$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: G5FR8BCzP4HgDtorWui6emF4F8xCXxAPeWvmEJB9XFA= Subject key identifier: 51:89:CE:C6:CA:BB:A6:DC:4E:D2:11:26:4F:9A:A6:A1:E3:62:D8:21 Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 0261 Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Mon 03 Nov 2025 02:16:31 +0000 ROA not before: Mon 03 Nov 2025 02:16:31 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/23 maxlen: 23 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 2001:df1:6e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971, serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Nov 3 02:16:31 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6908107f-4fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c3:5c:76:65:6e:09:06:7e:76:73:e5:bb:53: 95:00:4e:1e:7e:6c:54:d8:97:77:d2:34:c9:64:a7: 33:f1:de:c0:ad:e8:71:8e:30:b2:93:83:09:b5:a3: f0:05:5b:c5:1a:70:9e:68:3f:41:bb:3c:68:73:8c: 15:19:89:1d:8d:82:89:60:40:93:68:6e:4f:74:03: 4b:9e:b9:c2:94:b6:c3:70:c2:c4:6c:6e:e3:0a:6f: 8e:e0:67:27:20:dd:4b:7f:01:90:a6:f5:96:f1:29: c2:a5:6d:54:3e:a2:a8:1a:86:12:52:90:90:8a:41: 91:29:25:a9:5c:86:3d:50:f8:f6:6b:3a:92:69:84: b0:15:4f:77:ce:01:50:f3:29:b9:89:0d:e2:6e:df: 90:d9:4c:9a:6f:48:95:5f:be:48:48:7e:28:d6:59: 65:62:87:83:6c:57:8f:09:de:35:41:26:38:b9:88: c8:4e:57:c5:b0:ea:76:f9:39:75:15:b0:e5:ff:89: 56:84:c2:a5:2d:24:e1:6e:60:b2:a5:25:b0:67:07: 5a:d8:40:95:a4:19:67:2b:99:aa:1d:d9:a6:3b:e5: bb:25:5a:4a:6c:ca:8d:80:51:0a:56:4d:5f:03:18: bb:90:4e:d0:f0:b5:08:f7:d8:37:44:0a:bb:cf:c7: ee:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:89:CE:C6:CA:BB:A6:DC:4E:D2:11:26:4F:9A:A6:A1:E3:62:D8:21 X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 IPv6: 2001:df1:6e40::/48 Signature Algorithm: sha256WithRSAEncryption b3:fc:93:2c:e9:29:f1:5b:51:61:9f:36:5e:27:d3:ea:dc:05: e3:27:cd:db:69:6d:68:a5:e2:22:f2:5e:f8:1c:86:1a:1c:45: 0e:35:d3:18:8b:0e:47:39:47:60:1c:5d:b3:1a:ca:bf:03:c3: 0b:25:03:f3:98:b0:1e:4f:ef:92:5f:61:83:82:75:97:e4:0e: 13:ed:1c:81:a6:ca:63:9b:6c:1b:b6:e2:c6:05:9c:ad:86:5d: 7a:eb:33:fb:48:4f:08:ee:be:2d:c9:f2:10:c7:f6:e1:58:98: 7e:ff:fd:c5:6a:c2:71:f0:fa:0b:54:0f:08:57:f6:28:8c:40: 57:7a:3b:69:bc:61:1a:de:6d:66:f6:eb:99:dd:ad:65:93:b0: bf:6d:a8:d4:66:eb:37:1f:39:89:70:e1:39:c0:9a:55:d7:96: 38:45:be:27:5f:26:8d:92:94:ca:11:be:49:e3:5c:da:2e:04: e4:ae:47:01:70:33:36:73:d0:2a:c1:59:66:b0:e5:25:1c:ca: a3:34:6d:04:01:9d:71:f9:e8:f9:5c:26:c8:20:1c:b3:1e:af: 6d:16:3e:8c:f4:b8:fe:80:37:f8:a4:69:31:02:b5:48:9d:96: af:6b:1e:95:59:7f:b9:09:c5:04:58:36:6a:13:d3:38:c1:1f: 9b:f2:cd:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjUxMTAzMDIxNjMxWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTA3Zi00ZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MNcdmVuCQZ+dnPlu1OVAE4efmxU2Jd30jTJZKcz8d7ArehxjjCyk4MJtaPw BVvFGnCeaD9Buzxoc4wVGYkdjYKJYECTaG5PdANLnrnClLbDcMLEbG7jCm+O4Gcn IN1LfwGQpvWW8SnCpW1UPqKoGoYSUpCQikGRKSWpXIY9UPj2azqSaYSwFU93zgFQ 8ym5iQ3ibt+Q2Uyab0iVX75ISH4o1lllYoeDbFePCd41QSY4uYjITlfFsOp2+Tl1 FbDl/4lWhMKlLSThbmCypSWwZwda2ECVpBlnK5mqHdmmO+W7JVpKbMqNgFEKVk1f Axi7kE7Q8LUI99g3RAq7z8fu5wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFGJzsbK u6bcTtIRJk+apqHjYtghMB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGBAwDwQCAAIwCQMHACABDfFuQDANBgkqhkiG9w0BAQsF AAOCAQEAs/yTLOkp8VtRYZ82XifT6twF4yfN22ltaKXiIvJe+ByGGhxFDjXTGIsO RzlHYBxdsxrKvwPDCyUD85iwHk/vkl9hg4J1l+QOE+0cgabKY5tsG7bixgWcrYZd eusz+0hPCO6+LcnyEMf24ViYfv/9xWrCcfD6C1QPCFf2KIxAV3o7abxhGt5tZvbr md2tZZOwv22o1GbrNx85iXDhOcCaVdeWOEW+J18mjZKUyhG+SeNc2i4E5K5HAXAz NnPQKsFZZrDlJRzKozRtBAGdcfno+VwmyCAcsx6vbRY+jPS4/oA3+KRpMQK1SJ2W r2selVl/uQnFBFg2ahPTOMEfm/LNZg== -----END CERTIFICATE-----Generated at Wed Nov 5 19:45:24 2025 by rpki-client