$ rpki-client -vvf rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa File: E76F99C60FDB11ED9718606AC4F9AE02.roa (raw, json) Hash identifier: xcMGwOENkpgW2mMW9g8QUOtjynFGqmXhiODYH8mlbPs= Subject key identifier: 74:DD:09:15:B2:EB:94:4A:6D:32:19:F8:4A:39:35:46:D2:1B:6D:19 Certificate issuer: /CN=A9118CA7/serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Certificate serial: 0984 Authority key identifier: F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa Signing time: Sat 30 Aug 2025 20:41:25 +0000 ROA not before: Sat 30 Aug 2025 20:41:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141452 IP address blocks: 103.151.171.0/24 maxlen: 24 2001:df3:cc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118CA7, serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Validity Not Before: Aug 30 20:41:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b361f5-a049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:99:65:7d:48:b2:42:f1:8c:a1:c7:3c:ed:fb: e5:20:35:ae:d2:de:6b:15:91:b1:92:02:93:cd:b6: 04:db:09:0b:b6:4b:dc:bf:11:80:94:20:33:40:12: 58:5d:9b:88:50:21:0e:47:ce:ed:9c:b3:22:79:8b: 37:cd:9f:38:7f:3e:fc:d6:33:e2:1a:b4:a3:ae:ff: bd:90:65:aa:88:e6:c3:6b:55:8d:d2:b9:6c:81:11: a3:25:20:e7:40:d2:0b:7a:a1:3d:d9:f3:91:7c:1e: 21:be:7a:0c:9f:f3:9d:68:03:72:06:85:5d:8c:6d: f4:56:1e:1d:87:f0:fa:6d:f9:26:08:ca:06:ed:ac: 68:fc:5a:0b:43:8f:db:b4:75:77:7d:42:8b:97:b5: 28:16:95:27:4e:d5:89:89:91:ad:94:89:4c:dc:7a: ab:ef:c1:5a:d1:21:a7:38:76:46:65:95:8d:67:e9: c1:4b:d1:d5:a9:4e:72:b8:35:cb:78:cd:c2:73:12: 90:0c:7a:fd:51:77:75:a0:1e:58:51:f3:9a:37:a7: 12:5b:0b:e7:23:3d:69:57:40:5a:ee:91:f0:45:f6: 02:c1:4c:0c:0f:74:6c:26:12:f0:64:89:1e:9a:c1: 8a:da:0f:5e:c1:b3:0b:46:c9:77:07:aa:9d:6b:dc: 7f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DD:09:15:B2:EB:94:4A:6D:32:19:F8:4A:39:35:46:D2:1B:6D:19 X509v3 Authority Key Identifier: keyid:F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.171.0/24 IPv6: 2001:df3:cc80::/48 Signature Algorithm: sha256WithRSAEncryption 73:8a:0c:78:8a:d8:b3:eb:d2:f0:e3:58:7c:1f:39:50:4b:5a: 7c:2e:29:03:9e:71:68:84:0b:26:a2:1d:33:78:5b:89:88:dd: ac:cc:70:2b:06:8e:30:91:38:ca:de:7e:f9:42:49:ad:a2:3c: 4b:e7:91:03:f7:ec:c6:f2:ee:9d:e7:f4:a3:ca:0d:51:41:52: e1:a6:c4:02:88:10:c3:a9:e7:82:69:ee:3c:43:d2:68:eb:71: b5:0e:5f:90:b4:ba:7b:ee:fc:2f:4a:7f:d5:45:8e:5f:70:8d: fe:74:60:31:b0:d0:70:ac:f0:1f:17:06:81:d1:a2:c6:b0:73: 92:ff:40:63:72:69:f8:fe:41:43:fd:8d:73:4d:69:0d:ea:3a: 57:cb:e5:0b:9c:32:9a:03:cc:6a:6e:61:60:22:46:37:47:4b: 2f:ca:9e:a9:fe:6d:18:37:1d:aa:49:c9:9c:cf:b3:f1:54:7f: f6:ce:ef:98:8c:3a:b7:b1:20:d6:0e:de:6c:30:cf:81:35:42: 5a:e0:20:23:6e:34:c5:5f:f3:ba:bf:40:6a:24:cb:30:0c:9f: 4e:23:dd:bb:6e:e3:86:10:a5:84:43:9d:8a:be:5d:6d:4a:1c: f2:ce:83:7f:be:2e:17:4f:a2:cc:dc:07:af:98:33:65:54:e4: 4a:5c:1d:39 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThDQTcxMTAvBgNVBAUTKEYxOTk4QTQ3NUU5MkRFOEE2QzdENDA5NDU1NkEwREE2 N0Q1RDREMEUwHhcNMjUwODMwMjA0MTI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNjFmNS1hMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZllfUiyQvGMocc87fvlIDWu0t5rFZGxkgKTzbYE2wkLtkvcvxGAlCAzQBJY XZuIUCEOR87tnLMieYs3zZ84fz781jPiGrSjrv+9kGWqiObDa1WN0rlsgRGjJSDn QNILeqE92fORfB4hvnoMn/OdaANyBoVdjG30Vh4dh/D6bfkmCMoG7axo/FoLQ4/b tHV3fUKLl7UoFpUnTtWJiZGtlIlM3Hqr78Fa0SGnOHZGZZWNZ+nBS9HVqU5yuDXL eM3CcxKQDHr9UXd1oB5YUfOaN6cSWwvnIz1pV0Ba7pHwRfYCwUwMD3RsJhLwZIke msGK2g9ewbMLRsl3B6qda9x/nQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHTdCRWy 65RKbTIZ+Eo5NUbSG20ZMB8GA1UdIwQYMBaAFPGZikdekt6KbH1AlFVqDaZ9XU0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOENBNy8yRkM3MEEyNEEw RDUxMUVBQTdGRkRGMjlDNEY5QUUwMi84Wm1LUjE2UzNvcHNmVUNVVldvTnBuMWRU UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhabUtSMTZTM29wc2ZVQ1VWV29OcG4xZFRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThDQTcvMkZDNzBBMjRBMEQ1MTFFQUE3RkZERjI5QzRGOUFFMDIvRTc2Rjk5QzYw RkRCMTFFRDk3MTg2MDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnl6swDwQCAAIwCQMHACABDfPMgDANBgkqhkiG9w0BAQsF AAOCAQEAc4oMeIrYs+vS8ONYfB85UEtafC4pA55xaIQLJqIdM3hbiYjdrMxwKwaO MJE4yt5++UJJraI8S+eRA/fsxvLunef0o8oNUUFS4abEAogQw6nngmnuPEPSaOtx tQ5fkLS6e+78L0p/1UWOX3CN/nRgMbDQcKzwHxcGgdGixrBzkv9AY3Jp+P5BQ/2N c01pDeo6V8vlC5wymgPMam5hYCJGN0dLL8qeqf5tGDcdqknJnM+z8VR/9s7vmIw6 t7Eg1g7ebDDPgTVCWuAgI240xV/zur9AaiTLMAyfTiPdu27jhhClhEOdir5dbUoc 8s6Df74uF0+izNwHr5gzZVTkSlwdOQ== -----END CERTIFICATE-----Generated at Wed Nov 5 09:55:54 2025 by rpki-client