$ rpki-client -vvf rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa File: 985276043B6D11F0AFFFDD4DC4F9AE02.roa (raw, json) Hash identifier: J9o/h2HcCF6AGcDij2ORSiNowMdc+62JwdcPSLdmYdw= Subject key identifier: E4:2D:91:C2:79:69:95:0F:9D:99:C5:E5:B0:9F:F6:10:C0:57:64:30 Certificate issuer: /CN=A919E2D2/serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Certificate serial: 03E3 Authority key identifier: 32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa Signing time: Sun 03 Aug 2025 01:08:08 +0000 ROA not before: Sun 03 Aug 2025 01:08:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 396982 IP address blocks: 103.207.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E2D2, serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Validity Not Before: Aug 3 01:08:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688eb678-c9b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:ca:e5:4f:c5:e6:78:7d:d2:cb:f5:de:f8: 5e:6e:dd:7b:28:f2:0f:9b:69:a8:48:6d:e1:4d:94: 58:ed:f6:b8:be:51:f9:59:45:8d:48:b4:a6:15:3f: c7:e8:ad:bc:4a:35:3e:c9:b4:7e:b3:5c:e0:21:7c: ff:cb:f2:80:23:64:4e:fa:48:ed:34:b6:50:cd:e0: 59:86:07:e0:4a:95:8d:82:4b:c0:ec:76:91:d3:79: 7c:15:82:42:4f:30:30:59:00:b4:c6:63:5b:26:6b: 29:ad:35:8d:69:fc:4e:a9:fd:87:62:c8:2c:ae:ab: be:e0:5c:64:f0:6e:14:73:b8:a6:56:7c:3f:12:88: 23:71:29:62:76:43:67:1c:1b:45:7f:72:f5:4b:13: fa:85:9b:ce:52:90:5a:a6:83:86:74:36:ba:f3:ed: bb:33:47:8f:97:14:fa:97:06:ed:64:3b:24:fb:d7: 7e:f4:c5:e8:fd:c5:5c:90:3b:46:79:27:83:e9:88: 53:7c:0e:8f:9e:98:52:b2:23:1e:ba:3c:d1:ff:20: 31:91:ec:c8:f4:be:86:03:03:6e:09:ef:22:25:13: 90:51:50:e2:8e:56:23:d0:ac:24:02:ea:77:91:ee: e7:82:5e:19:1f:f1:44:fc:d8:74:a2:7b:56:9d:05: 38:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2D:91:C2:79:69:95:0F:9D:99:C5:E5:B0:9F:F6:10:C0:57:64:30 X509v3 Authority Key Identifier: keyid:32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.158.0/24 Signature Algorithm: sha256WithRSAEncryption 11:79:fb:41:1c:8d:48:2e:4a:82:95:d3:f0:d1:70:17:8e:f0: 1a:ad:65:b9:7e:30:ea:04:2e:5a:6f:26:f2:f8:7d:af:e4:6f: 54:ca:9d:bd:09:84:33:44:da:c4:f1:e5:37:5b:2f:19:b9:52: 0b:30:90:c4:d9:f5:6c:9a:80:03:5c:21:50:83:fe:51:48:f2: 8e:2e:fc:a3:16:b8:dd:d1:83:d3:a0:39:5e:82:b9:93:79:24: c6:fd:79:97:c7:5a:f4:a7:51:1b:0c:88:ed:16:4e:4a:c3:27: f3:07:8f:15:76:95:99:9f:df:34:02:37:8f:37:1e:21:ff:04: 18:3e:54:13:2b:6c:5a:31:e9:cb:ec:ab:d8:20:51:11:af:d5: 1e:a7:a4:76:55:d8:31:53:1b:40:85:62:6c:0e:38:b7:17:0e: 76:7d:13:50:c3:da:07:d2:b8:cc:0c:af:a4:05:87:cd:9b:95: fb:c3:f2:3f:e0:6f:b0:61:0c:0d:9e:8b:77:08:1b:35:e9:c5: ee:27:87:aa:b1:4b:3f:6f:b7:52:14:e6:7c:41:00:c6:f4:a9: 2f:79:85:8d:4f:68:5c:74:8e:93:1a:9a:f2:24:92:dd:6e:fa: c7:6b:1c:91:93:35:31:53:96:3e:57:4f:9a:9e:b3:59:c4:9d: 7c:4c:fc:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUyRDIxMTAvBgNVBAUTKDMyNTU0RUEyOTNEQjA5RDk2MDBGOTM4RjA1QzAyMDNG QjlBQkU5OTMwHhcNMjUwODAzMDEwODA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYjY3OC1jOWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fzK5U/F5nh90sv13vhebt17KPIPm2moSG3hTZRY7fa4vlH5WUWNSLSmFT/H 6K28SjU+ybR+s1zgIXz/y/KAI2RO+kjtNLZQzeBZhgfgSpWNgkvA7HaR03l8FYJC TzAwWQC0xmNbJmsprTWNafxOqf2HYsgsrqu+4Fxk8G4Uc7imVnw/EogjcSlidkNn HBtFf3L1SxP6hZvOUpBapoOGdDa68+27M0ePlxT6lwbtZDsk+9d+9MXo/cVckDtG eSeD6YhTfA6PnphSsiMeujzR/yAxkezI9L6GAwNuCe8iJROQUVDijlYj0KwkAup3 ke7ngl4ZH/FE/Nh0ontWnQU41QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOQtkcJ5 aZUPnZnF5bCf9hDAV2QwMB8GA1UdIwQYMBaAFDJVTqKT2wnZYA+TjwXAID+5q+mT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTJEMi9CQzAzNTUyQzhG OUIxMUVDODI2MDNEMTZDNEY5QUUwMi9NbFZPb3BQYkNkbGdENU9QQmNBZ1A3bXI2 Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01sVk9vcFBiQ2RsZ0Q1T1BCY0FnUDdtcjZaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUUyRDIvQkMwMzU1MkM4RjlCMTFFQzgyNjAzRDE2QzRGOUFFMDIvOTg1Mjc2MDQz QjZEMTFGMEFGRkZERDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnz54wDQYJKoZIhvcNAQELBQADggEBABF5+0EcjUguSoKV 0/DRcBeO8BqtZbl+MOoELlpvJvL4fa/kb1TKnb0JhDNE2sTx5TdbLxm5UgswkMTZ 9WyagANcIVCD/lFI8o4u/KMWuN3Rg9OgOV6CuZN5JMb9eZfHWvSnURsMiO0WTkrD J/MHjxV2lZmf3zQCN483HiH/BBg+VBMrbFox6cvsq9ggURGv1R6npHZV2DFTG0CF YmwOOLcXDnZ9E1DD2gfSuMwMr6QFh82blfvD8j/gb7BhDA2ei3cIGzXpxe4nh6qx Sz9vt1IU5nxBAMb0qS95hY1PaFx0jpMamvIkkt1u+sdrHJGTNTFTlj5XT5qes1nE nXxM/Ms= -----END CERTIFICATE-----Generated at Sat Aug 9 02:50:53 2025 by rpki-client