$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa File: 221A3064480411F0A14D5A83C4F9AE02.roa (raw, json) Hash identifier: ATF/fdwZLaYvPHUpDvAt6YQCavrO94OcrrVt0+AB3Lc= Subject key identifier: E3:AE:BB:99:C3:28:8E:2D:8B:7D:86:81:24:0C:3A:C9:68:46:22:F5 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 019B Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa Signing time: Fri 13 Jun 2025 03:13:55 +0000 ROA not before: Fri 13 Jun 2025 03:13:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152700 IP address blocks: 103.120.12.0/24 maxlen: 24 103.120.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D, serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Jun 13 03:13:55 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=684b9772-138b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:b8:75:66:a1:68:b1:ee:75:30:5a:38:eb: ee:ae:c3:ba:92:c1:af:04:9c:cf:32:56:bb:18:84: b1:4f:ac:d6:20:5c:a1:5b:79:06:8c:ed:c0:59:0b: b2:9e:14:37:4f:95:63:8a:ff:9a:d4:12:32:8c:9c: f4:77:6c:ab:45:b6:7d:f5:f8:1b:0a:61:9b:02:6a: d0:1b:c0:5d:ae:dd:48:57:69:76:b4:26:30:43:84: 02:03:58:3d:9f:5e:07:59:f4:73:d4:ab:f4:83:4e: 90:44:61:58:85:f5:bb:d0:52:5a:23:24:bc:6e:81: 16:c4:95:6d:27:dc:25:45:75:cf:7d:d8:68:13:5d: b7:a3:27:61:5d:19:d1:d6:fc:7f:2b:84:b4:99:89: c9:de:90:7c:8d:ba:7c:eb:c1:79:ff:68:a4:42:c7: c9:00:9e:fe:2e:e1:33:7d:15:6c:6a:93:33:88:3a: 20:61:df:5d:b3:f3:95:80:11:00:de:10:46:e4:bb: 51:99:07:45:0c:80:75:fc:b7:82:15:08:51:d9:a4: 97:89:98:bc:5e:6e:41:7e:06:e8:70:78:35:77:cc: 37:d7:2c:69:c9:9e:53:bd:b5:01:c4:72:e0:cc:9f: e1:c6:cf:10:21:a8:62:79:d4:e0:ff:b3:1c:67:04: 85:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AE:BB:99:C3:28:8E:2D:8B:7D:86:81:24:0C:3A:C9:68:46:22:F5 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/221A3064480411F0A14D5A83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.12.0/24 103.120.15.0/24 Signature Algorithm: sha256WithRSAEncryption 98:bb:a8:36:96:b1:c1:4a:de:ec:56:18:d1:f8:b6:6e:4a:28: 6e:c7:e5:ad:55:54:ad:f6:8e:c6:f1:09:be:bc:8b:5c:00:27: 3b:b4:c2:90:67:2d:2b:c3:ff:e8:a6:a5:75:a9:9e:60:5f:ef: 2f:0f:25:3e:21:e6:bc:e1:b6:8f:47:9e:c9:29:c0:02:9d:07: 6a:e6:5a:48:df:bf:b0:9b:69:4d:fa:d2:3e:82:67:68:b6:cb: 1e:4c:78:a8:b5:0e:1c:5e:ca:bb:7a:e5:71:66:d4:2e:c2:ec: d5:3b:e8:72:12:cb:58:9a:5c:1f:f2:34:ea:8d:c9:c7:f1:f5: f5:b2:0b:d5:4f:6e:c3:c3:5d:5c:d1:d7:72:6c:cf:df:55:33: a3:e2:2c:7e:9d:64:75:aa:3c:38:86:01:9e:34:75:af:ae:af: aa:bd:18:b5:81:0c:b8:d4:0f:b7:01:7b:a0:2c:26:31:c9:3a: 3f:1f:31:2b:6d:a3:f1:b9:3e:0b:7a:3c:af:b1:b4:5f:a0:a5: 0a:72:b7:88:40:4a:f4:d6:4d:cf:f5:b8:43:93:27:10:e6:01: e5:9f:bb:6c:b4:7d:54:54:71:71:f9:66:25:ab:96:12:05:4c: a9:fc:c0:d9:52:a6:2e:56:f8:f8:6b:c6:26:97:73:74:d0:20: 0b:b4:a5:b1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjUwNjEzMDMxMzU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiOTc3Mi0xMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ+4dWahaLHudTBaOOvursO6ksGvBJzPMla7GISxT6zWIFyhW3kGjO3AWQuy nhQ3T5Vjiv+a1BIyjJz0d2yrRbZ99fgbCmGbAmrQG8Bdrt1IV2l2tCYwQ4QCA1g9 n14HWfRz1Kv0g06QRGFYhfW70FJaIyS8boEWxJVtJ9wlRXXPfdhoE123oydhXRnR 1vx/K4S0mYnJ3pB8jbp868F5/2ikQsfJAJ7+LuEzfRVsapMziDogYd9ds/OVgBEA 3hBG5LtRmQdFDIB1/LeCFQhR2aSXiZi8Xm5BfgbocHg1d8w31yxpyZ5TvbUBxHLg zJ/hxs8QIahiedTg/7McZwSFtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOOuu5nD KI4ti32GgSQMOsloRiL1MB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvMjIxQTMwNjQ0 ODA0MTFGMEExNEQ1QTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneAwDBABneA8wDQYJKoZIhvcNAQELBQADggEBAJi7qDaW scFK3uxWGNH4tm5KKG7H5a1VVK32jsbxCb68i1wAJzu0wpBnLSvD/+impXWpnmBf 7y8PJT4h5rzhto9HnskpwAKdB2rmWkjfv7CbaU360j6CZ2i2yx5MeKi1Dhxeyrt6 5XFm1C7C7NU76HISy1iaXB/yNOqNycfx9fWyC9VPbsPDXVzR13Jsz99VM6PiLH6d ZHWqPDiGAZ40da+ur6q9GLWBDLjUD7cBe6AsJjHJOj8fMStto/G5Pgt6PK+xtF+g pQpyt4hASvTWTc/1uEOTJxDmAeWfu2y0fVRUcXH5ZiWrlhIFTKn8wNlSpi5W+Phr xiaXc3TQIAu0pbE= -----END CERTIFICATE-----Generated at Sun Jun 15 08:31:44 2025 by rpki-client