$ rpki-client -vvf rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/55FE0314581811F09A0AB17CC4F9AE02.roa File: 55FE0314581811F09A0AB17CC4F9AE02.roa (raw, json) Hash identifier: 1MxhUZjfngEi+OA++KvmeLmcGAG4w9HUPichKkmdMk4= Subject key identifier: 75:EE:B4:DA:24:E4:AB:00:95:2B:97:43:38:17:21:50:0F:21:3D:0D Certificate issuer: /CN=A919C776/serialNumber=D7C4DE13686F4355853683915E541DED753AEB3A Certificate serial: 0103 Authority key identifier: D7:C4:DE:13:68:6F:43:55:85:36:83:91:5E:54:1D:ED:75:3A:EB:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/55FE0314581811F09A0AB17CC4F9AE02.roa Signing time: Sun 17 Aug 2025 17:02:37 +0000 ROA not before: Sun 17 Aug 2025 17:02:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152723 IP address blocks: 103.54.109.0/24 maxlen: 24 2401:d160::/32 maxlen: 32 2401:d160:1000::/36 maxlen: 36 2401:d160:2000::/36 maxlen: 36 2401:d160:a000::/36 maxlen: 36 2401:d160:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.crl rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C776, serialNumber=D7C4DE13686F4355853683915E541DED753AEB3A Validity Not Before: Aug 17 17:02:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68a20b2c-4f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dc:3a:49:10:73:e8:22:c3:c5:16:b7:a7:dd: 03:74:2f:d2:b3:6f:05:72:06:6c:08:2f:56:2e:98: d1:0b:bb:60:f1:a7:59:7f:f0:59:4c:db:62:2e:3f: 99:67:8d:cd:10:8d:49:0e:06:44:81:c9:6a:f9:3c: a1:13:cb:5d:90:25:ab:1f:77:d5:d0:b2:48:bf:c0: d9:47:c3:ba:49:68:08:7a:05:55:2c:cc:92:9d:ab: 4a:c7:f6:b0:69:bc:aa:90:a1:5c:51:40:63:4f:86: 38:26:dc:5d:5f:ce:e4:2c:c8:df:32:4e:5a:7d:c1: fa:02:9b:fb:5b:e9:92:e1:63:51:c1:12:7a:38:8f: 27:17:36:0f:bd:64:02:d7:2e:1a:25:ed:39:bf:77: a1:18:41:80:bd:b0:d2:c8:25:bc:6a:b4:16:39:c7: 36:42:7b:e7:f7:4e:39:6b:64:31:98:ff:ae:88:80: 75:33:1a:50:84:75:44:d4:04:83:91:88:1e:3a:ae: 24:34:5a:af:ae:39:e6:26:b7:8e:05:bf:03:40:4f: 56:b5:1d:ca:49:7b:fd:48:6d:4b:df:7b:98:40:a0: 1e:22:9e:05:fd:0b:19:f7:4c:2d:5d:ea:e1:04:ab: a6:e6:7e:cf:44:eb:a2:32:f9:c5:90:18:db:cc:70: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EE:B4:DA:24:E4:AB:00:95:2B:97:43:38:17:21:50:0F:21:3D:0D X509v3 Authority Key Identifier: keyid:D7:C4:DE:13:68:6F:43:55:85:36:83:91:5E:54:1D:ED:75:3A:EB:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/55FE0314581811F09A0AB17CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.109.0/24 IPv6: 2401:d160::/32 Signature Algorithm: sha256WithRSAEncryption 21:32:c3:4c:a5:f4:49:59:08:f5:17:df:aa:e4:82:dc:4c:53: 6d:db:53:d4:c3:d7:a1:9f:d3:56:03:07:47:b5:5b:a5:bc:09: fb:bc:17:dd:a9:ea:ee:7a:2c:d4:44:33:7e:b0:3c:b5:eb:a6: 3c:9d:a7:e0:c7:93:77:44:81:6a:d8:c4:72:f0:2d:98:a5:d9: 57:bd:d2:79:cf:ad:c1:7a:bb:3b:29:d2:3d:8e:d2:ee:14:53: a8:b2:65:25:b4:99:25:b7:ba:c0:8c:e0:f3:2f:e4:1b:07:5e: d5:64:50:6d:65:c5:21:47:84:19:c3:5e:be:30:94:a0:b7:6f: 06:81:4a:88:c1:ba:7d:98:50:72:ba:56:06:b7:ef:ff:e0:52: db:95:e9:f2:36:88:eb:d5:1e:d4:69:de:d9:43:a1:39:b9:9b: 58:17:b4:cc:0d:2d:4c:72:3c:3e:10:49:f6:b0:d2:9d:83:7e: 76:47:bd:12:37:98:d8:5d:03:ca:fe:fa:41:60:d9:8a:f8:85: bc:ca:7a:40:72:33:df:0b:fd:60:6f:15:75:2d:55:4b:62:17: 72:82:43:a4:aa:2e:63:bd:db:0b:f4:c5:69:53:a3:f0:90:89: 85:1f:3b:48:23:31:38:40:fe:af:d1:f5:c1:21:4e:2b:cd:43: 96:c8:ee:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3NzYxMTAvBgNVBAUTKEQ3QzRERTEzNjg2RjQzNTU4NTM2ODM5MTVFNTQxREVE NzUzQUVCM0EwHhcNMjUwODE3MTcwMjM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEyMGIyYy00ZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntw6SRBz6CLDxRa3p90DdC/Ss28FcgZsCC9WLpjRC7tg8adZf/BZTNtiLj+Z Z43NEI1JDgZEgclq+TyhE8tdkCWrH3fV0LJIv8DZR8O6SWgIegVVLMySnatKx/aw abyqkKFcUUBjT4Y4JtxdX87kLMjfMk5afcH6Apv7W+mS4WNRwRJ6OI8nFzYPvWQC 1y4aJe05v3ehGEGAvbDSyCW8arQWOcc2Qnvn9045a2QxmP+uiIB1MxpQhHVE1ASD kYgeOq4kNFqvrjnmJreOBb8DQE9WtR3KSXv9SG1L33uYQKAeIp4F/QsZ90wtXerh BKum5n7PROuiMvnFkBjbzHC1vwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHXutNok 5KsAlSuXQzgXIVAPIT0NMB8GA1UdIwQYMBaAFNfE3hNob0NVhTaDkV5UHe11Ous6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3Ni85Mjk3QzQ1MjA4 NkIxMUVGODI2RDNCMTRDNEY5QUUwMi8xOFRlRTJodlExV0ZOb09SWGxRZDdYVTY2 em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE4VGVFMmh2UTFXRk5vT1JYbFFkN1hVNjZ6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM3NzYvOTI5N0M0NTIwODZCMTFFRjgyNkQzQjE0QzRGOUFFMDIvNTVGRTAzMTQ1 ODE4MTFGMDlBMEFCMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnNm0wDQQCAAIwBwMFACQB0WAwDQYJKoZIhvcNAQELBQAD ggEBACEyw0yl9ElZCPUX36rkgtxMU23bU9TD16Gf01YDB0e1W6W8Cfu8F92p6u56 LNREM36wPLXrpjydp+DHk3dEgWrYxHLwLZil2Ve90nnPrcF6uzsp0j2O0u4UU6iy ZSW0mSW3usCM4PMv5BsHXtVkUG1lxSFHhBnDXr4wlKC3bwaBSojBun2YUHK6Vga3 7//gUtuV6fI2iOvVHtRp3tlDoTm5m1gXtMwNLUxyPD4QSfaw0p2DfnZHvRI3mNhd A8r++kFg2Yr4hbzKekByM98L/WBvFXUtVUtiF3KCQ6SqLmO92wv0xWlTo/CQiYUf O0gjMThA/q/R9cEhTivNQ5bI7sw= -----END CERTIFICATE-----Generated at Sat Aug 23 00:57:13 2025 by rpki-client