$ rpki-client -vvf rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa File: 203ADB5E412E11F097D29A20C4F9AE02.roa (raw, json) Hash identifier: DlksN9MScupAjFsSOvELPpNk78Lxd9jwsZlpaixwA5o= Subject key identifier: 9C:BD:2B:C4:1B:06:DB:55:BD:0E:52:20:E2:E2:4B:10:40:71:AF:3B Certificate issuer: /CN=A916E501/serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Certificate serial: 073F Authority key identifier: 43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa Signing time: Wed 04 Jun 2025 10:24:41 +0000 ROA not before: Wed 04 Jun 2025 10:24:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137934 IP address blocks: 103.159.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 21:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E501, serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Validity Not Before: Jun 4 10:24:41 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68401ee9-0232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:aa:aa:39:bf:d8:ea:93:49:97:da:22:2e:74: ec:ec:9f:f5:f8:29:69:b2:03:42:29:cc:87:64:c3: 6b:07:75:8a:a6:e1:64:0a:3c:37:2b:20:5a:e8:d4: ee:32:9c:7d:96:1c:08:18:cf:5e:65:8d:8f:2f:4f: f4:57:3b:fe:fd:91:7c:ab:28:ca:c9:f2:c4:28:f6: 98:18:9b:06:be:0e:5d:3a:4d:b2:0f:98:9f:3b:bd: 88:f5:f0:f7:99:ae:ae:94:a0:71:f7:94:83:75:c7: 59:7d:f4:78:32:65:d1:d6:14:4d:94:3d:3f:a2:52: 7f:b5:f4:9a:37:c6:dd:76:24:4e:09:2c:5d:d9:56: 6c:d2:0b:91:00:fa:cc:ac:6b:06:eb:62:e9:87:82: fd:21:d6:15:0c:c5:3c:f4:16:1f:32:e9:36:9f:57: bb:c5:e5:6d:ef:13:24:82:c1:e1:0d:20:81:60:3a: 41:81:3e:fe:50:ab:8d:4c:d7:ec:f8:02:7e:95:78: 89:88:0e:fc:10:06:5a:3f:a5:5f:36:38:7d:1d:82: 88:e3:9b:64:ae:04:ea:f7:7b:e0:a0:4b:78:ce:f1: 72:88:7e:3c:cc:3a:b8:fe:40:18:d4:95:b9:1d:38: 7f:e0:ce:69:59:d3:34:0e:1c:9a:2c:82:2d:c9:33: 6e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BD:2B:C4:1B:06:DB:55:BD:0E:52:20:E2:E2:4B:10:40:71:AF:3B X509v3 Authority Key Identifier: keyid:43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.1.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:43:70:14:f7:f6:4b:02:63:ed:fc:42:0f:0b:7b:98:9f:f4: 1a:24:a7:77:41:2a:26:98:d7:67:e4:8f:22:5c:b8:34:6b:89: 73:28:c4:0b:61:6c:3d:58:6c:c6:b6:9d:6e:67:7a:3b:60:13: c2:cf:28:d9:d2:36:6b:1d:ed:19:da:1b:19:16:b2:4c:92:c8: 67:dd:97:12:e6:0f:c5:96:45:94:8c:93:80:f2:ef:e5:c6:db: 68:04:9d:9f:c0:8e:6f:5f:85:44:2a:8d:5e:52:bb:88:42:7c: 06:11:5b:53:49:2f:e3:67:6f:0d:50:87:d7:ab:8d:a5:db:48: 95:a7:52:54:28:8d:2a:a3:46:be:65:80:c7:d7:03:1c:31:f2: 54:79:a0:53:c0:8e:2d:44:8f:77:ba:ba:aa:bd:ae:76:6e:63: 13:78:c0:89:6a:c1:c0:fe:31:d9:74:02:b8:18:19:57:4e:ba: d5:50:45:02:c0:a5:b2:a0:5c:b3:4b:6b:e9:17:5b:6d:0f:53: 34:8e:02:33:c8:c2:f1:40:d7:18:0a:96:52:6a:de:c6:ce:82: 91:56:26:fc:1d:79:bb:42:23:54:df:22:2d:a1:09:a3:0e:a6: 24:ec:c1:3e:a9:5a:a9:b6:83:f4:a8:40:4b:11:50:bc:b6:7a: 70:77:17:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1MDExMTAvBgNVBAUTKDQzQjM5QzhGQTMzNDZENjMxOUVBNDlCQzVBMDY3RUVG RTBEMzQ0NkQwHhcNMjUwNjA0MTAyNDQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwMWVlOS0wMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KqqOb/Y6pNJl9oiLnTs7J/1+ClpsgNCKcyHZMNrB3WKpuFkCjw3KyBa6NTu Mpx9lhwIGM9eZY2PL0/0Vzv+/ZF8qyjKyfLEKPaYGJsGvg5dOk2yD5ifO72I9fD3 ma6ulKBx95SDdcdZffR4MmXR1hRNlD0/olJ/tfSaN8bddiROCSxd2VZs0guRAPrM rGsG62Lph4L9IdYVDMU89BYfMuk2n1e7xeVt7xMkgsHhDSCBYDpBgT7+UKuNTNfs +AJ+lXiJiA78EAZaP6VfNjh9HYKI45tkrgTq93vgoEt4zvFyiH48zDq4/kAY1JW5 HTh/4M5pWdM0DhyaLIItyTNuPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJy9K8Qb BttVvQ5SIOLiSxBAca87MB8GA1UdIwQYMBaAFEOznI+jNG1jGepJvFoGfu/g00Rt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTUwMS8yQjJEODgwNDJG QjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJXTVo2a204V2daLTctRFRS RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E3T2NqNk0wYldNWjZrbThXZ1otNy1EVFJHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkU1MDEvMkIyRDg4MDQyRkIzMTFFQkI1OEE0NjNEQzRGOUFFMDIvMjAzQURCNUU0 MTJFMTFGMDk3RDI5QTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnwEwDQYJKoZIhvcNAQELBQADggEBACxDcBT39ksCY+38 Qg8Le5if9Bokp3dBKiaY12fkjyJcuDRriXMoxAthbD1YbMa2nW5nejtgE8LPKNnS Nmsd7RnaGxkWskySyGfdlxLmD8WWRZSMk4Dy7+XG22gEnZ/Ajm9fhUQqjV5Su4hC fAYRW1NJL+Nnbw1Qh9erjaXbSJWnUlQojSqjRr5lgMfXAxwx8lR5oFPAji1Ej3e6 uqq9rnZuYxN4wIlqwcD+Mdl0ArgYGVdOutVQRQLApbKgXLNLa+kXW20PUzSOAjPI wvFA1xgKllJq3sbOgpFWJvwdebtCI1TfIi2hCaMOpiTswT6pWqm2g/SoQEsRULy2 enB3FxU= -----END CERTIFICATE-----Generated at Sun Jun 8 14:38:48 2025 by rpki-client