$ rpki-client -vvf rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa File: AF88A400F15711EC846A5F29C4F9AE02.roa (raw, json) Hash identifier: Q4rmj8ZW9q3ZMhMYZknk/X38qXU9tpt3Fwr+6cA845w= Subject key identifier: 1A:A4:32:DF:2F:4C:0C:44:BB:82:EB:04:BB:85:74:0D:18:0E:2F:F6 Certificate issuer: /CN=A917BD68/serialNumber=456320FE970F5CA4BFD7756FC3E27E06B308BE75 Certificate serial: 02E7 Authority key identifier: 45:63:20:FE:97:0F:5C:A4:BF:D7:75:6F:C3:E2:7E:06:B3:08:BE:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa Signing time: Thu 31 Jul 2025 02:08:21 +0000 ROA not before: Thu 31 Jul 2025 02:08:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149980 IP address blocks: 103.189.242.0/23 maxlen: 23 103.189.242.0/24 maxlen: 24 103.189.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.crl rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 01:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BD68, serialNumber=456320FE970F5CA4BFD7756FC3E27E06B308BE75 Validity Not Before: Jul 31 02:08:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688ad014-8960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:b4:fa:11:82:a4:0c:94:cc:a9:b2:33:00: cf:b0:72:be:09:b8:d9:f4:22:ea:7f:c7:b6:ae:91: 79:21:e7:90:b6:28:7f:6c:cc:60:ae:03:31:5d:77: 71:f4:e2:08:52:fa:82:ac:f3:d3:d8:b1:87:9f:73: e8:e4:64:ae:62:3d:0e:8b:3d:a4:be:31:9c:5e:ac: 7a:ef:6d:67:b1:e3:60:64:78:b4:fa:17:01:03:1c: 38:a5:73:a5:2f:c3:3d:a2:45:cd:6e:1e:12:f1:42: e1:95:c1:4c:37:c8:32:39:ea:9a:d4:a9:cc:d7:0f: 00:57:bd:0c:43:05:d6:2b:5f:2e:0d:e2:64:de:5e: ba:cd:d4:2a:08:9b:f3:9b:52:5c:50:2b:f9:11:ef: 2c:00:53:4d:cf:34:62:16:6c:29:62:21:e9:ac:02: f9:ed:a6:fd:2c:3a:8b:a3:b9:46:5e:2d:6b:81:b3: 54:fd:e1:36:d5:bf:34:99:1a:66:2f:86:09:b9:d6: c5:70:70:12:ff:cc:0f:f4:64:10:8f:01:50:12:78: 88:ff:7f:e3:39:7f:80:19:bd:fd:19:65:ab:d6:5f: 26:28:d3:c9:41:6b:a9:df:00:89:bd:69:8c:6d:b2: 36:bb:cf:3b:ef:6f:b6:4c:e2:89:c0:f7:e8:52:d9: d5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A4:32:DF:2F:4C:0C:44:BB:82:EB:04:BB:85:74:0D:18:0E:2F:F6 X509v3 Authority Key Identifier: keyid:45:63:20:FE:97:0F:5C:A4:BF:D7:75:6F:C3:E2:7E:06:B3:08:BE:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.242.0/23 Signature Algorithm: sha256WithRSAEncryption ca:c7:44:f3:85:3e:da:c8:05:b7:e1:76:89:a2:eb:83:6a:10: db:80:db:6b:ff:9b:5d:da:f3:d9:6b:c5:eb:e8:8c:c6:06:ec: 62:d0:80:89:e9:ec:96:61:c9:48:46:19:10:a8:0c:4c:79:1d: 96:59:cc:bd:f6:36:f8:b7:86:db:32:22:05:7d:42:a4:5e:8a: da:7e:4e:9f:9e:13:e5:fc:b9:c6:ef:3e:a0:0b:66:5e:2b:7d: ae:ce:e7:0b:19:2f:df:f4:57:9c:89:6a:1e:8c:0c:db:15:dc: 15:b1:7f:94:72:2f:aa:77:17:c3:6d:3f:fb:cd:5e:99:4f:51: 8b:38:3b:09:40:95:bb:d7:ad:13:f7:35:57:6e:e0:13:29:f5: e6:16:5b:cd:67:0f:0d:95:dc:d2:c3:43:96:40:3a:91:9b:60: 1d:c5:ab:12:8e:8e:39:0e:83:90:62:03:7b:6b:55:50:59:8e: b2:79:fc:4f:0b:a0:8d:13:24:39:5c:5a:c9:45:2a:5f:c7:52: 37:4b:f2:31:2e:d1:19:da:f5:60:06:5b:f7:f4:49:9e:d3:bd: df:75:47:e1:f4:77:d0:8b:af:b6:20:ef:07:ce:b4:0d:29:9e: 94:65:8d:30:0e:24:0c:40:94:98:33:ed:09:fa:4c:fd:b6:93: e4:10:65:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JENjgxMTAvBgNVBAUTKDQ1NjMyMEZFOTcwRjVDQTRCRkQ3NzU2RkMzRTI3RTA2 QjMwOEJFNzUwHhcNMjUwNzMxMDIwODIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZDAxNC04OTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKu0+hGCpAyUzKmyMwDPsHK+CbjZ9CLqf8e2rpF5IeeQtih/bMxgrgMxXXdx 9OIIUvqCrPPT2LGHn3Po5GSuYj0Oiz2kvjGcXqx6721nseNgZHi0+hcBAxw4pXOl L8M9okXNbh4S8ULhlcFMN8gyOeqa1KnM1w8AV70MQwXWK18uDeJk3l66zdQqCJvz m1JcUCv5Ee8sAFNNzzRiFmwpYiHprAL57ab9LDqLo7lGXi1rgbNU/eE21b80mRpm L4YJudbFcHAS/8wP9GQQjwFQEniI/3/jOX+AGb39GWWr1l8mKNPJQWup3wCJvWmM bbI2u88772+2TOKJwPfoUtnVqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqkMt8v TAxEu4LrBLuFdA0YDi/2MB8GA1UdIwQYMBaAFEVjIP6XD1ykv9d1b8PifgazCL51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkQ2OC8wNEQ3NEI1MEYx NTMxMUVDQjA3QzlGMjZDNEY5QUUwMi9SV01nX3BjUFhLU18xM1Z2dy1KLUJyTUl2 blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXTWdfcGNQWEtTXzEzVnZ3LUotQnJNSXZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JENjgvMDRENzRCNTBGMTUzMTFFQ0IwN0M5RjI2QzRGOUFFMDIvQUY4OEE0MDBG MTU3MTFFQzg0NkE1RjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvfIwDQYJKoZIhvcNAQELBQADggEBAMrHRPOFPtrIBbfh domi64NqENuA22v/m13a89lrxevojMYG7GLQgInp7JZhyUhGGRCoDEx5HZZZzL32 Nvi3htsyIgV9QqReitp+Tp+eE+X8ucbvPqALZl4rfa7O5wsZL9/0V5yJah6MDNsV 3BWxf5RyL6p3F8NtP/vNXplPUYs4OwlAlbvXrRP3NVdu4BMp9eYWW81nDw2V3NLD Q5ZAOpGbYB3FqxKOjjkOg5BiA3trVVBZjrJ5/E8LoI0TJDlcWslFKl/HUjdL8jEu 0Rna9WAGW/f0SZ7Tvd91R+H0d9CLr7Yg7wfOtA0pnpRljTAOJAxAlJgz7Qn6TP22 k+QQZaQ= -----END CERTIFICATE-----Generated at Wed Aug 13 09:48:30 2025 by rpki-client