$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa File: 5694D344791B11EEA64C016BC4F9AE02.roa (raw, json) Hash identifier: ZHYQ3wHDGWknZGEZPQElBL1vATEt+W0eJbB64xYMxf8= Subject key identifier: 4D:82:DD:FC:71:BB:39:9E:40:A9:FA:4D:DF:9D:63:56:7C:A2:5D:27 Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 0165 Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa Signing time: Fri 29 Aug 2025 04:53:09 +0000 ROA not before: Fri 29 Aug 2025 04:53:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133050 IP address blocks: 103.247.184.0/24 maxlen: 24 103.247.185.0/24 maxlen: 24 103.247.186.0/24 maxlen: 24 103.247.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678, serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: Aug 29 04:53:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b13235-5f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:e0:c0:06:43:72:a5:78:07:4a:72:48:77: 29:1d:9c:ad:81:ac:2d:61:89:46:cc:20:f8:42:ba: 5f:89:9f:97:7e:5e:9d:9b:50:2e:41:a7:ac:33:e6: 3f:d7:a0:61:ee:03:82:25:e0:be:10:eb:1e:ba:46: ba:9b:ba:e1:37:18:6a:a0:6e:88:d3:64:b8:51:e7: 19:96:45:b1:32:9f:91:54:7b:80:48:30:a6:78:16: f1:2e:51:52:6f:e4:54:07:d4:f2:21:9e:b5:b9:17: 4e:cc:1b:8a:d2:70:7c:6a:ee:a9:c1:4e:30:d0:fa: b2:6a:79:a5:d9:26:98:ab:60:d2:97:0a:fb:2d:8b: 23:ef:69:96:93:c0:ec:58:ac:cf:d8:10:b4:ab:36: e7:0b:34:d1:f5:f9:29:58:e8:77:fb:e7:3d:b7:93: 14:af:b6:42:d5:e9:57:47:09:2b:3a:6f:10:1b:c0: 23:15:85:1e:26:f9:3f:2d:7e:78:33:b9:43:ad:55: d8:d0:a7:d3:ad:60:b8:31:d1:14:2f:29:4b:3d:66: c1:b2:eb:e1:b1:03:13:3e:57:08:5c:1f:f1:7f:8d: c7:b7:dc:7c:4f:d1:1d:5f:d2:de:92:8f:b5:24:7b: ce:af:1d:48:77:72:30:8c:c2:d1:50:13:97:e4:59: d3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:82:DD:FC:71:BB:39:9E:40:A9:FA:4D:DF:9D:63:56:7C:A2:5D:27 X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/5694D344791B11EEA64C016BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.184.0/22 Signature Algorithm: sha256WithRSAEncryption 42:a4:cc:42:03:d5:40:ee:c7:c5:5f:45:be:a7:f7:24:de:f7: 31:3a:78:ca:5b:72:01:a8:45:ba:1a:a6:fe:78:1b:a6:ed:01: 0d:95:a1:89:de:73:f7:4c:06:31:22:a4:6b:05:cd:89:79:f6: 8d:69:db:da:27:47:7e:90:6f:73:a4:84:3f:1f:55:7c:8e:9a: 44:b3:44:18:39:25:73:c8:b9:6b:81:74:4e:d6:0d:26:74:02: 99:e3:66:29:43:32:64:e0:71:e7:c5:ee:8a:ed:3c:80:8b:be: ad:c9:5c:a8:f9:8d:ad:d8:d6:af:df:f5:ba:0e:26:11:2d:72: 21:a7:40:ed:2f:1e:0f:ce:6c:6e:0e:d3:9f:04:10:61:11:31: e1:6a:c1:9e:d0:01:f5:97:b3:b1:4f:7d:00:bf:4f:34:98:bf: f5:af:d4:63:80:f5:b3:bd:d9:aa:62:41:42:d3:1c:51:0a:5a: f0:4e:b0:1c:28:84:88:de:c0:a4:49:b1:45:c6:ff:28:15:7d: 29:98:8e:10:af:28:70:d0:64:3f:b6:35:1e:81:15:ab:07:dd: 60:50:76:46:73:97:03:9a:53:a2:99:6c:2c:95:0a:6c:ff:b6: b4:42:2c:f2:90:93:7f:e6:b3:03:25:fa:9a:58:bb:13:2b:13: 9e:f3:cf:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU2NzgxMTAvBgNVBAUTKDAwOEY1RDA2RjBGRUZDNDBGRDgzMEIyNkNENzY2MEEz ODMxMTBDOTEwHhcNMjUwODI5MDQ1MzA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzIzNS01ZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjXgwAZDcqV4B0pySHcpHZytgawtYYlGzCD4QrpfiZ+Xfl6dm1AuQaesM+Y/ 16Bh7gOCJeC+EOseuka6m7rhNxhqoG6I02S4UecZlkWxMp+RVHuASDCmeBbxLlFS b+RUB9TyIZ61uRdOzBuK0nB8au6pwU4w0Pqyanml2SaYq2DSlwr7LYsj72mWk8Ds WKzP2BC0qzbnCzTR9fkpWOh3++c9t5MUr7ZC1elXRwkrOm8QG8AjFYUeJvk/LX54 M7lDrVXY0KfTrWC4MdEULylLPWbBsuvhsQMTPlcIXB/xf43Ht9x8T9EdX9Leko+1 JHvOrx1Id3IwjMLRUBOX5FnTLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE2C3fxx uzmeQKn6Td+dY1Z8ol0nMB8GA1UdIwQYMBaAFACPXQbw/vxA/YMLJs12YKODEQyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTY3OC83QUVFRDg2Mjc5 MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9FRDlnd3NtelhaZ280TVJE SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU2NzgvN0FFRUQ4NjI3OTFBMTFFRUFDQTFBRDJCQzRGOUFFMDIvNTY5NEQzNDQ3 OTFCMTFFRUE2NEMwMTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn97gwDQYJKoZIhvcNAQELBQADggEBAEKkzEID1UDux8Vf Rb6n9yTe9zE6eMpbcgGoRboapv54G6btAQ2VoYnec/dMBjEipGsFzYl59o1p29on R36Qb3OkhD8fVXyOmkSzRBg5JXPIuWuBdE7WDSZ0ApnjZilDMmTgcefF7ortPICL vq3JXKj5ja3Y1q/f9boOJhEtciGnQO0vHg/ObG4O058EEGERMeFqwZ7QAfWXs7FP fQC/TzSYv/Wv1GOA9bO92apiQULTHFEKWvBOsBwohIjewKRJsUXG/ygVfSmYjhCv KHDQZD+2NR6BFasH3WBQdkZzlwOaU6KZbCyVCmz/trRCLPKQk3/mswMl+ppYuxMr E57zz+c= -----END CERTIFICATE-----Generated at Tue Sep 9 14:10:44 2025 by rpki-client