$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa File: 03476D523FB011F097B5F864C4F9AE02.roa (raw, json) Hash identifier: V/GUkEYycrfVr0CeXDFIAE3DCEVs8ccFAFXl7jAkBfQ= Subject key identifier: CD:15:CD:77:F8:C7:E6:8A:4D:BF:9B:46:AA:05:BB:66:3F:2C:22:5E Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 0851 Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa Signing time: Mon 02 Jun 2025 12:49:25 +0000 ROA not before: Mon 02 Jun 2025 12:49:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153933 IP address blocks: 103.72.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF, serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Validity Not Before: Jun 2 12:49:25 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=683d9dd5-f0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f3:70:41:d4:3d:c4:63:fb:f5:e6:89:03:33: f1:b3:24:be:f1:17:61:7c:a4:59:8c:da:d2:d7:2c: 22:99:3f:25:5f:eb:f4:3b:fe:b1:47:8a:64:5b:f0: ee:7c:9b:5e:76:fc:16:14:ec:2a:e2:75:e8:2b:0a: c1:30:08:4d:01:4d:ad:a1:26:b9:dd:35:e0:23:1c: 7f:73:25:2d:35:0e:2c:af:43:82:dd:6c:05:65:30: 54:40:67:74:86:80:b5:14:4c:22:df:3b:de:3d:29: 2b:5a:ae:95:62:e1:25:7b:70:33:59:1a:f0:57:0c: 1f:c1:e3:fd:04:1d:b5:e5:18:7e:a4:a8:5a:fa:97: ab:9c:d3:44:60:e5:35:ea:0e:3f:91:25:ed:2f:24: 95:a4:ba:e3:46:e8:e2:cb:12:81:f9:4b:3e:9d:9d: cd:a2:b7:fa:6c:a9:84:f5:6a:72:a4:a6:a4:4c:80: f0:83:22:fc:28:22:6d:8d:f0:ac:df:aa:09:96:ec: 41:29:5c:57:be:f1:ae:c5:d9:0a:f3:46:10:eb:f9: 1c:b5:a4:7e:91:5d:d1:ee:43:c6:b2:b4:12:c4:27: 26:e6:07:1d:a5:28:4e:a7:7d:71:2f:e5:1e:63:57: 65:bb:3a:cc:77:ea:90:07:90:94:7d:be:03:0b:0b: b0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:15:CD:77:F8:C7:E6:8A:4D:BF:9B:46:AA:05:BB:66:3F:2C:22:5E X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.100.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d3:f7:7b:ce:d1:ec:89:b8:f1:1d:79:ab:62:e3:d0:ab:7d: c6:8d:e8:c7:c8:81:fa:61:52:8e:42:d8:83:79:ac:d6:6f:ed: 42:ce:a3:58:e1:78:6b:7b:e7:bb:7c:5c:cf:38:15:6f:f6:d1: b2:85:98:60:5f:64:f6:b9:17:9a:21:f8:27:80:ad:20:28:b2: 9d:c8:2b:90:1c:0a:84:5f:03:df:ec:2b:20:d4:34:c2:d4:00: 4a:a5:da:9c:04:a0:90:3f:c1:bb:e7:8e:cc:ce:71:55:fc:b4: c2:91:ec:c4:46:22:2d:f8:ca:89:f2:c0:df:19:98:f8:30:1b: 58:c1:10:d2:76:f5:0f:32:b3:52:ba:c8:18:c4:50:01:46:b4: 95:9c:dc:cd:96:6e:a3:e1:ca:b8:d1:81:37:5f:5b:fe:f2:f5: 07:56:06:a4:42:1c:5a:da:04:9d:68:b8:5e:07:85:d6:d8:16: b9:96:11:d0:f0:26:ce:a4:f8:48:38:5c:02:c7:be:e9:5f:8c: ba:44:58:27:6a:83:a3:d7:bd:76:b6:9c:c8:6f:c2:c6:34:9a: e1:e7:33:26:93:73:5d:e3:ab:0d:fe:79:01:4e:48:7c:99:c6: b8:48:c4:bd:a7:a6:14:22:ac:4e:c2:7e:0a:87:be:b7:30:6e: 50:07:7f:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjUwNjAyMTI0OTI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkOWRkNS1mMGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vNwQdQ9xGP79eaJAzPxsyS+8RdhfKRZjNrS1ywimT8lX+v0O/6xR4pkW/Du fJtedvwWFOwq4nXoKwrBMAhNAU2toSa53TXgIxx/cyUtNQ4sr0OC3WwFZTBUQGd0 hoC1FEwi3zvePSkrWq6VYuEle3AzWRrwVwwfweP9BB215Rh+pKha+pernNNEYOU1 6g4/kSXtLySVpLrjRujiyxKB+Us+nZ3Norf6bKmE9WpypKakTIDwgyL8KCJtjfCs 36oJluxBKVxXvvGuxdkK80YQ6/kctaR+kV3R7kPGsrQSxCcm5gcdpShOp31xL+Ue Y1dluzrMd+qQB5CUfb4DCwuwyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM0VzXf4 x+aKTb+bRqoFu2Y/LCJeMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvMDM0NzZENTIz RkIwMTFGMDk3QjVGODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSGQwDQYJKoZIhvcNAQELBQADggEBAAbT93vO0eyJuPEd eati49CrfcaN6MfIgfphUo5C2IN5rNZv7ULOo1jheGt757t8XM84FW/20bKFmGBf ZPa5F5oh+CeArSAosp3IK5AcCoRfA9/sKyDUNMLUAEql2pwEoJA/wbvnjszOcVX8 tMKR7MRGIi34yonywN8ZmPgwG1jBENJ29Q8ys1K6yBjEUAFGtJWc3M2WbqPhyrjR gTdfW/7y9QdWBqRCHFraBJ1ouF4HhdbYFrmWEdDwJs6k+Eg4XALHvulfjLpEWCdq g6PXvXa2nMhvwsY0muHnMyaTc13jqw3+eQFOSHyZxrhIxL2nphQirE7CfgqHvrcw blAHf5M= -----END CERTIFICATE-----Generated at Tue Jun 17 16:56:07 2025 by rpki-client