$ rpki-client -vvf rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa File: 21A84DDAB4C811EE98BFC52CC4F9AE02.roa (raw, json) Hash identifier: M4ZsvutOyCk2s1KYcKAwaMHyjjGJAz91GGFqruJgJoU= Subject key identifier: C4:F6:43:00:34:B2:4F:76:4A:C5:34:C0:50:65:7E:E4:68:88:77:19 Certificate issuer: /CN=A915F316/serialNumber=04290CB24EEEF0A3A787187CB4FFC747DE861731 Certificate serial: 080B Authority key identifier: 04:29:0C:B2:4E:EE:F0:A3:A7:87:18:7C:B4:FF:C7:47:DE:86:17:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa Signing time: Tue 02 Sep 2025 21:41:13 +0000 ROA not before: Tue 02 Sep 2025 21:41:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 64073 IP address blocks: 103.193.136.0/22 maxlen: 22 103.193.136.0/24 maxlen: 24 103.193.137.0/24 maxlen: 24 103.193.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.crl rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2059 (0x80b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F316, serialNumber=04290CB24EEEF0A3A787187CB4FFC747DE861731 Validity Not Before: Sep 2 21:41:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b76479-8cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:15:2f:1e:78:96:de:33:0f:15:3e:91:0d:aa: 65:36:0e:7a:c4:d1:bb:57:78:44:4a:67:cf:42:52: 56:f1:5d:99:31:f1:7c:6b:dc:f9:91:89:d7:55:04: 9c:68:86:de:2c:fb:a7:f1:be:93:db:82:e9:6c:4c: 04:a4:07:b0:3a:e8:46:cf:d9:63:3b:b6:ce:26:e1: c7:12:72:e7:7c:b6:87:b7:85:dd:e0:dc:c1:9f:8b: 5d:40:62:d5:1d:bc:47:7c:9a:e2:22:e3:47:eb:7a: 18:56:86:de:9b:1d:d7:15:10:2e:33:89:7e:ce:1e: a2:f0:f4:ac:8b:d4:ef:74:df:be:e2:3c:81:a4:40: aa:23:41:11:f0:c0:75:18:ee:da:2e:a4:08:5f:5f: fb:9d:1f:b8:6d:db:f5:96:5f:67:a3:2f:b2:33:d6: 02:09:2f:54:e4:8c:6b:aa:4d:f2:43:78:bf:7b:85: 7e:cc:58:b0:74:a1:88:13:e1:7d:0c:8b:08:17:dc: 50:ae:97:15:ed:98:69:c9:a5:4e:15:93:98:6e:33: 76:a7:1c:82:91:fd:6e:7c:00:50:50:ad:d1:b0:21: 3b:8e:56:a5:de:83:d3:a1:79:c5:3a:b0:e5:0f:dc: 34:dc:aa:b3:e9:6c:24:66:7c:a3:a7:de:a1:a3:d4: 76:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F6:43:00:34:B2:4F:76:4A:C5:34:C0:50:65:7E:E4:68:88:77:19 X509v3 Authority Key Identifier: keyid:04:29:0C:B2:4E:EE:F0:A3:A7:87:18:7C:B4:FF:C7:47:DE:86:17:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/BCkMsk7u8KOnhxh8tP_HR96GFzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BCkMsk7u8KOnhxh8tP_HR96GFzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F316/281B9D60F6D111EAA69DE429C4F9AE02/21A84DDAB4C811EE98BFC52CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.136.0/22 Signature Algorithm: sha256WithRSAEncryption 11:d5:33:8b:84:7e:b5:4c:4f:a3:fe:bf:02:b4:53:3c:26:8b: fc:2e:82:60:74:0c:13:f8:54:75:22:b8:9d:04:ec:f0:74:03: 1e:3a:4e:c6:fb:0b:5c:22:c6:ba:75:4d:c0:a6:de:a1:1a:e2: d3:fb:41:b3:56:26:8c:d7:ea:55:8f:21:ab:0a:24:1f:9a:61: f8:69:c3:e4:4e:17:ff:ff:00:f8:10:c3:45:c4:ef:26:9c:af: 49:01:15:98:7f:d5:78:be:c8:fb:4b:3d:5d:5a:e0:66:3a:34: cc:c5:0f:7e:3f:3b:04:b9:5e:27:07:81:7e:5e:a0:29:40:0c: 28:c9:d3:ff:57:f9:7d:bb:8b:10:43:a5:c3:7e:8f:73:c9:d7: 4b:fb:91:82:c5:0b:03:40:ea:12:bb:18:c7:db:53:2a:63:d2: c2:91:c0:7b:68:f4:18:0c:72:c2:1d:dd:be:fd:02:8b:48:37: 74:51:90:8f:88:a8:c6:b9:8f:77:9d:b1:0f:69:36:83:e3:8a: 62:99:e8:9a:27:5d:7e:c5:34:52:88:3a:f1:80:1a:fc:22:bd: 7f:65:db:0f:e8:ec:7d:0b:88:aa:e4:e5:54:3e:09:3b:73:af: 4c:82:5b:a7:a8:9b:26:be:a1:e6:cc:4b:b7:09:1a:95:bd:7d: c7:87:b9:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYzMTYxMTAvBgNVBAUTKDA0MjkwQ0IyNEVFRUYwQTNBNzg3MTg3Q0I0RkZDNzQ3 REU4NjE3MzEwHhcNMjUwOTAyMjE0MTEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NjQ3OS04Y2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRUvHniW3jMPFT6RDaplNg56xNG7V3hESmfPQlJW8V2ZMfF8a9z5kYnXVQSc aIbeLPun8b6T24LpbEwEpAewOuhGz9ljO7bOJuHHEnLnfLaHt4Xd4NzBn4tdQGLV HbxHfJriIuNH63oYVobemx3XFRAuM4l+zh6i8PSsi9TvdN++4jyBpECqI0ER8MB1 GO7aLqQIX1/7nR+4bdv1ll9noy+yM9YCCS9U5Ixrqk3yQ3i/e4V+zFiwdKGIE+F9 DIsIF9xQrpcV7ZhpyaVOFZOYbjN2pxyCkf1ufABQUK3RsCE7jlal3oPToXnFOrDl D9w03Kqz6WwkZnyjp96ho9R2tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMT2QwA0 sk92SsU0wFBlfuRoiHcZMB8GA1UdIwQYMBaAFAQpDLJO7vCjp4cYfLT/x0fehhcx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjMxNi8yODFCOUQ2MEY2 RDExMUVBQTY5REU0MjlDNEY5QUUwMi9CQ2tNc2s3dThLT25oeGg4dFBfSFI5NkdG ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JDa01zazd1OEtPbmh4aDh0UF9IUjk2R0Z6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYzMTYvMjgxQjlENjBGNkQxMTFFQUE2OURFNDI5QzRGOUFFMDIvMjFBODREREFC NEM4MTFFRTk4QkZDNTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwYgwDQYJKoZIhvcNAQELBQADggEBABHVM4uEfrVMT6P+ vwK0Uzwmi/wugmB0DBP4VHUiuJ0E7PB0Ax46Tsb7C1wixrp1TcCm3qEa4tP7QbNW JozX6lWPIasKJB+aYfhpw+ROF///APgQw0XE7yacr0kBFZh/1Xi+yPtLPV1a4GY6 NMzFD34/OwS5XicHgX5eoClADCjJ0/9X+X27ixBDpcN+j3PJ10v7kYLFCwNA6hK7 GMfbUypj0sKRwHto9BgMcsId3b79AotIN3RRkI+IqMa5j3edsQ9pNoPjimKZ6Jon XX7FNFKIOvGAGvwivX9l2w/o7H0LiKrk5VQ+CTtzr0yCW6eomya+oebMS7cJGpW9 fceHubQ= -----END CERTIFICATE-----Generated at Tue Sep 9 18:55:51 2025 by rpki-client