$ rpki-client -vvf rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/7A355ED26E4611F0B2EA866CC4F9AE02.roa File: 7A355ED26E4611F0B2EA866CC4F9AE02.roa (raw, json) Hash identifier: ckkpvJSvMWdn/s9RDPiA2SPGoeSPZEHgR7vRk5CYG4Y= Subject key identifier: 6B:D4:F9:6E:95:DA:53:1E:D9:45:C3:60:A6:E3:99:9C:8A:1A:77:63 Certificate issuer: /CN=A914C531/serialNumber=5801484CFF6EFC5D000B2629F9116BE235C4AC36 Certificate serial: C0 Authority key identifier: 58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/7A355ED26E4611F0B2EA866CC4F9AE02.roa Signing time: Thu 31 Jul 2025 19:42:22 +0000 ROA not before: Thu 31 Jul 2025 19:42:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138014 IP address blocks: 103.69.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.crl rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C531, serialNumber=5801484CFF6EFC5D000B2629F9116BE235C4AC36 Validity Not Before: Jul 31 19:42:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=688bc71e-0bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:5f:bd:ac:a0:3e:39:7c:53:47:ba:c8:25: 15:36:f5:49:4d:1a:04:c9:c4:f1:9b:e9:56:0e:98: 7e:4c:32:a4:60:44:51:99:49:8b:1a:61:a8:db:e5: 7a:1f:21:a3:94:f3:f6:cf:24:66:d8:d0:30:4d:c4: 00:8b:0e:d1:58:f6:f6:97:b4:5f:a1:74:ff:a0:bf: 46:ad:80:1c:3c:9e:a8:5b:fb:7b:40:8f:1f:4f:2b: 01:a8:d2:c9:90:f5:e0:bc:f6:63:7f:d8:20:5d:ef: f1:1d:83:39:66:40:e2:ce:d4:c1:64:aa:d3:b6:6b: 7d:5d:41:3e:df:7e:44:59:80:36:17:9d:8e:b6:b0: f6:fb:86:89:f0:0c:22:5d:c0:9c:3d:c7:30:6c:22: 45:b6:a5:97:3e:41:a8:34:29:35:be:b1:a4:d4:49: e1:51:7e:7d:84:30:5c:d2:85:3f:98:03:02:c2:04: c5:4e:83:79:a0:1d:fc:6c:40:6f:1c:c2:c9:93:24: da:91:ed:a2:f6:03:1b:22:27:ab:36:ef:8e:52:fd: d0:d8:2d:f5:9a:e1:81:44:cb:ba:b7:cc:8f:17:fd: 55:0f:c4:02:49:55:4b:18:1f:11:19:f9:7b:9f:dc: ae:52:c9:10:22:cd:c0:1e:80:d9:f4:13:24:f9:a2: 3e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D4:F9:6E:95:DA:53:1E:D9:45:C3:60:A6:E3:99:9C:8A:1A:77:63 X509v3 Authority Key Identifier: keyid:58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/7A355ED26E4611F0B2EA866CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.161.0/24 Signature Algorithm: sha256WithRSAEncryption d9:f8:4c:d5:a2:6c:89:30:77:91:f9:cd:73:e0:ec:69:d1:11: 9e:ca:62:e6:d4:df:93:bf:6e:f2:db:50:85:42:d3:75:06:50: 6d:a3:1e:72:8e:76:aa:a9:96:27:bb:b1:0b:dd:23:6f:e4:4c: 00:fc:6a:d4:35:d4:a2:16:ed:d0:08:83:69:22:bc:76:61:99: d3:fb:4b:6f:83:e2:4c:aa:0a:14:e4:06:d7:63:92:66:23:7a: 0a:49:77:ab:4b:9c:18:86:b8:8b:e2:40:b8:47:fc:99:e6:f5: 1b:69:b5:19:d9:99:a3:9f:d8:06:2b:e7:c4:54:f1:6c:1d:d9: 3e:4d:8b:7a:57:4a:49:ca:31:02:78:17:ef:d2:9a:4e:8c:5a: d1:1b:8f:d6:eb:d2:c0:4f:82:25:f0:78:94:3e:f9:57:3a:e8: 1f:6a:6a:19:b8:da:fd:2c:7e:23:01:bc:a0:be:77:e8:23:14: 19:e5:41:ec:28:e2:8b:9d:3a:04:c6:1a:f8:33:62:07:ce:15: 53:9a:13:9a:14:38:92:3d:d1:36:3a:0a:70:91:81:99:11:aa: 25:75:14:87:73:3a:f4:41:04:9d:fc:db:78:2c:9e:53:7f:7e: b1:0e:65:9d:c0:7b:dc:86:d5:42:37:5d:31:f7:c9:42:81:de: 33:1b:54:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM1MzExMTAvBgNVBAUTKDU4MDE0ODRDRkY2RUZDNUQwMDBCMjYyOUY5MTE2QkUy MzVDNEFDMzYwHhcNMjUwNzMxMTk0MjIyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiYzcxZS0wYmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwp9fvaygPjl8U0e6yCUVNvVJTRoEycTxm+lWDph+TDKkYERRmUmLGmGo2+V6 HyGjlPP2zyRm2NAwTcQAiw7RWPb2l7RfoXT/oL9GrYAcPJ6oW/t7QI8fTysBqNLJ kPXgvPZjf9ggXe/xHYM5ZkDiztTBZKrTtmt9XUE+335EWYA2F52OtrD2+4aJ8Awi XcCcPccwbCJFtqWXPkGoNCk1vrGk1EnhUX59hDBc0oU/mAMCwgTFToN5oB38bEBv HMLJkyTake2i9gMbIierNu+OUv3Q2C31muGBRMu6t8yPF/1VD8QCSVVLGB8RGfl7 n9yuUskQIs3AHoDZ9BMk+aI+9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGvU+W6V 2lMe2UXDYKbjmZyKGndjMB8GA1UdIwQYMBaAFFgBSEz/bvxdAAsmKfkRa+I1xKw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzUzMS8wQjBEMEY2NjVE NUIxMUVGQTRGMzJCMTNDNEY5QUUwMi9XQUZJVFA5dV9GMEFDeVlwLVJGcjRqWEVy RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBRklUUDl1X0YwQUN5WXAtUkZyNGpYRXJEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM1MzEvMEIwRDBGNjY1RDVCMTFFRkE0RjMyQjEzQzRGOUFFMDIvN0EzNTVFRDI2 RTQ2MTFGMEIyRUE4NjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRaEwDQYJKoZIhvcNAQELBQADggEBANn4TNWibIkwd5H5 zXPg7GnREZ7KYubU35O/bvLbUIVC03UGUG2jHnKOdqqplie7sQvdI2/kTAD8atQ1 1KIW7dAIg2kivHZhmdP7S2+D4kyqChTkBtdjkmYjegpJd6tLnBiGuIviQLhH/Jnm 9RtptRnZmaOf2AYr58RU8Wwd2T5Ni3pXSknKMQJ4F+/Smk6MWtEbj9br0sBPgiXw eJQ++Vc66B9qahm42v0sfiMBvKC+d+gjFBnlQewo4oudOgTGGvgzYgfOFVOaE5oU OJI90TY6CnCRgZkRqiV1FIdzOvRBBJ3823gsnlN/frEOZZ3Ae9yG1UI3XTH3yUKB 3jMbVOM= -----END CERTIFICATE-----Generated at Mon Aug 11 07:31:53 2025 by rpki-client