$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa File: EF1E23F896FF11ED87B56F84C4F9AE02.roa (raw, json) Hash identifier: S5t27YbvUIBsEi+zxF5EsG2NIOAo49u3/IX5fyPJ2Lc= Subject key identifier: CA:8A:35:FA:92:23:3A:B4:4F:D3:72:B9:FB:36:17:59:C1:54:DB:8A Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: 024A Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa Signing time: Fri 31 Oct 2025 02:16:25 +0000 ROA not before: Fri 31 Oct 2025 02:16:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147012 IP address blocks: 103.172.232.0/23 maxlen: 23 103.172.232.0/24 maxlen: 24 2407:dac0::/32 maxlen: 32 2407:dac0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C, serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Oct 31 02:16:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69041bf9-edfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4c:95:53:fe:f8:39:d8:ee:7a:0b:51:98:d8: cf:1b:47:80:d7:7f:39:62:40:54:15:f4:a1:c9:4b: 04:a3:ee:4f:e9:b0:e2:24:70:d9:53:dd:c8:b6:dd: 79:08:76:64:bd:92:b5:d0:43:2d:d5:d2:e0:8c:7f: 48:38:c6:75:25:44:fd:a1:05:19:d0:1d:8f:56:f2: e0:84:1f:f1:dc:c1:34:9c:f2:7d:03:b1:40:64:90: 3f:51:e5:0c:9c:f0:1d:62:fe:c5:b6:e6:2a:09:0a: 9c:56:11:43:49:44:5d:26:5b:1f:98:53:d3:b0:e5: e2:60:55:b3:d5:d8:db:a3:46:e6:63:e0:23:b2:73: 17:df:44:04:52:01:9f:2e:23:e2:33:bc:ae:e4:18: 2d:e2:5a:0a:1e:20:da:b4:04:d0:b6:b6:d2:01:e4: 78:4d:8b:aa:86:6f:48:d3:e5:a0:97:3b:9b:d2:0e: 8b:e3:81:09:0e:d5:6a:b3:6d:04:12:6d:5c:2a:e8: ea:4e:0c:f7:f2:00:65:51:c8:55:e5:c4:6e:83:c5: 61:54:78:6f:24:a1:cc:66:1b:8a:1d:e7:5a:2c:b9: 94:fc:be:eb:be:d0:d5:69:2a:66:d8:77:e8:21:a5: 46:6f:20:0b:c0:63:39:c1:63:df:db:c5:8b:9d:5a: 03:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8A:35:FA:92:23:3A:B4:4F:D3:72:B9:FB:36:17:59:C1:54:DB:8A X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.232.0/23 IPv6: 2407:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:2e:a4:15:3a:28:a3:8b:0e:a9:2b:7d:6f:8b:9b:15:54:f5: bc:3a:95:b9:6d:96:a8:e8:c8:35:b0:19:00:9e:49:12:66:0c: bc:92:8c:d4:dc:1c:0b:8f:bf:c8:31:53:60:27:f0:21:af:dd: 0e:da:9d:38:99:3e:3d:39:46:d1:fe:87:a6:09:ec:3e:b6:39: 70:3b:43:84:c2:42:12:cb:cd:0f:c9:1d:86:36:49:5f:aa:3f: e7:ab:36:5d:14:98:86:32:7a:d5:38:f1:92:9d:5d:14:0f:21: 1c:a2:85:03:41:52:fa:f7:87:d1:56:db:23:44:e3:a3:96:c6: 13:94:13:6a:18:5e:aa:2b:b7:20:3b:e3:94:84:8e:b4:66:cb: 37:b8:c1:47:e2:ad:85:a3:d9:61:5a:01:2b:4d:4a:d8:61:26: cc:2c:27:d3:f6:e9:06:a9:8f:99:42:70:3a:c3:cb:54:f7:37: e9:e6:49:2a:0b:e3:9c:3e:93:c9:e3:80:45:99:54:2b:96:d8: 21:ef:96:02:b8:e5:48:0e:1a:a9:8f:52:80:33:4a:6a:07:ab: 71:f1:26:81:f1:96:cc:96:76:85:34:b0:f8:a3:6b:68:14:7e: a0:1a:23:e7:d0:f0:3a:7f:bd:58:e7:0c:2b:32:f8:b6:f2:f2: 66:eb:49:3a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjUxMDMxMDIxNjI1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MWJmOS1lZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEyVU/74OdjuegtRmNjPG0eA1385YkBUFfShyUsEo+5P6bDiJHDZU93Itt15 CHZkvZK10EMt1dLgjH9IOMZ1JUT9oQUZ0B2PVvLghB/x3ME0nPJ9A7FAZJA/UeUM nPAdYv7FtuYqCQqcVhFDSURdJlsfmFPTsOXiYFWz1djbo0bmY+AjsnMX30QEUgGf LiPiM7yu5Bgt4loKHiDatATQtrbSAeR4TYuqhm9I0+Wglzub0g6L44EJDtVqs20E Em1cKujqTgz38gBlUchV5cRug8VhVHhvJKHMZhuKHedaLLmU/L7rvtDVaSpm2Hfo IaVGbyALwGM5wWPf28WLnVoDQwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMqKNfqS Izq0T9Nyufs2F1nBVNuKMB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvRUYxRTIzRjg5 NkZGMTFFRDg3QjU2Rjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrOgwDQQCAAIwBwMFACQH2sAwDQYJKoZIhvcNAQELBQAD ggEBAHsupBU6KKOLDqkrfW+LmxVU9bw6lbltlqjoyDWwGQCeSRJmDLySjNTcHAuP v8gxU2An8CGv3Q7anTiZPj05RtH+h6YJ7D62OXA7Q4TCQhLLzQ/JHYY2SV+qP+er Nl0UmIYyetU48ZKdXRQPIRyihQNBUvr3h9FW2yNE46OWxhOUE2oYXqortyA745SE jrRmyze4wUfirYWj2WFaAStNSthhJswsJ9P26Qapj5lCcDrDy1T3N+nmSSoL45w+ k8njgEWZVCuW2CHvlgK45UgOGqmPUoAzSmoHq3HxJoHxlsyWdoU0sPija2gUfqAa I+fQ8Dp/vVjnDCsy+Lby8mbrSTo= -----END CERTIFICATE-----Generated at Wed Nov 5 21:27:42 2025 by rpki-client