$ rpki-client -vvf rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa File: 3FCB43D2FB2911EF8A116D76C4F9AE02.roa (raw, json) Hash identifier: YIcOeLwAjb2qJlMr8EdSbsmrWz0Iz4vnj8+9l/iqW6o= Subject key identifier: AB:36:03:3F:F8:0C:BF:D4:CA:70:C2:03:88:32:ED:98:7C:C4:37:0D Certificate issuer: /CN=A919F026/serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Certificate serial: 4B Authority key identifier: BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa Signing time: Mon 07 Jul 2025 07:33:36 +0000 ROA not before: Mon 07 Jul 2025 07:33:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23532 IP address blocks: 103.103.64.0/23 maxlen: 24 163.61.208.0/23 maxlen: 24 2001:df5:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F026, serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Validity Not Before: Jul 7 07:33:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=686b784f-2792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:39:ba:49:d3:4a:20:df:9c:20:87:f9:2e:a9: 27:d2:6d:cc:8a:08:00:02:a8:a6:02:0e:c3:41:34: 7f:f5:dd:5a:8c:97:40:ed:cf:31:c8:c9:98:fc:5e: c7:24:59:38:60:e9:ec:69:23:e2:a4:a9:f3:d6:a4: 16:e8:54:72:ba:bd:c4:f5:17:9a:ea:05:62:db:f0: 92:65:80:29:72:9b:f5:cf:47:e1:ac:e3:4b:c0:68: ab:9c:2f:65:af:71:38:e5:60:33:77:ba:3a:5d:5a: b8:e7:53:fb:51:d2:21:71:d6:82:9b:3a:a9:e4:70: 61:c1:eb:b2:6b:2f:54:8d:21:f5:1f:c7:8e:39:11: 85:fa:8e:08:b9:6d:5b:ce:15:27:2c:59:b0:be:72: db:02:b5:d7:95:06:fc:88:1e:03:9c:c6:76:6d:73: ff:dc:56:e8:9a:df:d6:52:d7:6c:f9:50:8d:0d:07: 63:03:75:72:69:2e:b6:2c:15:58:ca:e7:13:3c:80: 26:f5:31:a1:a4:53:b5:1d:62:49:98:ce:c3:f3:26: 41:32:76:8d:fa:d4:67:22:f3:0a:b3:c5:f0:df:26: 8c:93:60:0a:1b:45:63:19:70:60:92:24:6d:50:4e: 6b:96:87:b7:6b:87:68:f7:8a:c2:8b:ec:81:ab:f1: a3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:36:03:3F:F8:0C:BF:D4:CA:70:C2:03:88:32:ED:98:7C:C4:37:0D X509v3 Authority Key Identifier: keyid:BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.64.0/23 163.61.208.0/23 IPv6: 2001:df5:20c0::/48 Signature Algorithm: sha256WithRSAEncryption af:c0:83:30:95:42:93:c6:0f:d6:68:d6:5d:9b:6b:6a:7d:ea: 17:8b:3b:59:10:c3:80:ec:7c:d6:25:0f:fe:76:0d:a4:0c:28: 3f:d5:2e:5f:7c:15:08:56:be:9e:70:b0:35:03:13:88:e0:0c: 7c:d7:a6:29:48:38:92:b1:25:58:f8:21:15:9c:a4:a9:b2:4e: 2b:98:23:e9:9f:f0:46:62:39:c7:8c:35:61:20:41:cd:0e:f0: 6f:23:05:d6:9b:7f:51:21:3a:eb:eb:0b:a1:ae:ea:4b:16:95: 03:4a:22:34:e5:b4:20:11:12:c4:ed:b9:75:b0:03:19:24:c9: 5c:14:e5:1c:b3:6d:40:5b:ed:2f:cb:f6:8e:dd:4e:b5:dd:10: 45:52:fe:5d:06:06:65:aa:76:17:91:de:fb:f5:9b:4b:bf:a0: 6e:27:93:ed:3c:46:27:f9:9b:2f:95:2c:cc:a3:3f:33:5e:fa: 2f:9d:1f:41:4c:80:d3:7b:f9:3b:77:a6:02:a8:7f:79:05:97: 9d:62:18:70:2f:ad:3e:c2:9c:cd:88:43:61:71:db:d3:66:cf: 75:50:84:b8:38:1d:46:07:f7:8d:af:c0:d6:3a:3d:b8:a1:af: 31:44:48:2d:0a:16:0f:6f:92:d5:2e:b3:bf:b9:ea:79:f9:40: b2:8d:42:29 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjAyNjExMC8GA1UEBRMoQkQ3OUFDNzY0MEM5NTVDNDM1QzhDRjU1QzI5MUYxMjJC NzBFMkY5OTAeFw0yNTA3MDcwNzMzMzZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmI3ODRmLTI3OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2ObpJ00og35wgh/kuqSfSbcyKCAACqKYCDsNBNH/13VqMl0DtzzHIyZj8Xsck WThg6expI+KkqfPWpBboVHK6vcT1F5rqBWLb8JJlgClym/XPR+Gs40vAaKucL2Wv cTjlYDN3ujpdWrjnU/tR0iFx1oKbOqnkcGHB67JrL1SNIfUfx445EYX6jgi5bVvO FScsWbC+ctsCtdeVBvyIHgOcxnZtc//cVuia39ZS12z5UI0NB2MDdXJpLrYsFVjK 5xM8gCb1MaGkU7UdYkmYzsPzJkEydo361Gci8wqzxfDfJoyTYAobRWMZcGCSJG1Q TmuWh7drh2j3isKL7IGr8aMhAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUqzYDP/gM v9TKcMIDiDLtmHzENw0wHwYDVR0jBBgwFoAUvXmsdkDJVcQ1yM9VwpHxIrcOL5kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGMDI2LzNCQUFBQzQ0RkIy ODExRUY5NTlGQzc3NEM0RjlBRTAyL3ZYbXNka0RKVmNRMXlNOVZ3cEh4SXJjT0w1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlhtc2RrREpWY1ExeU05VndwSHhJcmNPTDVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjAyNi8zQkFBQUM0NEZCMjgxMUVGOTU5RkM3NzRDNEY5QUUwMi8zRkNCNDNEMkZC MjkxMUVGOEExMTZENzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAWdnQAMEAaM90DAPBAIAAjAJAwcAIAEN9SDAMA0GCSqGSIb3 DQEBCwUAA4IBAQCvwIMwlUKTxg/WaNZdm2tqfeoXiztZEMOA7HzWJQ/+dg2kDCg/ 1S5ffBUIVr6ecLA1AxOI4Ax816YpSDiSsSVY+CEVnKSpsk4rmCPpn/BGYjnHjDVh IEHNDvBvIwXWm39RITrr6wuhrupLFpUDSiI05bQgERLE7bl1sAMZJMlcFOUcs21A W+0vy/aO3U613RBFUv5dBgZlqnYXkd779ZtLv6BuJ5PtPEYn+ZsvlSzMoz8zXvov nR9BTIDTe/k7d6YCqH95BZedYhhwL60+wpzNiENhcdvTZs91UIS4OB1GB/eNr8DW Oj24oa8xREgtChYPb5LVLrO/uep5+UCyjUIp -----END CERTIFICATE-----Generated at Sun Aug 10 21:13:47 2025 by rpki-client