE MUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5b2xVRlNnd0lXX2VJNndh YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2bTB6bms0MXlvbFVGU2d3SVdfZUk2d2FiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzMUQvNEI0NUJGRThBRDFFMTFFQTk0QzdFNTgxQzRGOUFFMDIvNDI1NjAyQTBB RDIxMTFFQTk1MTBBQzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl0wwDQYJKoZIhvcNAQELBQADggEBALk/BG7GDSBUIrD3 B1YMcb362Y5fIwKvp2fym9LrarLDtlqpg//dn26cDsqPFI4oaQ1fxhoNCvPO/5l+ LJ9ay7/pUH6cMP3fMzPGhNaalBBPRiW8ixIiLG3vk5gQFG66i2dKUyis+803kv6j wKln6XAK2JYYraR0y1hp8Xo0lysBlVShR2D/Jjth5G53rkXQEN+ZPlsfrvSA7fPl /KuIXXECvBKBMCQkzHWpXLoe+urnzPmM7itRAy9mdyk32XM4IunGrUwCPKVRpdsX DCdjAlbDXLMw5ObWzL6Kfvpxc74nx+dFaVtwT9PvFZc0vg90LUYOjFx3OYQ5rFcR 4XGiGsY= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:31 2025 by rpki-client