$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/5460E9C8FB2E11EFB488A95EC4F9AE02.roa File: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (raw, json) Hash identifier: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM= Subject key identifier: 6C:38:76:2F:3D:0E:87:E6:62:76:64:20:2E:60:C7:4F:14:AB:B9:85 Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 04 Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/5460E9C8FB2E11EFB488A95EC4F9AE02.roa Signing time: Fri 07 Mar 2025 08:29:47 +0000 ROA not before: Fri 07 Mar 2025 08:29:47 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 146995 IP address blocks: 103.237.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Mar 7 08:29:47 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67caae7b-c32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cb:06:f5:98:b0:88:cb:04:8d:9a:2b:c5:1d: 4f:1c:3c:04:8c:3f:14:7a:53:4e:b3:b7:23:64:ae: bb:c9:a4:69:ff:89:97:9f:63:7d:34:1a:39:6b:e8: 37:39:be:be:7d:ad:f3:5a:fa:34:9e:ff:40:39:ce: 33:74:ee:59:bd:d3:7d:71:e3:b7:cc:cf:89:09:0c: 9a:34:bd:74:a7:6b:8a:47:62:96:c3:02:49:b5:64: e5:50:b5:cf:78:a7:dd:e6:e1:81:7d:22:59:92:be: 57:b6:a4:b9:02:c1:d9:6c:5a:f3:34:34:00:3f:85: 17:00:3b:98:37:1a:b3:7c:93:1f:59:9c:5c:21:6e: ca:5a:ab:28:c4:24:7d:58:91:4f:98:50:d0:e0:a1: cb:ef:67:6c:24:e6:c1:38:9b:2c:89:41:42:2a:44: f9:8f:fb:0c:7b:0e:a3:df:02:73:c1:69:45:e6:d3: 0d:f4:b0:77:63:aa:73:89:42:3c:79:b7:4e:17:cb: c1:2e:70:82:19:be:84:db:c1:ae:5e:26:5e:6d:73: f8:e6:9a:df:97:2c:01:ed:45:78:ea:ae:c3:cf:bd: 98:57:92:bd:87:d3:d9:82:03:a7:5d:49:43:85:23: 8f:09:73:4c:62:44:ed:c6:f9:9b:ef:c8:54:27:bf: c2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:38:76:2F:3D:0E:87:E6:62:76:64:20:2E:60:C7:4F:14:AB:B9:85 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/5460E9C8FB2E11EFB488A95EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.52.0/24 Signature Algorithm: sha256WithRSAEncryption 07:ac:60:d0:ae:d2:31:dc:c9:58:f7:d2:2d:96:c1:79:a3:a0: 04:dc:33:e1:52:61:30:d4:7d:a0:8c:a1:ae:48:2e:d7:f1:3b: b6:f9:49:24:02:64:2f:68:76:52:3a:e6:4a:02:ad:3f:29:02: c2:eb:31:18:38:04:ca:dc:63:f4:fe:60:f3:93:b8:43:88:9e: b9:41:a7:93:3b:b1:f6:18:a3:ff:db:f9:f2:0a:64:53:ea:81: 37:36:f6:cb:93:be:60:74:b9:9d:88:9d:02:e1:b3:6d:f9:f0: df:e8:40:95:d5:5f:18:95:a5:ef:7e:b1:4b:23:cb:a1:11:df: 6e:22:b1:9d:ab:74:1a:a3:7e:f4:23:14:d3:db:af:b0:29:d9: a6:b5:e3:ce:19:14:6b:a4:2f:f1:22:04:20:40:23:c0:5f:03: cb:7e:a4:79:10:91:6e:9b:a9:63:d8:1b:af:e5:3b:70:7e:c4: e4:e6:9f:58:77:13:47:1e:a0:d7:0c:01:8b:6a:94:d3:be:9a: 49:2a:57:36:50:0a:2c:65:1e:f5:53:29:34:12:aa:1d:f3:c0: cb:50:8a:0a:a4:2d:bd:50:a2:fb:82:b6:29:5b:9a:5d:54:4b: 81:54:57:bf:d7:ba:4f:b3:92:df:82:2f:4d:53:91:8c:3b:7c: 6b:b2:9c:7a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTAzMDcwODI5NDdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2FhZTdiLWMzMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfywb1mLCIywSNmivFHU8cPASMPxR6U06ztyNkrrvJpGn/iZefY300Gjlr6Dc5 vr59rfNa+jSe/0A5zjN07lm9031x47fMz4kJDJo0vXSna4pHYpbDAkm1ZOVQtc94 p93m4YF9IlmSvle2pLkCwdlsWvM0NAA/hRcAO5g3GrN8kx9ZnFwhbspaqyjEJH1Y kU+YUNDgocvvZ2wk5sE4myyJQUIqRPmP+wx7DqPfAnPBaUXm0w30sHdjqnOJQjx5 t04Xy8EucIIZvoTbwa5eJl5tc/jmmt+XLAHtRXjqrsPPvZhXkr2H09mCA6ddSUOF I48Jc0xiRO3G+ZvvyFQnv8IZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbDh2Lz0O h+ZidmQgLmDHTxSruYUwHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwMi84N0MzRkQwQUZCMjkxMUVGQjc2NkRDNzZDNEY5QUUwMi81NDYwRTlDOEZC MkUxMUVGQjQ4OEE5NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGftNDANBgkqhkiG9w0BAQsFAAOCAQEAB6xg0K7SMdzJWPfS LZbBeaOgBNwz4VJhMNR9oIyhrkgu1/E7tvlJJAJkL2h2UjrmSgKtPykCwusxGDgE ytxj9P5g85O4Q4ieuUGnkzux9hij/9v58gpkU+qBNzb2y5O+YHS5nYidAuGzbfnw 3+hAldVfGJWl736xSyPLoRHfbiKxnat0GqN+9CMU09uvsCnZprXjzhkUa6Qv8SIE IEAjwF8Dy36keRCRbpupY9gbr+U7cH7E5OafWHcTRx6g1wwBi2qU076aSSpXNlAK LGUe9VMpNBKqHfPAy1CKCqQtvVCi+4K2KVuaXVRLgVRXv9e6T7OS34IvTVORjDt8 a7Kceg== -----END CERTIFICATE-----Generated at Wed Nov 5 21:13:40 2025 by rpki-client