$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa File: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (raw, json) Hash identifier: Iuc0hvonCQ52vF8J3PK6U6v3ddTApNkT2+JlMCbgaDs= Subject key identifier: FA:9E:3A:07:94:77:45:7E:14:23:47:E4:D5:D5:8F:65:66:39:D9:99 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 1530 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa Signing time: Mon 11 Aug 2025 15:37:00 +0000 ROA not before: Mon 11 Aug 2025 15:37:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135131 IP address blocks: 103.114.166.0/24 maxlen: 24 2001:df5:f940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5424 (0x1530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Aug 11 15:37:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=689a0e1b-afdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:d4:93:e8:b2:14:9e:f6:c7:be:96:ca:06: a9:7e:92:31:06:0c:80:a5:0f:79:70:ed:95:d6:a8: 39:00:19:a0:8b:73:6a:6a:4c:3e:48:d5:55:69:25: e7:56:d0:e4:84:2a:e3:e4:53:57:fc:77:89:24:7b: 98:62:fc:af:dd:95:99:d8:77:b7:26:34:93:3f:20: 89:69:0b:92:d5:67:98:8a:bc:0e:1e:01:30:c0:92: c1:8e:9e:d8:6e:db:4e:ee:c3:a4:d4:4c:3a:7a:13: c7:e0:82:1d:d7:4c:a6:26:ac:51:35:12:a7:38:3e: 89:71:fd:10:87:7a:b1:0e:9f:d3:6c:20:08:56:b2: df:a0:65:f3:09:41:4c:e2:66:a0:5b:42:97:ad:0e: 43:26:b2:b1:58:04:0e:c8:8e:f7:22:bb:7a:21:8a: 07:a2:e1:19:11:54:8a:c3:22:96:dc:95:58:d8:67: 12:a1:72:68:8c:5c:7b:07:29:af:53:20:46:ab:56: db:09:8d:ad:38:f8:bc:7b:81:a2:c7:c5:48:9f:04: 51:18:67:64:31:18:ba:f7:d7:6e:de:12:de:eb:f2: bf:ec:67:b3:9f:72:06:bc:65:24:e3:ba:f8:10:36: 9a:c2:e1:0c:bb:90:0a:a9:21:4e:8e:8e:50:78:cd: 72:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9E:3A:07:94:77:45:7E:14:23:47:E4:D5:D5:8F:65:66:39:D9:99 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.166.0/24 IPv6: 2001:df5:f940::/48 Signature Algorithm: sha256WithRSAEncryption b4:9b:4d:8d:93:6e:b7:d0:15:74:db:bb:55:db:61:51:3c:9f: a0:6b:04:86:82:83:4f:de:f9:7d:1a:f6:d9:64:3f:96:f3:c9: d6:64:5e:f9:01:04:d7:25:65:42:3e:9e:ca:85:a0:61:c8:4d: 21:08:91:36:1f:91:44:79:39:17:85:cf:d1:88:c3:a9:f2:b4: 1e:fe:9a:7b:bb:1b:1c:eb:9e:d1:91:0c:18:41:8e:82:3d:c1: e6:cf:53:cd:bd:3b:f9:68:90:39:84:05:30:d6:fb:e9:13:4a: 5d:26:0e:22:2e:6b:ae:67:a6:a2:d6:5e:cc:3c:39:91:bf:d3: 0d:03:fa:d1:d9:07:d2:b6:0e:97:15:b6:3c:5e:97:89:51:2c: 85:70:2f:a3:e2:d5:20:6f:1d:d7:0b:b7:d9:b1:34:1b:9b:fd: ae:c9:90:fe:85:8c:41:8f:1f:d8:ae:f0:80:96:9c:81:32:66: 68:87:91:2b:82:4b:73:76:aa:9c:b7:f8:f2:f8:b6:b7:dd:cc: 2e:6e:b2:a6:a5:b7:d9:51:8d:87:31:df:ad:8a:c3:14:ad:b9: 95:2d:22:bf:4d:60:6b:1f:eb:f4:b0:7c:e8:b0:6f:20:0a:f1: 30:00:0b:2c:fe:41:7a:d8:ee:98:c0:b6:a1:5d:21:81:82:6f: 99:01:89:80 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjUwODExMTUzNzAwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlhMGUxYi1hZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4bUk+iyFJ72x76WygapfpIxBgyApQ95cO2V1qg5ABmgi3Nqakw+SNVVaSXn VtDkhCrj5FNX/HeJJHuYYvyv3ZWZ2He3JjSTPyCJaQuS1WeYirwOHgEwwJLBjp7Y bttO7sOk1Ew6ehPH4IId10ymJqxRNRKnOD6Jcf0Qh3qxDp/TbCAIVrLfoGXzCUFM 4magW0KXrQ5DJrKxWAQOyI73Irt6IYoHouEZEVSKwyKW3JVY2GcSoXJojFx7Bymv UyBGq1bbCY2tOPi8e4Gix8VInwRRGGdkMRi699du3hLe6/K/7Gezn3IGvGUk47r4 EDaawuEMu5AKqSFOjo5QeM1ylQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPqeOgeU d0V+FCNH5NXVj2VmOdmZMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQyQTMvRjZBQzYzODY0RUZEMTFFODg5MkI4NjgzQzRGOUFFMDIvRDlFREIyNzJD NDRDMTFFQ0EwN0MyRDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABncqYwDwQCAAIwCQMHACABDfX5QDANBgkqhkiG9w0BAQsF AAOCAQEAtJtNjZNut9AVdNu7VdthUTyfoGsEhoKDT975fRr22WQ/lvPJ1mRe+QEE 1yVlQj6eyoWgYchNIQiRNh+RRHk5F4XP0YjDqfK0Hv6ae7sbHOue0ZEMGEGOgj3B 5s9Tzb07+WiQOYQFMNb76RNKXSYOIi5rrmemotZezDw5kb/TDQP60dkH0rYOlxW2 PF6XiVEshXAvo+LVIG8d1wu32bE0G5v9rsmQ/oWMQY8f2K7wgJacgTJmaIeRK4JL c3aqnLf48vi2t93MLm6ypqW32VGNhzHfrYrDFK25lS0iv01gax/r9LB86LBvIArx MAALLP5BetjumMC2oV0hgYJvmQGJgA== -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:52 2025 by rpki-client