$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa File: C49E2E22FF0111E591C15659C4F9AE02.roa (raw, json) Hash identifier: oBzh3F7vXr0+lbZGHQqiGoRJzyM9Q1R1dON0koDXQXQ= Subject key identifier: 35:BC:46:2B:F9:AC:D3:2B:36:67:53:47:E0:03:8B:F5:75:BE:DF:E9 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 20F7 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa Signing time: Mon 04 Aug 2025 16:23:53 +0000 ROA not before: Mon 04 Aug 2025 16:23:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133610 IP address blocks: 103.43.93.0/24 maxlen: 24 103.238.63.0/24 maxlen: 24 2001:df1:9200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8439 (0x20f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Aug 4 16:23:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6890de98-f31b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5f:44:5a:71:ec:bc:40:d4:6e:2c:8a:7a:e8: 82:40:9b:38:4a:cb:83:a2:4e:02:55:a8:5f:df:a3: f9:15:4d:0f:e4:89:bc:65:3c:a3:83:28:f4:9d:7e: 99:bc:c6:40:31:83:b7:02:12:72:cf:72:80:4f:d3: 52:e2:e9:0a:37:91:a1:fd:63:e1:96:b5:57:9f:db: ea:19:67:ff:96:d8:bc:ec:ea:ee:cf:87:43:40:c4: 60:ed:81:e8:7e:6c:5d:fa:de:a6:8e:b8:05:fb:2a: c7:64:26:0f:af:0b:6a:7a:e3:b6:9d:6f:f9:7c:8f: d3:86:1f:7a:ed:1b:22:b5:84:a8:a7:29:03:02:7d: 71:67:f9:47:26:83:d9:ac:03:2a:57:e4:ab:0d:a3: c1:7f:5f:4c:16:52:39:de:15:a7:68:6e:d5:af:34: 1b:bb:47:f3:df:2b:38:61:a2:7f:98:5a:30:59:41: a7:f4:ad:a1:84:8f:a2:1f:17:af:10:f3:e4:cb:36: e6:dd:f4:3a:69:ec:e8:95:5c:d6:af:b5:71:bc:60: ad:a7:a3:42:52:02:cc:7e:00:86:de:fa:0c:fa:10: cb:6e:28:3d:33:23:75:e6:86:54:e2:30:1b:10:b3: a4:5f:fc:bd:bf:e9:19:de:a5:bf:74:56:91:2d:4a: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BC:46:2B:F9:AC:D3:2B:36:67:53:47:E0:03:8B:F5:75:BE:DF:E9 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.93.0/24 103.238.63.0/24 IPv6: 2001:df1:9200::/48 Signature Algorithm: sha256WithRSAEncryption a7:a0:60:d5:eb:e0:f3:2d:06:5e:5e:63:a3:02:24:78:02:16: cb:c5:1f:53:cd:e9:18:f5:84:fa:63:7d:f6:58:80:dd:20:19: bf:96:19:42:c5:42:03:12:36:ee:5b:ca:64:cf:6a:b3:a9:a7: 39:06:b2:db:7a:c8:c7:c6:2a:ed:d6:09:73:5d:a3:cc:94:de: f7:e4:fb:85:bb:ad:29:bf:a3:4e:91:0a:31:ab:60:a6:47:97: 5c:96:32:40:f3:03:2b:94:86:6f:41:ab:63:dc:4a:fe:ad:ad: bf:88:05:25:20:d7:9c:51:27:3a:6a:da:13:fa:e6:34:53:5c: d5:df:c4:df:98:1c:b8:a0:cc:a3:4b:6a:32:73:c0:4a:b6:f5: 6f:e9:f1:30:af:df:41:6b:5e:b1:b7:10:24:b6:60:6b:35:63: 9f:43:2c:e2:b6:6e:ca:22:64:fa:39:24:8a:38:6f:d6:94:13: e5:5b:a1:4a:e7:9a:79:ec:79:f0:e6:2c:6e:26:34:a0:39:c5: 0d:92:ec:42:9d:0e:dc:f3:66:ec:81:6d:e5:17:93:68:44:a7: 7b:00:ef:52:b3:9d:61:08:b5:93:ce:26:f6:15:80:2b:18:1e: fb:b8:75:59:c6:71:84:bb:50:69:b1:7c:80:db:4f:41:78:95: 75:69:cf:90 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICIPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUwODA0MTYyMzUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGU5OC1mMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV9EWnHsvEDUbiyKeuiCQJs4SsuDok4CVahf36P5FU0P5Im8ZTyjgyj0nX6Z vMZAMYO3AhJyz3KAT9NS4ukKN5Gh/WPhlrVXn9vqGWf/lti87Oruz4dDQMRg7YHo fmxd+t6mjrgF+yrHZCYPrwtqeuO2nW/5fI/Thh967RsitYSopykDAn1xZ/lHJoPZ rAMqV+SrDaPBf19MFlI53hWnaG7VrzQbu0fz3ys4YaJ/mFowWUGn9K2hhI+iHxev EPPkyzbm3fQ6aezolVzWr7VxvGCtp6NCUgLMfgCG3voM+hDLbig9MyN15oZU4jAb ELOkX/y9v+kZ3qW/dFaRLUqFgwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDW8Riv5 rNMrNmdTR+ADi/V1vt/pMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI1QkIvNDRCQkMxNENGRjAxMTFFNUIxQ0ZCMDU4QzRGOUFFMDIvQzQ5RTJFMjJG RjAxMTFFNTkxQzE1NjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnK10DBABn7j8wDwQCAAIwCQMHACABDfGSADANBgkqhkiG 9w0BAQsFAAOCAQEAp6Bg1evg8y0GXl5jowIkeAIWy8UfU83pGPWE+mN99liA3SAZ v5YZQsVCAxI27lvKZM9qs6mnOQay23rIx8Yq7dYJc12jzJTe9+T7hbutKb+jTpEK MatgpkeXXJYyQPMDK5SGb0GrY9xK/q2tv4gFJSDXnFEnOmraE/rmNFNc1d/E35gc uKDMo0tqMnPASrb1b+nxMK/fQWtesbcQJLZgazVjn0Ms4rZuyiJk+jkkijhv1pQT 5VuhSueaeex58OYsbiY0oDnFDZLsQp0O3PNm7IFt5ReTaESnewDvUrOdYQi1k84m 9hWAKxge+7h1WcZxhLtQabF8gNtPQXiVdWnPkA== -----END CERTIFICATE-----Generated at Wed Aug 6 06:04:36 2025 by rpki-client