$ rpki-client -vvf rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/23319BCEB70B11F0A3295180C4F9AE02.roa File: 23319BCEB70B11F0A3295180C4F9AE02.roa (raw, json) Hash identifier: PL9O4vp1RwQjNEpUrc3nDPHnHBYShICYIOPF8lIEt2Q= Subject key identifier: 8F:64:CC:FD:6E:AF:60:C2:77:C8:6A:80:B7:EA:12:F0:13:CD:36:03 Certificate issuer: /CN=A912D99E/serialNumber=CAF0B784B13E1400EEB4225BA22D6F9838824EC3 Certificate serial: 15A4 Authority key identifier: CA:F0:B7:84:B1:3E:14:00:EE:B4:22:5B:A2:2D:6F:98:38:82:4E:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvC3hLE-FADutCJboi1vmDiCTsM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/23319BCEB70B11F0A3295180C4F9AE02.roa Signing time: Sat 01 Nov 2025 10:11:31 +0000 ROA not before: Sat 01 Nov 2025 10:11:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 131474 IP address blocks: 103.114.92.0/22 maxlen: 22 103.114.92.0/24 maxlen: 24 103.114.93.0/24 maxlen: 24 103.114.94.0/24 maxlen: 24 103.114.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/yvC3hLE-FADutCJboi1vmDiCTsM.crl rsync://rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/yvC3hLE-FADutCJboi1vmDiCTsM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvC3hLE-FADutCJboi1vmDiCTsM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5540 (0x15a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D99E, serialNumber=CAF0B784B13E1400EEB4225BA22D6F9838824EC3 Validity Not Before: Nov 1 10:11:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6905dcd3-d00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:87:7f:7f:ef:79:f5:c6:33:cc:66:eb:83:5d: 94:5e:c5:24:b2:e7:fa:87:10:c7:ab:b1:aa:5a:b7: 4d:8a:43:7f:da:f7:6d:c7:09:8e:31:29:45:ae:a4: 4c:a4:31:3a:7f:17:dd:f4:9f:63:a0:4e:04:6c:76: 79:79:4a:dd:c2:3c:21:36:8a:57:aa:10:37:ab:ad: ce:15:99:77:54:e8:a2:e0:f4:61:8d:c3:30:be:ff: b9:55:f7:df:56:31:6d:46:41:5c:1f:b2:f6:27:2c: 41:bd:be:21:99:c9:60:08:44:a4:db:4c:7f:47:59: fa:86:dd:4f:3b:1e:26:57:6d:6a:9b:c4:c9:f8:1d: 4a:94:78:24:85:1d:d7:e7:c9:7e:7e:a0:1c:58:b5: 1d:d9:62:5b:5a:a3:d8:85:5d:f8:3c:21:35:86:40: 02:21:3d:1e:83:ad:6b:36:13:76:28:2f:17:9a:4e: b0:24:bc:98:b8:8f:d9:04:e7:58:ef:5b:d9:15:29: 2f:a8:45:90:4d:4b:86:70:fb:66:0c:60:0b:d0:00: 95:20:89:26:f8:a3:ed:08:c2:42:de:2b:21:e7:a2: be:00:68:25:2b:f1:0a:b6:fd:17:e9:03:9d:f5:e9: 36:a2:07:cf:a8:dc:6f:2d:f9:b9:d0:1b:31:23:3e: f3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:64:CC:FD:6E:AF:60:C2:77:C8:6A:80:B7:EA:12:F0:13:CD:36:03 X509v3 Authority Key Identifier: keyid:CA:F0:B7:84:B1:3E:14:00:EE:B4:22:5B:A2:2D:6F:98:38:82:4E:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/yvC3hLE-FADutCJboi1vmDiCTsM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvC3hLE-FADutCJboi1vmDiCTsM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D99E/46048C70497111E8A7F9A672C4F9AE02/23319BCEB70B11F0A3295180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.92.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:97:26:a0:55:8f:d2:68:db:af:87:3b:d9:cd:e6:46:b3:a7: eb:84:1d:de:30:34:12:8a:bf:98:f7:93:7c:bc:44:83:8b:f7: 55:cb:6f:c4:1f:fc:49:68:80:03:2a:ec:f3:bc:ff:44:6d:80: 50:b4:0c:b7:4d:fd:d7:a0:d3:a9:da:2d:9d:f5:2d:9b:a7:d8: c0:41:2f:1b:4c:a4:fe:a0:cd:e7:e2:85:34:6e:f2:37:82:cd: 97:56:40:2f:98:2d:d6:fa:b5:40:00:67:92:4d:d5:86:27:56: 15:41:00:2f:eb:54:81:cf:53:cb:b5:77:36:72:9d:45:34:75: 81:a9:19:74:e4:ce:46:29:36:e2:61:0b:a3:dd:28:b0:a8:71: 7a:02:dd:fc:1d:b3:21:a7:67:bc:f2:e4:5e:18:27:40:ab:72: 5d:5b:4b:06:5a:85:71:4d:95:8d:f9:a3:7a:44:69:38:ce:a4: ff:b4:f2:c4:b0:2a:bc:61:aa:bc:9f:b4:f1:13:e1:82:42:9d: d8:3a:01:6b:6a:47:21:61:12:aa:d9:02:f9:31:3f:59:e0:ef: 77:9c:0d:bb:12:6f:b5:5b:60:60:6f:02:4d:97:ee:5b:4c:7c: b7:e2:d6:76:3e:45:50:cb:2c:44:ba:25:0f:8f:c1:71:16:a9: a8:e3:b8:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5OUUxMTAvBgNVBAUTKENBRjBCNzg0QjEzRTE0MDBFRUI0MjI1QkEyMkQ2Rjk4 Mzg4MjRFQzMwHhcNMjUxMTAxMTAxMTMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1ZGNkMy1kMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Yd/f+959cYzzGbrg12UXsUksuf6hxDHq7GqWrdNikN/2vdtxwmOMSlFrqRM pDE6fxfd9J9joE4EbHZ5eUrdwjwhNopXqhA3q63OFZl3VOii4PRhjcMwvv+5Vfff VjFtRkFcH7L2JyxBvb4hmclgCESk20x/R1n6ht1POx4mV21qm8TJ+B1KlHgkhR3X 58l+fqAcWLUd2WJbWqPYhV34PCE1hkACIT0eg61rNhN2KC8Xmk6wJLyYuI/ZBOdY 71vZFSkvqEWQTUuGcPtmDGAL0ACVIIkm+KPtCMJC3ish56K+AGglK/EKtv0X6QOd 9ek2ogfPqNxvLfm50BsxIz7z5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9kzP1u r2DCd8hqgLfqEvATzTYDMB8GA1UdIwQYMBaAFMrwt4SxPhQA7rQiW6Itb5g4gk7D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDk5RS80NjA0OEM3MDQ5 NzExMUU4QTdGOUE2NzJDNEY5QUUwMi95dkMzaExFLUZBRHV0Q0pib2kxdm1EaUNU c00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l2QzNoTEUtRkFEdXRDSmJvaTF2bURpQ1RzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ5OUUvNDYwNDhDNzA0OTcxMTFFOEE3RjlBNjcyQzRGOUFFMDIvMjMzMTlCQ0VC NzBCMTFGMEEzMjk1MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnclwwDQYJKoZIhvcNAQELBQADggEBAC6XJqBVj9Jo26+H O9nN5kazp+uEHd4wNBKKv5j3k3y8RIOL91XLb8Qf/ElogAMq7PO8/0RtgFC0DLdN /deg06naLZ31LZun2MBBLxtMpP6gzefihTRu8jeCzZdWQC+YLdb6tUAAZ5JN1YYn VhVBAC/rVIHPU8u1dzZynUU0dYGpGXTkzkYpNuJhC6PdKLCocXoC3fwdsyGnZ7zy 5F4YJ0Crcl1bSwZahXFNlY35o3pEaTjOpP+08sSwKrxhqryftPET4YJCndg6AWtq RyFhEqrZAvkxP1ng73ecDbsSb7VbYGBvAk2X7ltMfLfi1nY+RVDLLES6JQ+PwXEW qajjuPg= -----END CERTIFICATE-----Generated at Wed Nov 5 10:22:50 2025 by rpki-client