$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa File: E0AAFE389A2411EBA8913944C4F9AE02.roa (raw, json) Hash identifier: UwSCk8PiXVxxp/HUKiEsKMP9QLxahaMhhaVASnsqLPY= Subject key identifier: 06:32:F3:A1:00:47:9A:D2:CF:00:D0:B4:F7:00:15:39:C3:9A:26:04 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 06EE Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa Signing time: Tue 22 Jul 2025 23:04:57 +0000 ROA not before: Tue 22 Jul 2025 23:04:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131317 IP address blocks: 103.8.44.0/24 maxlen: 24 103.8.45.0/24 maxlen: 24 103.8.46.0/24 maxlen: 24 2403:8600:ea88::/48 maxlen: 48 2403:8600:ea89::/48 maxlen: 48 2403:8600:ea8a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D, serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Jul 22 23:04:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68801919-2316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f4:0d:5b:9c:27:a7:f1:8e:60:d1:16:ff:18: 17:d9:93:e0:78:67:96:37:d3:7c:0d:9d:5d:a6:bd: 97:42:11:c1:7a:f5:9b:87:0f:65:9e:2d:b7:23:e5: ff:88:9d:65:4d:ff:95:25:d2:f7:2f:5e:ed:89:a8: fb:1e:0d:33:31:4d:48:bc:4c:e4:ba:5a:97:a9:f5: 1f:63:c9:07:99:76:d3:c2:8e:ae:9a:e3:b3:7e:1f: 64:29:fa:da:fe:44:93:85:6c:4a:8d:f7:78:ae:f2: 48:96:8f:4b:99:c9:35:37:8c:7f:6f:44:e3:27:bd: 9c:46:44:0f:6c:35:07:48:0b:52:15:6c:49:39:3c: 3b:8e:f0:ca:52:47:db:5c:4f:19:45:8a:ef:c0:4f: 52:91:9a:26:e9:35:5c:b8:19:ab:73:67:40:c1:dd: 0f:71:ba:5c:fb:88:6f:ba:d5:7c:07:cb:8b:29:97: 20:d3:24:ea:14:3d:b2:9d:ce:38:e2:df:0d:c5:37: 51:48:0f:1e:7d:de:a5:19:9d:be:53:5a:c5:41:eb: 1d:c1:de:bd:33:32:5c:f6:d9:43:84:6e:1c:46:28: 3e:0d:7f:7e:71:3d:37:48:1e:39:d4:d4:65:a4:e5: a3:a9:63:a9:6a:24:f0:f2:e0:9d:6d:4b:da:16:5c: 57:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:32:F3:A1:00:47:9A:D2:CF:00:D0:B4:F7:00:15:39:C3:9A:26:04 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.44.0-103.8.46.255 IPv6: 2403:8600:ea88::-2403:8600:ea8a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 6b:12:4b:d3:a1:23:2e:13:ad:6e:c2:8d:47:57:33:8f:96:24: 6f:8e:f8:d0:8c:d8:29:1f:6c:ce:00:a9:e1:ec:66:a9:82:c4: c8:55:44:be:9a:5b:25:1f:c1:78:f2:73:6b:88:2e:0b:49:ac: 40:bc:60:83:9d:8b:53:e1:58:d0:6b:cd:27:8f:81:7e:35:e0: 42:a0:dd:f0:9e:12:40:f6:bc:f4:ae:70:7d:77:b7:81:fa:6f: 96:f3:c4:0e:f0:9d:42:2c:0e:5d:bc:bf:2c:fa:fd:cc:a9:cf: f3:e4:a6:12:df:26:b3:a7:42:ae:c3:f3:fd:ca:df:37:da:e9: 17:e2:74:ce:a5:0c:7b:67:96:ce:ff:7f:2f:1e:ef:6d:a3:dc: 2a:b1:29:0c:10:0f:ce:6d:9b:61:38:8c:15:c3:f5:32:da:6c: 41:73:7b:b4:59:25:eb:5a:c5:18:ff:18:64:71:50:71:92:04: e6:a9:53:54:c2:17:fc:64:c6:af:de:7a:ad:2d:2b:d0:07:13: b0:5a:0c:ba:29:59:c1:b1:42:dd:e4:72:aa:74:c9:02:f6:a9: 1b:ae:d0:06:8e:67:1e:05:51:21:06:fe:fd:44:be:e8:a7:49: 6d:3b:a5:a6:1e:42:94:af:b7:26:4b:f4:fb:4e:04:43:a8:5d: 15:b5:61:91 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjUwNzIyMjMwNDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwMTkxOS0yMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvQNW5wnp/GOYNEW/xgX2ZPgeGeWN9N8DZ1dpr2XQhHBevWbhw9lni23I+X/ iJ1lTf+VJdL3L17tiaj7Hg0zMU1IvEzkulqXqfUfY8kHmXbTwo6umuOzfh9kKfra /kSThWxKjfd4rvJIlo9Lmck1N4x/b0TjJ72cRkQPbDUHSAtSFWxJOTw7jvDKUkfb XE8ZRYrvwE9SkZom6TVcuBmrc2dAwd0Pcbpc+4hvutV8B8uLKZcg0yTqFD2ync44 4t8NxTdRSA8efd6lGZ2+U1rFQesdwd69MzJc9tlDhG4cRig+DX9+cT03SB451NRl pOWjqWOpaiTw8uCdbUvaFlxXtQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFAYy86EA R5rSzwDQtPcAFTnDmiYEMB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvRTBBQUZFMzg5 QTI0MTFFQkE4OTEzOTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBQEAgABMA4wDAMEAmcILAMEAGcILjAaBAIAAjAUMBIDBwMkA4YA6ogDBwAk A4YA6oowDQYJKoZIhvcNAQELBQADggEBAGsSS9OhIy4TrW7CjUdXM4+WJG+O+NCM 2CkfbM4AqeHsZqmCxMhVRL6aWyUfwXjyc2uILgtJrEC8YIOdi1PhWNBrzSePgX41 4EKg3fCeEkD2vPSucH13t4H6b5bzxA7wnUIsDl28vyz6/cypz/PkphLfJrOnQq7D 8/3K3zfa6RfidM6lDHtnls7/fy8e722j3CqxKQwQD85tm2E4jBXD9TLabEFze7RZ JetaxRj/GGRxUHGSBOapU1TCF/xkxq/eeq0tK9AHE7BaDLopWcGxQt3kcqp0yQL2 qRuu0AaOZx4FUSEG/v1EvuinSW07paYeQpSvtyZL9PtOBEOoXRW1YZE= -----END CERTIFICATE-----Generated at Wed Nov 5 13:37:41 2025 by rpki-client