$ rpki-client -vvf rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa File: 862720F4031611EB9086351AC4F9AE02.roa (raw, json) Hash identifier: DyEl2YZoDemWKVRwtuDEk5jnI5cd5vACB1EojyL/sHQ= Subject key identifier: DB:32:19:DA:BC:C8:30:55:70:9A:B3:E9:FC:AA:D6:B2:64:70:52:56 Certificate issuer: /CN=A913DD6A/serialNumber=BB9D5D50F75581972FC3AF1C6CE6AFCF57CFB93F Certificate serial: 0800 Authority key identifier: BB:9D:5D:50:F7:55:81:97:2F:C3:AF:1C:6C:E6:AF:CF:57:CF:B9:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa Signing time: Sat 02 Aug 2025 21:32:53 +0000 ROA not before: Sat 02 Aug 2025 21:32:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 63931 IP address blocks: 103.47.246.0/23 maxlen: 24 103.204.104.0/23 maxlen: 24 192.140.248.0/22 maxlen: 24 2402:1280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.crl rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DD6A, serialNumber=BB9D5D50F75581972FC3AF1C6CE6AFCF57CFB93F Validity Not Before: Aug 2 21:32:53 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=688e8405-1017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:90:6c:f4:76:9a:07:10:95:3f:1c:c7:ba:dc: 71:a8:9e:4b:78:e5:63:11:bb:9b:ec:2b:ee:08:07: 3d:63:35:1c:aa:ae:5b:36:db:79:e1:b8:26:0b:01: f6:a2:5a:43:38:49:08:7f:fa:bc:5a:cb:38:c7:0b: 26:59:29:93:fa:ad:b8:7b:af:41:da:bb:8b:a8:43: 2d:11:c8:8e:b0:34:d1:9e:ca:1b:d8:be:e8:95:dd: 8e:89:f7:b1:83:1d:ee:e0:ba:05:cc:41:90:b7:af: 4b:20:84:69:77:ac:56:dc:9d:46:88:fe:62:3a:69: 48:3f:59:09:b1:ca:05:ee:7d:00:35:0a:ef:8e:03: e0:88:83:50:ac:cc:d0:37:00:4d:82:3f:5a:b4:9f: dc:4e:7e:ba:75:cb:44:10:0c:65:14:c8:77:ec:11: 31:65:0b:f0:f4:48:ed:5e:37:9f:4b:7b:02:a9:b3: a9:b4:4e:3c:a5:c7:1f:13:3f:36:5b:63:f0:1d:e0: 5c:14:79:e2:5e:45:d1:33:74:42:46:e7:16:65:2f: ab:cd:15:bb:cc:8d:e6:c1:16:fc:94:90:18:44:be: d9:92:d7:88:1a:98:89:7b:d2:25:f0:33:cc:19:00: 41:9f:d6:bb:22:0e:e6:6c:77:0d:7b:3d:8f:b6:d2: 97:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:32:19:DA:BC:C8:30:55:70:9A:B3:E9:FC:AA:D6:B2:64:70:52:56 X509v3 Authority Key Identifier: keyid:BB:9D:5D:50:F7:55:81:97:2F:C3:AF:1C:6C:E6:AF:CF:57:CF:B9:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.246.0/23 103.204.104.0/23 192.140.248.0/22 IPv6: 2402:1280::/32 Signature Algorithm: sha256WithRSAEncryption 8c:02:47:96:b1:fc:73:8e:08:08:4e:dd:36:da:e1:12:b8:b3: 33:00:d3:d9:a2:0e:f3:95:bc:33:bb:b8:d4:24:4b:1f:99:2e: 66:95:bb:fe:3d:c0:e4:d9:9b:b1:01:98:9d:c1:08:5a:6e:fe: 4e:98:73:41:b8:71:d9:bc:84:5c:ba:d1:f3:4d:de:1c:fe:7d: 5b:8d:fe:ec:ac:1d:15:c7:b4:ff:87:2b:88:ab:c1:02:75:37: ca:a1:9d:28:d4:a9:0e:03:44:ce:46:af:55:00:80:c2:d5:33: 18:b3:8a:d7:87:81:5a:05:78:0f:7c:e5:fd:ba:11:11:12:6a: d1:fd:6e:f5:bd:a3:4a:ee:28:c8:61:b4:42:23:1c:8b:73:a1: c5:92:72:16:ed:db:21:c9:fe:a7:2a:ea:98:4f:79:29:85:d8: 0a:72:97:8a:ab:ad:fe:cc:63:e3:c4:79:a7:31:ed:4e:08:35: db:f3:be:62:05:f7:28:52:db:fb:66:2d:24:16:83:1c:8d:32: 01:4b:da:1c:2e:ef:93:0c:16:85:97:0d:30:c1:81:ed:1b:5e: 58:9d:7b:2f:b4:df:22:9b:68:33:72:8a:39:2f:68:ea:22:58: dc:fd:bf:2a:6f:6e:e4:20:f9:e3:21:d5:67:fb:b3:51:d3:bf: 59:41:80:f5 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RENkExMTAvBgNVBAUTKEJCOUQ1RDUwRjc1NTgxOTcyRkMzQUYxQzZDRTZBRkNG NTdDRkI5M0YwHhcNMjUwODAyMjEzMjUzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlODQwNS0xMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pBs9HaaBxCVPxzHutxxqJ5LeOVjEbub7CvuCAc9YzUcqq5bNtt54bgmCwH2 olpDOEkIf/q8Wss4xwsmWSmT+q24e69B2ruLqEMtEciOsDTRnsob2L7old2Oifex gx3u4LoFzEGQt69LIIRpd6xW3J1GiP5iOmlIP1kJscoF7n0ANQrvjgPgiINQrMzQ NwBNgj9atJ/cTn66dctEEAxlFMh37BExZQvw9EjtXjefS3sCqbOptE48pccfEz82 W2PwHeBcFHniXkXRM3RCRucWZS+rzRW7zI3mwRb8lJAYRL7ZkteIGpiJe9Il8DPM GQBBn9a7Ig7mbHcNez2PttKXEQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFNsyGdq8 yDBVcJqz6fyq1rJkcFJWMB8GA1UdIwQYMBaAFLudXVD3VYGXL8OvHGzmr89Xz7k/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREQ2QS8zOUY0OEExMDAz MTUxMUVCQjU1RDIyMTlDNEY5QUUwMi91NTFkVVBkVmdaY3Z3NjhjYk9hdnoxZlB1 VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1MWRVUGRWZ1pjdnc2OGNiT2F2ejFmUHVUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RENkEvMzlGNDhBMTAwMzE1MTFFQkI1NUQyMjE5QzRGOUFFMDIvODYyNzIwRjQw MzE2MTFFQjkwODYzNTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnL/YDBAFnzGgDBALAjPgwDQQCAAIwBwMFACQCEoAwDQYJ KoZIhvcNAQELBQADggEBAIwCR5ax/HOOCAhO3Tba4RK4szMA09miDvOVvDO7uNQk Sx+ZLmaVu/49wOTZm7EBmJ3BCFpu/k6Yc0G4cdm8hFy60fNN3hz+fVuN/uysHRXH tP+HK4irwQJ1N8qhnSjUqQ4DRM5Gr1UAgMLVMxiziteHgVoFeA985f26ERESatH9 bvW9o0ruKMhhtEIjHItzocWSchbt2yHJ/qcq6phPeSmF2Apyl4qrrf7MY+PEeacx 7U4INdvzvmIF9yhS2/tmLSQWgxyNMgFL2hwu75MMFoWXDTDBge0bXlidey+03yKb aDNyijkvaOoiWNz9vypvbuQg+eMh1Wf7s1HTv1lBgPU= -----END CERTIFICATE-----Generated at Wed Aug 13 08:25:59 2025 by rpki-client