$ rpki-client -vvf rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa File: 849DE48AB8DC11F0AFE11A3EC4F9AE02.roa (raw, json) Hash identifier: 9KcIlyq8ZHlGeHgUeAIBs2zA8Q5DDSxKmMBg/qqD5B0= Subject key identifier: FF:46:3D:35:84:7F:D3:83:E3:10:4C:E4:9F:5D:B2:A9:D8:FB:8D:11 Certificate issuer: /CN=A912F22D/serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Certificate serial: 0BA2 Authority key identifier: 2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa Signing time: Mon 03 Nov 2025 17:42:50 +0000 ROA not before: Mon 03 Nov 2025 17:42:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141351 IP address blocks: 103.132.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F22D, serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Validity Not Before: Nov 3 17:42:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6908e99a-8d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:02:5b:76:51:32:07:7b:00:5d:0b:49:1e:40: 47:c3:43:ff:48:e2:1c:67:16:87:fc:db:76:4f:32: fb:16:ad:13:61:a4:0c:50:57:93:91:01:5b:6f:88: 10:d2:ac:cd:39:15:49:49:09:9d:88:92:89:3c:93: 95:73:19:ab:f9:fd:76:21:56:41:c6:a6:a1:d9:f9: bc:dc:d5:ac:d4:81:10:cc:b9:df:f3:5e:fa:16:33: 8e:7f:a3:e6:9f:27:8b:9b:c1:8b:ad:8b:4f:57:83: e6:09:5f:96:3f:b9:63:88:73:8f:65:ae:dd:8b:35: a9:cf:61:7b:32:24:3f:2d:e3:7f:0e:36:3a:51:75: da:5a:60:c7:71:c4:44:1e:cd:52:2e:34:81:c8:6d: 71:7d:be:34:e1:19:e7:0b:b4:d0:0e:f4:57:1e:05: 57:0b:3a:5b:f8:78:38:07:fe:41:88:6d:0f:c6:c2: 39:c2:b9:56:a2:05:da:40:a5:7b:49:4c:dd:66:18: 46:d2:d0:85:39:fa:eb:e7:64:60:07:58:7c:64:d5: 77:e9:61:7f:fa:f7:4e:d9:6c:e8:ea:d0:fd:7e:e6: 32:63:8d:c3:05:09:7b:c0:87:62:74:9e:9d:52:2e: 37:5e:d9:1f:3e:53:3b:fb:ef:13:1a:be:29:00:29: d9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:46:3D:35:84:7F:D3:83:E3:10:4C:E4:9F:5D:B2:A9:D8:FB:8D:11 X509v3 Authority Key Identifier: keyid:2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.216.0/24 Signature Algorithm: sha256WithRSAEncryption 66:a0:14:a1:91:75:4e:0a:41:52:3f:5e:bf:d4:a0:7f:a7:80: 3b:9f:f2:7c:79:6a:80:f0:2a:97:cf:bc:b6:57:f7:10:91:44: f2:f0:c5:ba:9c:68:6d:9e:be:40:ae:ed:e8:ab:4b:ea:be:d7: 6e:ad:e3:3d:03:4b:79:b6:34:9f:92:16:7d:98:96:ba:87:93: 48:0f:f2:89:87:54:9b:bf:17:ba:73:ec:1f:bb:75:0e:07:0b: 94:ff:83:cd:4e:02:17:fa:24:5e:74:fa:08:04:12:1d:97:49: 89:2a:3d:29:68:15:bd:8e:15:68:a6:ee:a5:5c:b6:75:7a:39: 97:4e:21:a5:2a:50:34:62:de:b8:a1:e4:7e:da:64:66:58:2e: 61:54:de:95:d7:97:df:d8:b2:1d:24:49:b8:34:52:5a:54:e6: e2:06:25:c8:39:3e:dd:97:d0:f0:b8:f9:4e:72:3d:25:6b:47: b9:54:fa:e6:18:fc:d3:1f:b5:03:7b:ec:33:04:cc:99:f9:82: a5:c8:ab:1f:9c:fa:9f:7f:02:e3:64:b3:49:86:a4:4b:68:79: 7c:f0:47:79:90:97:74:42:e6:11:ac:9d:db:cd:02:68:47:a7: 24:ea:23:2f:38:4b:df:c3:1b:fe:86:c8:84:46:e8:7a:2e:09: 45:f8:83:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYyMkQxMTAvBgNVBAUTKDJEQUI4MkEwQTlCOEU0NDk2QTlEQTBEREVERUY3RTkz MTYyNTE3NjgwHhcNMjUxMTAzMTc0MjUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4ZTk5YS04ZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAJbdlEyB3sAXQtJHkBHw0P/SOIcZxaH/Nt2TzL7Fq0TYaQMUFeTkQFbb4gQ 0qzNORVJSQmdiJKJPJOVcxmr+f12IVZBxqah2fm83NWs1IEQzLnf8176FjOOf6Pm nyeLm8GLrYtPV4PmCV+WP7ljiHOPZa7dizWpz2F7MiQ/LeN/DjY6UXXaWmDHccRE Hs1SLjSByG1xfb404RnnC7TQDvRXHgVXCzpb+Hg4B/5BiG0PxsI5wrlWogXaQKV7 SUzdZhhG0tCFOfrr52RgB1h8ZNV36WF/+vdO2Wzo6tD9fuYyY43DBQl7wIdidJ6d Ui43XtkfPlM7++8TGr4pACnZ3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFP9GPTWE f9OD4xBM5J9dsqnY+40RMB8GA1UdIwQYMBaAFC2rgqCpuORJap2g3e3vfpMWJRdo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjIyRC8yQUFGQ0NFRTM2 OEUxMUVBOTJBNDlFN0RDNEY5QUUwMi9MYXVDb0ttNDVFbHFuYURkN2U5LWt4WWxG MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xhdUNvS200NUVscW5hRGQ3ZTkta3hZbEYyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYyMkQvMkFBRkNDRUUzNjhFMTFFQTkyQTQ5RTdEQzRGOUFFMDIvODQ5REU0OEFC OERDMTFGMEFGRTExQTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhNgwDQYJKoZIhvcNAQELBQADggEBAGagFKGRdU4KQVI/ Xr/UoH+ngDuf8nx5aoDwKpfPvLZX9xCRRPLwxbqcaG2evkCu7eirS+q+126t4z0D S3m2NJ+SFn2YlrqHk0gP8omHVJu/F7pz7B+7dQ4HC5T/g81OAhf6JF50+ggEEh2X SYkqPSloFb2OFWim7qVctnV6OZdOIaUqUDRi3rih5H7aZGZYLmFU3pXXl9/Ysh0k Sbg0UlpU5uIGJcg5Pt2X0PC4+U5yPSVrR7lU+uYY/NMftQN77DMEzJn5gqXIqx+c +p9/AuNks0mGpEtoeXzwR3mQl3RC5hGsndvNAmhHpyTqIy84S9/DG/6GyIRG6Hou CUX4g9c= -----END CERTIFICATE-----Generated at Wed Nov 5 09:58:47 2025 by rpki-client