$ rpki-client -vvf rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/2A44713C67EE11F0BC703D32C4F9AE02.roa File: 2A44713C67EE11F0BC703D32C4F9AE02.roa (raw, json) Hash identifier: BpDeUNsAVXhQcFIvYpQWRoffbAEHqNSC31GWxr+1Y+s= Subject key identifier: 65:14:26:FB:78:89:46:91:4A:D1:26:5D:58:CB:62:60:1E:55:3B:27 Certificate issuer: /CN=A913B6D4/serialNumber=0D5028986A356B69B4AF7D2F6649D6BBDCBE8BED Certificate serial: 066A Authority key identifier: 0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/2A44713C67EE11F0BC703D32C4F9AE02.roa Signing time: Wed 23 Jul 2025 17:55:06 +0000 ROA not before: Wed 23 Jul 2025 17:55:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 49304 IP address blocks: 103.197.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/DVAomGo1a2m0r30vZknWu9y-i-0.crl rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/DVAomGo1a2m0r30vZknWu9y-i-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B6D4, serialNumber=0D5028986A356B69B4AF7D2F6649D6BBDCBE8BED Validity Not Before: Jul 23 17:55:06 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=688121f9-82a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:40:84:d2:84:22:df:7f:bb:99:19:66:05:dc: 53:fb:c7:d5:c5:1d:3b:1c:7a:54:c2:b5:2c:3b:e4: eb:b5:19:33:da:6b:1e:ce:cf:11:d8:da:94:bf:a0: a5:b9:89:de:f0:13:15:f8:97:97:56:cf:05:20:df: 47:fb:31:8b:29:47:59:6d:f4:33:3a:00:03:d1:25: 9f:be:27:d2:96:6d:38:85:b5:92:9c:37:f3:36:8f: f5:57:7f:57:41:00:e5:7d:fb:b3:ce:06:f7:9c:fc: bb:96:1a:04:d5:ba:0f:05:8f:d5:d2:f3:5a:f9:a6: 5c:de:28:10:f1:88:55:4e:40:18:e2:2d:c7:f8:f3: 07:ba:1c:9e:20:c9:70:d3:f9:7e:07:83:84:6b:92: 4e:0a:fe:fa:1a:50:9c:8c:a1:1a:e1:0d:ca:ff:c4: 1c:c0:7b:4a:68:5c:e4:fa:8f:03:1d:95:4d:f3:72: 0e:2d:20:a8:49:0e:c2:da:7a:05:20:0c:f6:23:67: 20:e7:a9:83:61:67:d2:09:4b:6e:f9:20:8f:8a:d3: ed:e7:8f:d1:8b:bd:ae:67:10:9a:c6:c1:06:04:a5: 9d:41:0f:3c:2d:de:04:7a:c2:83:7c:f4:2a:14:b1: 45:94:6c:eb:70:1d:bf:ee:10:11:c9:af:28:fe:b5: 8e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:14:26:FB:78:89:46:91:4A:D1:26:5D:58:CB:62:60:1E:55:3B:27 X509v3 Authority Key Identifier: keyid:0D:50:28:98:6A:35:6B:69:B4:AF:7D:2F:66:49:D6:BB:DC:BE:8B:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/DVAomGo1a2m0r30vZknWu9y-i-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DVAomGo1a2m0r30vZknWu9y-i-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B6D4/957253689E7911EB8F7A4487C4F9AE02/2A44713C67EE11F0BC703D32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.68.0/22 Signature Algorithm: sha256WithRSAEncryption 95:93:96:cf:80:e9:66:06:94:6e:25:59:d3:fd:e6:c7:29:b7: 85:5d:c3:f5:9b:66:e9:84:44:9f:04:17:76:44:34:ef:52:78: be:ec:c9:23:16:72:58:81:c3:b7:01:75:88:5b:ed:db:e6:6e: 7a:1d:56:66:2d:4d:f6:40:ae:d7:be:f2:94:67:8a:2c:0a:52: 69:79:c5:78:c7:b9:b4:a7:c7:54:06:5d:b0:6e:a2:fd:10:bb: 7d:1d:f1:64:cf:46:b5:5a:91:96:22:bf:01:03:f7:aa:24:6c: 4e:cf:a0:bd:72:e1:5b:8c:54:3f:26:3c:6e:69:cf:64:c1:73: ed:0a:fe:a2:c0:65:f0:e0:4d:78:4c:8e:70:bb:14:c5:1c:5c: ef:86:27:3a:c6:0c:86:2c:0f:50:ad:26:73:db:05:e5:30:5f: f3:79:00:77:0f:9d:56:16:cf:f2:f1:ba:d8:35:1f:a1:8e:27: 10:8f:9b:a4:be:56:37:aa:b4:ad:8d:dc:65:1d:26:cf:3f:4b: 0c:0b:39:3a:58:7c:c4:60:f4:b3:66:90:a3:3d:0e:bb:6b:9d: 27:8a:90:3f:4c:0f:d9:b4:b2:ad:3d:d7:c5:4b:34:d2:42:1b: a4:5a:06:d7:cc:ce:bd:40:1c:ae:84:32:3b:ed:45:03:a3:ef: 01:43:c8:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I2RDQxMTAvBgNVBAUTKDBENTAyODk4NkEzNTZCNjlCNEFGN0QyRjY2NDlENkJC RENCRThCRUQwHhcNMjUwNzIzMTc1NTA2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgxMjFmOS04MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0CE0oQi33+7mRlmBdxT+8fVxR07HHpUwrUsO+TrtRkz2msezs8R2NqUv6Cl uYne8BMV+JeXVs8FIN9H+zGLKUdZbfQzOgAD0SWfvifSlm04hbWSnDfzNo/1V39X QQDlffuzzgb3nPy7lhoE1boPBY/V0vNa+aZc3igQ8YhVTkAY4i3H+PMHuhyeIMlw 0/l+B4OEa5JOCv76GlCcjKEa4Q3K/8QcwHtKaFzk+o8DHZVN83IOLSCoSQ7C2noF IAz2I2cg56mDYWfSCUtu+SCPitPt54/Ri72uZxCaxsEGBKWdQQ88Ld4EesKDfPQq FLFFlGzrcB2/7hARya8o/rWOXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUUJvt4 iUaRStEmXVjLYmAeVTsnMB8GA1UdIwQYMBaAFA1QKJhqNWtptK99L2ZJ1rvcvovt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjZENC85NTcyNTM2ODlF NzkxMUVCOEY3QTQ0ODdDNEY5QUUwMi9EVkFvbUdvMWEybTByMzB2WmtuV3U5eS1p LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RWQW9tR28xYTJtMHIzMHZaa25XdTl5LWktMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I2RDQvOTU3MjUzNjg5RTc5MTFFQjhGN0E0NDg3QzRGOUFFMDIvMkE0NDcxM0M2 N0VFMTFGMEJDNzAzRDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnxUQwDQYJKoZIhvcNAQELBQADggEBAJWTls+A6WYGlG4l WdP95scpt4Vdw/WbZumERJ8EF3ZENO9SeL7sySMWcliBw7cBdYhb7dvmbnodVmYt TfZArte+8pRniiwKUml5xXjHubSnx1QGXbBuov0Qu30d8WTPRrVakZYivwED96ok bE7PoL1y4VuMVD8mPG5pz2TBc+0K/qLAZfDgTXhMjnC7FMUcXO+GJzrGDIYsD1Ct JnPbBeUwX/N5AHcPnVYWz/Lxutg1H6GOJxCPm6S+VjeqtK2N3GUdJs8/SwwLOTpY fMRg9LNmkKM9DrtrnSeKkD9MD9m0sq0918VLNNJCG6RaBtfMzr1AHK6EMjvtRQOj 7wFDyG0= -----END CERTIFICATE-----Generated at Wed Nov 5 10:29:41 2025 by rpki-client