$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/7136F65A37A811EE94E32169C4F9AE02.roa File: 7136F65A37A811EE94E32169C4F9AE02.roa (raw, json) Hash identifier: MIgp6SPzmtBLaTAJ8Ko+cWBy6IjOqEZ3q2z4VBixHmI= Subject key identifier: 12:9F:23:1D:62:F7:72:3E:A9:FB:B1:A2:DB:CA:8E:80:B2:29:97:90 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0C5E Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/7136F65A37A811EE94E32169C4F9AE02.roa Signing time: Wed 18 Jun 2025 19:03:20 +0000 ROA not before: Wed 18 Jun 2025 19:03:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138640 IP address blocks: 103.114.96.0/24 maxlen: 24 103.114.97.0/24 maxlen: 24 103.114.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Jun 18 19:03:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68530d78-6677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:c9:a4:ae:3d:8d:8f:0d:1a:99:b2:7f:54: 4a:82:59:93:20:bd:e5:10:30:15:a5:0f:2e:81:31: 72:1c:37:b4:a2:d1:d6:94:9a:f5:ce:8a:1c:ec:76: 14:69:5b:f9:7b:fb:76:77:c2:00:f9:bc:ff:cb:f5: de:53:ac:09:71:0d:46:9a:f7:f1:8c:95:cd:ba:d4: d6:bc:a7:85:7b:ae:d4:0f:3e:ed:d1:a0:d9:45:ec: 61:5b:27:0a:e4:cf:e6:63:83:29:a7:70:18:fb:6b: 82:55:ed:e1:78:b0:b4:d1:bc:07:80:19:fb:4e:80: d7:7c:98:8e:c3:6a:5b:5a:04:35:d7:03:4c:21:17: ad:ea:aa:50:d0:ef:d5:e0:f8:65:63:73:5e:64:f8: 7d:5d:f7:ea:b2:34:f5:e1:03:bb:fd:91:3d:29:69: b9:bd:bc:6a:0b:4f:c3:e4:ae:ad:2b:1b:7b:24:b8: 31:f1:a1:c4:64:4f:f2:c3:77:0c:c8:0e:dd:cb:90: 1b:66:b1:5e:ec:7b:d5:73:55:cb:a3:98:1f:ec:59: 0c:a7:aa:05:43:05:8f:75:25:61:90:df:f7:3f:de: 25:fa:0a:3a:75:1e:c4:58:8b:cb:e4:0b:98:51:ef: 99:1c:1a:7f:30:bd:1c:19:ef:19:ce:fd:7c:c6:d2: cd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9F:23:1D:62:F7:72:3E:A9:FB:B1:A2:DB:CA:8E:80:B2:29:97:90 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/7136F65A37A811EE94E32169C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.96.0-103.114.98.255 Signature Algorithm: sha256WithRSAEncryption 5b:aa:1f:a7:c0:ba:ba:2b:e4:2a:64:d3:12:8e:80:a8:73:e1: dc:61:c6:72:30:4b:d5:35:95:15:d1:be:74:b4:d1:0e:a2:fc: f2:c9:3f:4c:96:e2:c3:68:a2:38:a6:52:a1:19:9c:14:69:ac: 5c:d7:3e:e4:ea:b2:14:69:81:26:c5:c4:90:6b:8f:d9:a6:29: 7c:30:c0:8a:4d:a6:03:52:7e:d2:f1:9e:84:8c:8f:a7:93:73: 35:5e:5b:35:a9:a5:25:6d:fb:3c:64:23:6d:02:74:ce:92:93: a1:4c:6a:aa:51:5a:7f:68:10:70:b2:45:4b:59:4f:5d:0d:2f: 1a:8f:4c:cf:a1:ff:76:06:31:e0:ad:3a:08:01:5a:bd:a7:be: 3a:40:e4:bb:42:be:1a:aa:30:cc:01:b7:d1:5f:71:d2:33:52: 73:dd:32:5b:16:4c:a0:ef:ea:dc:13:46:be:ca:fe:90:12:49: 53:0d:f7:6a:53:87:e4:c1:e3:8e:54:01:4e:fb:6e:e7:b9:02: db:0b:22:4c:8a:6c:33:fd:46:ce:4a:63:98:e6:9c:e6:76:b8: 21:58:4c:ff:c4:cf:2b:ac:4c:f8:46:94:f5:60:cd:24:7a:83: 54:84:b1:d9:09:e0:e0:7e:79:ca:17:59:a5:9a:90:7d:4e:9d: a2:11:15:42 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUwNjE4MTkwMzIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMGQ3OC02Njc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusPJpK49jY8NGpmyf1RKglmTIL3lEDAVpQ8ugTFyHDe0otHWlJr1zooc7HYU aVv5e/t2d8IA+bz/y/XeU6wJcQ1GmvfxjJXNutTWvKeFe67UDz7t0aDZRexhWycK 5M/mY4Mpp3AY+2uCVe3heLC00bwHgBn7ToDXfJiOw2pbWgQ11wNMIRet6qpQ0O/V 4PhlY3NeZPh9XffqsjT14QO7/ZE9KWm5vbxqC0/D5K6tKxt7JLgx8aHEZE/yw3cM yA7dy5AbZrFe7HvVc1XLo5gf7FkMp6oFQwWPdSVhkN/3P94l+go6dR7EWIvL5AuY Ue+ZHBp/ML0cGe8Zzv18xtLNCQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBKfIx1i 93I+qfuxotvKjoCyKZeQMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JCRjEvMjQ1REM1Q0EwQUY3MTFFQUE4NUE1RDFBQzRGOUFFMDIvNzEzNkY2NUEz N0E4MTFFRTk0RTMyMTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBWdyYAMEAGdyYjANBgkqhkiG9w0BAQsFAAOCAQEAW6of p8C6uivkKmTTEo6AqHPh3GHGcjBL1TWVFdG+dLTRDqL88sk/TJbiw2iiOKZSoRmc FGmsXNc+5OqyFGmBJsXEkGuP2aYpfDDAik2mA1J+0vGehIyPp5NzNV5bNamlJW37 PGQjbQJ0zpKToUxqqlFaf2gQcLJFS1lPXQ0vGo9Mz6H/dgYx4K06CAFavae+OkDk u0K+GqowzAG30V9x0jNSc90yWxZMoO/q3BNGvsr+kBJJUw33alOH5MHjjlQBTvtu 57kC2wsiTIpsM/1GzkpjmOac5na4IVhM/8TPK6xM+EaU9WDNJHqDVISx2Qng4H55 yhdZpZqQfU6dohEVQg== -----END CERTIFICATE-----Generated at Fri Jun 20 11:04:24 2025 by rpki-client