$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa File: 127604E20F8B11EF87FC5918C4F9AE02.roa (raw, json) Hash identifier: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8= Subject key identifier: 24:E1:5E:2F:2C:CF:41:33:73:4D:AF:8C:8B:24:7C:FE:13:07:38:CF Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 0100 Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa Signing time: Fri 29 Aug 2025 05:55:22 +0000 ROA not before: Fri 29 Aug 2025 05:55:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 61112 IP address blocks: 103.255.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Aug 29 05:55:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b140ca-84e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7c:e6:2e:3b:55:c6:c7:06:13:03:a2:dd:9e: 48:2b:ce:46:31:9f:70:e3:5b:64:8e:6c:9d:c2:23: c1:75:6e:59:94:1d:a2:25:a6:04:45:e5:3e:06:44: a4:08:3d:e9:20:57:9c:ca:1f:e6:7b:1f:f9:3d:65: 83:2a:71:a2:58:28:d1:5c:40:17:77:02:8e:e9:12: ba:11:81:bb:81:74:3e:3e:63:c4:30:9b:56:df:41: 74:81:73:6d:4d:4c:9d:81:eb:2f:f8:c3:54:b1:9c: 3d:c4:f8:df:b7:3b:ab:c7:b9:f3:b4:a9:1c:27:44: ca:61:f7:ab:3f:ee:80:29:31:5b:f2:1e:fd:9d:b7: 64:b7:77:1e:8b:d8:a6:2e:14:02:d1:58:2f:32:53: 39:c4:fe:f2:59:25:b6:19:8d:39:a3:48:12:0a:a8: 35:41:36:7e:24:5c:c3:8c:a3:5c:1a:b6:6a:69:d5: c2:dd:50:e8:77:a8:ab:f1:1c:2a:d5:96:66:79:e4: c6:e8:5b:93:5c:ee:5b:83:50:76:b3:df:33:6e:3a: 4f:ca:78:b4:d5:eb:67:39:ee:3d:7f:b9:72:1e:de: 84:e9:3b:93:32:87:31:3e:aa:37:94:e0:c6:79:6f: cd:5f:d0:df:47:7b:7f:49:42:df:8b:ec:55:c3:2d: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E1:5E:2F:2C:CF:41:33:73:4D:AF:8C:8B:24:7C:FE:13:07:38:CF X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/127604E20F8B11EF87FC5918C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.208.0/23 Signature Algorithm: sha256WithRSAEncryption a1:1d:a2:a6:ca:c3:87:9c:0a:bf:f4:f9:1c:dd:aa:5e:19:a1: 7b:6c:19:d4:34:51:98:4e:f0:3c:63:8b:5b:40:09:50:ec:1e: 59:6a:49:f6:27:01:e8:6e:61:19:1e:0a:c6:0c:58:08:6c:58: ad:09:16:5c:54:2b:b4:7d:f9:2f:a8:88:62:37:9d:77:06:20: 79:b0:f1:00:a3:ee:36:2c:06:5d:e4:f6:57:72:83:c1:cf:9f: 67:19:0a:71:08:5c:6a:41:0c:54:23:fa:25:28:17:68:b8:60: 5e:be:e1:80:06:8f:37:ff:d9:ff:28:bc:a4:9d:ae:bc:b9:1c: 91:df:4f:04:74:c4:85:98:9d:de:46:56:43:1a:24:4c:28:5d: 38:67:0a:1f:79:f6:bd:1a:da:30:9d:65:76:52:81:6b:7d:bd: 57:75:46:82:b1:be:71:de:ea:0b:0e:94:a1:c6:7c:0b:87:be: 91:6f:50:ba:65:60:a6:25:38:31:ad:70:50:28:3b:6d:8a:98: a6:00:21:1c:d9:0b:a1:78:9e:a9:64:2c:de:71:ac:01:62:f6: 3d:6c:ba:9d:2e:96:59:c8:2d:65:0f:da:23:30:07:25:0d:56: e9:b2:66:0f:76:6e:6b:b6:7c:e6:34:cb:c9:2c:1d:d0:0b:5e: 88:45:f0:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUwODI5MDU1NTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxNDBjYS04NGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33zmLjtVxscGEwOi3Z5IK85GMZ9w41tkjmydwiPBdW5ZlB2iJaYEReU+BkSk CD3pIFecyh/mex/5PWWDKnGiWCjRXEAXdwKO6RK6EYG7gXQ+PmPEMJtW30F0gXNt TUydgesv+MNUsZw9xPjftzurx7nztKkcJ0TKYferP+6AKTFb8h79nbdkt3cei9im LhQC0VgvMlM5xP7yWSW2GY05o0gSCqg1QTZ+JFzDjKNcGrZqadXC3VDod6ir8Rwq 1ZZmeeTG6FuTXO5bg1B2s98zbjpPyni01etnOe49f7lyHt6E6TuTMocxPqo3lODG eW/NX9DfR3t/SULfi+xVwy1auQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCThXi8s z0Ezc02vjIskfP4TBzjPMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIyOUIvOEEzRTFEMUEwRjgyMTFFRjgyNjZGMDVFQzRGOUFFMDIvMTI3NjA0RTIw RjhCMTFFRjg3RkM1OTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/9AwDQYJKoZIhvcNAQELBQADggEBAKEdoqbKw4ecCr/0 +Rzdql4ZoXtsGdQ0UZhO8Dxji1tACVDsHllqSfYnAehuYRkeCsYMWAhsWK0JFlxU K7R9+S+oiGI3nXcGIHmw8QCj7jYsBl3k9ldyg8HPn2cZCnEIXGpBDFQj+iUoF2i4 YF6+4YAGjzf/2f8ovKSdrry5HJHfTwR0xIWYnd5GVkMaJEwoXThnCh959r0a2jCd ZXZSgWt9vVd1RoKxvnHe6gsOlKHGfAuHvpFvULplYKYlODGtcFAoO22KmKYAIRzZ C6F4nqlkLN5xrAFi9j1sup0ullnILWUP2iMwByUNVumyZg92bmu2fOY0y8ksHdAL XohF8Ao= -----END CERTIFICATE-----Generated at Sun Sep 7 12:28:16 2025 by rpki-client