$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/6D8B82D0D6D811EE8BBA8938C4F9AE02.roa File: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (raw, json) Hash identifier: 1cMybGIbvpxyTUqlwMM8pDEltG6qbjXuctF+adjG4sw= Subject key identifier: F4:C6:23:AF:A2:4C:09:D3:8B:BE:12:AC:9C:10:8B:C9:27:42:80:CE Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C87 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/6D8B82D0D6D811EE8BBA8938C4F9AE02.roa Signing time: Tue 22 Jul 2025 11:19:12 +0000 ROA not before: Tue 22 Jul 2025 11:19:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137530 IP address blocks: 103.112.56.0/24 maxlen: 24 103.112.57.0/24 maxlen: 24 103.112.58.0/23 maxlen: 23 103.112.58.0/24 maxlen: 24 103.112.59.0/24 maxlen: 24 2402:a540:56::/48 maxlen: 48 2402:a540:57::/48 maxlen: 48 2402:a540:58::/48 maxlen: 48 2402:a540:59::/48 maxlen: 48 2402:a540:156::/48 maxlen: 48 2402:a540:157::/48 maxlen: 48 2402:a540:158::/48 maxlen: 48 2402:a540:159::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Jul 22 11:19:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687f73af-0970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:bd:ce:98:3e:c4:b1:68:b4:f7:15:29:b7: 25:79:74:36:a6:d3:22:3d:0a:71:dc:70:81:86:f8: 86:e8:b6:33:35:56:c7:1c:94:a7:0c:8f:16:23:83: c4:69:5f:0c:79:3d:93:b8:03:9d:fb:f7:67:1b:81: 75:bf:27:6d:be:43:ec:ac:bf:96:32:d6:7b:60:4d: 6e:64:20:68:ed:39:03:52:68:52:59:33:6d:ee:9f: 7f:88:a2:92:6d:3f:ae:a0:87:2f:73:26:6d:b5:30: 36:72:be:af:e6:89:1b:15:68:e1:5e:62:ba:44:41: 76:dd:7f:e4:83:11:66:4c:0a:47:18:51:03:a3:34: bf:f4:e1:c1:90:12:2e:e2:28:8d:e4:e7:e4:35:66: 58:fe:e8:55:99:0f:c9:8e:e3:df:97:cf:5a:82:09: 2d:63:66:29:b6:4b:d4:a6:2d:71:cb:9c:c6:21:e1: dc:67:15:29:c6:ca:36:4b:f9:9d:ae:ff:5c:eb:b3: eb:d1:20:78:92:9b:a6:0e:ed:4c:98:4c:4c:be:c7: 36:00:e2:68:17:9b:c2:f0:e7:31:6f:1b:c0:72:8b: f2:22:a9:ed:89:7c:5a:5f:74:a5:20:79:4d:9d:8f: ed:06:f4:18:b2:7c:9b:dd:98:d8:2d:73:b2:6b:17: f3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C6:23:AF:A2:4C:09:D3:8B:BE:12:AC:9C:10:8B:C9:27:42:80:CE X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/6D8B82D0D6D811EE8BBA8938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.56.0/22 IPv6: 2402:a540:56::-2402:a540:59:ffff:ffff:ffff:ffff:ffff 2402:a540:156::-2402:a540:159:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 03:80:4e:73:fd:c4:33:b6:15:2c:21:44:eb:f6:9a:f7:40:9e: 4e:76:c6:00:98:02:f4:69:c4:c0:db:5d:5e:49:c1:36:cf:5a: 10:c0:e7:e0:77:a1:f3:cd:2d:f9:ba:6f:3d:db:4d:0d:ad:e5: f5:9f:a2:c9:2f:8b:6b:f1:3c:00:e6:7d:59:01:3a:89:18:65: 29:e1:f4:bc:93:55:e6:92:b8:21:0a:46:18:4a:d1:c7:ef:20: 85:f3:51:f8:c1:b2:d0:3c:f8:4c:8d:a2:80:e0:ad:4d:73:89: 4e:ee:b9:f7:59:fa:30:c0:0c:5f:b2:8a:97:8d:c1:09:51:59: f5:07:99:bd:52:4a:84:71:c1:19:6f:5d:82:a8:dd:7c:91:c8: 31:24:3a:ea:3b:16:7c:54:50:f3:79:3f:f5:6d:3b:51:41:1d: 82:e8:11:ba:2f:3b:ed:04:0e:55:87:48:72:7f:c2:54:ee:40: 17:08:07:86:a0:36:03:aa:f7:6d:d1:6a:da:5a:bf:85:22:fe: b5:cb:98:11:3d:5e:df:8e:58:63:5b:c2:e8:02:1b:6f:85:2d: 13:ec:d2:32:8f:d5:ff:63:d8:a0:3c:ad:75:6b:23:58:8d:e6: d8:03:7b:f7:32:41:45:60:70:96:5a:79:f4:0d:ba:b6:6d:61: 93:7f:28:55 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUwNzIyMTExOTEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmNzNhZi0wOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnC9zpg+xLFotPcVKbcleXQ2ptMiPQpx3HCBhviG6LYzNVbHHJSnDI8WI4PE aV8MeT2TuAOd+/dnG4F1vydtvkPsrL+WMtZ7YE1uZCBo7TkDUmhSWTNt7p9/iKKS bT+uoIcvcyZttTA2cr6v5okbFWjhXmK6REF23X/kgxFmTApHGFEDozS/9OHBkBIu 4iiN5OfkNWZY/uhVmQ/JjuPfl89aggktY2YptkvUpi1xy5zGIeHcZxUpxso2S/md rv9c67Pr0SB4kpumDu1MmExMvsc2AOJoF5vC8OcxbxvAcovyIqntiXxaX3SlIHlN nY/tBvQYsnyb3ZjYLXOyaxfzCQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFPTGI6+i TAnTi74SrJwQi8knQoDOMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQxQTIvREZEMTFGMjgwNkE2MTFFQTg5NzVFMzQxQzRGOUFFMDIvNkQ4QjgyRDBE NkQ4MTFFRThCQkE4OTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MAwEAgABMAYDBAJncDgwLgQCAAIwKDASAwcBJAKlQABWAwcBJAKlQABYMBID BwEkAqVAAVYDBwEkAqVAAVgwDQYJKoZIhvcNAQELBQADggEBAAOATnP9xDO2FSwh ROv2mvdAnk52xgCYAvRpxMDbXV5JwTbPWhDA5+B3ofPNLfm6bz3bTQ2t5fWfoskv i2vxPADmfVkBOokYZSnh9LyTVeaSuCEKRhhK0cfvIIXzUfjBstA8+EyNooDgrU1z iU7uufdZ+jDADF+yipeNwQlRWfUHmb1SSoRxwRlvXYKo3XyRyDEkOuo7FnxUUPN5 P/VtO1FBHYLoEbovO+0EDlWHSHJ/wlTuQBcIB4agNgOq923Ratpav4Ui/rXLmBE9 Xt+OWGNbwugCG2+FLRPs0jKP1f9j2KA8rXVrI1iN5tgDe/cyQUVgcJZaefQNurZt YZN/KFU= -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:46 2025 by rpki-client