$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa File: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (raw, json) Hash identifier: QN39p9nWye6EQeabDpHZSKPOLSlCBZhTa4JYZW8B/+k= Subject key identifier: F7:E4:DE:42:DB:00:87:BE:8F:17:05:FF:B6:69:2B:DB:19:AE:FA:35 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 80 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa Signing time: Fri 01 Aug 2025 08:46:40 +0000 ROA not before: Fri 01 Aug 2025 08:46:40 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139020 IP address blocks: 103.138.152.0/23 maxlen: 23 2404:d0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Aug 1 08:46:40 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c7ef0-71b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:ab:f7:47:85:0a:f6:1b:d3:fb:49:90:4f: bd:7e:4c:cb:dd:15:ae:63:99:d7:88:b3:9e:a3:3d: dd:9e:93:6e:d9:91:69:9a:de:0e:e9:23:2c:ab:2a: 75:df:63:6d:7c:91:4c:3b:8c:16:2c:d5:ed:06:04: c0:24:96:06:af:03:f6:96:be:33:63:2b:bf:b2:29: 80:32:0f:56:55:ad:b4:82:f6:23:28:aa:6e:cb:ad: 22:75:49:ba:6e:0a:70:f9:58:1d:a5:58:0a:20:0a: b3:ab:51:b5:74:67:d9:7b:84:80:03:32:70:d7:37: b0:17:08:40:47:b9:f4:04:8c:15:63:50:1a:6e:2c: 6b:6e:97:ae:36:f2:a1:b5:ce:aa:7b:2b:ff:2e:f8: 09:ea:22:d1:e1:eb:d0:49:1e:6a:75:9c:50:89:64: 1b:5a:5c:69:56:b6:17:2e:5a:b4:3d:86:a5:67:d7: 57:ed:b8:08:1d:02:7b:2c:7c:7e:65:36:1f:26:cd: a9:29:20:9b:4f:85:93:6e:e7:4a:26:f6:3f:08:dd: 58:49:c9:53:12:66:79:23:6b:3d:4f:0a:9b:8f:d0: e0:78:10:f9:c4:78:70:91:58:3c:13:37:29:6e:e3: 02:1f:aa:cf:52:ad:2e:89:33:dd:32:78:bc:66:57: f5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:DE:42:DB:00:87:BE:8F:17:05:FF:B6:69:2B:DB:19:AE:FA:35 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.152.0/23 IPv6: 2404:d0c0::/32 Signature Algorithm: sha256WithRSAEncryption 45:99:7d:71:74:8c:22:d2:e3:c4:87:cd:fd:ef:6c:e0:9d:7f: 7e:9c:60:88:6a:e3:4b:8c:33:34:29:e9:b3:7e:d3:e4:c6:40: 41:ad:53:a1:df:72:4e:98:c8:ce:e0:bd:c0:00:08:84:b1:cf: 8a:c6:4b:57:24:1a:e6:65:20:f4:50:1c:13:4d:3f:37:ae:a9: 6d:4f:2a:e8:b9:e2:3f:36:b5:1d:78:cf:d5:e5:ad:4d:48:4f: 8d:59:6d:7c:4a:87:cc:05:b5:ab:81:5b:c0:8f:77:2a:eb:8a: 07:1b:8b:b5:8d:12:ce:44:89:00:09:9f:e4:d5:43:71:bb:05: bc:70:62:63:54:c5:0a:25:db:da:29:68:4a:39:cb:5c:57:8a: 65:e7:b8:d3:c5:82:9a:4b:49:a4:9d:2e:c2:88:e9:c3:ee:f2: 8a:1e:a7:e2:9c:85:fb:fc:fa:87:92:17:da:d5:4b:c9:4a:cf: d7:71:25:9c:ec:89:49:e7:2f:21:4b:44:da:96:e4:8e:d8:cb: a0:a4:25:bb:fd:7a:29:ad:8e:5a:e5:a6:f4:d4:6a:68:ff:d3: 79:31:bd:4a:b2:df:c6:93:0c:38:f3:1e:5f:bb:4a:d5:33:f3: 35:73:78:49:9a:5d:b1:8f:0f:de:0a:61:90:c4:5b:b9:1f:15: 52:fd:0e:21 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUwODAxMDg0NjQwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjN2VmMC03MWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFSr90eFCvYb0/tJkE+9fkzL3RWuY5nXiLOeoz3dnpNu2ZFpmt4O6SMsqyp1 32NtfJFMO4wWLNXtBgTAJJYGrwP2lr4zYyu/simAMg9WVa20gvYjKKpuy60idUm6 bgpw+VgdpVgKIAqzq1G1dGfZe4SAAzJw1zewFwhAR7n0BIwVY1AabixrbpeuNvKh tc6qeyv/LvgJ6iLR4evQSR5qdZxQiWQbWlxpVrYXLlq0PYalZ9dX7bgIHQJ7LHx+ ZTYfJs2pKSCbT4WTbudKJvY/CN1YSclTEmZ5I2s9Twqbj9DgeBD5xHhwkVg8Ezcp buMCH6rPUq0uiTPdMni8Zlf1tQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPfk3kLb AIe+jxcF/7ZpK9sZrvo1MB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZBQ0IvMjVEMTE4ODZCNDY1MTFFRjlCRkJBQTY3QzRGOUFFMDIvODFGQzE2QTZC NDY1MTFFRjg2QkVBQzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnipgwDQQCAAIwBwMFACQE0MAwDQYJKoZIhvcNAQELBQAD ggEBAEWZfXF0jCLS48SHzf3vbOCdf36cYIhq40uMMzQp6bN+0+TGQEGtU6Hfck6Y yM7gvcAACISxz4rGS1ckGuZlIPRQHBNNPzeuqW1PKui54j82tR14z9XlrU1IT41Z bXxKh8wFtauBW8CPdyrrigcbi7WNEs5EiQAJn+TVQ3G7BbxwYmNUxQol29opaEo5 y1xXimXnuNPFgppLSaSdLsKI6cPu8ooep+Kchfv8+oeSF9rVS8lKz9dxJZzsiUnn LyFLRNqW5I7Yy6CkJbv9eimtjlrlpvTUamj/03kxvUqy38aTDDjzHl+7StUz8zVz eEmaXbGPD94KYZDEW7kfFVL9DiE= -----END CERTIFICATE-----Generated at Mon Aug 11 04:26:14 2025 by rpki-client