$ rpki-client -vvf rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/B37A1AB4E1A811EFBC05A21AC4F9AE02.roa File: B37A1AB4E1A811EFBC05A21AC4F9AE02.roa (raw, json) Hash identifier: IEwu4/gA3UIvhwDT2AUjwIos0wFKYYY+JWkqYTbzbDE= Subject key identifier: B3:7D:22:7D:58:9C:14:BC:96:53:3D:A6:46:50:DB:DD:A1:75:26:3D Certificate issuer: /CN=A9141A6A/serialNumber=6A4A074EE5BE7F3BA850B3BA214296B65B1A2DAD Certificate serial: 0890 Authority key identifier: 6A:4A:07:4E:E5:BE:7F:3B:A8:50:B3:BA:21:42:96:B6:5B:1A:2D:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/B37A1AB4E1A811EFBC05A21AC4F9AE02.roa Signing time: Thu 31 Jul 2025 22:01:37 +0000 ROA not before: Thu 31 Jul 2025 22:01:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140900 IP address blocks: 103.153.38.0/24 maxlen: 24 103.153.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.crl rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141A6A, serialNumber=6A4A074EE5BE7F3BA850B3BA214296B65B1A2DAD Validity Not Before: Jul 31 22:01:37 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688be7c0-75b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cc:69:f7:42:a0:22:9c:96:33:3a:22:23:d8: 13:a3:dc:b5:64:e8:de:09:4d:ad:5b:3d:6f:ae:ff: f6:9a:69:9e:0e:ee:6c:1b:b4:45:ea:77:6e:70:38: 5e:42:e9:06:a1:db:b6:c2:d2:7a:37:1c:c4:91:0b: 88:9b:ea:ad:69:ec:d2:26:72:de:c1:04:71:18:4c: 90:f0:13:2a:e7:ce:89:4f:16:74:86:48:02:71:d7: fe:0d:c5:88:54:4d:7b:10:09:5d:85:41:3d:c6:91: 80:72:6e:80:1e:b8:6b:f3:0b:a5:11:ed:8f:b5:5e: 37:b7:af:ce:04:57:d4:15:ff:44:4a:7c:23:a7:15: 7d:62:eb:81:9b:8e:96:6a:70:6e:04:60:9f:88:eb: 72:7c:d6:0b:e8:ea:13:e3:89:3b:b4:6f:3b:58:3d: fe:2f:84:e2:ef:1b:e8:a9:66:fb:2b:16:72:7b:27: 0f:83:49:ad:f4:e9:0a:f5:db:f3:29:c9:02:40:c2: 2a:79:0e:a4:d6:26:9f:72:b7:09:47:4e:9f:24:f1: b7:64:1c:2f:f1:a8:f6:28:e1:28:e1:44:c5:ea:38: f0:35:b9:e2:de:9b:bf:db:cf:1e:80:bb:59:68:40: 68:ea:75:fe:fc:d7:b1:9f:4e:2c:26:f2:8f:d8:ba: c4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:7D:22:7D:58:9C:14:BC:96:53:3D:A6:46:50:DB:DD:A1:75:26:3D X509v3 Authority Key Identifier: keyid:6A:4A:07:4E:E5:BE:7F:3B:A8:50:B3:BA:21:42:96:B6:5B:1A:2D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/akoHTuW-fzuoULO6IUKWtlsaLa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akoHTuW-fzuoULO6IUKWtlsaLa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141A6A/62BE0AC6CE9E11EA8854A150C4F9AE02/B37A1AB4E1A811EFBC05A21AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.38.0/23 Signature Algorithm: sha256WithRSAEncryption be:99:ab:0e:e6:ca:11:9a:62:c3:7f:4d:82:bf:cf:e7:7d:ee: 0b:b0:7a:5e:9c:a0:47:f9:2b:29:af:fb:7b:10:b4:27:65:cb: cd:c4:9a:12:82:81:4f:6e:89:f3:86:be:2b:11:0f:99:7e:9a: 23:c0:0e:13:c5:f4:a3:e7:29:29:69:68:58:c4:66:0c:e3:9d: 00:d5:71:f9:a4:05:8b:68:25:73:c6:77:90:83:da:e6:7d:e4: 4c:7a:92:f3:a6:d8:ab:2f:06:dd:45:11:a2:e1:75:1f:8e:0a: 7d:e3:80:64:c1:d6:53:ae:5e:47:e4:1d:b2:a7:b6:25:f5:7b: 6d:85:32:e0:82:20:b8:3e:0d:d0:08:ae:78:d0:74:8f:60:4a: ce:51:9c:87:b9:a7:f0:a3:15:36:af:43:0e:e1:a2:63:9e:9b: db:8a:54:9e:50:b4:32:ae:12:ea:de:64:74:7a:c9:54:69:19: 31:f5:a8:ae:74:be:69:21:4e:58:3e:b9:c5:12:95:40:66:f2: 04:5c:93:a2:0e:a6:2f:ba:14:bc:50:76:fe:10:11:8c:9c:10: 5e:21:2d:4a:56:45:9a:a7:a2:6e:56:96:3d:ec:f9:79:57:4f: c0:e6:f3:10:46:76:44:69:a2:1c:3b:66:54:06:cf:f7:64:b4: 4d:a8:1a:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFBNkExMTAvBgNVBAUTKDZBNEEwNzRFRTVCRTdGM0JBODUwQjNCQTIxNDI5NkI2 NUIxQTJEQUQwHhcNMjUwNzMxMjIwMTM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZTdjMC03NWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Mxp90KgIpyWMzoiI9gTo9y1ZOjeCU2tWz1vrv/2mmmeDu5sG7RF6nducDhe QukGodu2wtJ6NxzEkQuIm+qtaezSJnLewQRxGEyQ8BMq586JTxZ0hkgCcdf+DcWI VE17EAldhUE9xpGAcm6AHrhr8wulEe2PtV43t6/OBFfUFf9ESnwjpxV9YuuBm46W anBuBGCfiOtyfNYL6OoT44k7tG87WD3+L4Ti7xvoqWb7KxZyeycPg0mt9OkK9dvz KckCQMIqeQ6k1iafcrcJR06fJPG3ZBwv8aj2KOEo4UTF6jjwNbni3pu/288egLtZ aEBo6nX+/Nexn04sJvKP2LrERQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLN9In1Y nBS8llM9pkZQ292hdSY9MB8GA1UdIwQYMBaAFGpKB07lvn87qFCzuiFClrZbGi2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUE2QS82MkJFMEFDNkNF OUUxMUVBODg1NEExNTBDNEY5QUUwMi9ha29IVHVXLWZ6dW9VTE82SVVLV3Rsc2FM YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Frb0hUdVctZnp1b1VMTzZJVUtXdGxzYUxhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDFBNkEvNjJCRTBBQzZDRTlFMTFFQTg4NTRBMTUwQzRGOUFFMDIvQjM3QTFBQjRF MUE4MTFFRkJDMDVBMjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmSYwDQYJKoZIhvcNAQELBQADggEBAL6Zqw7myhGaYsN/ TYK/z+d97guwel6coEf5Kymv+3sQtCdly83EmhKCgU9uifOGvisRD5l+miPADhPF 9KPnKSlpaFjEZgzjnQDVcfmkBYtoJXPGd5CD2uZ95Ex6kvOm2KsvBt1FEaLhdR+O Cn3jgGTB1lOuXkfkHbKntiX1e22FMuCCILg+DdAIrnjQdI9gSs5RnIe5p/CjFTav Qw7homOem9uKVJ5QtDKuEureZHR6yVRpGTH1qK50vmkhTlg+ucUSlUBm8gRck6IO pi+6FLxQdv4QEYycEF4hLUpWRZqnom5Wlj3s+XlXT8Dm8xBGdkRpohw7ZlQGz/dk tE2oGoE= -----END CERTIFICATE-----Generated at Sun Aug 10 19:55:33 2025 by rpki-client