$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa File: 747C668ECCD911EF9B52C877C4F9AE02.roa (raw, json) Hash identifier: FLsSk6E317UI1n66jph+9Dir8yNvamWkdarfqoL42t0= Subject key identifier: 53:E7:E2:D8:D6:6B:7E:2D:13:CC:99:8B:D3:BC:09:9E:B7:71:B8:1C Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 9A Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa Signing time: Thu 12 Jun 2025 12:57:19 +0000 ROA not before: Thu 12 Jun 2025 12:57:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153325 IP address blocks: 103.151.248.0/24 maxlen: 24 103.251.25.0/24 maxlen: 24 116.206.148.0/24 maxlen: 24 116.206.150.0/24 maxlen: 24 203.19.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 05:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Jun 12 12:57:19 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684aceaf-6d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:18:21:de:74:0e:e4:aa:97:19:78:ee:c6: d7:fb:c5:b9:e2:20:46:ab:95:8c:dc:a6:1e:b6:f8: a8:a9:bc:ca:ff:98:e6:fc:84:65:e4:ae:6b:11:b2: d0:80:a8:8c:86:4d:72:b7:fe:33:41:16:47:fe:1a: 98:65:4b:d5:39:69:e3:c9:7e:1f:89:44:c7:67:12: da:06:29:49:43:e6:29:d6:d8:7d:e3:5e:2a:ae:43: 5a:66:24:f3:26:07:19:d8:ae:9c:d8:37:1c:bc:27: d7:b5:71:b7:23:4b:18:2d:c0:1a:fb:58:4d:af:83: 49:a3:e4:98:29:43:dc:82:65:8d:b1:92:48:f5:e6: 23:68:c9:4b:37:52:c3:9f:01:65:b2:74:39:f4:b0: 3d:63:92:21:1e:25:76:c0:df:b0:5c:36:3b:d5:75: ba:cf:03:f4:98:51:73:86:42:67:fb:23:44:eb:2a: d1:91:51:c6:5c:08:0f:be:76:23:39:34:d0:75:18: a2:b4:d9:3f:a4:28:2b:92:f1:47:58:78:ad:33:c0: 0c:d4:56:aa:e8:91:87:3c:ee:ea:9b:30:1f:b8:ea: 21:35:57:a7:84:28:5d:92:19:05:cd:9d:39:de:f6: 46:c7:13:26:60:9f:8b:b7:63:46:a6:e6:b7:d6:2c: b6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E7:E2:D8:D6:6B:7E:2D:13:CC:99:8B:D3:BC:09:9E:B7:71:B8:1C X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.248.0/24 103.251.25.0/24 116.206.148.0/24 116.206.150.0/24 203.19.243.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:35:6a:f9:ea:00:3c:e4:04:fc:ef:a5:e9:ed:c4:41:50:a1: a6:fb:dc:15:de:84:65:05:ff:b9:a8:d5:af:eb:53:4e:f0:a0: 57:b8:5a:b1:7e:f9:1e:26:da:66:42:95:44:55:83:53:6c:5b: 86:69:12:32:f3:fa:18:7d:32:69:f7:3a:54:e7:c5:5f:8c:f5: a7:9b:28:04:9a:a3:48:f8:0c:80:b7:fc:6e:45:0c:29:ae:06: 56:40:65:51:66:5c:d9:dc:f8:bd:3a:87:97:61:ab:c7:bf:1e: 44:6a:49:0f:49:44:ed:21:3b:ed:21:58:6f:bb:b5:8b:6b:d2: 60:a0:74:d7:18:98:20:0c:e0:d0:fd:8e:d3:f1:b6:87:a5:8a: 44:ca:ec:99:10:f9:da:cd:4e:cd:87:c8:d4:3c:a0:d5:6d:2f: e9:ca:b1:c7:f1:7a:2c:3c:83:4f:8e:b1:bb:17:13:83:11:92: 6d:a4:90:0c:90:06:fb:6d:32:b3:08:d9:b4:93:c4:60:f1:fc: e4:d0:95:01:89:fd:86:4f:83:65:4c:37:64:5f:a2:0b:2c:29: 3b:a1:20:c4:ae:ea:e5:55:60:ed:b0:7a:01:e2:fe:46:05:7e: 8b:cd:e8:be:3f:aa:fe:fd:56:c7:5f:98:ec:a8:7b:90:37:01: ec:2f:7b:01 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUwNjEyMTI1NzE5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhY2VhZi02ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFUYId50DuSqlxl47sbX+8W54iBGq5WM3KYetvioqbzK/5jm/IRl5K5rEbLQ gKiMhk1yt/4zQRZH/hqYZUvVOWnjyX4fiUTHZxLaBilJQ+Yp1th9414qrkNaZiTz JgcZ2K6c2DccvCfXtXG3I0sYLcAa+1hNr4NJo+SYKUPcgmWNsZJI9eYjaMlLN1LD nwFlsnQ59LA9Y5IhHiV2wN+wXDY71XW6zwP0mFFzhkJn+yNE6yrRkVHGXAgPvnYj OTTQdRiitNk/pCgrkvFHWHitM8AM1Faq6JGHPO7qmzAfuOohNVenhChdkhkFzZ05 3vZGxxMmYJ+Lt2NGpua31iy2PQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFFPn4tjW a34tE8yZi9O8CZ63cbgcMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNTIxQzhFNUM3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvNzQ3QzY2OEVD Q0Q5MTFFRjlCNTJDODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnl/gDBABn+xkDBAB0zpQDBAB0zpYDBADLE/MwDQYJKoZI hvcNAQELBQADggEBAF01avnqADzkBPzvpentxEFQoab73BXehGUF/7mo1a/rU07w oFe4WrF++R4m2mZClURVg1NsW4ZpEjLz+hh9Mmn3OlTnxV+M9aebKASao0j4DIC3 /G5FDCmuBlZAZVFmXNnc+L06h5dhq8e/HkRqSQ9JRO0hO+0hWG+7tYtr0mCgdNcY mCAM4ND9jtPxtoelikTK7JkQ+drNTs2HyNQ8oNVtL+nKscfxeiw8g0+OsbsXE4MR km2kkAyQBvttMrMI2bSTxGDx/OTQlQGJ/YZPg2VMN2RfogssKTuhIMSu6uVVYO2w egHi/kYFfovN6L4/qv79VsdfmOyoe5A3AewvewE= -----END CERTIFICATE-----Generated at Mon Jun 23 13:02:18 2025 by rpki-client