$ rpki-client -vvf rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa File: E3D5A6F4422411E8804DBC3AC4F9AE02.roa (raw, json) Hash identifier: E/6I3qQjCBxjGs7jFLaCU1bmuGjPrQh25a7j/aLYowA= Subject key identifier: 26:92:7E:10:71:9F:27:85:3F:BF:5D:7D:F9:A1:96:87:EE:A0:71:5F Certificate issuer: /CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Certificate serial: 17DF Authority key identifier: BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa Signing time: Wed 16 Jul 2025 16:55:11 +0000 ROA not before: Wed 16 Jul 2025 16:55:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135425 IP address blocks: 103.96.28.0/23 maxlen: 24 2001:df1:cd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6111 (0x17df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AD2E, serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Validity Not Before: Jul 16 16:55:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6877d96f-6bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:8d:07:19:dc:d8:df:06:40:2b:15:fb:2d: 38:ab:1d:3b:21:08:64:b0:cf:6e:1f:2b:db:42:b0: 7a:ec:6b:b2:7b:19:1d:00:be:fb:1a:ab:19:10:14: 04:35:d7:9a:94:df:58:2a:84:f3:1f:cf:c2:ec:b7: 67:0e:3e:e9:c5:de:70:88:0d:97:ad:ca:27:e2:21: 9d:65:b3:1c:5a:0b:0f:fc:d3:9a:94:d2:2e:a6:e6: 63:64:3a:e4:4d:c9:a9:a6:a0:e0:e7:fc:aa:40:47: 5b:c7:74:17:36:7e:fc:26:6c:1d:aa:bb:a3:5f:11: 95:7c:2c:d9:e4:19:a5:0e:e4:fd:ab:02:d6:1e:61: 54:ee:3e:ff:21:ed:0d:ec:08:0c:7c:b9:26:1b:87: a8:e8:6d:9e:29:05:89:b2:4f:5e:9c:63:89:8b:62: 6d:93:54:8b:3d:ae:68:34:a5:c7:f1:ce:b5:80:d4: 14:ee:5a:d8:58:a7:0b:a4:ed:50:5a:c8:b2:43:bd: 4a:e6:28:78:bc:78:3d:ce:44:94:13:b6:fd:76:4c: c4:a7:37:4c:7d:ab:28:47:a6:ed:5f:8f:e8:7a:4a: a7:93:a7:00:60:36:24:c1:db:93:d0:34:24:b0:43: 63:17:e5:db:22:4a:43:bc:0f:7e:e0:a4:cb:2c:f1: e2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:92:7E:10:71:9F:27:85:3F:BF:5D:7D:F9:A1:96:87:EE:A0:71:5F X509v3 Authority Key Identifier: keyid:BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.28.0/23 IPv6: 2001:df1:cd00::/48 Signature Algorithm: sha256WithRSAEncryption 1b:cb:e3:5d:9b:e9:5c:69:4c:25:ea:71:e1:b7:ef:54:15:e8: df:94:35:eb:4d:2d:cb:43:ee:5f:a9:d9:9f:ab:79:65:37:96: bd:01:9f:c9:40:bd:38:6e:59:16:d1:41:4d:ba:0f:cc:12:f5: bb:5d:e4:b1:2b:47:ff:77:2d:3d:08:0c:af:49:28:70:e2:f1: d7:a9:e0:be:2f:fc:ab:3d:b2:fe:1a:1a:ae:ec:cb:05:8b:74: 60:13:2e:91:8a:dc:28:fb:15:9d:82:f8:bc:cc:66:1d:a3:e8: e0:92:07:a4:c4:6f:07:77:2c:93:e0:03:8d:30:32:92:f1:f6: 39:91:9b:48:3c:ef:80:a7:cb:f1:5f:1a:5c:f5:86:9d:b3:d8: 7e:5c:61:2d:cd:20:5b:ee:fa:39:bc:f7:cb:a4:4a:97:ab:32: cb:52:da:ad:29:46:56:8f:40:35:17:56:41:89:bb:ec:9b:e0: d8:c6:47:e2:3f:2b:f3:3a:7e:6f:01:fc:28:97:9d:31:8a:81: 7c:e2:51:e8:29:6d:90:12:70:19:80:f5:e4:a0:7c:ef:d2:7f: 41:14:bc:92:58:69:6d:81:78:43:e9:69:ea:ee:f2:de:0c:a4: 13:55:07:e3:bc:c7:84:ea:90:e5:19:65:9c:a6:89:68:7b:a2: 5d:51:8f:48 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICF98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFEMkUxMTAvBgNVBAUTKEJCQjg0MEIwNTM5MzRENUUxRkVERDQwREQwMjNFRjdB RjQyOEJBRTAwHhcNMjUwNzE2MTY1NTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3ZDk2Zi02YmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzveNBxnc2N8GQCsV+y04qx07IQhksM9uHyvbQrB67GuyexkdAL77GqsZEBQE NdealN9YKoTzH8/C7LdnDj7pxd5wiA2Xrcon4iGdZbMcWgsP/NOalNIupuZjZDrk TcmppqDg5/yqQEdbx3QXNn78JmwdqrujXxGVfCzZ5BmlDuT9qwLWHmFU7j7/Ie0N 7AgMfLkmG4eo6G2eKQWJsk9enGOJi2Jtk1SLPa5oNKXH8c61gNQU7lrYWKcLpO1Q WsiyQ71K5ih4vHg9zkSUE7b9dkzEpzdMfasoR6btX4/oekqnk6cAYDYkwduT0DQk sENjF+XbIkpDvA9+4KTLLPHiBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCaSfhBx nyeFP79dffmhlofuoHFfMB8GA1UdIwQYMBaAFLu4QLBTk01eH+3UDdAj73r0KLrg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUQyRS8wNzhDNjJBQUM1 MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRWNGY3ZFFOMENQdmV2UW91 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3aEFzRk9UVFY0ZjdkUU4wQ1B2ZXZRb3V1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFEMkUvMDc4QzYyQUFDNTMzMTFFN0ExMURCQjRBQzRGOUFFMDIvRTNENUE2RjQ0 MjI0MTFFODgwNERCQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnYBwwDwQCAAIwCQMHACABDfHNADANBgkqhkiG9w0BAQsF AAOCAQEAG8vjXZvpXGlMJepx4bfvVBXo35Q1600ty0PuX6nZn6t5ZTeWvQGfyUC9 OG5ZFtFBTboPzBL1u13ksStH/3ctPQgMr0kocOLx16ngvi/8qz2y/hoaruzLBYt0 YBMukYrcKPsVnYL4vMxmHaPo4JIHpMRvB3csk+ADjTAykvH2OZGbSDzvgKfL8V8a XPWGnbPYflxhLc0gW+76Obz3y6RKl6syy1LarSlGVo9ANRdWQYm77Jvg2MZH4j8r 8zp+bwH8KJedMYqBfOJR6CltkBJwGYD15KB879J/QRS8klhpbYF4Q+lp6u7y3gyk E1UH47zHhOqQ5RllnKaJaHuiXVGPSA== -----END CERTIFICATE-----Generated at Wed Aug 6 14:18:50 2025 by rpki-client