$ rpki-client -vvf rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa File: A16739B2F89011EE9EB9D42BC4F9AE02.roa (raw, json) Hash identifier: sah200aOwYvH7hldekVzzUV/LvL4ckSI60/32eio3go= Subject key identifier: 5E:5A:E2:97:43:50:3F:5C:50:68:7E:D2:83:BE:E3:D3:32:F9:0A:95 Certificate issuer: /CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Certificate serial: 0102 Authority key identifier: 42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa Signing time: Fri 01 Aug 2025 06:42:15 +0000 ROA not before: Fri 01 Aug 2025 06:42:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140956 IP address blocks: 103.153.194.0/23 maxlen: 23 103.153.194.0/24 maxlen: 24 103.153.195.0/24 maxlen: 24 2001:df4:5780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914524B, serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Validity Not Before: Aug 1 06:42:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688c61c7-c0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ba:88:f5:39:b4:4a:6b:6b:28:bd:c2:5f:73: b1:44:02:67:68:91:5a:6d:72:08:35:c8:f4:03:26: 40:70:4a:d1:91:64:f4:4f:75:f2:e9:96:49:f8:3e: 9d:c4:ff:c1:6e:55:37:ad:4b:fc:71:eb:fc:f9:ed: 2b:fc:5a:31:e4:78:87:c8:7b:19:f5:35:a4:90:e7: 6e:33:96:bf:98:a6:36:40:55:60:89:7a:66:69:18: fa:3e:53:05:08:41:62:ba:c3:99:37:a4:66:c6:eb: eb:a0:e2:4d:2a:13:1b:c9:b7:03:61:7e:c0:7e:4a: 93:3b:2d:a4:4f:df:e9:ed:e2:6f:7d:91:34:e6:3c: 14:c6:0a:93:fa:42:82:98:f4:7e:9f:3c:6c:35:58: e7:70:84:30:18:97:a0:3d:86:0f:76:6f:dc:de:7f: bd:7a:1d:20:da:35:35:ca:6f:6e:81:55:6b:9a:71: 47:29:aa:d5:b1:b7:f1:d1:a1:64:e3:e9:c3:e7:28: a7:9c:11:c5:71:31:8b:6b:03:a9:2c:59:26:be:22: 20:93:c7:81:ca:de:e5:b2:ec:3d:00:d5:78:67:35: 58:7d:ba:71:7c:37:4f:65:5f:f8:f9:78:c1:fb:fb: 54:13:c1:cc:33:3a:72:b8:ef:8d:84:5c:c7:4b:10: d9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5A:E2:97:43:50:3F:5C:50:68:7E:D2:83:BE:E3:D3:32:F9:0A:95 X509v3 Authority Key Identifier: keyid:42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.194.0/23 IPv6: 2001:df4:5780::/48 Signature Algorithm: sha256WithRSAEncryption c3:ac:ab:9b:6c:e0:72:59:e1:52:46:a7:56:38:a9:0d:db:09: 57:ca:45:e6:d7:e8:8b:ee:b4:8f:70:de:1c:0a:a7:d0:75:60: ec:92:1f:0d:fc:37:9b:20:0c:67:54:e3:e1:02:c5:c6:48:90: 04:3d:b8:b6:0d:0f:3c:75:7a:dd:9b:c5:be:0b:09:e2:78:46: e7:d5:75:bb:a5:11:43:21:14:c9:06:93:65:e4:78:c5:ab:92: 2d:74:7d:8a:fe:55:cb:28:59:09:cb:ec:db:26:d9:1b:8a:65: 37:48:f4:2c:cf:93:7d:88:b9:6d:35:20:6e:59:1e:ed:0b:e6: df:0b:b7:b7:1d:a9:58:e8:24:e5:ca:79:c8:74:6d:25:66:9c: 80:58:13:7f:43:6f:8e:0d:82:1a:d8:00:5a:95:5e:0a:76:1e: 9b:db:bd:da:dc:90:e9:2e:01:f5:55:41:ac:a9:5c:7e:3d:69: 61:a3:9e:52:ed:3d:56:1d:41:43:03:7f:88:32:c8:db:24:72: 2d:4a:8d:23:fb:de:1a:c3:6e:fe:52:64:20:3c:9d:0a:03:a0: 33:50:e0:04:85:4d:13:bc:a7:71:10:a5:87:d8:1b:e2:c7:ed: 50:20:b9:06:85:6c:c9:70:bc:1b:45:1e:97:82:d5:8d:65:7e: 1e:33:0a:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyNEIxMTAvBgNVBAUTKDQyNzkyQ0Y0M0RGREI0ODZBRDdBMDdCMTIzQ0IyQTYx QTMzRTIzRTMwHhcNMjUwODAxMDY0MjE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNjFjNy1jMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprqI9Tm0SmtrKL3CX3OxRAJnaJFabXIINcj0AyZAcErRkWT0T3Xy6ZZJ+D6d xP/BblU3rUv8cev8+e0r/Fox5HiHyHsZ9TWkkOduM5a/mKY2QFVgiXpmaRj6PlMF CEFiusOZN6RmxuvroOJNKhMbybcDYX7AfkqTOy2kT9/p7eJvfZE05jwUxgqT+kKC mPR+nzxsNVjncIQwGJegPYYPdm/c3n+9eh0g2jU1ym9ugVVrmnFHKarVsbfx0aFk 4+nD5yinnBHFcTGLawOpLFkmviIgk8eByt7lsuw9ANV4ZzVYfbpxfDdPZV/4+XjB +/tUE8HMMzpyuO+NhFzHSxDZ0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF5a4pdD UD9cUGh+0oO+49My+QqVMB8GA1UdIwQYMBaAFEJ5LPQ9/bSGrXoHsSPLKmGjPiPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTI0Qi9CNTEwMjJENkY4 OEYxMUVFOTc2QzFFMkFDNEY5QUUwMi9RbmtzOUQzOXRJYXRlZ2V4SThzcVlhTS1J LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fua3M5RDM5dElhdGVnZXhJOHNxWWFNLUktTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyNEIvQjUxMDIyRDZGODhGMTFFRTk3NkMxRTJBQzRGOUFFMDIvQTE2NzM5QjJG ODkwMTFFRTlFQjlENDJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmcIwDwQCAAIwCQMHACABDfRXgDANBgkqhkiG9w0BAQsF AAOCAQEAw6yrm2zgclnhUkanVjipDdsJV8pF5tfoi+60j3DeHAqn0HVg7JIfDfw3 myAMZ1Tj4QLFxkiQBD24tg0PPHV63ZvFvgsJ4nhG59V1u6URQyEUyQaTZeR4xauS LXR9iv5VyyhZCcvs2ybZG4plN0j0LM+TfYi5bTUgblke7Qvm3wu3tx2pWOgk5cp5 yHRtJWacgFgTf0Nvjg2CGtgAWpVeCnYem9u92tyQ6S4B9VVBrKlcfj1pYaOeUu09 Vh1BQwN/iDLI2yRyLUqNI/veGsNu/lJkIDydCgOgM1DgBIVNE7yncRClh9gb4sft UCC5BoVsyXC8G0Uel4LVjWV+HjMKeQ== -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:28 2025 by rpki-client