$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/37B8851C654F11EFACFE1271C4F9AE02.roa File: 37B8851C654F11EFACFE1271C4F9AE02.roa (raw, json) Hash identifier: y+okfpFT9YQpp93U2rW8OrppiuNopYjPz1OoR+Qnj2I= Subject key identifier: A1:92:8F:AF:FA:8F:E4:F9:43:C2:A3:6A:AE:39:10:52:3E:66:69:E4 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2884 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/37B8851C654F11EFACFE1271C4F9AE02.roa Signing time: Sat 26 Jul 2025 15:54:04 +0000 ROA not before: Sat 26 Jul 2025 15:54:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14315 IP address blocks: 103.196.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10372 (0x2884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:54:03 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6884fa1b-c101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:2a:8e:e7:e8:83:d0:32:7f:4f:da:b0:1f: 86:60:af:e4:f1:d7:1f:db:c5:fc:41:29:2b:6a:f1: 9e:70:fb:2e:86:31:86:e5:31:10:96:7f:53:0c:45: 30:79:54:17:eb:d1:c9:13:ba:8c:a2:61:81:3f:42: 95:01:72:b4:a5:37:76:00:10:d7:16:94:e3:7c:fb: d3:81:cf:28:ac:15:d6:fa:94:75:e8:4f:21:3e:44: cb:71:88:48:fc:cb:3e:58:1d:b7:38:06:5f:8e:2e: 8c:f5:e0:68:dd:e2:a9:24:59:35:7d:5c:4c:9e:e7: 29:01:47:12:c7:93:f5:06:03:d5:8e:23:54:26:3b: 7c:81:0f:e9:fc:0d:7d:1d:02:ca:63:50:5b:d7:a3: 5b:3a:a7:17:3f:09:41:1c:2a:a3:59:f4:9f:a6:a6: 07:27:5c:a6:2c:55:25:72:ab:a9:19:5e:bb:96:c6: ac:8d:53:fc:e5:32:ad:8e:5d:45:ae:d9:83:58:75: fc:a2:16:7b:f3:53:74:8f:08:50:a4:49:c7:12:0b: 5f:51:67:7b:a3:83:9f:70:d7:54:8f:ee:22:b1:ee: 19:85:5b:0d:f7:1d:a9:02:56:65:b3:a3:27:a4:3a: 0d:22:b1:c7:93:a5:09:1d:36:4b:47:2c:91:6b:85: 84:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:92:8F:AF:FA:8F:E4:F9:43:C2:A3:6A:AE:39:10:52:3E:66:69:E4 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/37B8851C654F11EFACFE1271C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.20.0/24 Signature Algorithm: sha256WithRSAEncryption 08:b1:d5:75:06:01:ec:01:7b:d2:58:d9:eb:d6:e9:51:b4:f6: f2:c7:63:4d:83:c0:e1:ff:ad:5d:95:5d:2a:e8:97:75:e8:f2: 39:0b:d3:fc:77:5f:d5:ad:d8:d6:02:d9:fa:b7:97:9e:ba:16: e4:2a:eb:b7:92:1d:7a:51:d8:da:76:ff:e2:e5:46:ef:d0:58: d4:f0:fb:df:53:33:79:e4:a8:ff:cb:e4:06:c6:82:9e:f0:74: 61:ee:ad:0a:bb:35:a1:fa:f0:ae:82:c1:3a:60:63:dc:de:03: 83:f6:14:9f:f7:9a:8b:a7:c0:c1:94:ff:73:2e:82:53:87:a9: fc:fa:d8:5a:43:bc:8e:c5:3f:3b:4d:f8:58:76:25:2d:ed:5a: 11:35:51:7d:92:ee:81:9f:53:1f:99:b6:e0:fb:b1:fd:04:6e: b4:84:9a:80:db:f9:88:30:82:95:8b:70:7c:e2:78:1d:75:ae: 3c:94:bf:b8:db:c4:ea:75:71:ac:24:3a:cf:26:00:e6:91:8e: 29:0c:66:d4:f5:86:fb:2a:6f:db:e0:32:27:d0:db:63:d0:b9: f1:d4:c6:75:f7:28:29:65:92:83:0d:4a:b3:2d:aa:d9:82:f0: 5b:27:e1:6d:c6:54:85:c8:9a:77:1d:b4:91:06:6b:3e:8c:2a: bf:40:88:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1NDAzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg0ZmExYi1jMTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxesqjufog9Ayf0/asB+GYK/k8dcf28X8QSkravGecPsuhjGG5TEQln9TDEUw eVQX69HJE7qMomGBP0KVAXK0pTd2ABDXFpTjfPvTgc8orBXW+pR16E8hPkTLcYhI /Ms+WB23OAZfji6M9eBo3eKpJFk1fVxMnucpAUcSx5P1BgPVjiNUJjt8gQ/p/A19 HQLKY1Bb16NbOqcXPwlBHCqjWfSfpqYHJ1ymLFUlcqupGV67lsasjVP85TKtjl1F rtmDWHX8ohZ781N0jwhQpEnHEgtfUWd7o4OfcNdUj+4ise4ZhVsN9x2pAlZls6Mn pDoNIrHHk6UJHTZLRyyRa4WEBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGSj6/6 j+T5Q8Kjaq45EFI+ZmnkMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMzdCODg1MUM2 NTRGMTFFRkFDRkUxMjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxBQwDQYJKoZIhvcNAQELBQADggEBAAix1XUGAewBe9JY 2evW6VG09vLHY02DwOH/rV2VXSrol3Xo8jkL0/x3X9Wt2NYC2fq3l566FuQq67eS HXpR2Np2/+LlRu/QWNTw+99TM3nkqP/L5AbGgp7wdGHurQq7NaH68K6CwTpgY9ze A4P2FJ/3mounwMGU/3MuglOHqfz62FpDvI7FPztN+Fh2JS3tWhE1UX2S7oGfUx+Z tuD7sf0EbrSEmoDb+YgwgpWLcHzieB11rjyUv7jbxOp1cawkOs8mAOaRjikMZtT1 hvsqb9vgMifQ22PQufHUxnX3KCllkoMNSrMtqtmC8Fsn4W3GVIXImncdtJEGaz6M Kr9AiJU= -----END CERTIFICATE-----Generated at Sat Aug 9 15:08:35 2025 by rpki-client