$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa File: BD7E578079E011EA8DD5907FC4F9AE02.roa (raw, json) Hash identifier: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE= Subject key identifier: D9:32:2F:CA:1F:C3:8B:D2:86:65:0C:E7:35:6B:28:C9:84:09:57:36 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 09B4 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa Signing time: Fri 31 Jan 2025 19:58:47 +0000 ROA not before: Fri 31 Jan 2025 19:58:47 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139909 IP address blocks: 103.146.248.0/24 maxlen: 24 2001:df2:7480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2484 (0x9b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Jan 31 19:58:47 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679d2b76-13b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:7b:b6:f9:36:cb:03:d9:6e:af:7f:0c:99: 69:bc:c1:a6:22:38:7c:b1:b9:ea:aa:6d:66:fc:c4: 84:29:69:aa:39:48:9c:7b:1f:6b:bc:fe:b3:da:86: a6:e6:4e:b0:5b:53:1a:c7:d9:84:51:98:e2:18:6d: 1b:99:db:f5:cd:0c:1c:d8:64:e3:7f:00:6d:61:25: ad:7f:98:5a:87:a0:0e:bb:cc:28:34:5e:80:f6:de: 45:c0:37:34:eb:50:b2:7f:07:9a:51:ef:42:ee:89: 27:33:03:52:40:5c:21:da:88:38:b1:aa:49:2d:6a: 50:8c:f6:d9:d9:af:9e:cf:a5:fc:e2:1a:a1:0e:a9: 5b:b4:63:65:86:80:d0:5c:22:cd:b9:45:4f:79:89: ab:bc:4c:3e:03:58:99:c6:9d:23:ae:f7:df:57:ae: 72:3a:5f:ee:dc:cb:57:db:7c:05:89:0d:62:0f:1b: 32:5d:42:98:45:5f:63:6a:3b:ed:a6:50:59:4d:18: 67:35:8f:46:1a:25:bb:0a:07:d5:b7:f5:98:f2:33: 70:29:10:85:be:17:ff:5c:1d:eb:63:cc:07:43:17: 57:64:f2:f6:e2:ab:8a:a1:7d:38:77:00:e5:db:1a: f4:bf:ec:32:86:42:b7:53:5c:50:65:71:58:c0:d3: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:32:2F:CA:1F:C3:8B:D2:86:65:0C:E7:35:6B:28:C9:84:09:57:36 X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/BD7E578079E011EA8DD5907FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.248.0/24 IPv6: 2001:df2:7480::/48 Signature Algorithm: sha256WithRSAEncryption 0c:0c:76:c9:33:aa:b8:18:ed:47:9a:25:8a:de:53:b8:65:ef: c3:60:73:83:0d:ad:93:9e:9e:c6:6c:21:de:62:d7:26:58:b2: 57:d6:ad:6c:d3:06:61:c8:92:53:57:75:31:a6:b4:6c:15:39: 4b:67:6c:ea:70:be:ef:9d:40:f5:12:cc:1f:6a:9a:80:b0:d6: b0:b7:e3:73:7c:4e:7b:fb:07:33:fe:3c:6e:a9:89:a1:77:c8: 3a:f0:4f:b1:a5:ca:4c:b3:71:2b:7e:24:c0:d1:24:bb:9e:9a: d0:30:a9:01:00:9d:35:ec:7f:33:55:90:14:c4:91:b9:e4:4c: ee:b3:6d:2b:41:59:96:ec:31:89:fa:36:96:e5:71:8a:99:eb: 04:8a:b9:ff:62:fa:03:6c:dc:a9:45:4d:be:c8:5d:ab:32:18: 66:0e:b0:35:3f:d6:4c:63:88:61:c9:08:85:a1:3b:2e:31:10: c8:fd:fa:f2:a2:7a:47:a4:7e:c2:34:f6:1f:ee:03:f6:8f:32: 81:ae:89:b1:73:c3:d5:76:64:59:41:a3:02:0c:92:70:09:92: 3b:b5:91:08:15:e3:ed:21:56:79:8f:b7:f2:2c:19:c1:27:a2: 0e:3d:6c:df:80:35:af:39:87:bf:b5:ce:e7:5d:f0:3b:67:6a: f5:10:f4:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUwMTMxMTk1ODQ3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlkMmI3Ni0xM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOt7tvk2ywPZbq9/DJlpvMGmIjh8sbnqqm1m/MSEKWmqOUicex9rvP6z2oam 5k6wW1Max9mEUZjiGG0bmdv1zQwc2GTjfwBtYSWtf5hah6AOu8woNF6A9t5FwDc0 61CyfweaUe9C7oknMwNSQFwh2og4sapJLWpQjPbZ2a+ez6X84hqhDqlbtGNlhoDQ XCLNuUVPeYmrvEw+A1iZxp0jrvffV65yOl/u3MtX23wFiQ1iDxsyXUKYRV9jajvt plBZTRhnNY9GGiW7CgfVt/WY8jNwKRCFvhf/XB3rY8wHQxdXZPL24quKoX04dwDl 2xr0v+wyhkK3U1xQZXFYwNPscwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNkyL8of w4vShmUM5zVrKMmECVc2MB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY1M0MvNUJBODc4MjA3OURGMTFFQUJDOUQ5NzdEQzRGOUFFMDIvQkQ3RTU3ODA3 OUUwMTFFQThERDU5MDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnkvgwDwQCAAIwCQMHACABDfJ0gDANBgkqhkiG9w0BAQsF AAOCAQEADAx2yTOquBjtR5olit5TuGXvw2Bzgw2tk56exmwh3mLXJliyV9atbNMG YciSU1d1Maa0bBU5S2ds6nC+751A9RLMH2qagLDWsLfjc3xOe/sHM/48bqmJoXfI OvBPsaXKTLNxK34kwNEku56a0DCpAQCdNex/M1WQFMSRueRM7rNtK0FZluwxifo2 luVxipnrBIq5/2L6A2zcqUVNvshdqzIYZg6wNT/WTGOIYckIhaE7LjEQyP368qJ6 R6R+wjT2H+4D9o8yga6JsXPD1XZkWUGjAgyScAmSO7WRCBXj7SFWeY+38iwZwSei Dj1s34A1rzmHv7XO513wO2dq9RD0pw== -----END CERTIFICATE-----Generated at Wed Nov 5 21:15:39 2025 by rpki-client