$ rpki-client -vvf rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/7D512C7EB0C611E5BDBA5065C4F9AE02.roa File: 7D512C7EB0C611E5BDBA5065C4F9AE02.roa (raw, json) Hash identifier: hYytIPmZWrKBo2kUKZ6RbyTlKDVjP2KD/kyPVrq80v0= Subject key identifier: 00:C1:47:8B:81:20:E3:85:CD:2D:A5:CF:DE:B7:47:FE:10:10:D7:B0 Certificate issuer: /CN=A916475C/serialNumber=01FAC19BA1135350F7AEAE9B581A859528AC8BAE Certificate serial: 34B8 Authority key identifier: 01:FA:C1:9B:A1:13:53:50:F7:AE:AE:9B:58:1A:85:95:28:AC:8B:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfrBm6ETU1D3rq6bWBqFlSisi64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/7D512C7EB0C611E5BDBA5065C4F9AE02.roa Signing time: Mon 02 Jun 2025 14:50:09 +0000 ROA not before: Mon 02 Jun 2025 14:50:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38204 IP address blocks: 103.163.76.0/24 maxlen: 24 103.247.246.0/24 maxlen: 24 202.52.44.0/24 maxlen: 24 203.189.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/AfrBm6ETU1D3rq6bWBqFlSisi64.crl rsync://rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/AfrBm6ETU1D3rq6bWBqFlSisi64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfrBm6ETU1D3rq6bWBqFlSisi64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 14:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916475C, serialNumber=01FAC19BA1135350F7AEAE9B581A859528AC8BAE Validity Not Before: Jun 2 14:50:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683dba21-5ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:de:c4:85:c3:bf:48:08:64:24:2c:b7:f1:9c: c5:b2:a3:e5:8d:be:7e:19:7d:ca:3d:1b:2a:6f:09: 6b:ce:8b:c0:09:9b:62:42:44:1c:a3:1e:7f:f2:73: 05:f2:b3:ab:a7:b3:4b:1c:10:9f:9e:7f:ac:58:6b: c1:d1:d2:72:61:65:af:ad:cf:f8:e9:1b:cd:f6:85: 3d:4c:71:b1:6f:6e:77:b7:21:03:e5:f9:d1:24:94: 4e:8a:d9:5e:90:64:ab:62:9e:73:07:16:cd:b7:b1: a8:fd:4a:7b:53:3a:04:e9:5a:a4:54:c0:95:64:51: 47:a4:e5:5d:cd:7d:a7:15:9c:bf:8f:84:3c:3b:6d: e3:0a:26:41:8a:bc:38:71:18:22:3a:77:d6:33:55: bc:ef:36:f3:42:46:77:93:b1:12:e0:24:6e:f1:d9: da:bc:2b:5c:92:63:20:51:95:aa:29:a9:9d:b8:0c: dd:70:7c:ca:9d:4f:16:9d:95:df:ee:ef:af:ce:df: 46:46:06:30:b8:d1:06:9c:fd:a9:96:b5:4c:75:e0: 31:d9:03:ea:8f:d2:70:d0:b1:f5:d0:5d:57:0b:4d: 55:50:02:46:01:d8:f8:c3:66:aa:74:9c:c6:7d:2e: 97:ca:fc:b8:20:84:25:69:c8:c3:5c:2a:19:6e:ab: d3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C1:47:8B:81:20:E3:85:CD:2D:A5:CF:DE:B7:47:FE:10:10:D7:B0 X509v3 Authority Key Identifier: keyid:01:FA:C1:9B:A1:13:53:50:F7:AE:AE:9B:58:1A:85:95:28:AC:8B:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/AfrBm6ETU1D3rq6bWBqFlSisi64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfrBm6ETU1D3rq6bWBqFlSisi64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916475C/EAC95FAC1D6B11E2AD800DAC08B02CD2/7D512C7EB0C611E5BDBA5065C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.76.0/24 103.247.246.0/24 202.52.44.0/24 203.189.5.0/24 Signature Algorithm: sha256WithRSAEncryption 97:b4:2f:e3:26:a1:1b:67:fb:8d:23:a7:97:fe:3f:a2:0c:de: b9:92:dd:1a:36:ff:47:ce:92:e0:6d:0f:ec:c5:10:30:27:0d: 72:00:30:c1:fb:22:87:9f:62:66:09:f3:f1:01:cb:5f:f7:d9: 4a:cc:d3:bd:fd:37:26:a1:12:a3:ff:6e:14:72:fa:b2:d3:93: cb:1b:65:47:32:dc:d6:7b:24:6f:91:66:ff:b5:51:27:a2:8d: 39:3b:42:6f:5a:93:e7:4f:d0:9e:df:fe:00:4e:a4:75:ac:a1: d9:84:98:da:f6:3f:a8:69:11:f2:ad:3d:58:c1:ea:8a:95:35: 36:00:8b:9c:5a:08:6b:b4:26:be:9e:65:36:8c:f2:10:60:7b: cd:b3:af:2a:ba:5c:f1:1e:75:26:55:a4:9c:0e:51:8e:cb:96: 07:1b:a7:cb:cd:8c:7b:23:4b:fe:52:d2:34:62:3f:77:63:95: 68:1c:1e:6b:5a:92:06:05:90:cf:0d:0e:be:b4:d8:9a:29:e8: ea:7a:4d:33:2f:0c:21:4b:88:a6:80:8e:72:4d:e9:4c:14:75: 51:0f:4f:89:9b:66:74:10:51:be:74:f7:ca:71:a7:19:9b:53: c2:9b:3a:94:04:f9:1f:0a:0a:b7:18:0c:89:34:5f:8e:cd:82: f6:7c:11:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ3NUMxMTAvBgNVBAUTKDAxRkFDMTlCQTExMzUzNTBGN0FFQUU5QjU4MUE4NTk1 MjhBQzhCQUUwHhcNMjUwNjAyMTQ1MDA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkYmEyMS01YWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4t7EhcO/SAhkJCy38ZzFsqPljb5+GX3KPRsqbwlrzovACZtiQkQcox5/8nMF 8rOrp7NLHBCfnn+sWGvB0dJyYWWvrc/46RvN9oU9THGxb253tyED5fnRJJROitle kGSrYp5zBxbNt7Go/Up7UzoE6VqkVMCVZFFHpOVdzX2nFZy/j4Q8O23jCiZBirw4 cRgiOnfWM1W87zbzQkZ3k7ES4CRu8dnavCtckmMgUZWqKamduAzdcHzKnU8WnZXf 7u+vzt9GRgYwuNEGnP2plrVMdeAx2QPqj9Jw0LH10F1XC01VUAJGAdj4w2aqdJzG fS6Xyvy4IIQlacjDXCoZbqvTBwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFADBR4uB IOOFzS2lz963R/4QENewMB8GA1UdIwQYMBaAFAH6wZuhE1NQ966um1gahZUorIuu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDc1Qy9FQUM5NUZBQzFE NkIxMUUyQUQ4MDBEQUMwOEIwMkNEMi9BZnJCbTZFVFUxRDNycTZiV0JxRmxTaXNp NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmckJtNkVUVTFEM3JxNmJXQnFGbFNpc2k2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ3NUMvRUFDOTVGQUMxRDZCMTFFMkFEODAwREFDMDhCMDJDRDIvN0Q1MTJDN0VC MEM2MTFFNUJEQkE1MDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABno0wDBABn9/YDBADKNCwDBADLvQUwDQYJKoZIhvcNAQEL BQADggEBAJe0L+MmoRtn+40jp5f+P6IM3rmS3Ro2/0fOkuBtD+zFEDAnDXIAMMH7 IoefYmYJ8/EBy1/32UrM0739NyahEqP/bhRy+rLTk8sbZUcy3NZ7JG+RZv+1USei jTk7Qm9ak+dP0J7f/gBOpHWsodmEmNr2P6hpEfKtPVjB6oqVNTYAi5xaCGu0Jr6e ZTaM8hBge82zryq6XPEedSZVpJwOUY7Llgcbp8vNjHsjS/5S0jRiP3djlWgcHmta kgYFkM8NDr602Jop6Op6TTMvDCFLiKaAjnJN6UwUdVEPT4mbZnQQUb5098pxpxmb U8KbOpQE+R8KCrcYDIk0X47NgvZ8EWk= -----END CERTIFICATE-----Generated at Sun Jun 8 07:34:41 2025 by rpki-client