$ rpki-client -vvf rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa File: 41C460BE1BE911ED81DB667EC4F9AE02.roa (raw, json) Hash identifier: L72vUBIBeDwbGuD7Dpp75eY28vyT7nB6NViB+/nJ0Yk= Subject key identifier: C0:81:60:35:C3:AC:39:A7:C2:5B:5F:DA:2D:B3:8F:45:41:1C:79:BF Certificate issuer: /CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Certificate serial: 0318 Authority key identifier: AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa Signing time: Fri 01 Aug 2025 02:38:25 +0000 ROA not before: Fri 01 Aug 2025 02:38:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137967 IP address blocks: 103.189.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917414E, serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Validity Not Before: Aug 1 02:38:25 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c28a1-9799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:77:ec:7a:95:bb:3c:71:4b:64:14:90:2f: 6a:eb:8a:f0:92:45:e5:d5:30:3e:cc:1b:df:21:f5: 81:dc:81:83:61:c1:9c:34:83:10:1a:20:3c:32:b6: 91:2a:25:1a:a7:05:a9:1b:65:e7:19:14:f0:e9:57: 27:aa:1a:6f:40:35:81:91:28:d6:36:04:b0:1f:9e: fb:7c:ee:e5:51:9c:9a:7d:e6:63:c0:86:c5:87:45: e7:7b:48:06:34:0f:6b:8c:46:1e:56:f7:96:38:2e: 28:19:bf:1f:0d:41:1d:ca:8a:b1:51:ae:05:b0:f0: 19:ff:2d:4b:79:9d:52:6f:57:b4:84:7c:37:25:58: e4:3e:79:0d:23:ab:b7:79:bc:fd:f3:88:d2:69:7e: 2e:aa:00:be:7c:6f:90:10:c6:05:07:cc:25:71:60: 62:c0:32:c6:2a:74:d9:22:e3:1a:75:71:55:f5:9f: 0d:e8:f2:fb:9b:f8:c7:db:53:cd:5a:b2:97:1f:52: 79:0d:51:5f:29:b4:e6:a5:08:a4:e4:b9:ab:c8:1e: 6c:db:de:1f:93:4e:a0:9e:8d:b0:fe:85:f0:ee:a8: ce:91:12:96:d1:7d:97:54:98:20:09:13:ad:01:d6: dd:73:df:80:fc:65:c7:f6:60:69:cc:69:c0:c6:dd: e3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:81:60:35:C3:AC:39:A7:C2:5B:5F:DA:2D:B3:8F:45:41:1C:79:BF X509v3 Authority Key Identifier: keyid:AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/41C460BE1BE911ED81DB667EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.11.0/24 Signature Algorithm: sha256WithRSAEncryption 42:19:29:07:9d:ad:c4:54:88:31:49:f0:a5:a6:d0:04:21:a5: 41:5b:87:eb:09:11:3a:d0:6b:be:b3:e3:56:6a:b5:75:18:6a: c8:87:a6:72:99:97:18:a3:7f:a4:f4:4e:16:09:35:9d:2f:db: ed:7c:e7:a9:35:4b:6b:f2:33:96:60:50:5e:32:03:07:72:d7: 1e:01:6b:55:21:53:5a:79:33:35:d7:3b:94:e6:71:aa:09:5e: 05:e9:ef:79:a1:10:44:c4:33:b1:02:f2:1e:b9:a2:10:80:04: e4:73:81:c0:aa:82:99:08:33:e8:16:27:c5:fa:4c:21:40:64: 14:2f:08:1f:28:8e:5b:40:f3:50:dd:4b:f5:fb:92:e6:28:0c: dc:34:f7:51:0e:a0:33:44:1c:74:49:6c:30:ce:4a:29:39:dc: 2d:0a:15:d3:44:75:d4:96:ce:56:45:b8:ea:8b:34:84:71:d0: e8:18:7b:7d:fe:40:a9:be:af:67:9d:89:87:87:ff:95:87:25: 36:34:96:3d:a0:18:bf:da:e0:14:12:88:ba:3b:dd:07:b3:2e: 0e:3f:23:f9:ca:cc:4b:af:1c:21:30:69:68:22:40:38:e5:5d: d4:24:03:91:09:8a:37:c1:f2:0b:6e:7d:a5:64:5c:3a:84:c4: 18:18:0d:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxNEUxMTAvBgNVBAUTKEFGNjcxMzJEODM3RDU3NkZGRjc3NzIyN0EzNzI1RDYw MUVEOTEwNUQwHhcNMjUwODAxMDIzODI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMjhhMS05Nzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW537HqVuzxxS2QUkC9q64rwkkXl1TA+zBvfIfWB3IGDYcGcNIMQGiA8MraR KiUapwWpG2XnGRTw6VcnqhpvQDWBkSjWNgSwH577fO7lUZyafeZjwIbFh0Xne0gG NA9rjEYeVveWOC4oGb8fDUEdyoqxUa4FsPAZ/y1LeZ1Sb1e0hHw3JVjkPnkNI6u3 ebz984jSaX4uqgC+fG+QEMYFB8wlcWBiwDLGKnTZIuMadXFV9Z8N6PL7m/jH21PN WrKXH1J5DVFfKbTmpQik5LmryB5s294fk06gno2w/oXw7qjOkRKW0X2XVJggCROt Adbdc9+A/GXH9mBpzGnAxt3jiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMCBYDXD rDmnwltf2i2zj0VBHHm/MB8GA1UdIwQYMBaAFK9nEy2DfVdv/3dyJ6NyXWAe2RBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE0RS80QzVFMkZCOEUz RkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYyX19kM0lubzNKZFlCN1pF RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IyY1RMWU45VjJfX2QzSW5vM0pkWUI3WkVGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxNEUvNEM1RTJGQjhFM0ZGMTFFQ0FDMjEwNTcyQzRGOUFFMDIvNDFDNDYwQkUx QkU5MTFFRDgxREI2NjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQswDQYJKoZIhvcNAQELBQADggEBAEIZKQedrcRUiDFJ 8KWm0AQhpUFbh+sJETrQa76z41ZqtXUYasiHpnKZlxijf6T0ThYJNZ0v2+1856k1 S2vyM5ZgUF4yAwdy1x4Ba1UhU1p5MzXXO5TmcaoJXgXp73mhEETEM7EC8h65ohCA BORzgcCqgpkIM+gWJ8X6TCFAZBQvCB8ojltA81DdS/X7kuYoDNw091EOoDNEHHRJ bDDOSik53C0KFdNEddSWzlZFuOqLNIRx0OgYe33+QKm+r2ediYeH/5WHJTY0lj2g GL/a4BQSiLo73QezLg4/I/nKzEuvHCEwaWgiQDjlXdQkA5EJijfB8gtufaVkXDqE xBgYDQg= -----END CERTIFICATE-----Generated at Sat Aug 9 02:56:27 2025 by rpki-client