$ rpki-client -vvf rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa File: 71CE3962337511EDAE4C4121C4F9AE02.roa (raw, json) Hash identifier: sxVzKfc267mIu+gOhFU373beNXbIm7xeSE4h5TdhNYY= Subject key identifier: 12:16:6F:C6:05:69:13:02:6B:EC:C8:F0:CE:90:40:F2:5D:54:88:E3 Certificate issuer: /CN=A912672E/serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Certificate serial: 0247 Authority key identifier: CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa Signing time: Sun 17 Aug 2025 02:09:06 +0000 ROA not before: Sun 17 Aug 2025 02:09:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150306 IP address blocks: 103.234.118.0/23 maxlen: 23 103.234.118.0/24 maxlen: 24 103.234.119.0/24 maxlen: 24 2001:df1:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912672E, serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Validity Not Before: Aug 17 02:09:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68a139c2-332a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8c:79:0c:54:6f:2b:1c:45:e4:b5:5e:56:fc: 1b:ee:50:2a:39:cd:f1:c4:0f:e4:ae:9a:0b:8b:c0: 13:c3:40:51:41:b8:50:a5:d7:ad:2d:2a:fa:20:ec: 84:46:78:78:fd:dd:18:51:aa:bf:ec:45:8a:7c:2e: 5c:80:ae:33:41:4e:51:c5:e8:12:a2:08:62:c2:f7: 1b:c4:d6:33:c1:fb:3c:85:34:4e:14:97:fe:2d:ef: 49:ba:5b:09:33:d7:7d:82:70:e6:97:60:70:3a:c0: a4:e2:95:f8:93:b9:0e:1a:7e:e0:6f:a9:3e:5f:a0: 00:4d:0d:c2:1f:ac:fb:a9:31:75:fe:fa:e7:6d:dd: 9b:28:7a:5f:e1:4b:a1:4a:c5:1d:ee:a9:cb:7f:7b: dc:d6:7a:ba:3a:c4:4c:4d:9e:99:99:d0:b9:e4:34: 71:44:a2:93:90:d3:5d:bf:fb:d7:0d:1a:64:05:f7: 6c:25:54:38:f0:11:84:f6:fd:55:84:6f:ce:96:14: 69:42:db:8b:db:01:c0:c0:0e:07:45:71:01:9c:74: 36:15:af:aa:83:da:56:e3:85:33:f5:08:97:80:12: b0:fd:e6:b3:21:6b:ba:ef:30:b1:5b:6c:b1:45:5d: f2:a2:5b:e0:20:3f:06:63:24:53:ca:77:b5:9d:ee: 3a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:16:6F:C6:05:69:13:02:6B:EC:C8:F0:CE:90:40:F2:5D:54:88:E3 X509v3 Authority Key Identifier: keyid:CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.118.0/23 IPv6: 2001:df1:42c0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:2a:b0:b2:e6:6a:0a:8e:1e:15:a0:6a:cb:69:b4:25:70:0c: 67:03:1c:22:92:29:6d:c6:8e:ca:d5:03:ad:41:01:3d:a7:04: 84:58:20:c6:b1:a1:78:95:ed:f5:45:bc:b6:85:c2:fb:50:f9: 3d:af:34:90:2c:54:f1:b8:48:67:e4:9b:6f:39:25:2b:e7:0e: 31:c2:62:ca:99:11:b1:13:aa:9c:65:ca:5e:dd:7e:40:8a:29: b1:5a:66:f9:96:e7:5a:a1:97:60:42:ce:df:1e:97:1c:40:af: 0d:d8:c7:29:23:b0:ba:9e:22:06:3a:b6:00:a8:93:b0:24:93: e5:4c:10:3e:10:70:46:83:d5:38:6a:3d:6b:ec:36:14:1f:ab: 62:60:36:61:e5:5b:2a:ed:79:f1:98:49:87:b1:97:b4:65:c8: 92:0c:98:39:37:11:f7:42:2f:5b:d6:b9:0b:14:c0:bd:b3:ce: 7c:fe:f3:0d:85:ba:ff:c3:cb:20:de:61:e5:ef:c8:32:c5:a5: d1:e1:11:88:32:16:98:e3:80:23:ee:3c:ab:c3:0d:7f:b6:52: fc:7c:78:0b:4f:4b:15:93:67:4a:17:ef:d4:0d:17:22:dc:14: f0:fa:38:d9:41:56:2e:dd:b1:df:73:14:5c:03:cd:36:64:63: 64:52:8e:1a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY3MkUxMTAvBgNVBAUTKENEQzE4N0E2NDJCNEQ3RUM1MERDQUU1OUEwMDY2RjE0 OEQ1MTA4MDEwHhcNMjUwODE3MDIwOTA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExMzljMi0zMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ix5DFRvKxxF5LVeVvwb7lAqOc3xxA/krpoLi8ATw0BRQbhQpdetLSr6IOyE Rnh4/d0YUaq/7EWKfC5cgK4zQU5RxegSoghiwvcbxNYzwfs8hTROFJf+Le9JulsJ M9d9gnDml2BwOsCk4pX4k7kOGn7gb6k+X6AATQ3CH6z7qTF1/vrnbd2bKHpf4Uuh SsUd7qnLf3vc1nq6OsRMTZ6ZmdC55DRxRKKTkNNdv/vXDRpkBfdsJVQ48BGE9v1V hG/OlhRpQtuL2wHAwA4HRXEBnHQ2Fa+qg9pW44Uz9QiXgBKw/eazIWu67zCxW2yx RV3yolvgID8GYyRTyne1ne46IwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBIWb8YF aRMCa+zI8M6QQPJdVIjjMB8GA1UdIwQYMBaAFM3Bh6ZCtNfsUNyuWaAGbxSNUQgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjcyRS9BRjQ2NjU3NDMz NzIxMUVEOEVFQUQ2MUVDNEY5QUUwMi96Y0dIcGtLMDEteFEzSzVab0FadkZJMVJD QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pjR0hwa0swMS14UTNLNVpvQVp2RkkxUkNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY3MkUvQUY0NjY1NzQzMzcyMTFFRDhFRUFENjFFQzRGOUFFMDIvNzFDRTM5NjIz Mzc1MTFFREFFNEM0MTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn6nYwDwQCAAIwCQMHACABDfFCwDANBgkqhkiG9w0BAQsF AAOCAQEAPiqwsuZqCo4eFaBqy2m0JXAMZwMcIpIpbcaOytUDrUEBPacEhFggxrGh eJXt9UW8toXC+1D5Pa80kCxU8bhIZ+SbbzklK+cOMcJiypkRsROqnGXKXt1+QIop sVpm+ZbnWqGXYELO3x6XHECvDdjHKSOwup4iBjq2AKiTsCST5UwQPhBwRoPVOGo9 a+w2FB+rYmA2YeVbKu158ZhJh7GXtGXIkgyYOTcR90IvW9a5CxTAvbPOfP7zDYW6 /8PLIN5h5e/IMsWl0eERiDIWmOOAI+48q8MNf7ZS/Hx4C09LFZNnShfv1A0XItwU 8Po42UFWLt2x33MUXAPNNmRjZFKOGg== -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:11 2025 by rpki-client