$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/7AC6992E655411F088401528C4F9AE02.roa File: 7AC6992E655411F088401528C4F9AE02.roa (raw, json) Hash identifier: uIcNx9LJmFIiFy1R//MYnp48SjiCyMS3BH2WDp6mT4A= Subject key identifier: 70:9C:28:4E:6B:1B:5A:30:0E:2F:E1:E2:71:B1:15:2E:21:72:43:8B Certificate issuer: /CN=A919DC79/serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Certificate serial: 0BC9 Authority key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/7AC6992E655411F088401528C4F9AE02.roa Signing time: Sun 20 Jul 2025 11:14:34 +0000 ROA not before: Sun 20 Jul 2025 11:14:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139808 IP address blocks: 103.145.112.0/23 maxlen: 23 103.145.112.0/24 maxlen: 24 103.145.113.0/24 maxlen: 24 2001:df3:3180::/48 maxlen: 48 2402:aa0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Validity Not Before: Jul 20 11:14:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=687ccf9a-cd13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:17:67:98:44:aa:8d:c6:18:ad:af:21:eb: be:dd:e0:f2:6f:6e:97:a4:8c:91:47:9a:04:a2:19: f3:2e:4b:79:81:fa:b0:7e:70:23:15:0b:6d:d7:40: b3:49:94:34:c7:1d:6f:25:2b:83:e8:2a:cf:d0:6c: 93:3b:f1:50:64:5a:39:23:09:ab:29:01:42:1c:6e: 98:7d:20:eb:62:09:8f:53:c9:0b:f5:cf:7d:b2:79: 32:2a:c1:80:9a:b3:e3:57:8d:18:d0:55:06:e0:cf: 89:1d:c3:d5:d9:32:67:e0:28:20:bc:20:6c:4b:0e: 91:f3:f1:c7:83:66:e2:c4:fa:60:08:01:a3:2a:1f: 03:be:03:3c:ee:6f:5d:55:4e:e7:6f:2e:23:50:9b: 66:4c:2e:23:b7:99:95:e3:51:7d:ca:2f:98:03:2d: ae:60:0f:8e:aa:c6:68:8c:46:e4:54:4a:11:89:12: ee:f9:87:75:97:ba:85:1e:b4:8a:71:72:72:9a:96: d7:46:d0:61:3a:1b:60:a4:98:27:80:e6:2e:a6:3a: fd:7b:ae:09:2d:a6:1d:64:c2:80:49:ed:8b:9c:99: 96:a0:a6:61:52:6f:a9:81:b1:90:a7:dc:81:7e:6e: 62:73:8e:cd:6f:ff:cf:54:52:57:68:f0:70:73:ec: 73:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9C:28:4E:6B:1B:5A:30:0E:2F:E1:E2:71:B1:15:2E:21:72:43:8B X509v3 Authority Key Identifier: keyid:76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/7AC6992E655411F088401528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.112.0/23 IPv6: 2001:df3:3180::/48 2402:aa0::/32 Signature Algorithm: sha256WithRSAEncryption aa:93:59:50:f4:fe:f6:db:b9:b5:6b:bf:02:4b:03:30:00:d0: 32:6b:87:35:ac:52:97:f8:56:81:81:6a:96:2b:f9:f5:ac:f5: 83:4a:46:ea:22:a8:ac:3d:e4:fb:9a:e1:9b:b7:d9:f6:f9:d4: e5:d9:5a:7c:b6:30:a6:73:d6:00:c8:ea:5d:df:49:fc:4a:ee: 16:5f:a4:8b:ba:14:bc:e8:27:a1:60:d1:fc:2f:69:77:a8:da: d2:d3:c3:78:98:15:59:f7:21:d5:32:0e:47:f4:7b:8c:1e:cf: 71:1d:76:86:da:27:f0:6d:e4:6f:94:b6:1e:da:cf:b6:e8:75: f4:76:fc:0f:20:08:95:b5:02:11:33:12:23:fe:d2:6a:05:5c: 77:f9:54:74:fb:7a:2f:b0:28:b3:19:c5:93:e9:b3:1f:88:ba: 3f:ac:a4:b1:95:e5:8e:97:1b:68:e5:69:27:f8:c8:35:3b:cd: 51:fd:1d:43:fb:68:30:04:47:c6:ab:bc:50:b6:61:41:dd:47: af:c7:83:72:c8:bd:4c:db:3f:91:59:62:ec:90:c9:fa:45:30: 4f:87:b8:88:a3:95:63:3f:64:dc:73:4f:1f:80:90:7f:f2:2d: 30:3f:3b:f9:f3:78:51:19:f9:64:88:fa:59:9f:2e:58:15:a8: 76:dc:3d:61 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzkxMTAvBgNVBAUTKDc2Q0QwMjFFMEMyODFEQTVGRTY0RDg3ODAzNTUzODA4 ODg5QTExNjcwHhcNMjUwNzIwMTExNDM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdjY2Y5YS1jZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSQXZ5hEqo3GGK2vIeu+3eDyb26XpIyRR5oEohnzLkt5gfqwfnAjFQtt10Cz SZQ0xx1vJSuD6CrP0GyTO/FQZFo5IwmrKQFCHG6YfSDrYgmPU8kL9c99snkyKsGA mrPjV40Y0FUG4M+JHcPV2TJn4CggvCBsSw6R8/HHg2bixPpgCAGjKh8DvgM87m9d VU7nby4jUJtmTC4jt5mV41F9yi+YAy2uYA+OqsZojEbkVEoRiRLu+Yd1l7qFHrSK cXJympbXRtBhOhtgpJgngOYupjr9e64JLaYdZMKASe2LnJmWoKZhUm+pgbGQp9yB fm5ic47Nb//PVFJXaPBwc+xzuQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFHCcKE5r G1owDi/h4nGxFS4hckOLMB8GA1UdIwQYMBaAFHbNAh4MKB2l/mTYeANVOAiImhFn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3OS9BNjNGOTNENjI3 Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hhWC1aTmg0QTFVNENJaWFF V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMENIZ3dvSGFYLVpOaDRBMVU0Q0lpYUVXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURDNzkvQTYzRjkzRDYyN0NFMTFFQThFNDA3RTVCQzRGOUFFMDIvN0FDNjk5MkU2 NTU0MTFGMDg4NDAxNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFnkXAwFgQCAAIwEAMHACABDfMxgAMFACQCCqAwDQYJKoZI hvcNAQELBQADggEBAKqTWVD0/vbbubVrvwJLAzAA0DJrhzWsUpf4VoGBapYr+fWs 9YNKRuoiqKw95Pua4Zu32fb51OXZWny2MKZz1gDI6l3fSfxK7hZfpIu6FLzoJ6Fg 0fwvaXeo2tLTw3iYFVn3IdUyDkf0e4wez3EddobaJ/Bt5G+Uth7az7bodfR2/A8g CJW1AhEzEiP+0moFXHf5VHT7ei+wKLMZxZPpsx+Iuj+spLGV5Y6XG2jlaSf4yDU7 zVH9HUP7aDAER8arvFC2YUHdR6/Hg3LIvUzbP5FZYuyQyfpFME+HuIijlWM/ZNxz Tx+AkH/yLTA/O/nzeFEZ+WSI+lmfLlgVqHbcPWE= -----END CERTIFICATE-----Generated at Sun Aug 10 04:55:12 2025 by rpki-client