$ rpki-client -vvf rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/96BC85E8145711EF8ED9C174C4F9AE02.roa File: 96BC85E8145711EF8ED9C174C4F9AE02.roa (raw, json) Hash identifier: 4GDdy9q4wSFCaH7TyIGJPMZ9fzgci85d7rldFyKz8WA= Subject key identifier: 2D:0B:E8:5D:3E:EE:28:63:6C:35:9C:4F:BD:C0:7A:63:1E:D9:3E:29 Certificate issuer: /CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Certificate serial: 02CB Authority key identifier: E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/96BC85E8145711EF8ED9C174C4F9AE02.roa Signing time: Thu 31 Jul 2025 02:08:37 +0000 ROA not before: Thu 31 Jul 2025 02:08:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38203 IP address blocks: 103.190.204.0/23 maxlen: 24 2400:9220::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 715 (0x2cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B751, serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Validity Not Before: Jul 31 02:08:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688ad025-110a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:71:59:fe:85:6b:8c:2a:f0:dc:58:f6:50: 23:64:b6:41:7d:13:bb:fc:1f:e1:d4:c4:d1:05:cb: 90:e7:f2:0c:70:7c:9f:37:3a:23:b1:d4:f6:82:01: f9:34:88:8b:78:e2:49:30:2c:79:6b:96:dc:d1:d2: a9:0b:01:3e:59:53:c8:ee:93:e1:2a:6f:7c:f6:53: 73:76:48:f1:a2:c5:ce:03:4e:ae:41:94:6d:b1:b4: a4:7a:17:93:95:0a:05:17:30:b7:68:30:cb:14:07: 25:57:c6:e2:a5:62:e4:f5:5d:fe:91:5b:32:60:5d: aa:b1:32:42:98:72:a2:33:61:0a:b4:5c:e0:1d:0d: a6:ae:c3:e8:ee:f8:27:10:fa:3f:83:62:6f:21:6b: d1:90:7d:80:9a:f2:cf:cc:e5:0d:b1:61:11:ee:05: 71:7b:45:27:45:7b:6a:f8:1c:9f:1f:c5:be:84:90: dd:c5:2d:52:5c:0d:38:07:d9:81:87:b2:6c:66:b4: 62:63:d8:a6:96:bf:85:12:d2:79:83:9b:dc:0a:71: 7e:e7:3c:8a:0e:65:bb:5b:e4:fb:3f:49:c1:c6:0d: 5f:72:d5:d6:44:34:12:60:b6:35:57:7e:24:a8:66: 2f:57:02:00:97:c1:2f:0f:d3:3f:91:c3:d7:3e:19: b5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0B:E8:5D:3E:EE:28:63:6C:35:9C:4F:BD:C0:7A:63:1E:D9:3E:29 X509v3 Authority Key Identifier: keyid:E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/96BC85E8145711EF8ED9C174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.204.0/23 IPv6: 2400:9220::/32 Signature Algorithm: sha256WithRSAEncryption 23:ce:13:fc:eb:0b:15:0b:76:9e:cd:45:c8:13:f8:0e:db:38: 6b:f7:df:3f:93:97:f4:d6:f5:75:3e:d9:c0:7e:01:c9:18:33: 9a:30:66:3c:ac:bd:86:09:d9:db:7d:95:21:53:d5:2d:73:ea: 99:62:33:87:1d:c8:06:bd:77:f5:63:57:3d:6f:20:fe:1a:df: 76:29:ca:32:d1:4f:9e:eb:f7:dd:4d:bb:9e:99:68:65:58:41: dd:71:1c:1c:1d:bc:0a:07:f9:7e:90:33:a7:da:b3:6f:89:f2: 16:55:b2:6c:c3:43:2e:62:d0:53:81:8e:e5:5b:3d:be:a1:41: bb:0c:09:a7:48:03:e0:27:70:74:9a:5a:e2:b0:ec:69:dc:d5: e6:4e:57:8f:d2:5c:94:92:10:b1:0e:30:c8:5f:38:ff:f0:a6: 74:b0:7c:a4:bd:2a:bf:35:fd:06:11:1a:9f:80:3e:ba:4a:d7: 3d:a0:d8:9f:95:58:52:a7:8a:f8:55:a5:2f:c1:91:71:c1:67: 03:df:36:5a:0d:99:0b:08:f3:7c:d9:60:89:ca:2c:5e:b7:b4: 81:ca:2e:e7:8f:12:32:9e:05:2a:5c:13:01:54:5f:a9:a5:87: d0:f5:d0:76:b6:12:77:83:a1:3b:99:b6:a7:1f:f3:90:f1:d3: af:89:b5:60 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NTExMTAvBgNVBAUTKEU4MTFGNjM3RDZERDg2M0U1Qzc0RjMyRTI5QkNFMjc4 RkFCMjU4RjcwHhcNMjUwNzMxMDIwODM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZDAyNS0xMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx5xWf6Fa4wq8NxY9lAjZLZBfRO7/B/h1MTRBcuQ5/IMcHyfNzojsdT2ggH5 NIiLeOJJMCx5a5bc0dKpCwE+WVPI7pPhKm989lNzdkjxosXOA06uQZRtsbSkeheT lQoFFzC3aDDLFAclV8bipWLk9V3+kVsyYF2qsTJCmHKiM2EKtFzgHQ2mrsPo7vgn EPo/g2JvIWvRkH2AmvLPzOUNsWER7gVxe0UnRXtq+ByfH8W+hJDdxS1SXA04B9mB h7JsZrRiY9imlr+FEtJ5g5vcCnF+5zyKDmW7W+T7P0nBxg1fctXWRDQSYLY1V34k qGYvVwIAl8EvD9M/kcPXPhm15wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC0L6F0+ 7ihjbDWcT73AemMe2T4pMB8GA1UdIwQYMBaAFOgR9jfW3YY+XHTzLim84nj6slj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1MS83MkQ3RDhCNEZE RDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhqNWNkUE11S2J6aWVQcXlX UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZCSDJOOWJkaGo1Y2RQTXVLYnppZVBxeVdQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI3NTEvNzJEN0Q4QjRGREQ3MTFFQzkwQ0FFRjRDQzRGOUFFMDIvOTZCQzg1RTgx NDU3MTFFRjhFRDlDMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnvswwDQQCAAIwBwMFACQAkiAwDQYJKoZIhvcNAQELBQAD ggEBACPOE/zrCxULdp7NRcgT+A7bOGv33z+Tl/TW9XU+2cB+AckYM5owZjysvYYJ 2dt9lSFT1S1z6pliM4cdyAa9d/VjVz1vIP4a33YpyjLRT57r991Nu56ZaGVYQd1x HBwdvAoH+X6QM6fas2+J8hZVsmzDQy5i0FOBjuVbPb6hQbsMCadIA+AncHSaWuKw 7Gnc1eZOV4/SXJSSELEOMMhfOP/wpnSwfKS9Kr81/QYRGp+APrpK1z2g2J+VWFKn ivhVpS/BkXHBZwPfNloNmQsI83zZYInKLF63tIHKLuePEjKeBSpcEwFUX6mlh9D1 0Ha2EneDoTuZtqcf85Dx06+JtWA= -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:23 2025 by rpki-client