$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa File: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (raw, json) Hash identifier: bednLb1aavoMryTZu6a+ZITB3tAwjB8YeG5P5A+FHwQ= Subject key identifier: 6D:5C:3D:9B:70:69:71:79:46:8C:E9:11:D0:FF:4B:98:8B:96:0E:03 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 01E4 Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa Signing time: Mon 27 Oct 2025 04:46:37 +0000 ROA not before: Mon 27 Oct 2025 04:46:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139609 IP address blocks: 103.142.98.0/24 maxlen: 24 103.142.99.0/24 maxlen: 24 2001:df1:3b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Oct 27 04:46:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68fef92c-8dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:68:38:22:42:e5:a4:c1:f6:7b:ee:43:7e:69: 4d:4b:e1:03:12:32:69:6f:84:87:00:46:6b:41:fc: 18:d0:8e:1c:33:c2:f2:5c:8d:ad:0f:f1:c8:7c:6d: c8:bc:b3:c0:b6:22:ea:53:bf:70:60:da:47:93:98: e8:83:de:e5:9a:3e:8e:36:2b:2a:87:cc:0e:b4:76: 8c:a9:34:89:e6:af:73:b2:64:92:0f:88:40:ad:21: e6:13:69:36:08:4d:a6:0a:ce:f7:87:ca:d1:79:82: 5c:9e:cf:a7:7d:a7:27:d2:1b:43:43:d3:65:fc:70: 91:9e:31:75:59:88:d4:ad:5b:6b:8f:e9:45:de:5f: ac:7e:ae:b7:c6:25:d9:73:34:be:2e:cc:23:8e:dc: 4d:2c:5d:e1:d7:c8:43:48:b9:8c:a1:a9:41:b6:e0: 04:12:a4:94:4f:55:68:39:d6:b5:fd:53:24:2a:00: d5:3a:ad:ef:2e:1a:70:91:04:39:02:e8:83:3b:7a: 72:8a:05:7b:87:f2:33:ba:68:23:0c:79:8a:29:f6: 82:4b:b6:c6:a6:48:14:19:3c:13:a9:77:6e:ad:20: 68:9e:a7:52:34:40:34:cd:34:06:7e:dc:7e:02:a3: 79:8b:08:2a:ec:e5:20:b4:2c:ed:06:5f:2c:8b:44: 36:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5C:3D:9B:70:69:71:79:46:8C:E9:11:D0:FF:4B:98:8B:96:0E:03 X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.98.0/23 IPv6: 2001:df1:3b80::/48 Signature Algorithm: sha256WithRSAEncryption 54:64:2b:e2:0b:d1:b2:52:cc:54:f5:0a:0e:8d:14:95:ab:a0: ca:9a:f9:9f:39:05:44:27:e2:6b:56:22:59:db:07:1a:83:d5: 58:60:90:61:74:7a:7b:d7:61:80:e9:ed:a9:dd:2e:63:52:c8: 66:bc:16:71:b6:a1:e5:07:88:0a:aa:d1:0b:76:14:c2:44:90: da:a6:fe:8b:54:88:9d:16:76:e2:32:87:2c:5b:b2:68:c6:1a: 30:89:d4:35:4f:10:4f:c0:52:4b:14:c4:0c:22:64:d3:71:b0: ff:94:f7:52:83:32:5b:69:d7:5f:9b:b9:06:d5:53:76:2c:c5: a2:06:1a:6f:0c:48:e5:c7:47:38:67:5a:e4:af:26:d6:e8:9f: 62:5d:28:c1:6c:7e:93:e8:86:6e:84:99:6a:49:d8:62:fb:9d: 63:da:4c:d9:74:1f:94:83:e1:71:3b:50:5b:dc:8d:df:84:68: 21:dc:02:bb:05:51:82:40:29:11:52:e3:3a:83:87:c7:78:85: 24:a3:aa:44:89:49:7f:d5:ee:ab:80:76:77:2d:3c:12:03:34: 92:6d:44:58:53:6c:70:f1:27:8b:a5:6a:80:ab:7a:25:fc:dd: bf:f0:cd:a0:8c:ea:b4:8f:1f:97:f7:ae:82:2f:40:b3:16:8d: 15:31:03:a1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjUxMDI3MDQ0NjM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZjkyYy04ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mg4IkLlpMH2e+5DfmlNS+EDEjJpb4SHAEZrQfwY0I4cM8LyXI2tD/HIfG3I vLPAtiLqU79wYNpHk5jog97lmj6ONisqh8wOtHaMqTSJ5q9zsmSSD4hArSHmE2k2 CE2mCs73h8rReYJcns+nfacn0htDQ9Nl/HCRnjF1WYjUrVtrj+lF3l+sfq63xiXZ czS+LswjjtxNLF3h18hDSLmMoalBtuAEEqSUT1VoOda1/VMkKgDVOq3vLhpwkQQ5 AuiDO3pyigV7h/IzumgjDHmKKfaCS7bGpkgUGTwTqXdurSBonqdSNEA0zTQGftx+ AqN5iwgq7OUgtCztBl8si0Q26QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG1cPZtw aXF5RozpEdD/S5iLlg4DMB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdERDIvMTAxRURBRUFEMUM4MTFFREFDQzgxQjdDQzRGOUFFMDIvMjg3MURCOUVE MUNCMTFFREJFMkYwRDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjmIwDwQCAAIwCQMHACABDfE7gDANBgkqhkiG9w0BAQsF AAOCAQEAVGQr4gvRslLMVPUKDo0Ulaugypr5nzkFRCfia1YiWdsHGoPVWGCQYXR6 e9dhgOntqd0uY1LIZrwWcbah5QeICqrRC3YUwkSQ2qb+i1SInRZ24jKHLFuyaMYa MInUNU8QT8BSSxTEDCJk03Gw/5T3UoMyW2nXX5u5BtVTdizFogYabwxI5cdHOGda 5K8m1uifYl0owWx+k+iGboSZaknYYvudY9pM2XQflIPhcTtQW9yN34RoIdwCuwVR gkApEVLjOoOHx3iFJKOqRIlJf9Xuq4B2dy08EgM0km1EWFNscPEni6VqgKt6Jfzd v/DNoIzqtI8fl/eugi9AsxaNFTEDoQ== -----END CERTIFICATE-----Generated at Wed Nov 5 13:27:50 2025 by rpki-client