$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/A5A4E4866D3611F08FF30A86C4F9AE02.roa File: A5A4E4866D3611F08FF30A86C4F9AE02.roa (raw, json) Hash identifier: 9IEVEed/qQg7h6mrT8ekMyn0JnXizeeUHJOjRag0rxw= Subject key identifier: D8:0E:4C:25:D9:C7:5E:88:75:C1:85:5D:CA:84:27:4D:A6:37:A2:23 Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 013A Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/A5A4E4866D3611F08FF30A86C4F9AE02.roa Signing time: Wed 30 Jul 2025 23:22:49 +0000 ROA not before: Wed 30 Jul 2025 23:22:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137542 IP address blocks: 103.112.128.0/22 maxlen: 22 103.112.128.0/24 maxlen: 24 103.112.129.0/24 maxlen: 24 103.112.130.0/24 maxlen: 24 103.112.131.0/24 maxlen: 24 2402:a940::/32 maxlen: 32 2402:a940::/40 maxlen: 48 2402:a940:100::/40 maxlen: 48 2402:a940:200::/40 maxlen: 48 2402:a940:300::/40 maxlen: 48 2402:a940:400::/40 maxlen: 48 2402:a940:500::/40 maxlen: 48 2402:a940:600::/40 maxlen: 48 2402:a940:700::/40 maxlen: 48 2402:a940:800::/40 maxlen: 48 2402:a940:900::/40 maxlen: 48 2402:a940:a00::/40 maxlen: 48 2402:a940:b00::/40 maxlen: 48 2402:a940:c00::/40 maxlen: 48 2402:a940:d00::/40 maxlen: 48 2402:a940:e00::/40 maxlen: 48 2402:a940:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Jul 30 23:22:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=688aa948-e751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:8c:78:18:73:94:7d:59:f1:a9:73:93:da:5d: 40:a9:9b:df:98:3e:93:0d:0a:4c:d3:f3:56:31:4c: 7b:3e:d5:2e:dd:2a:d4:c7:d0:b2:b1:e1:b8:54:ac: 63:6c:33:dc:cd:43:e9:f8:bc:79:9b:51:65:af:2e: f8:e9:c4:df:dc:6e:29:97:bf:e9:47:58:73:a1:e9: 90:a5:69:99:fc:cc:fa:50:4a:42:5f:7f:21:f2:f8: 27:37:3c:2e:c0:4e:51:8c:f0:7b:db:30:5e:39:25: 2a:b0:35:ea:b2:47:0c:f8:22:f0:67:a1:78:2f:dd: 14:42:54:3f:5d:36:55:eb:06:71:2e:f0:94:52:73: 42:3b:75:93:7a:c0:1f:0d:8c:f7:bb:01:76:79:fb: 78:6b:d4:df:a5:fc:30:fc:59:b2:c2:47:b5:21:f5: 4b:6f:9a:53:5e:f9:33:fd:00:e6:81:8d:1e:26:96: b5:b2:b0:d2:49:8f:71:8b:31:3c:98:6e:72:17:53: cc:d9:e0:b9:35:f3:5d:36:c6:72:78:ca:97:41:73: b1:d5:b8:c0:62:1b:c3:16:68:1a:72:58:37:48:6e: 1a:23:3a:4d:89:ca:7d:c6:34:06:d5:b3:03:3d:03: 57:f7:c0:36:20:65:be:89:07:4d:99:c2:83:de:ce: 90:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0E:4C:25:D9:C7:5E:88:75:C1:85:5D:CA:84:27:4D:A6:37:A2:23 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/A5A4E4866D3611F08FF30A86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.128.0/22 IPv6: 2402:a940::/32 Signature Algorithm: sha256WithRSAEncryption 27:54:f0:43:2e:e7:49:55:3e:c2:cd:89:6a:4b:37:33:1c:25: be:6d:6f:18:8c:c5:c2:39:94:64:5e:ee:d5:85:6d:e0:0d:a4: 16:72:75:71:0d:88:95:18:d8:32:14:48:1b:39:3b:7e:51:43: 93:08:e8:91:0b:97:f6:10:0d:03:05:47:68:73:27:f1:94:4c: 94:a8:da:ef:bc:9c:52:98:8c:cb:eb:b3:e9:2e:50:40:09:3a: 03:bb:67:cf:53:c1:81:23:e3:c6:e3:1c:69:74:0f:bf:24:a2: d8:b7:4c:34:b0:6d:c8:f3:35:59:9e:75:d6:4d:c5:91:58:94: 2f:f4:cf:16:4c:ef:6a:54:53:f1:d8:0e:e9:e9:83:07:d2:0c: 40:df:4b:d4:0a:dc:4b:99:38:e8:bd:b8:7a:36:2e:b2:99:db: 29:13:20:18:e8:9c:64:48:d9:95:99:f7:05:b5:c8:2f:db:bd: 7f:e0:47:3a:a5:9c:68:bc:b1:c7:cc:d4:49:c3:5f:c7:21:e8: 75:91:60:46:5e:86:ad:3e:63:85:6f:39:f9:bd:66:99:57:99: 7d:79:e1:29:27:dc:1b:e7:90:ac:fe:2d:56:8e:65:3f:a7:1c: 08:5f:b8:48:7b:02:50:c6:64:7b:d0:a3:1d:63:5d:cf:57:23: 93:00:fb:35 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjUwNzMwMjMyMjQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhYTk0OC1lNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIx4GHOUfVnxqXOT2l1AqZvfmD6TDQpM0/NWMUx7PtUu3SrUx9CyseG4VKxj bDPczUPp+Lx5m1Flry746cTf3G4pl7/pR1hzoemQpWmZ/Mz6UEpCX38h8vgnNzwu wE5RjPB72zBeOSUqsDXqskcM+CLwZ6F4L90UQlQ/XTZV6wZxLvCUUnNCO3WTesAf DYz3uwF2eft4a9Tfpfww/Fmywke1IfVLb5pTXvkz/QDmgY0eJpa1srDSSY9xizE8 mG5yF1PM2eC5NfNdNsZyeMqXQXOx1bjAYhvDFmgaclg3SG4aIzpNicp9xjQG1bMD PQNX98A2IGW+iQdNmcKD3s6QtwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNgOTCXZ x16IdcGFXcqEJ02mN6IjMB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCRjQvRUE4NzE4NUM3MjFCMTFFOUJCNzQ4MTUwQzRGOUFFMDIvQTVBNEU0ODY2 RDM2MTFGMDhGRjMwQTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncIAwDQQCAAIwBwMFACQCqUAwDQYJKoZIhvcNAQELBQAD ggEBACdU8EMu50lVPsLNiWpLNzMcJb5tbxiMxcI5lGRe7tWFbeANpBZydXENiJUY 2DIUSBs5O35RQ5MI6JELl/YQDQMFR2hzJ/GUTJSo2u+8nFKYjMvrs+kuUEAJOgO7 Z89TwYEj48bjHGl0D78koti3TDSwbcjzNVmeddZNxZFYlC/0zxZM72pUU/HYDunp gwfSDEDfS9QK3EuZOOi9uHo2LrKZ2ykTIBjonGRI2ZWZ9wW1yC/bvX/gRzqlnGi8 scfM1EnDX8ch6HWRYEZehq0+Y4VvOfm9ZplXmX154Skn3BvnkKz+LVaOZT+nHAhf uEh7AlDGZHvQox1jXc9XI5MA+zU= -----END CERTIFICATE-----Generated at Mon Aug 11 02:05:07 2025 by rpki-client