$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/D6883996DABE11EAB12A5209C4F9AE02.roa File: D6883996DABE11EAB12A5209C4F9AE02.roa (raw, json) Hash identifier: uybnkX1k8gPyTR5CU7p1ceux1tCfl8jTIgkNDS2MSjc= Subject key identifier: 23:C4:73:88:3C:4D:A9:A1:A4:F4:F3:7E:F5:39:72:12:B7:84:DF:EF Certificate issuer: /CN=A912DA1F/serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Certificate serial: 0831 Authority key identifier: F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/D6883996DABE11EAB12A5209C4F9AE02.roa Signing time: Tue 22 Jul 2025 21:01:33 +0000 ROA not before: Tue 22 Jul 2025 21:01:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132435 IP address blocks: 103.234.100.0/22 maxlen: 22 103.234.100.0/24 maxlen: 24 103.234.101.0/24 maxlen: 24 103.234.102.0/24 maxlen: 24 103.234.103.0/24 maxlen: 24 2401:d740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1F, serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Validity Not Before: Jul 22 21:01:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687ffc2d-8603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8c:f6:4d:11:9a:b5:00:8d:2a:d8:70:1c:01: 1b:aa:bf:72:91:d5:1a:ca:b3:c1:ba:47:2a:75:9a: 42:33:30:29:fd:90:68:68:20:8b:6e:70:5e:3e:a6: aa:b0:96:a3:8b:71:57:c7:78:75:6d:1b:b5:3c:4b: cc:d8:0e:fe:3a:55:cf:55:79:f3:c9:bb:72:24:36: 48:3e:52:be:e8:54:29:c0:fc:ff:77:8a:cd:97:1e: 55:14:c6:c4:53:a6:6c:3b:05:79:ca:89:1b:32:83: f5:ee:2f:49:5f:9c:9f:8b:c2:71:67:91:00:89:81: f4:9e:3a:eb:1b:c7:fb:9a:c7:dc:d7:18:dc:34:28: 44:5e:c0:11:ce:4e:a7:f7:fb:20:6e:20:3f:ef:22: 96:75:ae:dd:92:0a:e1:d9:55:df:05:ad:b0:34:42: 03:58:36:ff:6c:d7:2a:c7:84:6d:94:0f:11:1f:0c: 3d:f2:a4:1c:d8:d8:fe:ea:19:e6:03:dd:14:bb:1a: 70:ec:c4:c9:ca:12:18:da:91:92:de:64:e1:a0:08: 40:d4:89:8a:c8:2e:cd:41:71:1f:95:6d:28:ca:0e: 56:78:50:ea:fc:a6:62:66:b1:ac:49:87:fd:66:e2: b7:57:47:20:a3:da:df:ca:a0:54:f7:f5:6b:66:91: b4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C4:73:88:3C:4D:A9:A1:A4:F4:F3:7E:F5:39:72:12:B7:84:DF:EF X509v3 Authority Key Identifier: keyid:F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/D6883996DABE11EAB12A5209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.100.0/22 IPv6: 2401:d740::/32 Signature Algorithm: sha256WithRSAEncryption 88:ee:2f:00:54:03:99:c2:51:41:a1:76:f5:4d:40:e0:c2:ce: b5:95:cb:a6:89:8b:b1:d3:4f:cd:cd:06:d0:87:cf:ca:8e:e1: 9b:75:23:1d:38:07:a9:5b:c2:71:57:0e:cf:5d:d2:27:bc:2c: d6:b2:2e:b5:56:66:1b:98:5a:41:87:ef:3f:4c:2c:a2:b2:21: 67:d7:3a:f0:1d:9f:0b:e1:ca:51:2c:f1:8f:78:40:fd:13:b6: 60:bb:d9:6b:9f:45:44:ab:aa:c5:33:67:a2:2a:ae:39:60:93: 52:eb:99:c8:12:07:15:d0:f4:61:37:45:93:c5:a5:52:00:13: 29:75:11:fc:5c:32:ad:32:8b:9e:ba:f4:38:05:95:00:e9:e0: cc:46:b2:ea:88:13:09:da:88:af:35:f0:a1:06:6b:47:9c:36: 25:d1:67:b9:b9:86:86:ba:f4:3c:62:69:f9:ca:d5:c2:4e:c2: 5a:e8:23:ce:a9:74:45:9f:a2:97:90:67:a9:0e:2f:02:4e:a5: a8:1b:ad:1a:12:fe:8b:19:2a:88:4d:f5:16:70:6a:f9:6f:ce: 53:a3:8b:1a:58:6b:a7:10:57:e9:1c:e4:8d:cb:ef:37:cb:d2: 7f:7b:28:15:e1:2a:9f:ed:5c:0d:7a:51:62:c1:37:7f:31:a7: 9b:9a:42:db -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUYxMTAvBgNVBAUTKEY5Nzg3RDJDQTE0MzJDQTZFOTMzMzJFMEVERUY2QjA3 QjI0NUQ3QjAwHhcNMjUwNzIyMjEwMTMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZmMyZC04NjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oz2TRGatQCNKthwHAEbqr9ykdUayrPBukcqdZpCMzAp/ZBoaCCLbnBePqaq sJaji3FXx3h1bRu1PEvM2A7+OlXPVXnzybtyJDZIPlK+6FQpwPz/d4rNlx5VFMbE U6ZsOwV5yokbMoP17i9JX5yfi8JxZ5EAiYH0njrrG8f7msfc1xjcNChEXsARzk6n 9/sgbiA/7yKWda7dkgrh2VXfBa2wNEIDWDb/bNcqx4RtlA8RHww98qQc2Nj+6hnm A90Uuxpw7MTJyhIY2pGS3mThoAhA1ImKyC7NQXEflW0oyg5WeFDq/KZiZrGsSYf9 ZuK3V0cgo9rfyqBU9/VrZpG0LwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCPEc4g8 TamhpPTzfvU5chK3hN/vMB8GA1UdIwQYMBaAFPl4fSyhQyym6TMy4O3vaweyRdew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRi9GQjE0QTg4MkRB QkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExLYnBNekxnN2U5ckI3SkYx N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YaDlMS0ZETEticE16TGc3ZTlyQjdKRjE3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRBMUYvRkIxNEE4ODJEQUJDMTFFQUE2MjAyQzg1QzRGOUFFMDIvRDY4ODM5OTZE QUJFMTFFQUIxMkE1MjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn6mQwDQQCAAIwBwMFACQB10AwDQYJKoZIhvcNAQELBQAD ggEBAIjuLwBUA5nCUUGhdvVNQODCzrWVy6aJi7HTT83NBtCHz8qO4Zt1Ix04B6lb wnFXDs9d0ie8LNayLrVWZhuYWkGH7z9MLKKyIWfXOvAdnwvhylEs8Y94QP0TtmC7 2WufRUSrqsUzZ6Iqrjlgk1LrmcgSBxXQ9GE3RZPFpVIAEyl1EfxcMq0yi5669DgF lQDp4MxGsuqIEwnaiK818KEGa0ecNiXRZ7m5hoa69DxiafnK1cJOwlroI86pdEWf opeQZ6kOLwJOpagbrRoS/osZKohN9RZwavlvzlOjixpYa6cQV+kc5I3L7zfL0n97 KBXhKp/tXA16UWLBN38xp5uaQts= -----END CERTIFICATE-----Generated at Wed Aug 13 08:53:42 2025 by rpki-client