$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa File: DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa (raw, json) Hash identifier: LK9G1J83bi3BUz0/qqWD4cotPJRvK4iVMh7A+P/u8DA= Subject key identifier: 8F:32:11:26:AC:3D:7F:8C:93:02:55:26:13:33:31:3C:E0:73:73:D7 Certificate issuer: /CN=A915BCB1/serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Certificate serial: 0917 Authority key identifier: 07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa Signing time: Tue 02 Sep 2025 21:11:34 +0000 ROA not before: Tue 02 Sep 2025 21:11:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 17819 IP address blocks: 45.116.132.0/24 maxlen: 24 45.116.135.0/24 maxlen: 24 103.9.92.0/24 maxlen: 24 103.9.93.0/24 maxlen: 24 103.37.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 20:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCB1, serialNumber=072CDF651B312CAFBDB049A33569FEA6EF6C9517 Validity Not Before: Sep 2 21:11:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b75d86-756f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:1a:15:1d:47:c7:a9:62:53:57:10:11:6b: 4e:cb:14:ee:d0:4c:12:98:1e:76:25:bc:16:79:09: f3:61:5e:62:ef:e5:c6:fd:48:55:89:ae:f3:7b:4e: 25:21:48:1b:d0:85:d7:6e:93:a1:9c:41:49:c9:5a: a8:df:46:14:56:34:c9:9c:69:f8:14:68:df:28:54: d2:f4:b4:f0:75:a8:cb:2d:a4:41:ce:d7:cc:ee:77: 76:42:23:50:91:10:df:46:42:c6:e0:42:95:80:dc: 99:5a:9f:97:5a:50:61:a4:39:bb:3f:44:a7:23:33: 93:ab:7b:8e:71:06:3f:b3:2c:94:d4:91:e8:f7:8f: bc:d3:2a:7e:d9:59:48:51:e5:05:05:06:ff:8f:b5: 7d:87:9a:c8:12:77:7c:60:73:95:a1:73:bc:93:2e: f6:0a:ca:e1:a0:52:09:b8:27:ec:f1:fc:f4:7f:95: cb:35:81:21:96:ea:13:a8:59:47:a2:5b:06:7c:68: ba:ad:bf:8f:3a:d9:3a:ec:d0:4b:09:31:f2:5a:dc: 93:6d:a4:f5:f9:4d:f3:34:e4:ea:22:b0:88:4d:67: f3:18:81:f5:8b:13:ca:16:39:79:8b:93:bf:82:e0: f3:1f:ef:30:5d:fa:0b:f1:90:b4:64:0a:73:d9:52: 05:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:32:11:26:AC:3D:7F:8C:93:02:55:26:13:33:31:3C:E0:73:73:D7 X509v3 Authority Key Identifier: keyid:07:2C:DF:65:1B:31:2C:AF:BD:B0:49:A3:35:69:FE:A6:EF:6C:95:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/ByzfZRsxLK-9sEmjNWn-pu9slRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByzfZRsxLK-9sEmjNWn-pu9slRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCB1/D00DD498BC0211EAB8C79048C4F9AE02/DF5E7CB6ED9C11EE81EFD40BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.132.0/24 45.116.135.0/24 103.9.92.0/23 103.37.132.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:0e:a7:b0:28:ef:1b:9f:d2:de:dc:5a:9e:8c:3c:12:19:30: cd:61:56:8e:84:76:39:69:35:46:c5:61:85:35:98:6a:6d:66: e0:cb:f9:40:6a:17:96:1b:1a:80:19:49:80:82:c5:cc:0f:b9: 5f:1d:17:0f:30:5b:64:b5:94:c3:e0:8b:c0:5c:b8:ac:1f:b4: ac:f1:7f:3c:a5:e3:21:df:cd:7a:b7:f2:8b:df:23:28:a0:8f: 69:0f:7c:bc:aa:03:a8:f6:2c:6b:20:51:41:f6:f2:f4:b4:04: b4:fb:ca:a5:6d:fb:a0:d3:a6:b9:08:e4:4c:19:92:ec:77:d5: c5:95:11:e0:ec:d1:57:b9:81:68:b8:64:12:de:18:47:1a:44: 87:c3:94:0f:c9:81:b7:03:23:3b:6c:3b:77:97:6d:e3:36:5a: ad:e1:c8:a3:f5:be:29:c0:e8:6b:9a:c1:06:2d:da:1b:e2:f8: f7:92:b7:3b:5c:fd:10:38:9e:1d:31:ce:03:da:3f:13:12:f1: 3f:67:af:96:d5:ab:cb:15:7e:a5:5e:e0:94:43:ae:6f:c7:41: 05:dd:98:9a:ee:49:a6:3b:4e:8c:fe:69:2a:d4:f8:fd:b9:cd: e6:21:08:2b:3f:5e:37:13:b0:37:5a:f2:ab:b8:c5:81:32:fe: bb:61:8a:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDQjExMTAvBgNVBAUTKDA3MkNERjY1MUIzMTJDQUZCREIwNDlBMzM1NjlGRUE2 RUY2Qzk1MTcwHhcNMjUwOTAyMjExMTM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWQ4Ni03NTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm8aFR1Hx6liU1cQEWtOyxTu0EwSmB52JbwWeQnzYV5i7+XG/UhVia7ze04l IUgb0IXXbpOhnEFJyVqo30YUVjTJnGn4FGjfKFTS9LTwdajLLaRBztfM7nd2QiNQ kRDfRkLG4EKVgNyZWp+XWlBhpDm7P0SnIzOTq3uOcQY/syyU1JHo94+80yp+2VlI UeUFBQb/j7V9h5rIEnd8YHOVoXO8ky72CsrhoFIJuCfs8fz0f5XLNYEhluoTqFlH olsGfGi6rb+POtk67NBLCTHyWtyTbaT1+U3zNOTqIrCITWfzGIH1ixPKFjl5i5O/ guDzH+8wXfoL8ZC0ZApz2VIFTQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFI8yESas PX+MkwJVJhMzMTzgc3PXMB8GA1UdIwQYMBaAFAcs32UbMSyvvbBJozVp/qbvbJUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNCMS9EMDBERDQ5OEJD MDIxMUVBQjhDNzkwNDhDNEY5QUUwMi9CeXpmWlJzeExLLTlzRW1qTlduLXB1OXNs UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5emZaUnN4TEstOXNFbWpOV24tcHU5c2xSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDQjEvRDAwREQ0OThCQzAyMTFFQUI4Qzc5MDQ4QzRGOUFFMDIvREY1RTdDQjZF RDlDMTFFRTgxRUZENDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAtdIQDBAAtdIcDBAFnCVwDBABnJYQwDQYJKoZIhvcNAQEL BQADggEBAJwOp7Ao7xuf0t7cWp6MPBIZMM1hVo6EdjlpNUbFYYU1mGptZuDL+UBq F5YbGoAZSYCCxcwPuV8dFw8wW2S1lMPgi8BcuKwftKzxfzyl4yHfzXq38ovfIyig j2kPfLyqA6j2LGsgUUH28vS0BLT7yqVt+6DTprkI5EwZkux31cWVEeDs0Ve5gWi4 ZBLeGEcaRIfDlA/JgbcDIztsO3eXbeM2Wq3hyKP1vinA6GuawQYt2hvi+PeStztc /RA4nh0xzgPaPxMS8T9nr5bVq8sVfqVe4JRDrm/HQQXdmJruSaY7Toz+aSrU+P25 zeYhCCs/XjcTsDda8qu4xYEy/rthipg= -----END CERTIFICATE-----Generated at Thu Sep 11 02:14:47 2025 by rpki-client