$ rpki-client -vvf rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/22DA1C02131B11EC83377D59C4F9AE02.roa File: 22DA1C02131B11EC83377D59C4F9AE02.roa (raw, json) Hash identifier: Xe+ld1uOyTTINEu5qOXliS5+W9Wqwt4es/Y7VM8UtHc= Subject key identifier: 60:8F:28:CE:1A:62:D7:CF:C9:B3:DF:E3:54:39:62:A9:A5:43:D6:AC Certificate issuer: /CN=A911B11E/serialNumber=FF75FE93F8462CB763AD561992B03D163D16ED5F Certificate serial: 0508 Authority key identifier: FF:75:FE:93:F8:46:2C:B7:63:AD:56:19:92:B0:3D:16:3D:16:ED:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/22DA1C02131B11EC83377D59C4F9AE02.roa Signing time: Thu 26 Jun 2025 23:34:42 +0000 ROA not before: Thu 26 Jun 2025 23:34:42 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142295 IP address blocks: 103.167.158.0/24 maxlen: 24 103.167.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.crl rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B11E, serialNumber=FF75FE93F8462CB763AD561992B03D163D16ED5F Validity Not Before: Jun 26 23:34:42 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685dd912-ecf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:ab:a8:dc:65:88:cd:cb:fd:c0:5d:81:54: 4e:22:1d:1c:7b:1f:d5:4e:38:f6:ab:57:b2:bd:dc: 48:42:ab:7f:6c:90:01:38:df:93:3d:56:40:b8:64: 55:0c:43:0e:ed:0c:96:7c:6e:12:e4:91:00:52:b3: 9e:03:f6:cf:51:ca:1c:46:31:56:7c:06:d7:06:36: a3:ec:7f:d1:08:7b:8c:f7:e5:ba:d6:a7:db:9a:f8: 2e:57:28:67:75:19:32:59:f8:18:4c:b7:d4:f7:bc: aa:f3:63:80:ca:82:7d:e6:47:f7:20:a0:1d:f8:54: b4:04:5a:b8:47:c7:3a:1e:43:22:43:a3:03:ec:05: bc:e4:45:37:41:70:c2:64:a3:66:67:ba:d8:bb:bc: 27:57:df:be:c1:e0:63:8a:ee:44:d3:f9:5c:5a:d3: 6a:2f:87:46:7a:de:d8:13:33:06:a9:c5:7b:94:e2: ed:30:8b:5a:8e:68:03:da:b2:0c:dd:97:f8:a0:6b: 42:72:2a:a6:87:27:6b:d6:51:3b:0c:d5:bb:b9:53: ae:1b:7d:3c:6c:c6:77:48:49:f4:ec:a8:22:e6:f0: db:e4:d3:a4:89:b5:a1:f0:dd:8b:78:c0:37:71:db: be:cd:71:6f:6f:87:3c:f6:1c:ec:de:9d:d5:65:e2: 84:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8F:28:CE:1A:62:D7:CF:C9:B3:DF:E3:54:39:62:A9:A5:43:D6:AC X509v3 Authority Key Identifier: keyid:FF:75:FE:93:F8:46:2C:B7:63:AD:56:19:92:B0:3D:16:3D:16:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3X-k_hGLLdjrVYZkrA9Fj0W7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B11E/06AF1FB2131811ECA1734356C4F9AE02/22DA1C02131B11EC83377D59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.158.0/23 Signature Algorithm: sha256WithRSAEncryption 43:d0:ac:d9:91:03:06:f1:42:5e:6b:0d:a7:3e:6a:41:9d:76: b8:88:0c:e4:f1:51:e6:54:44:24:95:3f:0a:76:e6:ca:f1:36: af:54:6d:98:06:15:3e:74:b5:8b:01:cf:1e:ef:9d:97:b1:28: 8c:e3:f3:a9:3f:d2:0d:85:a2:8c:64:e9:90:e3:f9:66:4b:cc: d5:d8:5b:d0:9d:22:4d:9a:5c:81:0c:c2:e9:ec:33:99:f7:b5: 89:e9:2f:9c:d8:3e:fc:70:e4:50:2b:3e:49:cc:48:4e:c1:3b: df:46:db:be:22:27:0d:f0:63:c9:ec:c7:a5:fa:13:3e:2b:4d: f5:a5:70:a7:30:19:7f:73:56:20:03:b5:59:48:e2:c7:33:81: ce:4f:87:ae:3c:fd:e0:3c:46:3d:1e:09:13:a0:51:ee:9b:a0: 12:53:cc:c9:56:26:7f:89:7b:76:06:44:b0:05:e5:72:46:18: cc:70:70:9f:04:be:ee:3e:73:f1:00:e4:0d:a2:e6:34:40:22: 56:e1:91:81:43:9f:57:7e:cf:15:f5:06:e5:6f:03:c3:ee:f8: d3:87:03:18:3b:fb:17:9e:19:6c:5e:1f:8a:4a:6a:78:cb:a9: 4d:ff:8e:68:ab:40:3d:a3:54:f2:58:fe:2d:b7:e9:35:3d:1f: a5:8a:a5:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIxMUUxMTAvBgNVBAUTKEZGNzVGRTkzRjg0NjJDQjc2M0FENTYxOTkyQjAzRDE2 M0QxNkVENUYwHhcNMjUwNjI2MjMzNDQyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkZDkxMi1lY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gOrqNxliM3L/cBdgVROIh0cex/VTjj2q1eyvdxIQqt/bJABON+TPVZAuGRV DEMO7QyWfG4S5JEAUrOeA/bPUcocRjFWfAbXBjaj7H/RCHuM9+W61qfbmvguVyhn dRkyWfgYTLfU97yq82OAyoJ95kf3IKAd+FS0BFq4R8c6HkMiQ6MD7AW85EU3QXDC ZKNmZ7rYu7wnV9++weBjiu5E0/lcWtNqL4dGet7YEzMGqcV7lOLtMItajmgD2rIM 3Zf4oGtCciqmhydr1lE7DNW7uVOuG308bMZ3SEn07Kgi5vDb5NOkibWh8N2LeMA3 cdu+zXFvb4c89hzs3p3VZeKEsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGCPKM4a YtfPybPf41Q5YqmlQ9asMB8GA1UdIwQYMBaAFP91/pP4Riy3Y61WGZKwPRY9Fu1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjExRS8wNkFGMUZCMjEz MTgxMUVDQTE3MzQzNTZDNEY5QUUwMi9fM1gta19oR0xMZGpyVllaa3JBOUZqMFc3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18zWC1rX2hHTExkanJWWVprckE5RmowVzdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIxMUUvMDZBRjFGQjIxMzE4MTFFQ0ExNzM0MzU2QzRGOUFFMDIvMjJEQTFDMDIx MzFCMTFFQzgzMzc3RDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnp54wDQYJKoZIhvcNAQELBQADggEBAEPQrNmRAwbxQl5r Dac+akGddriIDOTxUeZURCSVPwp25srxNq9UbZgGFT50tYsBzx7vnZexKIzj86k/ 0g2Fooxk6ZDj+WZLzNXYW9CdIk2aXIEMwunsM5n3tYnpL5zYPvxw5FArPknMSE7B O99G274iJw3wY8nsx6X6Ez4rTfWlcKcwGX9zViADtVlI4sczgc5Ph648/eA8Rj0e CROgUe6boBJTzMlWJn+Je3YGRLAF5XJGGMxwcJ8Evu4+c/EA5A2i5jRAIlbhkYFD n1d+zxX1BuVvA8Pu+NOHAxg7+xeeGWxeH4pKanjLqU3/jmirQD2jVPJY/i236TU9 H6WKpQ8= -----END CERTIFICATE-----Generated at Wed Nov 5 19:25:45 2025 by rpki-client