$ rpki-client -vvf rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa File: 6B7E8FC670DE11EC8B944928C4F9AE02.roa (raw, json) Hash identifier: SL8FzgT9OVj8sdsnB4xU4ICjAq4jGd5hRYBkcZgW2/Q= Subject key identifier: CC:F1:17:E3:77:5B:D0:D4:F0:44:BB:3D:22:24:F1:D5:89:67:81:D1 Certificate issuer: /CN=A9183DB7/serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Certificate serial: 0E20 Authority key identifier: E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:08:23 +0000 ROA not before: Tue 02 Sep 2025 18:08:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139470 IP address blocks: 103.141.214.0/24 maxlen: 24 103.141.215.0/24 maxlen: 24 2405:22c0::/32 maxlen: 32 2405:22c0::/36 maxlen: 36 2405:22c0:1000::/36 maxlen: 36 2405:22c0:2000::/36 maxlen: 36 2405:22c0:3000::/36 maxlen: 36 2405:22c0:4000::/36 maxlen: 36 2405:22c0:5000::/36 maxlen: 36 2405:22c0:6000::/36 maxlen: 36 2405:22c0:7000::/36 maxlen: 36 2405:22c0:8000::/36 maxlen: 36 2405:22c0:9000::/36 maxlen: 36 2405:22c0:a000::/36 maxlen: 36 2405:22c0:b000::/36 maxlen: 36 2405:22c0:c000::/36 maxlen: 36 2405:22c0:d000::/36 maxlen: 36 2405:22c0:e000::/36 maxlen: 36 2405:22c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 17:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183DB7, serialNumber=E518E94815C46D7D8E6FEF4EBC3D18DF0E21F836 Validity Not Before: Sep 2 18:08:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73297-0a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:f0:3d:82:75:31:48:3a:5e:4a:e9:31:8c: 45:09:f6:c7:18:ae:46:a4:2d:8e:0e:f2:f7:c5:ba: e7:c9:7d:a3:88:a4:79:04:64:02:96:d3:c9:03:96: 82:c7:47:cd:9c:0b:b5:98:a5:12:a4:ff:1d:e7:4d: 38:48:1f:49:44:52:e0:95:f0:83:24:08:b2:56:b5: a5:d8:19:f2:0c:69:b3:dc:45:79:49:3d:c3:c9:da: c4:5a:a4:87:ad:ae:dd:09:42:be:fa:4c:66:1f:d4: 8e:b5:e4:2c:82:fe:50:a2:b6:41:57:e2:f0:cf:62: bf:48:09:12:57:74:2e:45:e2:ba:9e:16:c2:c7:7a: ba:cd:9e:2c:a9:3b:71:b2:bb:10:b6:ba:35:18:fe: 9a:36:e1:5d:9b:c5:c1:32:99:0b:90:69:67:56:6b: aa:14:37:5f:56:2d:e1:75:7f:f5:f3:ad:fa:d9:5e: bc:1e:8f:60:48:63:57:d1:a1:d6:29:86:f9:2d:f9: 3a:0e:3c:2e:93:90:8a:f1:c6:5b:06:22:ae:38:c9: 39:0e:09:ab:3d:5b:f5:ab:4b:dd:5e:ee:e8:76:15: 39:3a:d2:2b:42:f0:e4:db:83:a9:0a:e1:0e:ae:2b: 8b:60:90:14:8c:88:27:d2:96:f5:09:01:33:97:a9: b8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F1:17:E3:77:5B:D0:D4:F0:44:BB:3D:22:24:F1:D5:89:67:81:D1 X509v3 Authority Key Identifier: keyid:E5:18:E9:48:15:C4:6D:7D:8E:6F:EF:4E:BC:3D:18:DF:0E:21:F8:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5RjpSBXEbX2Ob-9OvD0Y3w4h-DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183DB7/0F37599EB52111E98D8BAC52C4F9AE02/6B7E8FC670DE11EC8B944928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.214.0/23 IPv6: 2405:22c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:a2:de:c9:4b:57:17:64:bd:57:41:cd:f6:2b:1b:47:69:b1: ea:bd:db:ac:eb:4f:fb:d2:24:e5:4d:a3:25:58:74:10:2e:19: de:38:b8:b7:16:99:d6:86:aa:c6:19:e2:11:c8:b4:47:4b:03: 07:dc:41:bc:69:21:91:6a:83:b9:30:cb:75:16:80:3c:54:30: c0:59:d3:c5:26:97:a1:4f:c3:a9:89:84:78:a5:47:16:df:70: 5d:9e:38:56:57:3f:63:80:ea:af:00:62:b4:52:22:f5:94:0e: 2e:2d:17:b0:8e:54:77:d2:40:51:8d:df:db:6e:eb:c9:7f:3c: c1:a4:4d:e6:6f:31:ad:82:61:3a:a6:50:da:41:af:cb:10:d5: 47:6c:46:31:1d:0d:9c:54:8a:cd:a8:55:05:9b:96:c6:a9:b2: d2:03:4a:ae:d6:76:76:11:5b:a6:26:cf:c3:16:38:9e:e3:df: bd:08:60:87:4f:f6:35:e5:65:8c:87:4f:ab:58:9e:bb:e2:d6: 3b:de:f1:ad:3e:8f:d4:8a:80:7f:7d:89:29:21:ce:70:da:be: 01:1f:82:c7:4d:90:c7:7c:23:28:0d:fc:ba:fb:2b:30:08:89: 68:58:60:86:c4:70:ed:aa:5a:f4:15:64:4e:5a:3f:f9:77:6a: 00:33:14:88 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNEQjcxMTAvBgNVBAUTKEU1MThFOTQ4MTVDNDZEN0Q4RTZGRUY0RUJDM0QxOERG MEUyMUY4MzYwHhcNMjUwOTAyMTgwODIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MzI5Ny0wYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0DwPYJ1MUg6XkrpMYxFCfbHGK5GpC2ODvL3xbrnyX2jiKR5BGQCltPJA5aC x0fNnAu1mKUSpP8d5004SB9JRFLglfCDJAiyVrWl2BnyDGmz3EV5ST3DydrEWqSH ra7dCUK++kxmH9SOteQsgv5QorZBV+Lwz2K/SAkSV3QuReK6nhbCx3q6zZ4sqTtx srsQtro1GP6aNuFdm8XBMpkLkGlnVmuqFDdfVi3hdX/186362V68Ho9gSGNX0aHW KYb5Lfk6Djwuk5CK8cZbBiKuOMk5DgmrPVv1q0vdXu7odhU5OtIrQvDk24OpCuEO riuLYJAUjIgn0pb1CQEzl6m43wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMzxF+N3 W9DU8ES7PSIk8dWJZ4HRMB8GA1UdIwQYMBaAFOUY6UgVxG19jm/vTrw9GN8OIfg2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0RCNy8wRjM3NTk5RUI1 MjExMUU5OEQ4QkFDNTJDNEY5QUUwMi81UmpwU0JYRWJYMk9iLTlPdkQwWTN3NGgt RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVSanBTQlhFYlgyT2ItOU92RDBZM3c0aC1EWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNEQjcvMEYzNzU5OUVCNTIxMTFFOThEOEJBQzUyQzRGOUFFMDIvNkI3RThGQzY3 MERFMTFFQzhCOTQ0OTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjdYwDQQCAAIwBwMFACQFIsAwDQYJKoZIhvcNAQELBQAD ggEBAFei3slLVxdkvVdBzfYrG0dpseq926zrT/vSJOVNoyVYdBAuGd44uLcWmdaG qsYZ4hHItEdLAwfcQbxpIZFqg7kwy3UWgDxUMMBZ08Uml6FPw6mJhHilRxbfcF2e OFZXP2OA6q8AYrRSIvWUDi4tF7COVHfSQFGN39tu68l/PMGkTeZvMa2CYTqmUNpB r8sQ1UdsRjEdDZxUis2oVQWblsapstIDSq7WdnYRW6Ymz8MWOJ7j370IYIdP9jXl ZYyHT6tYnrvi1jve8a0+j9SKgH99iSkhznDavgEfgsdNkMd8IygN/Lr7KzAIiWhY YIbEcO2qWvQVZE5aP/l3agAzFIg= -----END CERTIFICATE-----Generated at Tue Sep 16 23:38:56 2025 by rpki-client