$ rpki-client -vvf rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa File: D661BF1821E111EB85E9C824C4F9AE02.roa (raw, json) Hash identifier: XkWTXb6PHytvZUY7EAUhHe4Q0yrK6oVBVW0wC1ENUcY= Subject key identifier: CF:57:67:6F:50:FA:DE:E1:86:2B:D6:B8:80:33:CF:2F:51:64:68:76 Certificate issuer: /CN=A919F207/serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Certificate serial: 08C4 Authority key identifier: E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa Signing time: Thu 28 Aug 2025 21:12:20 +0000 ROA not before: Thu 28 Aug 2025 21:12:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.153.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2244 (0x8c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F207, serialNumber=E73A79440444FE34C310F784894C4AB21EACAA04 Validity Not Before: Aug 28 21:12:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0c634-bb75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:ec:72:d2:c6:39:88:20:22:cd:2a:4e:49: f6:42:18:44:9e:7e:4b:a6:32:bb:f1:e1:fe:9a:e0: b9:9d:27:54:c0:60:43:33:d5:a0:d1:12:61:09:84: 67:4a:51:bd:ee:66:51:88:8a:79:f3:fc:e0:64:b9: 91:e3:08:2a:7c:83:e8:a1:85:83:bc:4a:b5:19:ad: 91:44:b0:68:7f:d7:4e:2e:cc:70:88:c9:7e:73:c2: dd:ce:54:09:c3:5c:5f:b3:fe:3f:ef:53:d7:67:2c: 4b:27:27:3d:e2:af:cb:4b:8f:82:dd:92:31:2a:a6: 95:7e:15:a5:b8:56:5b:47:66:f8:21:1d:5e:3f:57: 1d:4f:cf:68:51:38:fa:06:2e:87:d2:2c:4c:27:49: 29:aa:fe:d3:9c:65:b4:c4:37:e5:06:23:2d:7d:65: c1:60:8f:ca:6d:e8:bb:f0:df:70:5e:7c:dc:c9:d7: b4:7a:c5:2f:a0:d1:29:e9:8b:7c:ba:9a:91:71:8b: fb:f8:d2:7b:53:98:a7:c0:67:65:b1:13:36:9b:37: 7e:98:1c:49:fc:91:f0:66:ef:b0:62:a5:2c:16:7e: c0:0f:84:dc:3a:64:84:67:7a:e7:2b:b4:06:c7:1f: 19:39:d4:21:70:d0:88:53:0c:da:4a:a7:86:f6:44: 01:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:57:67:6F:50:FA:DE:E1:86:2B:D6:B8:80:33:CF:2F:51:64:68:76 X509v3 Authority Key Identifier: keyid:E7:3A:79:44:04:44:FE:34:C3:10:F7:84:89:4C:4A:B2:1E:AC:AA:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/5zp5RARE_jTDEPeEiUxKsh6sqgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zp5RARE_jTDEPeEiUxKsh6sqgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F207/12F2CC0AC26111EA986EEF41C4F9AE02/D661BF1821E111EB85E9C824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.36.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:b6:85:06:e3:4c:88:14:35:93:2c:cc:36:57:59:75:0a:6d: 89:31:b1:65:5c:32:d0:67:e4:63:86:76:f4:c1:9a:39:2f:fa: 7e:99:34:65:fa:ce:82:40:9b:3c:b1:55:81:23:0e:7b:8d:58: 5a:b0:56:39:b2:c2:49:5c:70:8b:3a:cf:68:4b:d7:dd:ab:3d: 1d:27:8a:66:4a:ff:01:f8:1b:e6:05:28:7a:14:74:7b:39:c4: 41:46:ec:4a:5b:b2:69:e5:18:c1:b0:5e:ec:d5:1e:62:cc:b6: 10:30:3f:fc:5c:2d:38:07:ac:d5:25:ed:24:71:a7:5d:a1:f2: 88:a2:77:ff:1d:47:c0:1b:26:70:d1:ae:15:52:5b:89:db:a7: 3a:42:13:7a:2b:1f:8f:29:33:18:a7:03:3d:22:38:f6:8f:28: 36:e8:16:54:40:ba:f6:5d:ab:00:f6:3b:f4:b2:7c:3e:a2:19: 76:99:4f:3b:77:35:b7:8b:b3:b5:66:d9:11:c5:ea:01:8b:4a: 1f:41:38:9e:83:6e:04:4a:40:45:38:b5:10:94:1f:58:53:97: 62:83:1c:db:a7:04:3d:78:4e:3a:be:80:f8:65:e5:98:9e:e4: ea:06:98:95:ed:dc:c4:fc:a3:4e:10:c5:23:cf:a4:c9:a2:8d: 04:65:46:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYyMDcxMTAvBgNVBAUTKEU3M0E3OTQ0MDQ0NEZFMzRDMzEwRjc4NDg5NEM0QUIy MUVBQ0FBMDQwHhcNMjUwODI4MjExMjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwYzYzNC1iYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHzsctLGOYggIs0qTkn2QhhEnn5LpjK78eH+muC5nSdUwGBDM9Wg0RJhCYRn SlG97mZRiIp58/zgZLmR4wgqfIPooYWDvEq1Ga2RRLBof9dOLsxwiMl+c8LdzlQJ w1xfs/4/71PXZyxLJyc94q/LS4+C3ZIxKqaVfhWluFZbR2b4IR1eP1cdT89oUTj6 Bi6H0ixMJ0kpqv7TnGW0xDflBiMtfWXBYI/Kbei78N9wXnzcyde0esUvoNEp6Yt8 upqRcYv7+NJ7U5inwGdlsRM2mzd+mBxJ/JHwZu+wYqUsFn7AD4TcOmSEZ3rnK7QG xx8ZOdQhcNCIUwzaSqeG9kQBQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM9XZ29Q +t7hhivWuIAzzy9RZGh2MB8GA1UdIwQYMBaAFOc6eUQERP40wxD3hIlMSrIerKoE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjIwNy8xMkYyQ0MwQUMy NjExMUVBOTg2RUVGNDFDNEY5QUUwMi81enA1UkFSRV9qVERFUGVFaVV4S3NoNnNx Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6cDVSQVJFX2pUREVQZUVpVXhLc2g2c3FnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYyMDcvMTJGMkNDMEFDMjYxMTFFQTk4NkVFRjQxQzRGOUFFMDIvRDY2MUJGMTgy MUUxMTFFQjg1RTlDODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmSQwDQYJKoZIhvcNAQELBQADggEBAEy2hQbjTIgUNZMs zDZXWXUKbYkxsWVcMtBn5GOGdvTBmjkv+n6ZNGX6zoJAmzyxVYEjDnuNWFqwVjmy wklccIs6z2hL192rPR0nimZK/wH4G+YFKHoUdHs5xEFG7EpbsmnlGMGwXuzVHmLM thAwP/xcLTgHrNUl7SRxp12h8oiid/8dR8AbJnDRrhVSW4nbpzpCE3orH48pMxin Az0iOPaPKDboFlRAuvZdqwD2O/SyfD6iGXaZTzt3NbeLs7Vm2RHF6gGLSh9BOJ6D bgRKQEU4tRCUH1hTl2KDHNunBD14Tjq+gPhl5Zie5OoGmJXt3MT8o04QxSPPpMmi jQRlRrA= -----END CERTIFICATE-----Generated at Sun Sep 7 14:54:06 2025 by rpki-client