$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa File: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (raw, json) Hash identifier: k3NlozvnlaqSreMbUh2TfHEQDX5Xr4Ukgk/pUkd38rY= Subject key identifier: 15:93:64:CC:3C:38:A4:6C:B4:D6:61:A2:05:B4:8F:E3:29:84:4E:CA Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: 01DA Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa Signing time: Thu 07 Aug 2025 03:39:58 +0000 ROA not before: Thu 07 Aug 2025 03:39:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131684 IP address blocks: 103.69.172.0/24 maxlen: 24 103.69.174.0/24 maxlen: 24 103.69.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A, serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Aug 7 03:39:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6894200d-deff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:69:fb:b8:34:b3:37:0c:4d:f0:eb:f9:28: 6e:3d:cd:69:a3:5b:e1:72:d5:34:44:4a:4a:01:a1: 0e:ed:5b:27:24:28:45:8b:ef:c6:1b:5d:f5:f7:ed: 96:66:99:7b:8d:c2:4b:2e:f3:30:b0:04:4d:13:f3: bd:77:12:10:08:98:8b:77:48:90:54:92:95:d6:ba: 72:dc:29:1f:ab:03:83:9b:83:d6:76:02:7f:5c:2d: 1c:5a:85:de:a0:c3:fe:32:6a:4a:c6:6e:f8:5f:d1: f1:43:d2:eb:e6:d7:36:a7:cc:14:6d:4c:52:24:f3: 70:32:c7:18:4d:96:e4:0c:42:40:b0:d9:9a:39:8e: c2:16:5b:e3:fe:e1:63:a7:92:8d:80:26:c7:32:f7: d2:b2:15:3d:13:5a:02:75:e1:b9:52:d8:e1:59:b2: a4:c5:a2:72:c8:1e:b7:fe:3c:1e:a8:ae:eb:da:08: 91:8e:fe:6f:20:10:23:bc:c8:7c:c2:51:19:3b:e8: b5:d0:82:be:61:b7:3b:05:91:f9:72:08:45:0f:8e: ce:69:4f:7e:a1:75:3c:17:5f:8f:0e:d0:ee:3a:fa: 1e:d3:fb:5e:e4:3b:36:7b:e6:29:ff:d1:44:fe:8e: ab:d6:e8:84:5b:27:dd:75:99:bd:16:2b:ef:44:53: 4b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:93:64:CC:3C:38:A4:6C:B4:D6:61:A2:05:B4:8F:E3:29:84:4E:CA X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.172.0/24 103.69.174.0/23 Signature Algorithm: sha256WithRSAEncryption 19:71:a9:66:45:12:21:bb:30:c3:e1:d7:70:d7:47:09:2a:88: 6a:3c:91:23:cc:fd:e1:13:7e:88:54:9a:10:01:6c:fd:46:8c: 4b:dd:75:3c:0f:6f:69:5d:f9:84:93:83:78:88:a0:f0:d9:e8: 45:12:e6:38:1d:dd:8e:de:ab:fd:39:91:25:e3:48:6e:c5:0c: 38:cb:b0:5d:b4:d2:8c:8e:59:14:a5:82:e7:14:ab:e7:e5:08: b8:1a:49:72:51:ba:6f:78:5a:3e:b4:ad:a8:40:05:96:36:d5: 56:3b:53:fc:80:5f:76:ef:6c:a6:57:69:7f:13:f9:fe:30:d4: 7b:dd:da:00:14:c0:d9:40:e1:19:1e:6a:11:1c:6c:86:13:65: b1:93:f5:65:1c:92:a6:28:54:a0:41:e5:ca:c7:6b:65:27:ce: 0f:a5:cf:5b:9e:5a:cb:c8:1b:5d:fd:17:08:7a:87:63:a1:74: 23:00:21:2e:42:04:bc:47:b0:5b:e0:78:71:29:d8:91:60:cd: 22:d6:b3:f7:18:fa:63:be:2d:f2:8a:3d:a8:31:fa:25:f1:cb: 97:0b:2f:5b:57:86:35:45:43:0b:ed:92:02:77:76:62:46:dc: e4:04:69:e3:03:7f:92:9b:2c:f4:c0:4c:bc:b2:22:7b:7e:96: fa:1f:b5:89 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjUwODA3MDMzOTU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0MjAwZC1kZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCBp+7g0szcMTfDr+ShuPc1po1vhctU0REpKAaEO7VsnJChFi+/GG1319+2W Zpl7jcJLLvMwsARNE/O9dxIQCJiLd0iQVJKV1rpy3CkfqwODm4PWdgJ/XC0cWoXe oMP+MmpKxm74X9HxQ9Lr5tc2p8wUbUxSJPNwMscYTZbkDEJAsNmaOY7CFlvj/uFj p5KNgCbHMvfSshU9E1oCdeG5UtjhWbKkxaJyyB63/jweqK7r2giRjv5vIBAjvMh8 wlEZO+i10IK+Ybc7BZH5cghFD47OaU9+oXU8F1+PDtDuOvoe0/te5Ds2e+Yp/9FE /o6r1uiEWyfddZm9FivvRFNL5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBWTZMw8 OKRstNZhogW0j+MphE7KMB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE4OEEvQzk2MzU3Q0FBQTk0MTFFREIwNzc0RjQ1QzRGOUFFMDIvMTJBRTlFOTJB QTk3MTFFREFBRUI4MzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnRawDBAFnRa4wDQYJKoZIhvcNAQELBQADggEBABlxqWZF EiG7MMPh13DXRwkqiGo8kSPM/eETfohUmhABbP1GjEvddTwPb2ld+YSTg3iIoPDZ 6EUS5jgd3Y7eq/05kSXjSG7FDDjLsF200oyOWRSlgucUq+flCLgaSXJRum94Wj60 rahABZY21VY7U/yAX3bvbKZXaX8T+f4w1Hvd2gAUwNlA4RkeahEcbIYTZbGT9WUc kqYoVKBB5crHa2Unzg+lz1ueWsvIG139Fwh6h2OhdCMAIS5CBLxHsFvgeHEp2JFg zSLWs/cY+mO+LfKKPagx+iXxy5cLL1tXhjVFQwvtkgJ3dmJG3OQEaeMDf5KbLPTA TLyyInt+lvoftYk= -----END CERTIFICATE-----Generated at Sun Aug 10 05:42:27 2025 by rpki-client