$ rpki-client -vvf rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa File: 1E5E9AEAC81211EFB612B471C4F9AE02.roa (raw, json) Hash identifier: 7iLFOV2BKyuTGCKpIHGsoIZ6F5iQ9/kJBEpaKwlQl9U= Subject key identifier: 58:15:9B:8D:E8:6B:53:E8:1D:97:43:B0:D0:3F:FF:5E:8E:92:10:83 Certificate issuer: /CN=A914661C/serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Certificate serial: 0293 Authority key identifier: 74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa Signing time: Sun 07 Sep 2025 20:09:21 +0000 ROA not before: Sun 07 Sep 2025 20:09:21 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151786 IP address blocks: 103.7.4.0/24 maxlen: 24 2400:ac20:3000::/36 maxlen: 36 2400:ac20:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 19:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914661C, serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Validity Not Before: Sep 7 20:09:21 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68bde671-759b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e9:fe:17:3c:45:b9:0a:31:d8:17:1a:11:e1: 8d:2c:5f:d9:e0:37:1d:0f:b6:34:17:2e:d9:e7:a8: df:ff:e2:4c:41:d2:9e:d2:5e:d6:fd:bd:c9:77:f5: 1b:f8:72:6d:8b:cd:3f:a6:64:e6:a4:43:1f:d3:8c: f4:e6:eb:ea:7c:77:78:9e:98:81:5a:fb:80:ad:68: c0:4a:ae:9d:33:3a:04:99:80:b6:da:06:50:17:a6: 0d:47:47:0f:ae:f7:5f:02:27:40:68:67:8c:f6:0c: 57:a4:6e:17:4d:32:ac:cc:36:73:8d:ab:7e:e9:ce: 42:93:a6:bf:8c:a8:4d:56:bd:97:75:96:d9:00:9a: 05:4f:af:b1:6f:39:1b:d8:3d:9b:6e:a6:90:0d:81: b7:43:74:45:78:4a:63:d2:00:3e:b4:37:88:4e:fa: 62:6a:18:47:f3:33:a1:de:bb:61:58:5b:f9:88:19: fa:9a:ed:82:97:3a:61:1d:c5:e2:84:40:9c:f0:93: 06:08:cb:04:f9:22:32:ee:f4:f3:c7:2e:49:28:08: c6:e0:54:89:d2:4c:1a:4b:de:8a:21:88:69:54:89: 71:c4:58:01:95:39:c8:60:59:7d:8a:f8:a8:7a:56: 01:e9:36:49:67:46:44:c8:80:33:e3:ed:93:c3:60: 1e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:15:9B:8D:E8:6B:53:E8:1D:97:43:B0:D0:3F:FF:5E:8E:92:10:83 X509v3 Authority Key Identifier: keyid:74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.4.0/24 IPv6: 2400:ac20:3000::-2400:ac20:4000:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 72:2e:85:f1:0e:6a:ce:8a:a4:da:86:3e:99:89:7c:12:ff:b4: 78:b4:82:ea:46:2f:52:84:f4:1f:57:8f:84:61:12:6c:d1:b9: 0c:00:5c:6f:49:ef:58:88:8b:2e:08:cd:5f:69:ce:4a:1f:ef: ab:cf:c5:9a:ca:20:2c:63:b6:d6:c1:5c:5a:9f:07:45:34:dc: a6:bf:7c:c0:31:ca:87:dc:36:58:ec:52:72:f5:3b:0c:3f:8a: 2b:52:3d:14:8b:2f:66:53:99:5a:b5:77:b9:65:8a:ff:9d:a7: 18:62:4c:21:d0:7a:88:86:3b:5c:2c:88:6f:f2:44:75:6f:37: d5:3d:db:aa:d6:5f:6f:e9:e3:6d:19:ed:67:18:44:f4:db:60: 2c:f4:6b:9d:9a:4c:f2:47:b2:cd:64:eb:13:f2:87:bd:ce:0d: 09:7a:f6:2e:bc:6a:8e:43:9c:ba:fb:7f:9d:fa:26:fc:70:66: 5c:1b:7c:22:c1:11:67:d4:98:cc:9c:5d:46:09:2b:dc:a4:5f: 64:bc:ad:a4:be:fa:51:e1:d9:59:3a:e1:39:33:6c:fd:83:72: 2a:20:c1:72:a9:61:3b:db:d0:67:a8:0b:2d:71:4d:34:4c:09: cb:bb:d3:32:7e:9b:78:79:97:49:c5:7c:53:76:45:74:c5:9a: fe:d9:0c:45 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2MUMxMTAvBgNVBAUTKDc0QUVCNjNGMkYxREE5NTdENjU4MjA5NjRGRjc5REYw RjU5MzgwMEMwHhcNMjUwOTA3MjAwOTIxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJkZTY3MS03NTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAven+FzxFuQox2BcaEeGNLF/Z4DcdD7Y0Fy7Z56jf/+JMQdKe0l7W/b3Jd/Ub +HJti80/pmTmpEMf04z05uvqfHd4npiBWvuArWjASq6dMzoEmYC22gZQF6YNR0cP rvdfAidAaGeM9gxXpG4XTTKszDZzjat+6c5Ck6a/jKhNVr2XdZbZAJoFT6+xbzkb 2D2bbqaQDYG3Q3RFeEpj0gA+tDeITvpiahhH8zOh3rthWFv5iBn6mu2ClzphHcXi hECc8JMGCMsE+SIy7vTzxy5JKAjG4FSJ0kwaS96KIYhpVIlxxFgBlTnIYFl9ivio elYB6TZJZ0ZEyIAz4+2Tw2AemQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFFgVm43o a1PoHZdDsNA//16OkhCDMB8GA1UdIwQYMBaAFHSutj8vHalX1lgglk/3nfD1k4AM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjYxQy83NzBDQkUyNDM2 QTYxMUVEOEZDMTcwMkNDNEY5QUUwMi9kSzYyUHk4ZHFWZldXQ0NXVF9lZDhQV1Rn QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLNjJQeThkcVZmV1dDQ1dUX2VkOFBXVGdBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY2MUMvNzcwQ0JFMjQzNkE2MTFFRDhGQzE3MDJDQzRGOUFFMDIvMUU1RTlBRUFD ODEyMTFFRkI2MTJCNDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMAwEAgABMAYDBABnBwQwGQQCAAIwEzARAwYEJACsIDADBwAkAKwgQAAwDQYJ KoZIhvcNAQELBQADggEBAHIuhfEOas6KpNqGPpmJfBL/tHi0gupGL1KE9B9Xj4Rh EmzRuQwAXG9J71iIiy4IzV9pzkof76vPxZrKICxjttbBXFqfB0U03Ka/fMAxyofc NljsUnL1Oww/iitSPRSLL2ZTmVq1d7lliv+dpxhiTCHQeoiGO1wsiG/yRHVvN9U9 26rWX2/p420Z7WcYRPTbYCz0a52aTPJHss1k6xPyh73ODQl69i68ao5DnLr7f536 JvxwZlwbfCLBEWfUmMycXUYJK9ykX2S8raS++lHh2Vk64TkzbP2DciogwXKpYTvb 0GeoCy1xTTRMCcu70zJ+m3h5l0nFfFN2RXTFmv7ZDEU= -----END CERTIFICATE-----Generated at Mon Sep 8 00:35:31 2025 by rpki-client