$ rpki-client -vvf rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa File: 3F67E64E62BD11EE8F393D25C4F9AE02.roa (raw, json) Hash identifier: M//W1UwKYdpgfzirMsSYlccdpo+EbdrSiaWLAUJYdus= Subject key identifier: CD:DB:7B:95:17:0F:21:49:56:D6:D9:09:2F:1A:C5:82:75:59:6B:05 Certificate issuer: /CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Certificate serial: 0D94 Authority key identifier: D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa Signing time: Tue 22 Jul 2025 18:27:38 +0000 ROA not before: Tue 22 Jul 2025 18:27:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23688 IP address blocks: 103.141.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3476 (0xd94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915617E, serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Validity Not Before: Jul 22 18:27:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687fd81a-2fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:d6:aa:59:db:68:20:4f:c0:ec:de:61:e8: 46:2a:9e:1f:d3:57:b2:3d:78:9c:ce:21:0d:16:a4: bb:76:2f:5a:ad:a7:89:b0:6d:13:f7:6c:ee:85:7b: ed:cb:ca:d6:4e:4d:45:d5:85:b7:cd:65:1d:0a:d3: b8:a4:ec:df:76:f5:6d:50:59:04:8e:42:e3:d5:00: d9:9a:34:43:26:b6:fb:3a:3f:ba:6b:e9:b2:43:0d: 30:f6:79:b3:81:e0:b7:a1:53:b0:66:98:61:3d:86: a1:76:f5:0f:1d:8c:e9:99:c4:76:c6:cb:fd:ff:86: 4a:18:78:07:41:cb:02:01:9b:01:1e:9f:b3:d0:da: a2:d0:a2:5f:8e:c6:6e:0c:2b:a8:48:91:4e:5a:cd: ac:dc:9a:91:6d:1a:bd:3e:3a:4f:c2:c5:d8:b3:3a: df:8f:45:ee:11:00:fa:a6:25:58:01:e9:75:89:2d: ec:db:4e:c4:d5:db:47:f7:4c:79:ec:50:2f:b4:d4: 0b:e5:a3:97:a9:7a:82:2e:64:1a:a6:5e:54:5c:ff: f0:de:e9:bc:8b:a3:54:f0:a6:d9:31:24:de:90:58: d2:cd:c2:e8:4d:c6:db:73:cd:b5:92:37:7f:a1:da: ff:84:2a:47:ce:b8:3d:33:12:42:3c:f0:8f:ff:f2: dd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DB:7B:95:17:0F:21:49:56:D6:D9:09:2F:1A:C5:82:75:59:6B:05 X509v3 Authority Key Identifier: keyid:D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.66.0/23 Signature Algorithm: sha256WithRSAEncryption 95:f2:77:f7:e2:e9:a9:9d:40:18:34:76:35:42:5c:3e:59:b3: 0d:6b:8b:62:1b:7f:65:fc:f8:fa:b9:60:2b:83:e6:f9:ed:bb: 62:64:c2:24:91:dc:50:cf:0c:53:d0:8b:ab:de:ff:f1:81:b9: e5:6c:15:40:17:01:4d:13:71:bf:58:46:a9:5c:ad:e9:2c:d9: fe:b6:25:8c:99:4d:d8:ce:ed:b4:1c:bd:a8:84:38:84:be:e4: ea:89:54:ed:74:23:b6:59:63:20:46:ac:b6:72:e0:33:fc:cd: 25:e1:b5:50:43:68:21:85:4a:c9:7c:7c:c8:7d:db:26:0a:2c: 24:18:4a:6f:4d:99:79:c0:a8:70:cd:01:86:bd:2c:df:df:79: 96:aa:5e:f9:2c:32:aa:da:6c:5b:62:f6:12:7c:99:1c:b0:fd: f0:db:07:8e:33:ad:ce:68:bd:a4:d1:7e:4a:87:7c:6e:86:90: 09:e5:d0:6c:d5:0c:c3:7c:47:08:8e:47:34:60:57:5b:d9:a5: ba:8f:54:9a:81:9a:85:cf:e1:dc:1c:cc:2d:cf:34:c3:6b:7c: 9d:ba:00:2e:be:2c:b4:60:f5:4c:75:1e:cb:19:eb:1d:5a:c3: 32:cc:df:bd:e7:59:cc:4c:83:04:44:2b:63:96:70:75:9d:d6: 36:f6:7f:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxN0UxMTAvBgNVBAUTKEQyOEM1MkVEMDkwQzUzOUMxMEYyMjJERUVDRDlBNzND NDlBMTY4MDQwHhcNMjUwNzIyMTgyNzM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZDgxYS0yZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWzWqlnbaCBPwOzeYehGKp4f01eyPXicziENFqS7di9araeJsG0T92zuhXvt y8rWTk1F1YW3zWUdCtO4pOzfdvVtUFkEjkLj1QDZmjRDJrb7Oj+6a+myQw0w9nmz geC3oVOwZphhPYahdvUPHYzpmcR2xsv9/4ZKGHgHQcsCAZsBHp+z0Nqi0KJfjsZu DCuoSJFOWs2s3JqRbRq9PjpPwsXYszrfj0XuEQD6piVYAel1iS3s207E1dtH90x5 7FAvtNQL5aOXqXqCLmQapl5UXP/w3um8i6NU8KbZMSTekFjSzcLoTcbbc821kjd/ odr/hCpHzrg9MxJCPPCP//LdowIDAQABo4IClTCCApEwHQYDVR0OBBYEFM3be5UX DyFJVtbZCS8axYJ1WWsFMB8GA1UdIwQYMBaAFNKMUu0JDFOcEPIi3uzZpzxJoWgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjE3RS9FMUFEQjc0NkM5 OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1d1E4aUxlN05tblBFbWhh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBveFM3UWtNVTV3UThpTGU3Tm1uUEVtaGFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYxN0UvRTFBREI3NDZDOTk1MTFFOUJBQUFCMTc0QzRGOUFFMDIvM0Y2N0U2NEU2 MkJEMTFFRThGMzkzRDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjUIwDQYJKoZIhvcNAQELBQADggEBAJXyd/fi6amdQBg0 djVCXD5Zsw1ri2Ibf2X8+Pq5YCuD5vntu2JkwiSR3FDPDFPQi6ve//GBueVsFUAX AU0Tcb9YRqlcreks2f62JYyZTdjO7bQcvaiEOIS+5OqJVO10I7ZZYyBGrLZy4DP8 zSXhtVBDaCGFSsl8fMh92yYKLCQYSm9NmXnAqHDNAYa9LN/feZaqXvksMqrabFti 9hJ8mRyw/fDbB44zrc5ovaTRfkqHfG6GkAnl0GzVDMN8RwiORzRgV1vZpbqPVJqB moXP4dwczC3PNMNrfJ26AC6+LLRg9Ux1HssZ6x1awzLM373nWcxMgwREK2OWcHWd 1jb2f/Y= -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:31 2025 by rpki-client