$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CD247B68739211F09FE8D469C4F9AE02.roa File: CD247B68739211F09FE8D469C4F9AE02.roa (raw, json) Hash identifier: VslcBcXZVje1EAwWo3NkJ0zb2mLdyB22xblJ3mvlwLY= Subject key identifier: AF:74:D7:8E:57:A8:0C:E5:AC:20:B6:B9:EC:2A:2C:36:5B:0F:C6:4D Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 3931 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CD247B68739211F09FE8D469C4F9AE02.roa Signing time: Thu 07 Aug 2025 13:31:19 +0000 ROA not before: Thu 07 Aug 2025 13:31:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18053 IP address blocks: 203.81.237.0/24 maxlen: 24 203.81.238.0/24 maxlen: 24 203.81.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14641 (0x3931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Aug 7 13:31:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6894aaa7-08ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bc:04:3f:a7:80:4d:d0:77:80:8e:9a:0d:5f: 24:fa:4c:f6:7d:0f:70:9e:2c:89:71:13:69:d9:25: cc:d2:10:0d:c7:12:81:8e:b3:46:81:5a:8f:1a:d3: 98:37:23:3a:93:8a:3d:69:6a:e5:5c:8c:9f:c8:07: 0f:90:05:e6:08:0c:0a:2f:a7:14:63:34:bd:6f:0a: 64:f9:dc:b3:a5:8f:6e:4e:1e:6f:b9:e7:b2:0a:6c: 3a:c4:72:36:09:e0:0a:5f:84:5f:66:f6:64:4f:8c: 26:62:a9:0e:19:bf:71:4f:a7:22:12:24:02:86:3b: 5e:b4:8b:3b:22:94:0e:b0:41:fb:cb:0d:33:34:c2: a0:64:ee:55:75:fa:29:c5:fe:70:31:11:91:18:d2: 98:8a:f9:5f:68:41:e4:f7:d7:64:98:bf:97:c1:bf: 17:09:f3:f2:26:4a:30:d8:f4:86:94:8c:8d:00:ac: c7:ae:3c:70:7c:53:39:15:8f:8f:8b:c6:55:44:d8: 83:ce:2e:50:82:ed:f1:db:c5:9b:cc:21:51:11:dc: 02:80:be:be:2e:58:32:1e:c2:c6:02:47:98:43:00: d4:b0:24:e7:bd:fd:24:e0:2e:c1:32:af:29:6e:a5: 42:64:3e:5e:30:fb:0a:3d:91:6d:5d:72:e5:43:d3: 86:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:74:D7:8E:57:A8:0C:E5:AC:20:B6:B9:EC:2A:2C:36:5B:0F:C6:4D X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CD247B68739211F09FE8D469C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.81.237.0-203.81.239.255 Signature Algorithm: sha256WithRSAEncryption 53:ef:b8:32:43:28:13:6e:81:94:09:77:61:d1:09:f4:3d:bd: 76:f8:cc:9b:6e:2c:fc:1d:65:46:b1:c0:f3:04:12:e8:ad:c7: 6c:80:f8:08:59:7e:4c:29:47:4d:9f:2f:e1:a7:31:c0:37:3b: fa:8e:98:da:b1:27:95:d5:4e:25:13:e6:0d:a6:e1:8c:26:64: ae:40:6c:2c:cd:8a:0a:40:bb:a9:04:3f:3f:96:79:53:6d:6f: 66:ff:2f:16:fb:84:93:d6:7d:86:be:ef:b4:e8:cd:c0:1a:39: 3f:14:03:a7:77:49:18:e4:85:c5:4b:95:f0:6d:89:0a:8d:0a: 80:81:12:67:5c:53:4d:f4:4a:2b:57:fa:1c:c6:f2:d5:17:ab: 6f:89:91:41:13:d8:f3:24:3c:c0:8d:55:2a:0f:88:0b:e7:2b: 78:87:c9:0c:ff:85:2b:b3:13:23:cd:89:9f:93:2a:00:80:ec: 01:7a:85:b1:8b:aa:04:be:9b:4d:96:b9:3d:6a:cc:ea:a5:81: d1:d0:d7:36:b4:37:4d:b6:6e:dc:62:60:99:e7:11:86:6e:92: c9:e6:b5:31:c6:35:50:be:33:a9:28:aa:59:b1:b7:6d:33:68: 35:43:a1:9f:6b:53:b7:58:01:18:6e:a8:89:04:79:00:c7:29: 96:33:b5:94 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICOTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwODA3MTMzMTE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0YWFhNy0wOGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LwEP6eATdB3gI6aDV8k+kz2fQ9wniyJcRNp2SXM0hANxxKBjrNGgVqPGtOY NyM6k4o9aWrlXIyfyAcPkAXmCAwKL6cUYzS9bwpk+dyzpY9uTh5vueeyCmw6xHI2 CeAKX4RfZvZkT4wmYqkOGb9xT6ciEiQChjtetIs7IpQOsEH7yw0zNMKgZO5Vdfop xf5wMRGRGNKYivlfaEHk99dkmL+Xwb8XCfPyJkow2PSGlIyNAKzHrjxwfFM5FY+P i8ZVRNiDzi5Qgu3x28WbzCFREdwCgL6+LlgyHsLGAkeYQwDUsCTnvf0k4C7BMq8p bqVCZD5eMPsKPZFtXXLlQ9OGewIDAQABo4ICnTCCApkwHQYDVR0OBBYEFK90145X qAzlrCC2uewqLDZbD8ZNMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvQ0QyNDdCNjg3 MzkyMTFGMDlGRThENDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMtR7QMEBMtR4DANBgkqhkiG9w0BAQsFAAOCAQEAU++4 MkMoE26BlAl3YdEJ9D29dvjMm24s/B1lRrHA8wQS6K3HbID4CFl+TClHTZ8v4acx wDc7+o6Y2rEnldVOJRPmDabhjCZkrkBsLM2KCkC7qQQ/P5Z5U21vZv8vFvuEk9Z9 hr7vtOjNwBo5PxQDp3dJGOSFxUuV8G2JCo0KgIESZ1xTTfRKK1f6HMby1Rerb4mR QRPY8yQ8wI1VKg+IC+creIfJDP+FK7MTI82Jn5MqAIDsAXqFsYuqBL6bTZa5PWrM 6qWB0dDXNrQ3TbZu3GJgmecRhm6Syea1McY1UL4zqSiqWbG3bTNoNUOhn2tTt1gB GG6oiQR5AMcpljO1lA== -----END CERTIFICATE-----Generated at Fri Aug 8 19:32:21 2025 by rpki-client