$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa File: D994A1B2500C11EE83562B60C4F9AE02.roa (raw, json) Hash identifier: Iz380y9VTkSUeTgeze9iiFXSZYgaWspRNj6C26VUn2Q= Subject key identifier: 71:40:98:AD:B7:2E:57:1B:B8:5E:D3:4F:9A:AD:0C:9C:43:0B:C4:16 Certificate issuer: /CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Certificate serial: 0185 Authority key identifier: 1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa Signing time: Sun 03 Aug 2025 04:41:37 +0000 ROA not before: Sun 03 Aug 2025 04:41:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 932 IP address blocks: 103.247.28.0/23 maxlen: 24 2401:1fe0::/48 maxlen: 48 2401:1fe0:1::/48 maxlen: 48 2401:1fe0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA31, serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Validity Not Before: Aug 3 04:41:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ee881-fc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4c:c8:d1:23:5c:0a:b3:3b:a9:6c:2c:f5:42: ac:59:46:fd:71:89:47:fb:6c:dc:dd:a3:20:00:d1: 0c:c7:85:98:0c:80:57:f5:3b:9c:ac:24:c9:8e:c4: 80:a4:63:30:8d:4b:ab:ab:2a:99:19:70:2e:3b:45: d4:4f:41:3e:79:e7:ef:f8:4a:08:1f:c0:ea:c0:e3: 98:b7:03:02:7b:c4:5e:6d:22:7d:e8:0e:67:69:42: f4:59:f9:b9:5c:83:92:7e:ef:9c:7c:bc:d9:fc:20: a7:a0:78:f3:ce:e5:25:fe:b9:59:88:dc:e5:71:75: 6b:80:7a:be:a6:0a:d9:ef:1c:53:3b:0c:52:eb:53: b2:2c:2a:62:85:69:39:e8:1b:cc:75:33:f5:40:55: 88:f0:c4:95:3a:c7:01:1a:a3:4d:d3:f3:8f:7f:66: 54:cf:fa:23:a0:a7:ff:2f:aa:2c:1b:20:1b:10:93: 55:9b:6d:8a:af:a9:26:10:c9:9a:3f:67:2b:23:df: cf:60:55:35:9c:b1:2e:a9:8c:79:00:91:67:83:4e: 27:06:7d:35:dc:56:8d:bf:ff:0f:59:ce:69:56:d8: ee:c1:25:ee:61:65:7d:71:fb:59:5d:00:4c:3c:27: 92:cf:b4:86:7a:bc:71:b2:b1:b3:4c:19:5c:41:8e: fe:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:40:98:AD:B7:2E:57:1B:B8:5E:D3:4F:9A:AD:0C:9C:43:0B:C4:16 X509v3 Authority Key Identifier: keyid:1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.28.0/23 IPv6: 2401:1fe0::-2401:1fe0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 17:14:44:16:11:1a:54:9d:d7:d9:4b:41:25:91:f4:9c:9c:e1: 36:e4:0a:2e:91:d2:20:e4:a7:d4:12:e5:44:d9:3a:5f:c3:28: 75:b9:2a:0e:b2:5c:0f:dc:aa:92:38:b4:2d:be:53:17:71:98: 76:7d:da:05:b5:f2:19:dd:cd:c3:e7:d2:6e:6d:f9:97:62:62: 9a:66:e8:ec:a0:13:52:ec:c9:66:87:3d:8a:b0:3b:10:97:24: cb:61:fa:f1:a3:44:b0:58:69:e1:78:be:85:01:8d:d0:05:2e: 63:4d:a6:0f:c4:56:3e:30:b4:42:9b:c6:62:9b:44:96:c5:98: a1:63:45:d5:e4:d0:e1:ed:02:01:63:15:42:6b:9a:8f:46:00: 88:c7:52:38:98:ff:5a:78:03:1c:67:26:b5:5e:57:ef:6f:b8: e7:2c:70:ad:34:d7:9e:7e:43:ee:4c:d2:a7:e7:2c:84:3b:d4: 7c:1c:ad:f1:ab:ce:c5:8f:b8:e0:7d:17:7a:df:f7:1d:a8:c3: 31:af:c3:f3:c8:3b:84:49:be:d0:98:e1:05:60:95:db:bd:1b: 3d:56:98:50:f6:ba:fe:f0:75:c8:eb:5a:75:d9:7c:9a:88:5b: 63:dc:96:2a:98:40:c6:e4:62:8d:de:ad:f5:ba:cd:2f:e9:4d: 2e:6e:cb:87 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBMzExMTAvBgNVBAUTKDFFRjMwQzRDNTYwNEE1NkVDQjNFQUVFN0YyQ0E5N0VC NzgxMDUwNzAwHhcNMjUwODAzMDQ0MTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlZTg4MS1mYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUzI0SNcCrM7qWws9UKsWUb9cYlH+2zc3aMgANEMx4WYDIBX9TucrCTJjsSA pGMwjUurqyqZGXAuO0XUT0E+eefv+EoIH8DqwOOYtwMCe8RebSJ96A5naUL0Wfm5 XIOSfu+cfLzZ/CCnoHjzzuUl/rlZiNzlcXVrgHq+pgrZ7xxTOwxS61OyLCpihWk5 6BvMdTP1QFWI8MSVOscBGqNN0/OPf2ZUz/ojoKf/L6osGyAbEJNVm22Kr6kmEMma P2crI9/PYFU1nLEuqYx5AJFng04nBn013FaNv/8PWc5pVtjuwSXuYWV9cftZXQBM PCeSz7SGerxxsrGzTBlcQY7+DwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFHFAmK23 LlcbuF7TT5qtDJxDC8QWMB8GA1UdIwQYMBaAFB7zDExWBKVuyz6u5/LKl+t4EFBw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0EzMS8wOTBGMTRGQTUw MEMxMUVFODJCMjY4NjNDNEY5QUUwMi9Idk1NVEZZRXBXN0xQcTduOHNxWDYzZ1FV SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2TU1URllFcFc3TFBxN244c3FYNjNnUVVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBMzEvMDkwRjE0RkE1MDBDMTFFRTgyQjI2ODYzQzRGOUFFMDIvRDk5NEExQjI1 MDBDMTFFRTgzNTYyQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFn9xwwGAQCAAIwEjAQAwUFJAEf4AMHACQBH+AAAjANBgkq hkiG9w0BAQsFAAOCAQEAFxREFhEaVJ3X2UtBJZH0nJzhNuQKLpHSIOSn1BLlRNk6 X8ModbkqDrJcD9yqkji0Lb5TF3GYdn3aBbXyGd3Nw+fSbm35l2Jimmbo7KATUuzJ Zoc9irA7EJcky2H68aNEsFhp4Xi+hQGN0AUuY02mD8RWPjC0QpvGYptElsWYoWNF 1eTQ4e0CAWMVQmuaj0YAiMdSOJj/WngDHGcmtV5X72+45yxwrTTXnn5D7kzSp+cs hDvUfByt8avOxY+44H0Xet/3HajDMa/D88g7hEm+0JjhBWCV270bPVaYUPa6/vB1 yOtaddl8mohbY9yWKphAxuRijd6t9brNL+lNLm7Lhw== -----END CERTIFICATE-----Generated at Sat Aug 9 02:46:12 2025 by rpki-client