$ rpki-client -vvf rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa File: C001E5861FCC11EEB409C35EC4F9AE02.roa (raw, json) Hash identifier: iHabIHEz/PTHKVI4qhPpj+ZDCYtCE+FTF89syGeIFww= Subject key identifier: 2C:CE:5D:42:E7:AB:9C:ED:91:D0:23:25:1D:22:19:AC:D8:8D:3D:09 Certificate issuer: /CN=A911F627/serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6 Certificate serial: 0175 Authority key identifier: 71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa Signing time: Thu 03 Jul 2025 04:08:21 +0000 ROA not before: Thu 03 Jul 2025 04:08:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151466 IP address blocks: 103.230.42.0/23 maxlen: 24 2001:df2:a140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.crl rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F627, serialNumber=71173EDA7305CCFD10BD78D83A9330E8C7640DF6 Validity Not Before: Jul 3 04:08:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68660235-8af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:cc:f4:28:df:88:f0:c6:b3:55:a1:a7:b8: 8d:a1:80:50:8a:c3:a0:d5:4d:42:d1:81:96:45:a7: c6:ba:4f:25:70:20:a8:b2:7a:05:1f:c2:0a:51:8b: 62:4e:57:30:37:49:36:a6:4d:b7:d3:9d:07:71:35: 58:b4:55:6f:38:7b:c1:f4:15:57:f3:83:dd:4a:af: 1b:71:44:3c:d7:aa:e4:ce:bd:9f:6d:13:7b:32:30: d3:f9:59:5d:27:63:55:b4:d5:db:31:a1:6f:1a:70: f8:4c:b9:31:ef:a6:11:f4:e3:27:6b:f5:50:73:e5: f4:8e:28:1b:87:ca:38:0a:53:26:8c:33:b0:e6:ec: 76:32:59:c8:9d:ab:93:2f:0a:b6:93:32:51:97:0f: 30:87:0f:ec:32:a2:11:f8:ec:31:2b:f0:85:7e:f7: b6:eb:0d:2c:85:b6:cc:d3:56:b0:8d:fb:47:4f:94: ba:a2:9d:bf:5b:97:12:fa:c0:39:23:d0:3a:77:d7: 58:53:ae:22:45:af:70:3a:cf:eb:e8:31:0b:ed:55: d7:69:c7:5d:11:4c:cf:12:84:5b:37:04:6b:62:64: 70:2e:24:69:f4:50:4a:8a:fa:7b:0e:31:49:b9:ef: 5e:aa:97:f9:aa:bb:a3:0e:f5:b1:1f:72:ab:3a:a8: f3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:CE:5D:42:E7:AB:9C:ED:91:D0:23:25:1D:22:19:AC:D8:8D:3D:09 X509v3 Authority Key Identifier: keyid:71:17:3E:DA:73:05:CC:FD:10:BD:78:D8:3A:93:30:E8:C7:64:0D:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/cRc-2nMFzP0QvXjYOpMw6MdkDfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRc-2nMFzP0QvXjYOpMw6MdkDfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F627/493DA3661FC911EE999F5960C4F9AE02/C001E5861FCC11EEB409C35EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.42.0/23 IPv6: 2001:df2:a140::/48 Signature Algorithm: sha256WithRSAEncryption 1a:96:ed:89:6b:91:bc:4b:47:4d:0d:bb:29:13:4e:55:71:bc: 4b:e2:14:81:fd:22:8e:23:a6:31:80:24:47:e2:50:4e:c9:d1: 5b:af:b1:12:41:14:56:ac:71:55:f2:0e:ae:cb:65:8c:83:99: 2d:9d:a1:2f:a8:15:7c:38:57:fb:0e:d9:1c:d9:91:24:9c:37: d7:60:6a:31:e0:54:74:9b:c5:46:33:06:5a:e2:03:af:4b:bc: e3:27:b4:38:ce:1a:0c:34:8b:80:9a:0f:7f:a3:af:b3:6d:71: e9:25:c5:39:1a:c7:73:97:e4:b5:50:09:42:33:48:59:e6:bb: 22:e0:94:d0:2d:04:6a:d3:06:ea:53:82:b3:e6:f4:49:1c:7c: 3a:56:34:31:81:1e:21:cf:26:eb:9a:74:b8:f3:c0:62:be:8d: a5:05:b1:49:9c:51:0f:c5:1c:44:fc:cd:02:21:4c:33:95:33: ad:fa:fc:93:2a:f5:59:9c:e2:47:0d:0f:af:71:86:d1:66:a8: 26:55:57:de:0d:84:9d:7a:d6:af:54:96:47:eb:60:8c:01:b7: b2:be:a1:50:72:7d:75:64:b6:ab:3e:16:22:49:fa:76:eb:c5: 4b:cc:0c:81:09:0c:9c:05:4e:87:40:a1:f7:73:2c:6f:b2:26: 20:7d:02:11 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY2MjcxMTAvBgNVBAUTKDcxMTczRURBNzMwNUNDRkQxMEJENzhEODNBOTMzMEU4 Qzc2NDBERjYwHhcNMjUwNzAzMDQwODIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MDIzNS04YWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL3M9CjfiPDGs1Whp7iNoYBQisOg1U1C0YGWRafGuk8lcCCosnoFH8IKUYti TlcwN0k2pk23050HcTVYtFVvOHvB9BVX84PdSq8bcUQ816rkzr2fbRN7MjDT+Vld J2NVtNXbMaFvGnD4TLkx76YR9OMna/VQc+X0jigbh8o4ClMmjDOw5ux2MlnInauT Lwq2kzJRlw8whw/sMqIR+OwxK/CFfve26w0shbbM01awjftHT5S6op2/W5cS+sA5 I9A6d9dYU64iRa9wOs/r6DEL7VXXacddEUzPEoRbNwRrYmRwLiRp9FBKivp7DjFJ ue9eqpf5qrujDvWxH3KrOqjzeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCzOXULn q5ztkdAjJR0iGazYjT0JMB8GA1UdIwQYMBaAFHEXPtpzBcz9EL142DqTMOjHZA32 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjYyNy80OTNEQTM2NjFG QzkxMUVFOTk5RjU5NjBDNEY5QUUwMi9jUmMtMm5NRnpQMFF2WGpZT3BNdzZNZGtE ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NSYy0ybk1GelAwUXZYallPcE13Nk1ka0RmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY2MjcvNDkzREEzNjYxRkM5MTFFRTk5OUY1OTYwQzRGOUFFMDIvQzAwMUU1ODYx RkNDMTFFRUI0MDlDMzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn5iowDwQCAAIwCQMHACABDfKhQDANBgkqhkiG9w0BAQsF AAOCAQEAGpbtiWuRvEtHTQ27KRNOVXG8S+IUgf0ijiOmMYAkR+JQTsnRW6+xEkEU VqxxVfIOrstljIOZLZ2hL6gVfDhX+w7ZHNmRJJw312BqMeBUdJvFRjMGWuIDr0u8 4ye0OM4aDDSLgJoPf6Ovs21x6SXFORrHc5fktVAJQjNIWea7IuCU0C0EatMG6lOC s+b0SRx8OlY0MYEeIc8m65p0uPPAYr6NpQWxSZxRD8UcRPzNAiFMM5Uzrfr8kyr1 WZziRw0Pr3GG0WaoJlVX3g2EnXrWr1SWR+tgjAG3sr6hUHJ9dWS2qz4WIkn6duvF S8wMgQkMnAVOh0Ch93Msb7ImIH0CEQ== -----END CERTIFICATE-----Generated at Wed Nov 5 12:23:55 2025 by rpki-client