$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/4968AAF076AE11F0A3ED6312C4F9AE02.roa File: 4968AAF076AE11F0A3ED6312C4F9AE02.roa (raw, json) Hash identifier: xb4RcSvUiYTd8REdi4WyBe4stRGCNU0ydozy77HnnoE= Subject key identifier: 7B:7B:56:8F:24:04:DC:D7:C0:06:93:20:0E:C5:F5:2B:61:A2:F4:BC Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 0315 Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/4968AAF076AE11F0A3ED6312C4F9AE02.roa Signing time: Mon 11 Aug 2025 12:25:38 +0000 ROA not before: Mon 11 Aug 2025 12:25:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 29802 IP address blocks: 103.209.77.0/24 maxlen: 24 103.209.78.0/24 maxlen: 24 103.209.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Aug 11 12:25:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6899e141-dd62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:67:41:e9:1c:e1:7b:d6:22:6d:15:ab:68: 0f:9f:2b:86:f7:59:72:e1:32:15:d6:54:89:ea:cd: 42:db:e8:ba:06:5b:0b:89:54:05:2e:c1:39:99:f9: 6d:ab:7d:41:d8:ca:17:a3:72:d0:bc:97:eb:06:ca: 18:cd:7c:87:bd:21:ae:0d:50:91:96:8a:7c:4c:2d: ad:59:b6:17:7c:ce:16:7a:42:92:71:bf:c2:d0:dd: 36:53:1c:54:0c:3c:1b:45:d0:1a:a2:e0:fe:e9:ae: dd:a1:c9:9f:91:ae:38:18:f6:b5:e2:07:5a:f6:9a: 2d:56:be:be:eb:d9:02:99:78:06:d3:8e:e3:1c:4c: 16:52:22:39:ed:52:10:61:73:0e:3a:26:8a:67:5e: c1:4a:ed:cf:b4:5c:df:65:d8:2e:75:14:46:ed:22: dd:70:c0:18:37:bd:05:25:5c:27:1a:84:23:59:a1: 32:ee:ac:52:eb:84:6c:f2:07:95:c5:26:e4:57:08: 5d:cc:f4:4c:7c:c4:6a:24:e5:e5:e3:85:23:43:b3: 77:dc:61:98:82:56:86:13:0b:93:a2:55:e6:79:44: 9c:71:29:58:85:be:00:e9:c3:69:5f:6f:65:62:fd: 56:45:ea:f9:c1:9e:a7:4a:70:ec:83:a1:e8:0c:3c: c7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7B:56:8F:24:04:DC:D7:C0:06:93:20:0E:C5:F5:2B:61:A2:F4:BC X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/4968AAF076AE11F0A3ED6312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.77.0-103.209.79.255 Signature Algorithm: sha256WithRSAEncryption 29:35:11:67:8d:02:c5:94:a2:7a:f6:de:ce:60:62:64:a5:7e: d6:ea:7a:74:9b:af:b4:67:37:3c:3f:e6:91:f9:dd:c0:12:ab: 8c:a8:f7:80:77:cd:7e:4e:fd:34:c5:f9:40:cb:1b:ef:47:07: b0:4b:a2:5d:b2:ab:14:58:8e:df:3a:74:ae:15:ce:cb:8f:6b: ae:f4:1a:32:50:03:53:e4:e8:39:26:2c:ea:76:e6:15:54:aa: 75:4a:66:78:87:24:66:3f:4c:e7:cd:39:a5:78:c0:19:c2:03: 37:f0:36:79:b3:32:24:7e:d0:30:93:41:5f:63:86:9e:5f:37: e2:98:d2:b6:86:9d:42:e4:d2:f3:ba:77:e3:62:50:5c:7c:a0: 76:04:cb:42:f2:3c:ed:d3:ce:5d:8c:16:1b:4a:f8:cf:4c:4a: c0:7d:3f:6b:fc:75:86:71:59:1e:2a:dd:fe:ff:b1:45:d1:f0: a9:38:69:e1:a9:6d:73:e1:5a:64:27:d7:61:a6:6a:70:1b:78: 20:69:91:8b:00:8d:73:34:3b:34:59:71:cf:74:d3:12:91:ed: 0b:da:20:f7:b8:1c:5b:ef:2e:e0:e1:48:cd:62:92:2a:8c:44: 11:e9:88:f1:8e:02:f9:0f:3a:ac:03:80:01:05:0d:d5:36:eb: 69:0b:66:63 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjUwODExMTIyNTM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5ZTE0MS1kZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyttnQekc4XvWIm0Vq2gPnyuG91ly4TIV1lSJ6s1C2+i6BlsLiVQFLsE5mflt q31B2MoXo3LQvJfrBsoYzXyHvSGuDVCRlop8TC2tWbYXfM4WekKScb/C0N02UxxU DDwbRdAaouD+6a7docmfka44GPa14gda9potVr6+69kCmXgG047jHEwWUiI57VIQ YXMOOiaKZ17BSu3PtFzfZdgudRRG7SLdcMAYN70FJVwnGoQjWaEy7qxS64Rs8geV xSbkVwhdzPRMfMRqJOXl44UjQ7N33GGYglaGEwuTolXmeUSccSlYhb4A6cNpX29l Yv1WRer5wZ6nSnDsg6HoDDzHqQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHt7Vo8k BNzXwAaTIA7F9SthovS8MB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0RTcvOTgxQzA1NThFQUQ4MTFFQ0JDN0VFMDE1QzRGOUFFMDIvNDk2OEFBRjA3 NkFFMTFGMEEzRUQ2MzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfRTQMEBGfRQDANBgkqhkiG9w0BAQsFAAOCAQEAKTUR Z40CxZSievbezmBiZKV+1up6dJuvtGc3PD/mkfndwBKrjKj3gHfNfk79NMX5QMsb 70cHsEuiXbKrFFiO3zp0rhXOy49rrvQaMlADU+ToOSYs6nbmFVSqdUpmeIckZj9M 5805pXjAGcIDN/A2ebMyJH7QMJNBX2OGnl834pjStoadQuTS87p342JQXHygdgTL QvI87dPOXYwWG0r4z0xKwH0/a/x1hnFZHird/v+xRdHwqThp4altc+FaZCfXYaZq cBt4IGmRiwCNczQ7NFlxz3TTEpHtC9og97gcW+8u4OFIzWKSKoxEEemI8Y4C+Q86 rAOAAQUN1TbraQtmYw== -----END CERTIFICATE-----Generated at Thu Aug 21 11:12:06 2025 by rpki-client