$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa File: 1071470CF41311EA9FD4EE0FC4F9AE02.roa (raw, json) Hash identifier: nBufo1kIX8wiHW05HK56kjkzuY8kLzWX8hul7hd+tSI= Subject key identifier: BA:6E:C6:A2:95:2A:DE:B0:7A:16:6B:05:B3:B9:42:E1:5F:92:1F:6B Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1959 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:17 +0000 ROA not before: Tue 14 Jan 2025 16:34:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 213120 IP address blocks: 103.41.68.0/22 maxlen: 22 103.41.68.0/24 maxlen: 24 103.41.69.0/24 maxlen: 24 103.41.70.0/24 maxlen: 24 103.41.71.0/24 maxlen: 24 114.141.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6489 (0x1959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 14 16:34:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67869209-9930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f8:27:22:ad:dd:11:d7:cb:4c:10:84:c4:74: 1b:c8:1c:c2:d5:95:cc:f4:01:0a:38:e5:27:bf:e6: 2e:82:2d:c5:89:39:53:77:51:50:a3:ad:14:a4:2e: e8:fc:76:c2:d2:cf:aa:d6:fb:58:65:58:1d:49:96: 3d:c7:6f:53:04:3d:a3:b0:c2:c7:89:7c:98:2c:11: d6:5f:f6:ef:00:e8:15:f9:25:20:d0:3c:7a:d9:b5: 63:1f:16:ed:a3:3b:2d:03:d7:56:61:e0:fc:81:f8: f8:56:27:be:f9:69:30:d0:e0:44:b8:d3:fd:1c:5c: bf:9e:41:69:d6:a7:53:8c:f0:64:94:3b:18:ea:92: be:a4:3b:07:1e:c2:10:9b:80:09:dc:7d:5b:a0:cd: b5:e4:f0:05:da:dc:ba:1c:a9:96:0c:10:74:1b:64: ce:4f:cb:c8:9e:20:c1:aa:29:76:ce:aa:65:ff:5b: cf:6d:0a:17:2f:59:91:b9:8f:a8:c8:47:ed:0a:ef: 6a:4a:4c:2c:c4:0f:66:06:ea:fe:96:5b:5a:83:da: a0:d9:99:ac:c5:bd:8d:76:7e:79:5a:3c:0f:dd:a8: 9e:e1:56:ba:0d:49:09:ce:59:d8:7c:91:2b:19:8d: 7d:3b:9f:21:d9:f9:ec:49:84:a7:c8:2b:02:bb:33: 22:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6E:C6:A2:95:2A:DE:B0:7A:16:6B:05:B3:B9:42:E1:5F:92:1F:6B X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.68.0/22 114.141.72.0/24 Signature Algorithm: sha256WithRSAEncryption a3:7c:2a:56:2b:69:62:3e:50:4b:98:95:b6:95:ae:6f:7f:3a: c1:ad:e2:61:48:c8:24:f4:6e:6f:8d:4b:d2:e4:b6:44:31:b6: ab:57:99:42:82:04:b2:1a:f8:29:ed:24:b4:91:fc:d0:7f:fd: 22:b8:ef:b1:30:13:8d:1c:1f:8b:95:bb:c3:59:e5:dd:fa:9c: 0d:d4:90:f0:75:4e:91:22:db:ae:a9:8f:32:4f:97:96:0e:10: 5d:d7:c0:a0:4f:c2:5d:4d:0b:b2:e1:cc:83:1d:37:05:d5:fc: d3:d2:54:99:b5:e7:82:45:b2:41:49:76:aa:00:82:05:10:c3: 35:2d:19:c0:d4:b5:65:2b:e2:77:7a:f9:31:c5:9c:a5:4e:2d: cc:1d:b8:8b:5e:f6:8d:d2:8e:0a:fa:da:14:84:ce:0e:46:5e: 16:c6:fd:b6:8e:58:45:c8:eb:95:87:3f:d2:0a:e5:49:c0:a7: ac:7c:25:91:dd:72:39:d6:4b:a7:8f:ea:e4:50:a8:51:3a:ee: 05:a7:6c:13:dc:cb:fb:5c:70:3a:57:74:76:9d:37:39:2a:00: 04:7e:31:f7:d1:08:37:c4:5c:c9:9f:76:41:f2:dc:60:8b:bd: c8:49:a8:8f:fe:54:2c:02:8c:af:7a:24:51:e8:3a:ad:b1:38: b5:bb:d2:8d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIwOS05OTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPgnIq3dEdfLTBCExHQbyBzC1ZXM9AEKOOUnv+Yugi3FiTlTd1FQo60UpC7o /HbC0s+q1vtYZVgdSZY9x29TBD2jsMLHiXyYLBHWX/bvAOgV+SUg0Dx62bVjHxbt ozstA9dWYeD8gfj4Vie++Wkw0OBEuNP9HFy/nkFp1qdTjPBklDsY6pK+pDsHHsIQ m4AJ3H1boM215PAF2ty6HKmWDBB0G2TOT8vIniDBqil2zqpl/1vPbQoXL1mRuY+o yEftCu9qSkwsxA9mBur+lltag9qg2Zmsxb2Ndn55WjwP3aie4Va6DUkJzlnYfJEr GY19O58h2fnsSYSnyCsCuzMinwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLpuxqKV Kt6wehZrBbO5QuFfkh9rMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvMTA3MTQ3MENG NDEzMTFFQTlGRDRFRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnKUQDBAByjUgwDQYJKoZIhvcNAQELBQADggEBAKN8KlYr aWI+UEuYlbaVrm9/OsGt4mFIyCT0bm+NS9LktkQxtqtXmUKCBLIa+CntJLSR/NB/ /SK477EwE40cH4uVu8NZ5d36nA3UkPB1TpEi266pjzJPl5YOEF3XwKBPwl1NC7Lh zIMdNwXV/NPSVJm154JFskFJdqoAggUQwzUtGcDUtWUr4nd6+THFnKVOLcwduIte 9o3Sjgr62hSEzg5GXhbG/baOWEXI65WHP9IK5UnAp6x8JZHdcjnWS6eP6uRQqFE6 7gWnbBPcy/tccDpXdHadNzkqAAR+MffRCDfEXMmfdkHy3GCLvchJqI/+VCwCjK96 JFHoOq2xOLW70o0= -----END CERTIFICATE-----Generated at Tue Nov 4 22:27:47 2025 by rpki-client