$ rpki-client -vvf rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa File: A89C497E6D1911ED9C34360FC4F9AE02.roa (raw, json) Hash identifier: Uaag1XaC5l38BiL7eVD+xIPrlORTGsNCKZS9y5VsAwU= Subject key identifier: 73:1F:AD:96:0F:A5:5D:76:FD:AE:09:B3:8C:8F:C7:6F:FD:EB:A3:7F Certificate issuer: /CN=A913F478/serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Certificate serial: 0200 Authority key identifier: 56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa Signing time: Fri 25 Jul 2025 09:49:12 +0000 ROA not before: Fri 25 Jul 2025 09:49:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150447 IP address blocks: 103.17.148.0/23 maxlen: 23 103.17.148.0/24 maxlen: 24 103.17.149.0/24 maxlen: 24 125.253.130.0/24 maxlen: 24 125.253.131.0/24 maxlen: 24 2001:df1:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F478, serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Validity Not Before: Jul 25 09:49:12 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68835317-9472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b7:57:fe:1b:27:df:90:b3:c7:44:ba:6c:de: 4a:94:42:04:53:9a:10:77:c0:b0:05:63:a2:ce:2a: 9e:aa:fc:76:69:6f:82:95:76:96:b2:0d:1f:8b:33: 35:49:1d:54:c7:8c:79:b1:bd:7a:42:cb:24:db:d4: 82:29:84:c9:51:fa:3a:0f:5d:97:64:4a:12:bb:ee: 7e:95:22:76:0e:60:86:0c:2b:01:19:b4:7e:1c:3c: c0:de:38:09:20:c2:dd:03:e1:00:9d:08:ed:d3:24: bd:75:f7:f2:9c:7f:ef:7e:68:b3:0e:65:73:08:d1: ac:bb:81:ce:ee:48:d9:6a:29:d6:2e:01:f5:57:61: 18:c1:eb:48:13:ce:27:61:81:50:ac:96:1b:a1:a6: 09:01:31:8a:f0:1b:53:31:74:ba:c9:15:d3:41:c2: e9:31:54:ca:72:c4:c8:91:a1:c8:fa:39:f4:5f:b9: 2f:b4:bf:44:30:a1:fb:33:5e:42:08:ce:80:fa:82: 6b:03:e1:73:5d:47:e9:6d:c1:94:e3:dc:fc:9c:52: 81:e5:d0:e4:bb:b3:ea:66:11:8f:50:02:8e:34:75: d0:51:86:fe:a0:ac:5e:9f:8a:ed:f0:d8:25:93:9e: 68:6a:07:0e:83:46:0a:a8:80:3e:6e:91:90:43:e7: 4c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1F:AD:96:0F:A5:5D:76:FD:AE:09:B3:8C:8F:C7:6F:FD:EB:A3:7F X509v3 Authority Key Identifier: keyid:56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.148.0/23 125.253.130.0/23 IPv6: 2001:df1:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 34:66:90:df:f5:e9:e0:92:7f:dd:37:ca:c3:92:87:bc:3d:19: 61:81:bf:68:b6:3a:43:a1:66:03:17:31:a0:ed:de:66:2d:de: d6:e3:82:36:d8:65:c3:94:40:af:4d:ca:03:40:09:89:91:7a: ac:a6:d1:d2:d9:44:f7:70:17:a0:02:f4:d6:0b:0f:2f:ba:88: 1c:19:a4:d4:66:6b:7a:11:a9:8c:e1:7b:f4:7e:e9:5e:a9:b7: 11:21:ea:88:cb:cf:ce:47:df:a8:60:04:d4:c6:57:80:40:9c: 49:34:d2:70:e4:d9:fa:61:90:2d:56:c9:d4:0e:c7:06:f6:4f: 74:bd:1b:ef:01:76:c4:72:bd:ff:88:0e:e0:33:ad:7a:94:e3: ca:c2:45:62:4b:c0:f1:93:f1:7a:41:b1:47:82:50:fc:66:12: 63:bc:2b:03:6d:4e:73:98:5c:d1:d4:31:c7:8d:ff:12:bb:59: 6b:a3:c3:e7:88:62:c2:eb:50:91:49:9f:37:70:0a:9c:0f:ad: 34:62:05:5d:55:b6:0e:72:f2:22:5c:11:80:89:d5:99:f7:08: 41:b1:f1:ee:50:e4:95:6f:1a:57:34:65:b6:c8:9a:3e:24:33: 9f:5a:42:ce:1e:cf:dd:43:74:32:56:db:45:5a:6c:5a:85:44: ba:7b:f3:74 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0NzgxMTAvBgNVBAUTKDU2OEY3NjVDQ0FCNDJDNTIzMDc5OEU2OEZCQzM3QzhB QTQ5RjVGNDQwHhcNMjUwNzI1MDk0OTEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgzNTMxNy05NDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7dX/hsn35Czx0S6bN5KlEIEU5oQd8CwBWOiziqeqvx2aW+ClXaWsg0fizM1 SR1Ux4x5sb16Qssk29SCKYTJUfo6D12XZEoSu+5+lSJ2DmCGDCsBGbR+HDzA3jgJ IMLdA+EAnQjt0yS9dffynH/vfmizDmVzCNGsu4HO7kjZainWLgH1V2EYwetIE84n YYFQrJYboaYJATGK8BtTMXS6yRXTQcLpMVTKcsTIkaHI+jn0X7kvtL9EMKH7M15C CM6A+oJrA+FzXUfpbcGU49z8nFKB5dDku7PqZhGPUAKONHXQUYb+oKxen4rt8Ngl k55oagcOg0YKqIA+bpGQQ+dMVwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHMfrZYP pV12/a4Js4yPx2/966N/MB8GA1UdIwQYMBaAFFaPdlzKtCxSMHmOaPvDfIqkn19E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjQ3OC80OTlBOTE1RTZE MTYxMUVEQkUxMjA1MENDNEY5QUUwMi9WbzkyWE1xMExGSXdlWTVvLThOOGlxU2ZY MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvOTJYTXEwTEZJd2VZNW8tOE44aXFTZlgwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0NzgvNDk5QTkxNUU2RDE2MTFFREJFMTIwNTBDQzRGOUFFMDIvQTg5QzQ5N0U2 RDE5MTFFRDlDMzQzNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnEZQDBAF9/YIwDwQCAAIwCQMHACABDfFbwDANBgkqhkiG 9w0BAQsFAAOCAQEANGaQ3/Xp4JJ/3TfKw5KHvD0ZYYG/aLY6Q6FmAxcxoO3eZi3e 1uOCNthlw5RAr03KA0AJiZF6rKbR0tlE93AXoAL01gsPL7qIHBmk1GZrehGpjOF7 9H7pXqm3ESHqiMvPzkffqGAE1MZXgECcSTTScOTZ+mGQLVbJ1A7HBvZPdL0b7wF2 xHK9/4gO4DOtepTjysJFYkvA8ZPxekGxR4JQ/GYSY7wrA21Oc5hc0dQxx43/ErtZ a6PD54hiwutQkUmfN3AKnA+tNGIFXVW2DnLyIlwRgInVmfcIQbHx7lDklW8aVzRl tsiaPiQzn1pCzh7P3UN0MlbbRVpsWoVEunvzdA== -----END CERTIFICATE-----Generated at Wed Aug 13 08:23:31 2025 by rpki-client