$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa File: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (raw, json) Hash identifier: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44= Subject key identifier: 44:1D:0D:98:15:B2:A4:92:A2:17:D4:F7:75:52:98:A3:65:95:E6:C4 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 05 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa Signing time: Mon 18 Aug 2025 05:38:18 +0000 ROA not before: Mon 18 Aug 2025 05:38:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55581 IP address blocks: 103.55.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 02:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Aug 18 05:38:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a2bc49-482b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3c:56:ec:85:f3:38:3a:a1:4b:74:c7:da:01: 29:bb:c8:86:27:74:25:0e:59:5f:35:f8:7e:5f:2e: 8f:14:89:80:b2:63:25:9d:09:17:ec:eb:90:43:9b: 9d:16:72:88:41:e5:80:0d:01:d7:ef:25:55:61:7d: ff:4a:9f:6e:65:2b:74:92:b1:12:9d:31:73:0d:51: 1d:b2:bc:bf:fa:86:a8:2c:4a:f5:cc:98:e3:77:24: e1:40:e5:c2:17:11:4e:bc:05:1b:1c:d6:29:de:de: 2e:e6:a4:8a:b1:9c:9d:a4:28:ce:ff:64:0e:c8:87: ab:80:b2:48:65:3e:6f:1c:0b:d0:a0:98:6d:c3:14: d5:6c:75:19:63:4d:f6:f9:00:7d:18:14:b7:a2:a0: 13:ab:6a:d1:e4:8f:6c:8e:db:9e:98:5d:8b:c3:1b: d7:16:86:16:20:61:88:58:d9:ca:f6:43:62:13:d8: 89:9b:cb:28:c8:bc:2b:3d:86:83:1a:05:94:23:cb: bc:25:18:ce:5c:20:06:fd:84:98:f6:5e:c9:bc:03: 8a:f4:e5:32:ef:5c:5b:63:85:fb:5e:a3:a6:d2:ae: 47:ff:28:1c:82:86:11:f5:b6:77:db:3d:66:7b:cc: 8f:81:2e:3d:1b:19:f1:ba:7a:f4:fb:b3:82:55:42: 49:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1D:0D:98:15:B2:A4:92:A2:17:D4:F7:75:52:98:A3:65:95:E6:C4 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.132.0/24 Signature Algorithm: sha256WithRSAEncryption 53:b7:52:4e:59:38:88:58:02:20:d4:ba:e3:52:8b:ec:ba:5a: 17:4e:fd:2f:ec:22:fa:bc:0f:20:ed:8a:ce:a8:ae:18:b9:31: 05:e0:fe:e4:bb:dd:f0:8c:cc:77:c8:82:81:11:95:fd:ad:10: 5d:9e:4f:0a:54:a0:e0:80:f0:09:f1:1e:c8:b1:bc:2c:43:34: 03:bf:fe:e2:dc:82:5b:7c:8a:b2:bd:12:bc:9b:b2:39:e8:f5: fc:47:ee:1e:0b:84:bd:65:e5:5b:84:42:85:b6:52:8b:78:f3: f9:2b:99:62:91:fe:38:91:17:9d:b8:35:dc:ac:aa:75:ec:9d: 39:a7:88:f1:aa:5e:a0:94:b9:16:4e:d8:14:a1:4d:25:fa:fa: 26:f3:91:29:72:a7:e6:39:35:b8:15:94:37:b1:16:1e:3b:d8: 14:e6:25:3d:b9:dc:4c:6f:9c:8e:64:fd:a0:88:9c:4c:78:3b: a5:06:5d:37:23:53:ba:6d:20:c3:55:12:99:41:14:55:4f:be: 47:2d:e2:78:52:1a:3b:47:b3:e8:b4:28:ef:35:b5:1f:4e:db: 72:eb:61:10:57:d4:20:27:98:7a:b5:1d:bc:03:63:9a:fd:a7: 46:fa:60:74:0f:dd:39:b1:aa:c5:21:ef:42:f5:7b:cf:d7:31: 42:54:9c:56 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTA4MTgwNTM4MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTJiYzQ5LTQ4MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0PFbshfM4OqFLdMfaASm7yIYndCUOWV81+H5fLo8UiYCyYyWdCRfs65BDm50W cohB5YANAdfvJVVhff9Kn25lK3SSsRKdMXMNUR2yvL/6hqgsSvXMmON3JOFA5cIX EU68BRsc1ine3i7mpIqxnJ2kKM7/ZA7Ih6uAskhlPm8cC9CgmG3DFNVsdRljTfb5 AH0YFLeioBOratHkj2yO256YXYvDG9cWhhYgYYhY2cr2Q2IT2ImbyyjIvCs9hoMa BZQjy7wlGM5cIAb9hJj2Xsm8A4r05TLvXFtjhfteo6bSrkf/KByChhH1tnfbPWZ7 zI+BLj0bGfG6evT7s4JVQkmNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURB0NmBWy pJKiF9T3dVKYo2WV5sQwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU4OC9CRjdENUU3NjdCRjMxMUYwQTA1RkFEODJDNEY5QUUwMi84QUY3M0M3RTdC RjUxMUYwQkVCRjgzMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGc3hDANBgkqhkiG9w0BAQsFAAOCAQEAU7dSTlk4iFgCINS6 41KL7LpaF079L+wi+rwPIO2KzqiuGLkxBeD+5Lvd8IzMd8iCgRGV/a0QXZ5PClSg 4IDwCfEeyLG8LEM0A7/+4tyCW3yKsr0SvJuyOej1/EfuHguEvWXlW4RChbZSi3jz +SuZYpH+OJEXnbg13KyqdeydOaeI8apeoJS5Fk7YFKFNJfr6JvORKXKn5jk1uBWU N7EWHjvYFOYlPbncTG+cjmT9oIicTHg7pQZdNyNTum0gw1USmUEUVU++Ry3ieFIa O0ez6LQo7zW1H07bcuthEFfUICeYerUdvANjmv2nRvpgdA/dObGqxSHvQvV7z9cx QlScVg== -----END CERTIFICATE-----Generated at Fri Aug 22 18:38:51 2025 by rpki-client