$ rpki-client -vvf rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/BFECDAAC803F11EC8394C23AC4F9AE02.roa File: BFECDAAC803F11EC8394C23AC4F9AE02.roa (raw, json) Hash identifier: Vhzmp3txj0Xul7ynXkTKnMTWBScHUp4m7KHYrp1yvUA= Subject key identifier: 5E:C3:D6:D6:71:AA:BD:A9:2B:BD:9E:42:CE:E2:AB:83:35:84:F0:FD Certificate issuer: /CN=A917647E/serialNumber=FDD2507822183CE80759419D56540606A2486B4B Certificate serial: 0838 Authority key identifier: FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/BFECDAAC803F11EC8394C23AC4F9AE02.roa Signing time: Fri 16 May 2025 21:19:18 +0000 ROA not before: Fri 16 May 2025 21:19:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132420 IP address blocks: 103.90.240.0/22 maxlen: 24 2400:ffc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917647E, serialNumber=FDD2507822183CE80759419D56540606A2486B4B Validity Not Before: May 16 21:19:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827abd6-57ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:4e:0e:02:f5:62:dc:ea:9c:b8:5f:61:7d: a4:26:b1:1a:bd:bc:be:0e:bd:13:33:93:d2:c2:53: d9:f2:2d:e8:e8:47:db:38:d9:79:a3:c8:49:a8:bb: 6f:17:de:d1:04:28:e3:8a:46:7d:29:19:80:81:ed: 5e:52:90:c3:e3:81:b9:1f:71:fd:24:ed:9c:ec:23: 31:f6:6a:29:3c:4d:aa:1e:cc:88:ad:07:33:c6:ab: d9:69:0a:26:14:3c:24:34:e9:90:03:29:3f:ff:7d: eb:04:ce:17:be:68:46:1c:4c:7f:14:c6:3b:86:d5: a5:e9:d5:e2:26:6e:1c:a3:b3:f9:69:05:0d:0a:40: f5:3f:10:0e:cc:a5:bb:2a:c0:21:ed:83:66:80:0d: c5:04:6f:de:36:9f:86:91:27:f3:68:8f:72:37:e4: c8:da:96:85:92:79:75:c2:1f:c9:43:8e:fa:e0:8e: 48:45:09:6b:ad:1b:e4:f7:5f:16:26:60:59:e7:9a: 5b:8f:0d:32:89:30:41:e3:2d:d9:5a:80:36:73:5a: af:a6:bd:56:74:b5:52:29:8b:84:21:5a:ce:de:67: cc:a6:ed:65:dd:8d:b7:34:4a:65:e1:41:20:d3:a2: db:5b:42:39:2e:fd:e3:9a:6b:4f:bc:8a:c7:b2:09: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C3:D6:D6:71:AA:BD:A9:2B:BD:9E:42:CE:E2:AB:83:35:84:F0:FD X509v3 Authority Key Identifier: keyid:FD:D2:50:78:22:18:3C:E8:07:59:41:9D:56:54:06:06:A2:48:6B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/_dJQeCIYPOgHWUGdVlQGBqJIa0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dJQeCIYPOgHWUGdVlQGBqJIa0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917647E/0D10B804D63111EA9A5A583BC4F9AE02/BFECDAAC803F11EC8394C23AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.240.0/22 IPv6: 2400:ffc0::/48 Signature Algorithm: sha256WithRSAEncryption be:44:7f:9a:ab:74:32:a7:8d:8e:be:ce:c5:74:77:c4:d5:06: af:c0:98:11:ad:5c:41:d0:fe:f0:5d:ac:f2:2c:67:9f:62:98: e8:a6:30:eb:df:c2:6a:29:fe:16:7c:4d:14:89:ee:24:36:c2: 11:e6:c6:cc:5d:11:ec:59:83:d3:c1:20:92:fc:83:ca:6e:57: dc:f4:c4:14:31:41:4a:59:50:7b:f7:b8:b6:0a:1c:54:7c:dc: 66:0b:45:79:c0:e3:d1:61:1f:2d:d3:00:ee:bd:10:a6:f9:e6: 03:6b:20:62:11:fc:4d:a0:fb:d3:1e:92:92:c4:e5:c7:b3:20: 1a:99:f2:74:bb:4d:7b:92:86:3b:dd:c2:02:b6:bf:b8:99:7c: 7b:58:a5:39:d4:e2:a4:40:44:c7:12:18:2b:8d:3e:7e:44:f4: 6f:db:3d:b4:0c:ed:89:0f:fc:d1:2d:23:e7:e3:11:3d:72:fa: 4d:31:bc:33:f7:83:2a:1f:1e:08:ef:66:c0:3f:c1:69:81:44: a0:7a:57:cb:2a:ed:96:df:89:94:c1:a5:3c:47:15:51:a5:f3: ef:ad:68:f2:74:0a:2a:82:32:66:34:d6:a0:d4:72:91:cf:05: e6:9a:3e:57:ba:37:35:4a:26:c5:79:24:1a:6d:17:a8:4d:94: ad:13:f4:18 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0N0UxMTAvBgNVBAUTKEZERDI1MDc4MjIxODNDRTgwNzU5NDE5RDU2NTQwNjA2 QTI0ODZCNEIwHhcNMjUwNTE2MjExOTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3YWJkNi01N2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlhODgL1YtzqnLhfYX2kJrEavby+Dr0TM5PSwlPZ8i3o6EfbONl5o8hJqLtv F97RBCjjikZ9KRmAge1eUpDD44G5H3H9JO2c7CMx9mopPE2qHsyIrQczxqvZaQom FDwkNOmQAyk//33rBM4XvmhGHEx/FMY7htWl6dXiJm4co7P5aQUNCkD1PxAOzKW7 KsAh7YNmgA3FBG/eNp+GkSfzaI9yN+TI2paFknl1wh/JQ4764I5IRQlrrRvk918W JmBZ55pbjw0yiTBB4y3ZWoA2c1qvpr1WdLVSKYuEIVrO3mfMpu1l3Y23NEpl4UEg 06LbW0I5Lv3jmmtPvIrHsgnOGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF7D1tZx qr2pK72eQs7iq4M1hPD9MB8GA1UdIwQYMBaAFP3SUHgiGDzoB1lBnVZUBgaiSGtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjQ3RS8wRDEwQjgwNEQ2 MzExMUVBOUE1QTU4M0JDNEY5QUUwMi9fZEpRZUNJWVBPZ0hXVUdkVmxRR0JxSklh MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kSlFlQ0lZUE9nSFdVR2RWbFFHQnFKSWEwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0N0UvMEQxMEI4MDRENjMxMTFFQTlBNUE1ODNCQzRGOUFFMDIvQkZFQ0RBQUM4 MDNGMTFFQzgzOTRDMjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnWvAwDwQCAAIwCQMHACQA/8AAADANBgkqhkiG9w0BAQsF AAOCAQEAvkR/mqt0MqeNjr7OxXR3xNUGr8CYEa1cQdD+8F2s8ixnn2KY6KYw69/C ain+FnxNFInuJDbCEebGzF0R7FmD08EgkvyDym5X3PTEFDFBSllQe/e4tgocVHzc ZgtFecDj0WEfLdMA7r0QpvnmA2sgYhH8TaD70x6SksTlx7MgGpnydLtNe5KGO93C Ara/uJl8e1ilOdTipEBExxIYK40+fkT0b9s9tAztiQ/80S0j5+MRPXL6TTG8M/eD Kh8eCO9mwD/BaYFEoHpXyyrtlt+JlMGlPEcVUaXz761o8nQKKoIyZjTWoNRykc8F 5po+V7o3NUomxXkkGm0XqE2UrRP0GA== -----END CERTIFICATE-----Generated at Tue Nov 4 22:27:51 2025 by rpki-client