$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa File: D58286CA1F9D11EDA5DD9842C4F9AE02.roa (raw, json) Hash identifier: 2lVEchIIIWrHWS+cmiuyzbX+n0oNOZ7725nW2r5ai80= Subject key identifier: CB:CD:0A:CC:EC:97:80:C7:3E:87:7E:6B:B3:32:B1:43:B5:6C:3D:00 Certificate issuer: /CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Certificate serial: 02AA Authority key identifier: 0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa Signing time: Mon 03 Nov 2025 01:46:16 +0000 ROA not before: Mon 03 Nov 2025 01:46:16 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 140381 IP address blocks: 103.146.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF1E, serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Validity Not Before: Nov 3 01:46:16 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=69080968-0e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:81:cc:36:58:3f:85:e3:c8:d1:f2:bb:92: bf:a1:f5:42:41:c6:22:d5:9c:ea:40:37:8b:e0:b0: 50:3f:35:02:d9:5d:5f:2b:03:75:e2:7f:4e:0d:34: c3:00:5f:19:ce:f6:11:a4:48:1e:a6:98:99:88:93: 8f:95:28:45:2e:3a:e5:0c:47:5d:e0:bf:70:cd:16: 42:55:b2:3f:9e:b6:84:73:89:0b:2f:b6:d5:a5:03: ff:ad:dc:d1:c1:d0:fb:49:95:dc:0d:b4:35:10:72: fd:06:94:36:61:9b:7f:83:9e:ed:2a:f4:db:e6:ce: eb:63:8b:61:ea:b2:9d:bc:c1:c9:4c:a5:40:20:a0: ad:9b:e9:49:36:62:72:8f:6f:e5:2e:91:06:1c:89: 76:56:e7:84:54:7f:d4:e6:2f:48:76:0c:92:a7:9c: 0d:97:24:24:22:da:01:7b:a8:a9:23:93:d6:a4:6a: 90:2f:0c:1e:ae:21:42:32:83:18:e6:4b:d6:bc:38: af:df:0f:c8:93:25:d8:d1:37:0d:bf:32:be:18:13: 30:23:72:15:92:03:fe:ac:ed:3c:9f:ef:ea:b6:26: 7a:05:93:e4:c7:a0:9f:b8:af:14:6e:7b:05:b2:47: 03:cd:6d:6e:43:5e:59:2b:4b:d5:b8:c2:20:c5:e4: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CD:0A:CC:EC:97:80:C7:3E:87:7E:6B:B3:32:B1:43:B5:6C:3D:00 X509v3 Authority Key Identifier: keyid:0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.56.0/24 Signature Algorithm: sha256WithRSAEncryption 60:b6:ba:9a:a9:77:47:83:b4:30:61:71:99:dd:72:89:4f:24: cd:be:08:8f:4b:27:4e:7a:42:be:66:94:0e:be:4a:fb:dd:a9: a7:e7:96:b1:00:07:38:31:fa:28:61:23:6b:06:61:e8:84:c9: 52:a9:ff:59:6f:79:76:e9:a7:aa:4c:d3:25:70:50:9d:e3:f7: 1c:0f:e2:37:6d:66:e6:80:b1:b3:42:b2:6b:6a:b8:a1:43:ca: cf:4b:46:1b:64:61:57:de:cc:a5:1d:b8:0b:da:67:e6:b0:23: a4:7b:d5:42:ca:e2:35:8b:90:a5:5f:e3:97:9b:f6:17:1d:3b: f6:0c:15:69:31:a6:a3:4e:62:d7:e4:8c:be:0c:13:68:34:ea: db:5a:dc:65:61:63:42:1d:4e:e9:27:02:f5:2d:85:94:ba:1c: ae:f6:ec:dc:12:e3:3c:5b:a9:79:3f:07:76:15:bc:31:6e:fa: 65:30:6a:0e:12:25:72:a5:37:37:65:e1:3c:98:83:a2:1b:bc: 13:f6:3b:23:b5:08:c4:3f:53:1d:7a:85:7a:2a:8a:8e:17:11: a6:dd:6e:8e:c4:e0:6c:b1:64:51:f6:c4:e6:5a:c4:e3:27:33: a6:e7:ac:db:2a:fe:b3:c4:67:6c:0e:c1:2a:d2:b0:a1:a0:06: ad:26:d8:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGMUUxMTAvBgNVBAUTKDBBQjNGMTE0OUNGNUMzQkFEQTY4NUIxQzZBMTM3OUI2 ODhENzQzODQwHhcNMjUxMTAzMDE0NjE2WhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MDk2OC0wZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXmBzDZYP4XjyNHyu5K/ofVCQcYi1ZzqQDeL4LBQPzUC2V1fKwN14n9ODTTD AF8ZzvYRpEgeppiZiJOPlShFLjrlDEdd4L9wzRZCVbI/nraEc4kLL7bVpQP/rdzR wdD7SZXcDbQ1EHL9BpQ2YZt/g57tKvTb5s7rY4th6rKdvMHJTKVAIKCtm+lJNmJy j2/lLpEGHIl2VueEVH/U5i9IdgySp5wNlyQkItoBe6ipI5PWpGqQLwweriFCMoMY 5kvWvDiv3w/IkyXY0TcNvzK+GBMwI3IVkgP+rO08n+/qtiZ6BZPkx6CfuK8UbnsF skcDzW1uQ15ZK0vVuMIgxeRIIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMvNCszs l4DHPod+a7MysUO1bD0AMB8GA1UdIwQYMBaAFAqz8RSc9cO62mhbHGoTebaI10OE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYxRS9DQzY1QTY2QTFG OUExMUVEODM1Q0FBM0ZDNEY5QUUwMi9DclB4Rkp6MXc3cmFhRnNjYWhONXRvalhR NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyUHhGSnoxdzdyYWFGc2NhaE41dG9qWFE0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RGMUUvQ0M2NUE2NkExRjlBMTFFRDgzNUNBQTNGQzRGOUFFMDIvRDU4Mjg2Q0Ex RjlEMTFFREE1REQ5ODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkjgwDQYJKoZIhvcNAQELBQADggEBAGC2upqpd0eDtDBh cZndcolPJM2+CI9LJ056Qr5mlA6+SvvdqafnlrEABzgx+ihhI2sGYeiEyVKp/1lv eXbpp6pM0yVwUJ3j9xwP4jdtZuaAsbNCsmtquKFDys9LRhtkYVfezKUduAvaZ+aw I6R71ULK4jWLkKVf45eb9hcdO/YMFWkxpqNOYtfkjL4ME2g06tta3GVhY0IdTukn AvUthZS6HK727NwS4zxbqXk/B3YVvDFu+mUwag4SJXKlNzdl4TyYg6IbvBP2OyO1 CMQ/Ux16hXoqio4XEabdbo7E4GyxZFH2xOZaxOMnM6bnrNsq/rPEZ2wOwSrSsKGg Bq0m2Mg= -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:12 2025 by rpki-client