$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa File: E4C0040A8C8C11EBB81BA228C4F9AE02.roa (raw, json) Hash identifier: M1talUD7nGnyR5DD/wgP+RFBY6UhaAWGj+4ZLgWnUFg= Subject key identifier: 3A:1B:81:4D:59:5E:7C:67:46:EE:BA:75:16:BC:8F:63:B8:C3:07:E4 Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 06ED Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa Signing time: Tue 02 Sep 2025 22:42:57 +0000 ROA not before: Tue 02 Sep 2025 22:42:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 1273 IP address blocks: 103.23.192.0/22 maxlen: 22 202.89.16.0/21 maxlen: 21 202.89.16.0/22 maxlen: 22 203.169.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D, serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 2 22:42:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b772f1-3b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:83:dc:f6:32:c2:a9:0b:18:ad:76:61:98: 1c:62:16:2d:be:c9:6c:e8:5b:b2:08:78:66:63:89: e2:b7:80:7f:15:4b:3e:fe:31:1c:69:8c:80:20:1f: 0d:a7:b4:e6:bd:b7:1f:c0:c1:30:0b:b7:11:80:43: 01:60:74:3f:7c:d2:9d:e3:8d:33:f9:4d:4e:bc:84: 14:c1:5e:c1:b8:4b:9d:30:d9:c7:84:f2:89:d3:ff: 24:f1:2c:88:5d:8d:f3:cc:79:a1:13:d8:da:71:1c: a2:4f:ff:ba:6f:20:42:14:cb:a1:f0:32:93:6c:52: 77:d6:76:61:ac:5b:7a:fc:b1:83:13:f9:08:98:4c: fc:ae:64:d4:27:d2:12:5a:5a:c2:eb:e2:a1:9f:81: 8b:d8:b0:14:01:29:fd:9e:cc:e2:fd:93:ef:3e:06: d6:50:57:de:3a:c6:2f:e6:75:29:e4:26:49:bb:c5: 09:5b:0f:24:c5:10:b0:1d:bb:a4:e3:a8:3c:73:d6: 6f:28:af:dd:b4:19:94:81:cb:76:20:8b:6d:c6:6c: 69:0c:82:d5:1a:ff:57:9b:c0:a9:b6:2e:11:9d:64: 54:6c:4f:2b:d7:e0:57:37:f6:68:c7:43:90:16:27: 0c:ec:d3:95:06:c9:8e:d2:a6:82:96:89:ba:07:48: 4e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:81:4D:59:5E:7C:67:46:EE:BA:75:16:BC:8F:63:B8:C3:07:E4 X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.192.0/22 202.89.16.0/21 203.169.56.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:f1:74:cd:41:18:c1:f4:e0:a3:b8:bd:2d:37:03:0d:bf:34: a4:1e:8e:45:48:63:76:dc:81:79:27:0d:c0:e3:c2:37:e4:d6: 33:5c:e8:82:49:3a:10:b8:33:7c:af:39:79:0f:b1:81:6f:f2: b3:58:26:31:31:11:0c:c8:aa:fc:b9:77:51:4e:1f:b1:6a:37: f6:8e:12:1f:d6:91:7c:74:60:70:98:cf:30:b4:a0:fc:a5:c2: 78:df:7e:29:c1:5a:2a:7c:61:15:ba:a7:fc:a3:8e:59:45:4c: 4f:15:9f:62:f2:0d:70:79:5a:64:d7:4c:0b:8c:0c:c9:fd:7a: c6:a7:7c:d0:40:b2:eb:1c:af:9a:43:c9:af:8b:d2:f4:d2:41: 01:6d:e4:90:23:f4:02:59:58:be:b8:68:04:93:a2:cd:90:27: d4:b8:b1:6d:a2:f8:9c:a2:2b:8c:9f:8e:44:c1:85:da:ae:96: c7:5d:3d:8d:87:1c:db:e6:d3:e1:32:df:81:87:6f:9b:99:1c: 8b:ac:79:eb:6c:06:92:ad:02:02:a4:0d:2e:c3:c1:83:5b:62: 80:5e:10:59:a7:93:06:a1:6d:a8:e3:89:b1:30:79:9d:c0:cd: ef:b8:8d:04:ce:10:d2:92:4d:f2:54:f6:88:9e:75:42:0b:93: b2:fd:7e:c8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjUwOTAyMjI0MjU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NzJmMS0zYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTmD3PYywqkLGK12YZgcYhYtvsls6FuyCHhmY4nit4B/FUs+/jEcaYyAIB8N p7TmvbcfwMEwC7cRgEMBYHQ/fNKd440z+U1OvIQUwV7BuEudMNnHhPKJ0/8k8SyI XY3zzHmhE9jacRyiT/+6byBCFMuh8DKTbFJ31nZhrFt6/LGDE/kImEz8rmTUJ9IS WlrC6+Khn4GL2LAUASn9nszi/ZPvPgbWUFfeOsYv5nUp5CZJu8UJWw8kxRCwHbuk 46g8c9ZvKK/dtBmUgct2IIttxmxpDILVGv9Xm8Cpti4RnWRUbE8r1+BXN/Zox0OQ FicM7NOVBsmO0qaClom6B0hOvwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDobgU1Z XnxnRu66dRa8j2O4wwfkMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvRTRDMDA0MEE4 QzhDMTFFQkI4MUJBMjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnF8ADBAPKWRADBAHLqTgwDQYJKoZIhvcNAQELBQADggEB AJ3xdM1BGMH04KO4vS03Aw2/NKQejkVIY3bcgXknDcDjwjfk1jNc6IJJOhC4M3yv OXkPsYFv8rNYJjExEQzIqvy5d1FOH7FqN/aOEh/WkXx0YHCYzzC0oPylwnjffinB Wip8YRW6p/yjjllFTE8Vn2LyDXB5WmTXTAuMDMn9esanfNBAsuscr5pDya+L0vTS QQFt5JAj9AJZWL64aASTos2QJ9S4sW2i+JyiK4yfjkTBhdqulsddPY2HHNvm0+Ey 34GHb5uZHIuseetsBpKtAgKkDS7DwYNbYoBeEFmnkwahbajjibEweZ3Aze+4jQTO ENKSTfJU9oiedUILk7L9fsg= -----END CERTIFICATE-----Generated at Tue Sep 9 08:32:14 2025 by rpki-client