$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/4AE9812E737011F08E0D895FC4F9AE02.roa File: 4AE9812E737011F08E0D895FC4F9AE02.roa (raw, json) Hash identifier: i8SX9py0iYq2aRsZeJ74na0PXL6W00yPIP/w2ouognQ= Subject key identifier: E4:33:FC:F8:72:10:F6:4E:7A:62:22:5B:4C:58:83:8B:9E:66:CE:D1 Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 087D Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/4AE9812E737011F08E0D895FC4F9AE02.roa Signing time: Thu 07 Aug 2025 09:24:18 +0000 ROA not before: Thu 07 Aug 2025 09:24:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152179 IP address blocks: 103.72.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF, serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Validity Not Before: Aug 7 09:24:18 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=689470c2-d7bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:c8:15:0e:bf:fd:eb:21:4e:d2:22:1b:82: 05:df:d2:03:1a:87:76:2a:86:c3:20:8e:07:94:98: c2:8a:f4:83:ee:f2:5b:dd:60:a3:78:35:1e:ab:7d: 6e:17:56:0d:17:00:1a:39:ba:f3:20:65:f7:d2:97: 44:d2:e8:47:61:80:6d:4b:fc:af:2a:60:3f:55:4f: df:25:19:ba:fb:f7:48:da:4e:77:8a:62:89:56:8f: f2:f8:94:90:9d:09:e7:5f:53:40:cf:68:3a:e9:0e: 65:8e:99:ad:07:0e:5c:21:f8:15:a9:c8:00:04:de: bc:d4:23:a7:8d:0f:c8:cb:78:db:0c:55:e2:3d:a0: 3c:d1:39:1a:88:2c:b9:14:33:9b:0f:17:0d:e3:7e: 51:36:fe:68:fd:6c:95:a4:34:ce:fa:5e:60:1b:4a: e0:96:8a:c0:eb:81:a5:90:4f:88:72:13:06:29:4d: cf:73:61:14:90:40:26:c8:7e:34:d7:d1:52:2f:6c: 40:b2:67:36:7c:76:83:81:32:f5:dd:63:6b:26:94: 7e:9d:68:45:07:37:4d:b5:7b:12:e6:1d:7e:c2:d2: f4:2c:0f:9e:60:2b:c8:13:fc:c8:72:72:4a:b6:a8: a8:a0:e1:1b:d4:da:f2:70:a2:fe:33:73:5d:cb:a6: 39:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:33:FC:F8:72:10:F6:4E:7A:62:22:5B:4C:58:83:8B:9E:66:CE:D1 X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/4AE9812E737011F08E0D895FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.103.0/24 Signature Algorithm: sha256WithRSAEncryption 77:8b:d4:5f:c0:da:df:82:71:88:6f:59:fc:bb:1a:60:b4:ad: a3:bb:59:c4:48:68:f6:cd:d4:e9:95:77:99:a8:81:83:d2:c9: a6:6e:64:f3:3b:62:9c:3b:1f:a3:f1:fd:d3:4e:f1:40:ec:1a: 91:06:e2:e9:6f:3c:aa:c4:a1:cd:29:e4:4f:82:56:f1:37:a0: ef:88:2e:e8:b7:67:dd:63:45:8e:eb:fe:19:11:33:cf:fc:08: 14:de:10:20:6c:2e:58:69:65:af:fd:a5:77:66:fd:c6:8b:62: 37:21:71:eb:d3:40:56:de:a0:e2:52:14:0a:91:fb:34:a3:ad: 74:aa:87:f9:bb:c9:ce:84:56:26:79:9d:e2:b5:d8:f4:54:6e: d9:a8:01:cc:6c:c2:c0:a1:fd:b6:87:bc:ab:67:55:2a:79:46: be:14:47:58:85:96:b8:95:d9:9c:02:5a:ac:d6:49:86:61:47: 9e:ce:fd:0c:60:d4:69:1b:8c:60:03:1b:58:97:72:8e:0d:49: 6e:ed:a1:26:50:e3:da:0d:8f:6a:b5:bd:05:3c:81:82:aa:c1: 08:9b:76:69:f7:1c:76:75:5f:63:1d:89:ce:7f:e3:c6:6d:76: e7:f2:11:07:fe:a3:f1:b6:e5:eb:0f:db:87:db:f1:84:63:20: 65:5c:dc:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjUwODA3MDkyNDE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0NzBjMi1kN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLzIFQ6//eshTtIiG4IF39IDGod2KobDII4HlJjCivSD7vJb3WCjeDUeq31u F1YNFwAaObrzIGX30pdE0uhHYYBtS/yvKmA/VU/fJRm6+/dI2k53imKJVo/y+JSQ nQnnX1NAz2g66Q5ljpmtBw5cIfgVqcgABN681COnjQ/Iy3jbDFXiPaA80TkaiCy5 FDObDxcN435RNv5o/WyVpDTO+l5gG0rglorA64GlkE+IchMGKU3Pc2EUkEAmyH40 19FSL2xAsmc2fHaDgTL13WNrJpR+nWhFBzdNtXsS5h1+wtL0LA+eYCvIE/zIcnJK tqiooOEb1NrycKL+M3Ndy6Y5/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOQz/Phy EPZOemIiW0xYg4ueZs7RMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvNEFFOTgxMkU3 MzcwMTFGMDhFMEQ4OTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSGcwDQYJKoZIhvcNAQELBQADggEBAHeL1F/A2t+CcYhv Wfy7GmC0raO7WcRIaPbN1OmVd5mogYPSyaZuZPM7Ypw7H6Px/dNO8UDsGpEG4ulv PKrEoc0p5E+CVvE3oO+ILui3Z91jRY7r/hkRM8/8CBTeECBsLlhpZa/9pXdm/caL YjchcevTQFbeoOJSFAqR+zSjrXSqh/m7yc6EViZ5neK12PRUbtmoAcxswsCh/baH vKtnVSp5Rr4UR1iFlriV2ZwCWqzWSYZhR57O/Qxg1GkbjGADG1iXco4NSW7toSZQ 49oNj2q1vQU8gYKqwQibdmn3HHZ1X2Mdic5/48ZtdufyEQf+o/G25esP24fb8YRj IGVc3OA= -----END CERTIFICATE-----Generated at Sun Aug 10 18:53:28 2025 by rpki-client