$ rpki-client -vvf rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/0A88715AC2A711EAB8D9B426C4F9AE02.roa File: 0A88715AC2A711EAB8D9B426C4F9AE02.roa (raw, json) Hash identifier: 0NHrksBzZ1sw6KKMUlk4z1DIMariid2PsdJfHN0oQM8= Subject key identifier: C2:87:5A:70:49:75:35:F4:23:6D:F6:E6:6A:33:0E:7B:98:46:C6:A4 Certificate issuer: /CN=A919F207/serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Certificate serial: 08C7 Authority key identifier: E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/0A88715AC2A711EAB8D9B426C4F9AE02.roa Signing time: Thu 28 Aug 2025 21:12:22 +0000 ROA not before: Thu 28 Aug 2025 21:12:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138538 IP address blocks: 103.153.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F207, serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Validity Not Before: Aug 28 21:12:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0c636-000d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:53:41:07:50:3d:7a:69:68:5b:17:29:a0:15: 71:95:13:1e:80:a3:72:e4:22:52:bd:ae:ef:9f:28: c3:00:26:66:35:56:a7:20:af:d6:2b:d4:94:9d:46: 23:64:bd:f1:b4:67:66:52:c3:f6:1f:ca:53:8a:08: 46:ab:93:02:67:a9:c3:9d:ff:3d:dc:69:ca:41:ef: 0a:dd:b8:f4:2c:27:51:c7:3d:00:22:96:81:f0:8c: 17:5e:2d:d7:30:ea:c6:a0:d9:c1:df:8a:28:52:f4: ad:68:1d:36:7d:a5:eb:d2:17:b2:9f:26:17:56:4c: c8:60:19:86:16:7c:a1:ed:24:e7:1a:a9:22:4d:9d: 94:73:f7:61:af:23:98:75:7a:ea:a6:41:13:e8:f3: d1:b6:8f:fb:b3:f6:cb:ef:7a:b7:27:e2:10:9a:37: 61:d0:2a:0f:cd:94:20:76:da:a9:50:46:5f:1d:93: 3b:02:84:50:7f:ff:33:47:94:a0:42:dd:4b:0c:fe: 9b:8e:b6:e9:16:60:4a:da:02:e7:8b:a0:49:5d:b8: 55:46:ac:41:d5:0c:08:e5:5a:9e:13:6b:e5:ff:e4: 71:c3:c3:4d:9b:fd:43:25:cf:c6:3f:15:f9:e8:ef: d8:81:e5:f7:aa:b0:6f:30:b2:49:d6:e6:70:0d:bd: 25:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:87:5A:70:49:75:35:F4:23:6D:F6:E6:6A:33:0E:7B:98:46:C6:A4 X509v3 Authority Key Identifier: keyid:E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/0A88715AC2A711EAB8D9B426C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.36.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:e0:d7:79:e8:6b:ed:16:a4:ae:01:a6:51:74:46:f2:aa:33: 83:09:10:e8:22:38:10:64:ea:48:a8:6f:52:48:ea:8f:e9:4c: 79:23:09:dd:af:2e:fc:4a:54:11:8b:5c:56:ca:6c:ea:ce:e6: 2c:42:ed:62:da:de:d2:5e:d2:52:bb:fd:16:52:67:00:8e:d6: 4b:3c:7d:d3:b6:8d:4a:30:c5:c4:2f:99:98:6e:d7:e9:69:51: 35:2a:e6:ff:69:f6:18:8f:12:7d:5e:d3:03:ab:b1:e5:97:5e: 90:3c:de:76:2d:ba:44:5d:43:06:65:68:5e:c4:1f:ce:91:79: 36:b7:c3:ea:99:60:b7:6c:01:4c:89:b4:5b:24:00:e2:ef:e7: fa:95:e4:39:4c:c5:7c:46:fb:41:fe:a1:e0:65:b8:3a:ee:50: c2:cc:da:ac:6b:20:40:64:16:5e:d7:dd:56:1f:5b:69:b8:2e: fa:67:96:56:7e:24:e5:84:f7:31:65:3b:58:83:e9:46:05:fe: b2:fb:2e:32:b7:09:61:46:b6:86:9a:cc:1b:56:cf:85:91:d0: 7d:45:bb:f3:65:92:c1:a3:50:e1:01:f1:21:dd:fe:e1:93:0c: e6:38:64:25:8d:81:b0:6a:01:6a:47:66:69:9e:24:92:f6:ec: e5:8d:ca:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYyMDcxMTAvBgNVBAUTKEU3M0E3OTQ0MDQ0NEZFMzRDMzEwRjc4NDg5NEM0QUIy MUVBQ0FBMDQwHhcNMjUwODI4MjExMjIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwYzYzNi0wMDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VNBB1A9emloWxcpoBVxlRMegKNy5CJSva7vnyjDACZmNVanIK/WK9SUnUYj ZL3xtGdmUsP2H8pTighGq5MCZ6nDnf893GnKQe8K3bj0LCdRxz0AIpaB8IwXXi3X MOrGoNnB34ooUvStaB02faXr0heynyYXVkzIYBmGFnyh7STnGqkiTZ2Uc/dhryOY dXrqpkET6PPRto/7s/bL73q3J+IQmjdh0CoPzZQgdtqpUEZfHZM7AoRQf/8zR5Sg Qt1LDP6bjrbpFmBK2gLni6BJXbhVRqxB1QwI5VqeE2vl/+Rxw8NNm/1DJc/GPxX5 6O/YgeX3qrBvMLJJ1uZwDb0lcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMKHWnBJ dTX0I2325mozDnuYRsakMB8GA1UdIwQYMBaAFOc6eUQERP40wxD3hIlMSrIerKoE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjIwNy8xMkYyQ0MwQUMy NjExMUVBOTg2RUVGNDFDNEY5QUUwMi81enA1UkFSRV9qVERFUGVFaVV4S3NoNnNx Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6cDVSQVJFX2pUREVQZUVpVXhLc2g2c3FnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYyMDcvMTJGMkNDMEFDMjYxMTFFQTk4NkVFRjQxQzRGOUFFMDIvMEE4ODcxNUFD MkE3MTFFQUI4RDlCNDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmSQwDQYJKoZIhvcNAQELBQADggEBAErg13noa+0WpK4B plF0RvKqM4MJEOgiOBBk6kiob1JI6o/pTHkjCd2vLvxKVBGLXFbKbOrO5ixC7WLa 3tJe0lK7/RZSZwCO1ks8fdO2jUowxcQvmZhu1+lpUTUq5v9p9hiPEn1e0wOrseWX XpA83nYtukRdQwZlaF7EH86ReTa3w+qZYLdsAUyJtFskAOLv5/qV5DlMxXxG+0H+ oeBluDruUMLM2qxrIEBkFl7X3VYfW2m4LvpnllZ+JOWE9zFlO1iD6UYF/rL7LjK3 CWFGtoaazBtWz4WR0H1Fu/NlksGjUOEB8SHd/uGTDOY4ZCWNgbBqAWpHZmmeJJL2 7OWNyi4= -----END CERTIFICATE-----Generated at Mon Sep 8 11:23:24 2025 by rpki-client