$ rpki-client -vvf rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/36295E5A6E2611E8A01E307EC4F9AE02.roa File: 36295E5A6E2611E8A01E307EC4F9AE02.roa (raw, json) Hash identifier: UYOoBDCPRKkOMUWYfvirGRrlHupG7Y8jaEMlsixRpVc= Subject key identifier: 0A:07:11:49:55:09:A2:A1:C6:44:E8:77:5B:FF:99:D4:C0:A8:78:95 Certificate issuer: /CN=A919536D/serialNumber=5758D3831E92FAE82475F6B33212794A1FF07E5F Certificate serial: 1475 Authority key identifier: 57:58:D3:83:1E:92:FA:E8:24:75:F6:B3:32:12:79:4A:1F:F0:7E:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/36295E5A6E2611E8A01E307EC4F9AE02.roa Signing time: Thu 10 Jul 2025 17:25:56 +0000 ROA not before: Thu 10 Jul 2025 17:25:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137824 IP address blocks: 103.115.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.crl rsync://rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5237 (0x1475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536D, serialNumber=5758D3831E92FAE82475F6B33212794A1FF07E5F Validity Not Before: Jul 10 17:25:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686ff7a3-5aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bf:a4:43:94:88:2c:c1:1d:4d:32:a9:ff:aa: 8e:c7:02:b2:d8:0c:91:ac:68:bf:f4:c3:12:67:86: c3:8f:c3:1a:ba:b4:ed:3b:c6:d2:4e:9f:55:8d:cc: 8b:ce:9f:b4:e8:aa:61:65:43:86:2b:f9:6c:33:3b: 9a:11:69:64:7c:5e:3a:0f:cf:a8:4c:39:e3:8f:84: cd:71:f7:1c:c4:4a:d3:e6:25:41:ad:8f:34:d2:7e: d1:d5:60:5f:aa:ea:da:eb:79:d8:7e:9e:fd:2d:f8: e7:ef:cf:0a:26:fe:ce:1b:95:c4:69:43:90:ee:5c: 98:ec:c3:8a:09:7f:68:07:71:43:5a:fa:b1:ea:b8: c0:27:7a:8a:8d:87:2b:70:a8:84:11:0d:ee:69:53: b1:ce:33:35:96:15:14:4d:a8:18:e1:d1:a1:9b:50: 87:92:72:96:c7:19:6f:68:f8:91:a7:61:70:b1:15: f2:66:38:e8:69:c1:76:87:f4:24:5f:4c:ec:85:c0: f4:ea:99:b0:c6:37:f7:22:e9:fd:d6:22:39:84:04: a7:07:dd:4d:fc:1a:3d:87:b1:1a:c1:1b:59:ce:4c: 1c:63:fa:91:9f:f4:14:ff:d9:49:08:52:73:25:9b: 40:da:2e:9a:05:80:9b:96:b9:6b:73:0d:97:0a:c1: a4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:07:11:49:55:09:A2:A1:C6:44:E8:77:5B:FF:99:D4:C0:A8:78:95 X509v3 Authority Key Identifier: keyid:57:58:D3:83:1E:92:FA:E8:24:75:F6:B3:32:12:79:4A:1F:F0:7E:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1jTgx6S-ugkdfazMhJ5Sh_wfl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536D/C1851FBE6E2311E8817DCB75C4F9AE02/36295E5A6E2611E8A01E307EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.14.0/23 Signature Algorithm: sha256WithRSAEncryption b3:18:91:00:c6:4b:9f:19:93:4d:06:5e:41:a4:7d:25:9d:d0: 24:b0:d1:43:66:12:1a:a1:b8:4c:27:bc:13:72:ff:84:a9:e3: dd:c2:8e:3b:8b:95:6f:4d:be:43:c9:c4:5f:0a:f0:6f:ed:5b: 7b:12:f6:d8:fc:7c:18:e9:de:7d:ff:31:67:63:91:94:95:00: d2:e7:bd:fa:f5:40:19:4e:66:95:07:36:e6:ae:29:d5:8b:b1: 33:37:46:61:89:71:4c:5f:c3:eb:0b:9a:ea:62:87:6b:b3:bb: 59:5a:8d:d8:91:f1:40:a2:8c:14:cf:8f:2e:dd:65:4a:b4:0b: d0:14:b7:ba:9b:92:3b:67:8d:d5:6f:73:4a:4f:30:43:9b:51: 30:c1:34:ed:2a:33:a9:28:f3:c1:f4:3f:1c:a5:0d:71:cd:c8: dc:bd:95:a3:1c:f2:27:6b:f4:c9:90:59:2f:07:03:97:6c:7c: 76:7e:b4:f0:61:b3:b6:2b:89:5c:8a:d2:8d:73:b6:75:77:62: f2:33:25:1e:90:30:ec:9b:2e:fd:9d:d2:7d:6d:93:b4:b5:95: 85:b7:01:9a:a4:94:cd:c0:3f:54:7a:39:fa:17:c4:6d:86:7b: 42:16:cb:c7:6c:fe:9b:d6:5a:ef:c7:6e:e0:9a:78:49:d3:31: 80:e7:8e:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkQxMTAvBgNVBAUTKDU3NThEMzgzMUU5MkZBRTgyNDc1RjZCMzMyMTI3OTRB MUZGMDdFNUYwHhcNMjUwNzEwMTcyNTU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZmZjdhMy01YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7b+kQ5SILMEdTTKp/6qOxwKy2AyRrGi/9MMSZ4bDj8MaurTtO8bSTp9VjcyL zp+06KphZUOGK/lsMzuaEWlkfF46D8+oTDnjj4TNcfccxErT5iVBrY800n7R1WBf qura63nYfp79Lfjn788KJv7OG5XEaUOQ7lyY7MOKCX9oB3FDWvqx6rjAJ3qKjYcr cKiEEQ3uaVOxzjM1lhUUTagY4dGhm1CHknKWxxlvaPiRp2FwsRXyZjjoacF2h/Qk X0zshcD06pmwxjf3Iun91iI5hASnB91N/Bo9h7EawRtZzkwcY/qRn/QU/9lJCFJz JZtA2i6aBYCblrlrcw2XCsGkswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAoHEUlV CaKhxkTod1v/mdTAqHiVMB8GA1UdIwQYMBaAFFdY04MekvroJHX2szISeUof8H5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2RC9DMTg1MUZCRTZF MjMxMUU4ODE3RENCNzVDNEY5QUUwMi9WMWpUZ3g2Uy11Z2tkZmF6TWhKNVNoX3dm bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1YxalRneDZTLXVna2RmYXpNaEo1U2hfd2ZsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkQvQzE4NTFGQkU2RTIzMTFFODgxN0RDQjc1QzRGOUFFMDIvMzYyOTVFNUE2 RTI2MTFFOEEwMUUzMDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFncw4wDQYJKoZIhvcNAQELBQADggEBALMYkQDGS58Zk00G XkGkfSWd0CSw0UNmEhqhuEwnvBNy/4Sp493CjjuLlW9NvkPJxF8K8G/tW3sS9tj8 fBjp3n3/MWdjkZSVANLnvfr1QBlOZpUHNuauKdWLsTM3RmGJcUxfw+sLmupih2uz u1lajdiR8UCijBTPjy7dZUq0C9AUt7qbkjtnjdVvc0pPMEObUTDBNO0qM6ko88H0 PxylDXHNyNy9laMc8idr9MmQWS8HA5dsfHZ+tPBhs7YriVyK0o1ztnV3YvIzJR6Q MOybLv2d0n1tk7S1lYW3AZqklM3AP1R6OfoXxG2Ge0IWy8ds/pvWWu/HbuCaeEnT MYDnjoE= -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:06 2025 by rpki-client