$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/7DA38A8E727011F08682A20EC4F9AE02.roa File: 7DA38A8E727011F08682A20EC4F9AE02.roa (raw, json) Hash identifier: 5M/0FRLT6dVdFlhFwevO8pC082IglmsJ5K/2QwF0Lz0= Subject key identifier: CD:AF:47:02:0D:29:96:DF:96:E4:14:5A:77:E0:BE:AB:18:8B:51:C8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01AE Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/7DA38A8E727011F08682A20EC4F9AE02.roa Signing time: Wed 06 Aug 2025 02:53:12 +0000 ROA not before: Wed 06 Aug 2025 02:53:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 56135 IP address blocks: 101.234.72.0/22 maxlen: 22 103.29.192.0/22 maxlen: 22 103.29.192.0/24 maxlen: 24 103.29.194.0/24 maxlen: 24 103.29.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Aug 6 02:53:12 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6892c398-56d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:49:22:19:7b:98:3b:b6:aa:fd:75:80:a3:e9: e6:d9:10:34:76:b2:68:6c:09:21:16:9b:c0:ba:9d: 80:ed:0b:0d:d2:08:a4:ef:cb:0f:fb:42:72:d8:dc: e6:66:62:9b:58:03:99:53:73:4b:49:ab:79:82:8f: 97:ea:92:46:8e:d0:f1:4d:82:c0:9a:12:f2:81:d3: cb:33:4d:ba:03:f5:e7:79:0f:e9:1e:3f:13:0d:ff: 87:14:f9:eb:3a:54:8e:51:b2:a7:ca:93:f8:25:84: d3:99:26:78:d8:f6:68:d2:88:16:fa:44:74:85:4e: d5:94:a0:a0:bf:f8:c5:d3:cb:b2:37:7b:0c:b2:4b: 89:25:d7:13:36:7c:ff:39:19:97:37:aa:1e:61:a1: 13:35:85:15:74:fe:ec:a3:de:e1:2c:64:8e:e6:35: 16:c5:cc:53:4e:d6:18:9e:34:83:90:a1:7f:00:d3: f4:3f:76:78:17:b3:32:19:9c:0b:e0:90:8c:55:7f: f3:96:17:7c:c5:e2:c3:59:5e:30:22:bc:8d:83:a6: 34:f1:6d:85:a5:71:74:d2:1a:f4:2e:42:ee:57:29: 39:5a:9a:c2:22:fb:7a:53:b3:8d:78:39:81:cb:f8: af:d5:26:41:71:30:64:84:0f:5b:a3:05:e3:db:46: de:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AF:47:02:0D:29:96:DF:96:E4:14:5A:77:E0:BE:AB:18:8B:51:C8 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/7DA38A8E727011F08682A20EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.72.0/22 103.29.192.0/22 Signature Algorithm: sha256WithRSAEncryption 05:cf:5b:72:e9:da:8e:77:20:6f:86:7a:2d:f5:a8:21:22:90: 67:4d:31:8d:d1:9f:70:07:2b:a5:16:bb:d9:78:1d:dc:62:d0: b5:a9:da:46:e1:8a:61:67:46:35:26:60:d3:81:ab:57:a8:6c: c0:56:1e:fe:07:97:83:b9:de:a4:7e:87:34:66:c9:84:4f:20: e6:1b:5c:cd:11:19:cb:53:94:87:39:36:fd:f2:7b:a5:34:87: 47:b2:d6:4c:a7:d3:15:37:14:22:ff:88:f6:f9:65:43:43:18: d0:c1:ff:45:8c:45:1b:9e:b9:93:65:bd:d1:ae:4b:fa:d8:e2: 2d:05:d5:0e:27:56:40:1f:f7:2c:9c:00:50:4d:b6:c2:35:c7: 32:2e:28:1c:57:19:ce:cd:ff:d3:ff:1e:aa:23:8c:a1:ea:37: f0:38:80:25:50:9a:39:5d:e2:f7:4a:7d:b8:26:75:e3:2e:6e: 5f:d5:41:c9:19:3c:9a:9e:f5:46:0e:d1:74:76:0f:bd:88:6b: bf:e8:8b:70:a8:8a:ab:b4:7d:6c:c3:6f:a6:f8:1a:e2:0d:f4: f1:89:d7:77:4e:fd:51:fd:57:27:7c:3c:a6:3d:6e:94:ed:29: 6d:02:4f:36:b3:be:1c:f6:78:8c:d3:f7:a6:e2:59:30:f0:12: 58:13:be:1c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwODA2MDI1MzEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkyYzM5OC01NmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EkiGXuYO7aq/XWAo+nm2RA0drJobAkhFpvAup2A7QsN0gik78sP+0Jy2Nzm ZmKbWAOZU3NLSat5go+X6pJGjtDxTYLAmhLygdPLM026A/XneQ/pHj8TDf+HFPnr OlSOUbKnypP4JYTTmSZ42PZo0ogW+kR0hU7VlKCgv/jF08uyN3sMskuJJdcTNnz/ ORmXN6oeYaETNYUVdP7so97hLGSO5jUWxcxTTtYYnjSDkKF/ANP0P3Z4F7MyGZwL 4JCMVX/zlhd8xeLDWV4wIryNg6Y08W2FpXF00hr0LkLuVyk5WprCIvt6U7ONeDmB y/iv1SZBcTBkhA9bowXj20berwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM2vRwIN KZbfluQUWnfgvqsYi1HIMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzMUUvQzhBNEM0RTRFOEJCMTFFREE4REI4QTFGQzRGOUFFMDIvN0RBMzhBOEU3 MjcwMTFGMDg2ODJBMjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJl6kgDBAJnHcAwDQYJKoZIhvcNAQELBQADggEBAAXPW3Lp 2o53IG+Gei31qCEikGdNMY3Rn3AHK6UWu9l4Hdxi0LWp2kbhimFnRjUmYNOBq1eo bMBWHv4Hl4O53qR+hzRmyYRPIOYbXM0RGctTlIc5Nv3ye6U0h0ey1kyn0xU3FCL/ iPb5ZUNDGNDB/0WMRRueuZNlvdGuS/rY4i0F1Q4nVkAf9yycAFBNtsI1xzIuKBxX Gc7N/9P/HqojjKHqN/A4gCVQmjld4vdKfbgmdeMubl/VQckZPJqe9UYO0XR2D72I a7/oi3Coiqu0fWzDb6b4GuIN9PGJ13dO/VH9Vyd8PKY9bpTtKW0CTzazvhz2eIzT 96biWTDwElgTvhw= -----END CERTIFICATE-----Generated at Sun Aug 10 03:45:31 2025 by rpki-client