$ rpki-client -vvf rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/73BD59AE8A8C11EA8CB4F53CC4F9AE02.roa File: 73BD59AE8A8C11EA8CB4F53CC4F9AE02.roa (raw, json) Hash identifier: i2d36Tq1yNa4fjxLB+ZorR2vyngn7bqMC3Q74Co0C4Y= Subject key identifier: 69:53:2C:D5:FF:72:FF:CB:73:CC:8C:5E:EC:DB:6A:63:D5:6A:24:16 Certificate issuer: /CN=A917EC46/serialNumber=2D7B0D7A3F9F15DE0072A5A6C4ED0A5F8F221E03 Certificate serial: 097F Authority key identifier: 2D:7B:0D:7A:3F:9F:15:DE:00:72:A5:A6:C4:ED:0A:5F:8F:22:1E:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXsNej-fFd4AcqWmxO0KX48iHgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/73BD59AE8A8C11EA8CB4F53CC4F9AE02.roa Signing time: Thu 10 Apr 2025 20:30:09 +0000 ROA not before: Thu 10 Apr 2025 20:30:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 40513 IP address blocks: 103.88.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/LXsNej-fFd4AcqWmxO0KX48iHgM.crl rsync://rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/LXsNej-fFd4AcqWmxO0KX48iHgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXsNej-fFd4AcqWmxO0KX48iHgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EC46, serialNumber=2D7B0D7A3F9F15DE0072A5A6C4ED0A5F8F221E03 Validity Not Before: Apr 10 20:30:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f82a50-d46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d5:73:df:d6:0f:46:4a:02:9a:0b:ad:b7:52: 6b:f9:bc:51:b7:57:f0:4a:9a:52:50:38:7d:27:5f: 9c:0c:cb:32:f1:0c:e6:82:60:be:d4:1c:da:0f:2f: 0a:33:4f:87:e0:cc:91:39:c6:be:03:9f:bb:1b:ff: d5:d7:80:60:18:5b:bc:3f:f6:31:f0:f6:bd:bc:3e: 47:ba:e9:1c:d0:bf:b1:7d:74:15:34:ae:8a:dd:9e: e3:a5:6b:84:11:e0:e1:e9:f4:ef:b3:7b:0b:a3:e4: 8c:57:72:b4:44:4a:18:df:87:b1:de:7d:1a:76:df: 2a:37:97:f7:f7:f5:74:39:89:ac:4f:df:1e:47:85: 5d:a7:8f:49:32:6e:17:dc:6b:5b:40:61:ab:a9:b2: b9:39:e2:d8:da:72:5b:d2:2d:58:46:50:a2:4e:98: 1c:23:77:5f:50:cf:c1:81:96:2c:9f:1e:12:9e:47: 54:fe:6b:20:3f:7c:df:84:00:6b:05:83:2d:7e:7b: 56:60:44:37:7d:0c:04:85:96:b0:33:c1:46:ea:77: 59:10:da:c4:e4:8a:e6:2e:36:fe:72:da:1b:bf:a9: d7:4e:27:1d:0f:a4:71:af:66:29:c1:37:d0:69:e7: 40:7b:45:5e:5f:a0:00:c4:42:b0:a8:92:0a:f3:01: 23:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:53:2C:D5:FF:72:FF:CB:73:CC:8C:5E:EC:DB:6A:63:D5:6A:24:16 X509v3 Authority Key Identifier: keyid:2D:7B:0D:7A:3F:9F:15:DE:00:72:A5:A6:C4:ED:0A:5F:8F:22:1E:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/LXsNej-fFd4AcqWmxO0KX48iHgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXsNej-fFd4AcqWmxO0KX48iHgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EC46/58F7513E8A8B11EAAC2A8C3AC4F9AE02/73BD59AE8A8C11EA8CB4F53CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.43.0/24 Signature Algorithm: sha256WithRSAEncryption 41:d1:24:17:f3:34:65:8a:99:01:ee:f3:ae:d4:d2:79:51:c0: e6:f1:9e:bb:db:eb:6e:9e:c8:7e:60:d0:d2:7e:24:fc:6f:16: 37:60:63:85:5c:d4:dd:eb:3d:39:6a:85:9d:d0:09:a6:f0:64: 13:44:2d:b6:1d:07:05:10:a0:72:ba:35:d5:39:ed:44:21:a7: 22:13:b9:e3:a9:84:95:b8:a4:cb:85:e3:05:93:6b:75:c5:5a: 5b:3f:13:fa:8a:91:cf:ca:f1:55:62:d0:df:75:1e:80:9e:9e: a4:bf:dd:31:30:58:06:ac:3a:67:48:ed:c3:d2:92:42:9d:58: 41:a3:1d:92:c0:20:67:3e:43:10:c7:2f:6e:eb:e8:53:49:0d: 3d:4b:21:48:3c:97:d7:70:7f:af:57:0d:27:37:a0:15:f6:75: ed:79:4f:80:fc:32:2e:2d:41:50:ed:2d:aa:fa:03:c4:62:44: e0:f2:18:9b:ac:74:14:8c:68:57:6a:84:e1:85:2e:a0:1d:8b: 36:d0:42:aa:a9:2b:5e:9a:6e:79:68:ab:ee:ab:35:60:89:05: c0:79:11:b2:68:18:1d:43:d9:f4:e2:21:83:e9:2c:76:01:5f: af:73:d4:53:6f:83:1e:9e:e8:94:38:35:3a:4f:d7:95:6d:6d: b2:d1:ac:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDNDYxMTAvBgNVBAUTKDJEN0IwRDdBM0Y5RjE1REUwMDcyQTVBNkM0RUQwQTVG OEYyMjFFMDMwHhcNMjUwNDEwMjAzMDA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MmE1MC1kNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptVz39YPRkoCmgutt1Jr+bxRt1fwSppSUDh9J1+cDMsy8QzmgmC+1BzaDy8K M0+H4MyROca+A5+7G//V14BgGFu8P/Yx8Pa9vD5Huukc0L+xfXQVNK6K3Z7jpWuE EeDh6fTvs3sLo+SMV3K0REoY34ex3n0adt8qN5f39/V0OYmsT98eR4Vdp49JMm4X 3GtbQGGrqbK5OeLY2nJb0i1YRlCiTpgcI3dfUM/BgZYsnx4SnkdU/msgP3zfhABr BYMtfntWYEQ3fQwEhZawM8FG6ndZENrE5IrmLjb+ctobv6nXTicdD6Rxr2YpwTfQ aedAe0VeX6AAxEKwqJIK8wEjhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGlTLNX/ cv/Lc8yMXuzbamPVaiQWMB8GA1UdIwQYMBaAFC17DXo/nxXeAHKlpsTtCl+PIh4D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUM0Ni81OEY3NTEzRThB OEIxMUVBQUMyQThDM0FDNEY5QUUwMi9MWHNOZWotZkZkNEFjcVdteE8wS1g0OGlI Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xYc05lai1mRmQ0QWNxV214TzBLWDQ4aUhnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VDNDYvNThGNzUxM0U4QThCMTFFQUFDMkE4QzNBQzRGOUFFMDIvNzNCRDU5QUU4 QThDMTFFQThDQjRGNTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWCswDQYJKoZIhvcNAQELBQADggEBAEHRJBfzNGWKmQHu 867U0nlRwObxnrvb626eyH5g0NJ+JPxvFjdgY4Vc1N3rPTlqhZ3QCabwZBNELbYd BwUQoHK6NdU57UQhpyITueOphJW4pMuF4wWTa3XFWls/E/qKkc/K8VVi0N91HoCe nqS/3TEwWAasOmdI7cPSkkKdWEGjHZLAIGc+QxDHL27r6FNJDT1LIUg8l9dwf69X DSc3oBX2de15T4D8Mi4tQVDtLar6A8RiRODyGJusdBSMaFdqhOGFLqAdizbQQqqp K16abnloq+6rNWCJBcB5EbJoGB1D2fTiIYPpLHYBX69z1FNvgx6e6JQ4NTpP15Vt bbLRrJU= -----END CERTIFICATE-----Generated at Wed Nov 5 16:38:15 2025 by rpki-client