$ rpki-client -vvf rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa File: 28D28DD0F1B511EE83596382C4F9AE02.roa (raw, json) Hash identifier: R1Y6eiOJRngWNoMb/hZgB+WoPatpFv2M5OZIAKAIm84= Subject key identifier: 02:FD:95:E7:CF:A9:87:60:04:D2:C3:1A:65:E2:5A:FF:BD:32:50:1F Certificate issuer: /CN=A918BBEF/serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Certificate serial: 0655 Authority key identifier: 24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa Signing time: Mon 04 Aug 2025 23:35:30 +0000 ROA not before: Mon 04 Aug 2025 23:35:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 5065 IP address blocks: 103.97.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BBEF, serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Validity Not Before: Aug 4 23:35:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689143c2-d5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:a3:09:40:2e:8c:ba:83:52:bb:7b:ce:73: 1c:53:11:93:a1:48:de:12:c0:2d:46:bc:68:10:68: 5e:a9:b9:73:75:47:64:1f:d4:ae:09:96:a3:9b:27: bb:b6:95:cc:65:94:9a:80:9f:1f:5a:09:4f:78:5e: e8:69:4f:0e:40:33:5b:ea:4b:2a:ec:15:dc:19:d8: 63:a9:b7:7c:83:70:58:ca:e6:14:1c:42:c3:96:a7: c2:80:24:09:3f:dd:a7:3d:1f:b1:9d:82:88:0c:22: 54:2b:89:fb:eb:18:df:01:f8:22:fb:c4:4d:56:2b: 57:18:bc:5d:73:bc:d6:a1:ab:37:bd:73:09:00:8f: 83:2e:ff:52:22:36:7c:6e:39:46:8d:75:d5:dc:82: c4:90:d6:65:e5:c2:98:d2:48:a3:13:94:9a:7d:eb: 1e:9c:db:9d:43:62:6d:e2:77:5b:1f:db:fc:fa:78: c9:60:f8:ed:85:80:a7:3f:10:2f:a5:cb:b2:16:d9: 7c:97:62:90:91:16:34:a9:db:a4:d3:86:37:cc:4c: 95:ed:ff:39:76:31:5f:10:bc:d8:59:a8:17:7b:2e: ef:f1:2d:75:45:3c:dc:4b:63:e2:d0:7d:24:4a:b6: ef:87:07:f3:bc:6f:f4:74:4d:4b:9e:8a:8c:d7:42: 73:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FD:95:E7:CF:A9:87:60:04:D2:C3:1A:65:E2:5A:FF:BD:32:50:1F X509v3 Authority Key Identifier: keyid:24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.34.0/23 Signature Algorithm: sha256WithRSAEncryption ba:31:4c:52:73:ea:40:a1:0c:b7:bf:66:07:78:cd:fa:fc:b4: 3a:12:b7:5f:ad:b4:2c:52:fd:f5:35:6f:b6:68:68:6e:6b:04: 34:89:96:79:67:0a:8f:c2:b6:3d:a4:b4:97:c3:a9:81:95:27: 14:5b:5c:87:a9:2f:aa:57:d1:b7:42:6a:6f:2c:73:74:cf:5b: a0:f7:1c:ff:2c:6c:68:7a:2c:4b:4c:12:4d:7c:6a:42:d5:9f: 02:d9:83:4a:1a:b7:38:71:43:39:8d:ee:25:2b:d2:bb:59:c8: be:e0:09:a3:7b:37:f9:05:52:65:13:88:cc:a9:37:c1:87:97: 15:1e:37:39:81:51:4b:e7:ee:e5:27:2f:2a:70:52:db:87:78: 9a:e8:9b:00:ef:49:d2:8a:b8:f2:80:d6:ef:f9:e5:75:1b:db: ca:3a:66:d1:22:a6:34:3c:81:46:73:d5:bf:66:f3:eb:1e:af: 01:f1:6b:95:e6:8d:22:2f:bf:1d:a5:16:90:23:f7:51:98:60: a9:92:1d:bd:a9:fe:3b:ac:00:5b:29:64:7f:f0:3e:2e:20:3e: f2:ef:91:26:57:72:a8:74:a8:6a:ab:65:9f:89:c9:2d:83:c6: eb:c4:ec:75:5c:d0:a9:96:94:6c:ca:ed:e3:14:3b:bc:7e:4c: a1:e1:5b:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCRUYxMTAvBgNVBAUTKDI0MTI4NzY0MzBFMkFDRjRBMUE4M0U1QTU3NUM3Rjk3 QUIyQjNCMkUwHhcNMjUwODA0MjMzNTMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNDNjMi1kNWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYajCUAujLqDUrt7znMcUxGToUjeEsAtRrxoEGheqblzdUdkH9SuCZajmye7 tpXMZZSagJ8fWglPeF7oaU8OQDNb6ksq7BXcGdhjqbd8g3BYyuYUHELDlqfCgCQJ P92nPR+xnYKIDCJUK4n76xjfAfgi+8RNVitXGLxdc7zWoas3vXMJAI+DLv9SIjZ8 bjlGjXXV3ILEkNZl5cKY0kijE5SafesenNudQ2Jt4ndbH9v8+njJYPjthYCnPxAv pcuyFtl8l2KQkRY0qduk04Y3zEyV7f85djFfELzYWagXey7v8S11RTzcS2Pi0H0k SrbvhwfzvG/0dE1LnoqM10JzsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAL9lefP qYdgBNLDGmXiWv+9MlAfMB8GA1UdIwQYMBaAFCQSh2Qw4qz0oag+Wldcf5erKzsu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkJFRi9GNzkxQzM3RUEw NDIxMUVCODU2OTlFMjFDNEY5QUUwMi9KQktIWkREaXJQU2hxRDVhVjF4X2w2c3JP eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pCS0haRERpclBTaHFENWFWMXhfbDZzck95NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCRUYvRjc5MUMzN0VBMDQyMTFFQjg1Njk5RTIxQzRGOUFFMDIvMjhEMjhERDBG MUI1MTFFRTgzNTk2MzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYSIwDQYJKoZIhvcNAQELBQADggEBALoxTFJz6kChDLe/ Zgd4zfr8tDoSt1+ttCxS/fU1b7ZoaG5rBDSJlnlnCo/Ctj2ktJfDqYGVJxRbXIep L6pX0bdCam8sc3TPW6D3HP8sbGh6LEtMEk18akLVnwLZg0oatzhxQzmN7iUr0rtZ yL7gCaN7N/kFUmUTiMypN8GHlxUeNzmBUUvn7uUnLypwUtuHeJromwDvSdKKuPKA 1u/55XUb28o6ZtEipjQ8gUZz1b9m8+serwHxa5XmjSIvvx2lFpAj91GYYKmSHb2p /jusAFspZH/wPi4gPvLvkSZXcqh0qGqrZZ+JyS2DxuvE7HVc0KmWlGzK7eMUO7x+ TKHhW0w= -----END CERTIFICATE-----Generated at Sun Aug 10 19:00:12 2025 by rpki-client