$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa File: 7A40B730E2D811EBAB97665DC4F9AE02.roa (raw, json) Hash identifier: nERwHYLrCQbTGbVdhkuVu4DLbRWJapvf+ehHeDcqXoI= Subject key identifier: 98:67:B8:BD:70:81:A0:CA:2A:6D:70:DC:A1:6E:A4:42:45:79:61:FC Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0E8F Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa Signing time: Sat 29 Mar 2025 16:43:08 +0000 ROA not before: Sat 29 Mar 2025 16:43:08 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 59238 IP address blocks: 103.253.132.0/23 maxlen: 24 2400:c540::/32 maxlen: 32 2400:c540::/47 maxlen: 48 2400:c540:2::/47 maxlen: 47 2400:c540:2::/48 maxlen: 48 2400:c540:4::/48 maxlen: 48 2400:c540:52::/48 maxlen: 48 2400:c540:53::/48 maxlen: 48 2400:c540:65::/48 maxlen: 48 2400:c540:80::/48 maxlen: 48 2400:c540:ba::/48 maxlen: 48 2400:c540:100::/48 maxlen: 48 2400:c540:110::/48 maxlen: 48 2400:c540:1cc::/48 maxlen: 48 2400:c540:200::/48 maxlen: 48 2400:c540:c000::/36 maxlen: 36 2400:c540:c036::/48 maxlen: 48 2400:c540:c276::/48 maxlen: 48 2400:c540:c344::/48 maxlen: 48 2400:c540:c392::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3727 (0xe8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Mar 29 16:43:08 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67e8231c-85c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a3:4d:58:f8:d0:d4:18:d1:3a:4e:26:c3:65: e4:46:60:c6:7f:53:41:03:9d:4c:33:a0:88:c7:0a: a4:be:e4:7e:81:65:c6:bc:f7:91:b2:19:31:05:97: 01:3d:37:c5:6d:65:d9:d7:c7:c2:88:d6:d8:e9:50: dc:60:99:9a:d4:f6:0d:77:0f:4e:13:e6:8f:ea:04: e3:05:81:cf:48:ce:e9:10:76:a1:8a:f1:62:9f:f4: 4b:18:ee:ab:ec:9f:c5:8a:69:0c:be:5d:6b:8a:93: b3:05:4d:c9:82:8a:40:92:58:8e:f5:0c:4d:c2:0c: 87:e8:8c:c7:54:13:ef:75:08:f4:e0:1d:aa:e7:95: 2d:16:b8:3a:d9:22:ba:d3:1c:69:47:b7:6e:25:b0: b6:25:f6:24:2a:fc:b3:e8:6c:4f:a6:97:9a:13:f8: 37:da:0b:a6:57:93:71:20:05:b8:37:de:7a:8d:66: 58:29:90:81:2a:51:8d:8a:d9:04:cd:0a:8d:96:91: d8:98:7c:c9:43:8b:f1:7e:69:17:29:77:17:e3:33: fc:62:dc:ac:ab:f1:cb:39:2a:7b:55:01:10:a5:b2: 7d:fc:1a:39:35:ea:d1:ed:0f:49:84:21:32:ff:4e: 6b:29:21:61:fe:7b:37:ac:d4:e0:42:d7:68:88:2e: f7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:67:B8:BD:70:81:A0:CA:2A:6D:70:DC:A1:6E:A4:42:45:79:61:FC X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.132.0/23 IPv6: 2400:c540::/32 Signature Algorithm: sha256WithRSAEncryption 15:b1:46:43:07:45:2c:83:31:a5:9b:e8:95:19:5f:46:4a:07: 11:c1:d0:21:c9:76:59:d4:96:8d:f4:d4:d4:43:d6:b2:e6:52: e4:99:82:eb:52:bb:9f:fd:74:cf:b0:4c:e7:aa:ab:f5:ba:ea: 82:a4:95:e7:0c:37:7d:eb:a8:11:32:14:14:ff:6b:77:c2:a4: bb:9f:73:93:e6:e1:87:d0:cd:aa:80:4d:f9:de:79:89:c7:2b: 72:ed:01:39:2a:50:57:5c:1c:51:5b:2b:42:9b:11:36:a0:38: 39:16:78:94:87:6e:6e:78:f0:50:4b:75:cb:cc:36:79:99:81: 0f:0e:dd:b3:db:c7:ee:6a:41:74:f7:97:64:86:4a:47:54:80: 67:6a:6a:3c:4e:d6:c7:3b:92:23:cb:11:0e:4c:fc:d7:63:2f: a6:f7:3c:1d:bc:80:11:ce:44:26:ee:f4:c8:59:df:d1:38:a7: 81:5e:e0:c0:5d:43:6d:d2:d5:ea:21:e5:a3:7f:a0:be:62:e8: ac:74:d4:7c:f8:29:e8:1b:a0:b2:3f:36:70:2f:f5:02:99:48: 81:fa:b3:e5:cf:91:1d:4f:24:19:35:e1:28:05:c3:30:51:41: 7c:aa:34:ec:cc:12:23:ac:f2:b5:e2:af:93:ce:49:a6:c4:f0: d3:0e:c1:a7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUwMzI5MTY0MzA4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U4MjMxYy04NWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KNNWPjQ1BjROk4mw2XkRmDGf1NBA51MM6CIxwqkvuR+gWXGvPeRshkxBZcB PTfFbWXZ18fCiNbY6VDcYJma1PYNdw9OE+aP6gTjBYHPSM7pEHahivFin/RLGO6r 7J/FimkMvl1ripOzBU3JgopAkliO9QxNwgyH6IzHVBPvdQj04B2q55UtFrg62SK6 0xxpR7duJbC2JfYkKvyz6GxPppeaE/g32gumV5NxIAW4N956jWZYKZCBKlGNitkE zQqNlpHYmHzJQ4vxfmkXKXcX4zP8Ytysq/HLOSp7VQEQpbJ9/Bo5NerR7Q9JhCEy /05rKSFh/ns3rNTgQtdoiC73nwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJhnuL1w gaDKKm1w3KFupEJFeWH8MB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVCNEUvQTI4NDNDMDg5NzE3MTFFOTg1RkNBQjE0QzRGOUFFMDIvN0E0MEI3MzBF MkQ4MTFFQkFCOTc2NjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn/YQwDQQCAAIwBwMFACQAxUAwDQYJKoZIhvcNAQELBQAD ggEBABWxRkMHRSyDMaWb6JUZX0ZKBxHB0CHJdlnUlo301NRD1rLmUuSZgutSu5/9 dM+wTOeqq/W66oKklecMN33rqBEyFBT/a3fCpLufc5Pm4YfQzaqATfneeYnHK3Lt ATkqUFdcHFFbK0KbETagODkWeJSHbm548FBLdcvMNnmZgQ8O3bPbx+5qQXT3l2SG SkdUgGdqajxO1sc7kiPLEQ5M/NdjL6b3PB28gBHORCbu9MhZ39E4p4Fe4MBdQ23S 1eoh5aN/oL5i6Kx01Hz4KegboLI/NnAv9QKZSIH6s+XPkR1PJBk14SgFwzBRQXyq NOzMEiOs8rXir5POSabE8NMOwac= -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:33 2025 by rpki-client