$ rpki-client -vvf rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/6523917E508911F0A97F9A28C4F9AE02.roa File: 6523917E508911F0A97F9A28C4F9AE02.roa (raw, json) Hash identifier: jE/gERhg7Q/ZBmdgP299kcHysh2HoFhaGOzo1pjoX3Y= Subject key identifier: 9A:32:AD:AA:08:53:43:93:48:49:8B:D0:C2:48:EE:E2:AF:AF:B8:CD Certificate issuer: /CN=A918F8B1/serialNumber=B5B3FC3E760877EF4F8D8E843BDD68CE0F405530 Certificate serial: 0E31 Authority key identifier: B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/6523917E508911F0A97F9A28C4F9AE02.roa Signing time: Mon 01 Sep 2025 05:04:30 +0000 ROA not before: Mon 01 Sep 2025 05:04:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138624 IP address blocks: 103.134.225.0/24 maxlen: 24 2001:df7:d500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3633 (0xe31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F8B1, serialNumber=B5B3FC3E760877EF4F8D8E843BDD68CE0F405530 Validity Not Before: Sep 1 05:04:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68b5295d-32ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:17:67:60:75:00:3c:6d:ac:9a:99:a3:7f:51: 51:b8:71:83:0e:1d:db:42:66:60:43:8d:33:7c:4d: 92:54:2d:0c:f1:69:43:e3:e5:0e:b2:c1:7c:77:27: 13:6f:df:8a:8c:1b:35:45:d5:a1:bc:7f:ec:e7:a4: c9:21:e6:d1:49:50:8f:56:26:66:a3:8a:0f:6a:58: bb:01:e0:90:0c:d8:47:a1:60:6c:b8:74:6e:ee:b6: 45:9c:ab:a2:36:2e:ee:32:76:aa:20:a1:d6:20:d5: 8a:36:15:62:01:83:fc:f6:85:f9:65:ef:dd:02:a5: 1e:44:5b:a3:2d:be:72:d3:6b:a1:58:d2:28:c1:38: 21:47:93:d5:7e:dd:24:48:59:f2:3d:ca:70:f6:0c: 81:a1:ee:60:71:67:c4:47:5e:27:c5:a3:5c:95:9c: 86:16:b6:15:95:27:b8:dd:32:c2:ea:20:6d:8b:8a: 0d:17:d8:0b:50:c1:4a:bf:08:e5:d3:92:06:db:f9: 00:24:fa:89:b1:ec:a3:73:71:38:ac:d3:ac:0c:d7: ff:2b:30:93:41:6d:7a:07:6e:d9:31:39:87:d4:b8: f5:60:e2:c0:ed:b4:6d:6b:f2:07:7b:12:02:9d:fd: a9:ae:da:65:50:ee:c3:8b:a5:ab:77:b6:10:9d:13: ca:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:32:AD:AA:08:53:43:93:48:49:8B:D0:C2:48:EE:E2:AF:AF:B8:CD X509v3 Authority Key Identifier: keyid:B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/6523917E508911F0A97F9A28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.225.0/24 IPv6: 2001:df7:d500::/48 Signature Algorithm: sha256WithRSAEncryption 3e:16:20:fc:33:e3:b8:86:2e:1e:c2:a0:93:5f:de:4a:95:3a: 55:fc:5f:76:4c:0b:18:32:51:92:de:e9:b6:6d:9a:d8:03:ac: a6:d4:9a:8e:5f:bd:09:10:c2:ce:4f:9c:81:6b:04:2f:13:64: 41:30:16:04:cc:af:e8:d4:f4:31:62:a1:e8:09:b6:d4:91:bd: ed:b3:19:32:56:a4:25:68:ac:c6:3e:e4:ca:11:b1:ca:6f:af: 13:22:f0:70:80:83:24:76:80:5b:7d:c7:cc:34:e4:aa:54:e3: 40:ab:96:43:cd:73:62:d3:0a:75:5a:6d:a9:e4:58:85:f9:df: 90:6d:49:d5:e3:34:a3:05:a1:75:a1:1f:9f:59:c1:66:d2:8f: 09:75:c5:56:6a:0b:50:9c:a1:1f:d9:fa:19:83:12:2a:7b:7f: d5:56:7c:ba:e5:cc:bc:bb:e8:82:7d:a6:55:93:e5:3a:0c:f9: 4a:54:bf:74:21:2d:d6:12:9c:43:9b:13:05:59:32:81:05:ac: c2:c8:29:db:b1:db:01:e6:d0:1c:4e:ea:e2:24:32:2e:6c:89: 84:de:f8:24:fe:5c:a4:f1:df:67:3a:f9:b3:4e:c8:a2:a3:50: f1:39:4c:57:f2:04:25:7a:d2:5a:f1:4d:13:59:1b:bf:c5:64: e2:44:ed:55 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4QjExMTAvBgNVBAUTKEI1QjNGQzNFNzYwODc3RUY0RjhEOEU4NDNCREQ2OENF MEY0MDU1MzAwHhcNMjUwOTAxMDUwNDMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1Mjk1ZC0zMmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xdnYHUAPG2smpmjf1FRuHGDDh3bQmZgQ40zfE2SVC0M8WlD4+UOssF8dycT b9+KjBs1RdWhvH/s56TJIebRSVCPViZmo4oPali7AeCQDNhHoWBsuHRu7rZFnKui Ni7uMnaqIKHWINWKNhViAYP89oX5Ze/dAqUeRFujLb5y02uhWNIowTghR5PVft0k SFnyPcpw9gyBoe5gcWfER14nxaNclZyGFrYVlSe43TLC6iBti4oNF9gLUMFKvwjl 05IG2/kAJPqJseyjc3E4rNOsDNf/KzCTQW16B27ZMTmH1Lj1YOLA7bRta/IHexIC nf2prtplUO7Di6Wrd7YQnRPKDwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJoyraoI U0OTSEmL0MJI7uKvr7jNMB8GA1UdIwQYMBaAFLWz/D52CHfvT42OhDvdaM4PQFUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjhCMS83RDU0QTBDQUI1 ODYxMUU5QUE1RjRENjVDNEY5QUUwMi90YlA4UG5ZSWQtOVBqWTZFTzkxb3pnOUFW VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RiUDhQbllJZC05UGpZNkVPOTFvemc5QVZUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4QjEvN0Q1NEEwQ0FCNTg2MTFFOUFBNUY0RDY1QzRGOUFFMDIvNjUyMzkxN0U1 MDg5MTFGMEE5N0Y5QTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnhuEwDwQCAAIwCQMHACABDffVADANBgkqhkiG9w0BAQsF AAOCAQEAPhYg/DPjuIYuHsKgk1/eSpU6VfxfdkwLGDJRkt7ptm2a2AOsptSajl+9 CRDCzk+cgWsELxNkQTAWBMyv6NT0MWKh6Am21JG97bMZMlakJWisxj7kyhGxym+v EyLwcICDJHaAW33HzDTkqlTjQKuWQ81zYtMKdVptqeRYhfnfkG1J1eM0owWhdaEf n1nBZtKPCXXFVmoLUJyhH9n6GYMSKnt/1VZ8uuXMvLvogn2mVZPlOgz5SlS/dCEt 1hKcQ5sTBVkygQWswsgp27HbAebQHE7q4iQyLmyJhN74JP5cpPHfZzr5s07IoqNQ 8TlMV/IEJXrSWvFNE1kbv8Vk4kTtVQ== -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:45 2025 by rpki-client