$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa File: 813A255423A611F09025FC11C4F9AE02.roa (raw, json) Hash identifier: uohcAOcE60pEPVtJLM2mjq+61BAF61CBsuLOOzelXqI= Subject key identifier: 83:BF:C5:82:07:FB:21:60:38:07:4C:E5:0E:FA:9C:53:A2:A5:83:39 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 13D3 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa Signing time: Thu 16 Oct 2025 17:55:18 +0000 ROA not before: Thu 16 Oct 2025 17:55:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138042 IP address blocks: 103.120.144.0/22 maxlen: 24 2403:5940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5075 (0x13d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Oct 16 17:55:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f13185-a6dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:05:f2:1a:cd:8d:db:9a:fb:89:30:d0:ef:0e: 56:c9:f1:cc:9e:c1:2b:a4:58:d7:b7:68:67:bf:84: e2:e0:5a:68:21:2f:60:1b:33:84:36:cd:6e:bb:86: c6:bf:80:b3:1a:8e:70:ab:b8:e5:86:74:bb:19:b1: f7:7d:1d:ae:1e:65:50:f5:33:f3:dc:8d:0f:03:7f: 13:cf:15:59:a5:5c:3e:0e:7f:b3:65:fa:b1:b5:b7: 03:43:69:a9:5c:c5:ff:25:85:a7:28:a5:39:85:47: d3:29:30:c7:b7:eb:90:a8:39:c5:9c:1b:cf:18:77: 19:98:27:bc:d4:25:82:1f:0c:e6:c1:4c:00:3e:f7: 88:a2:f3:07:2d:dd:87:2f:f2:9c:73:30:a7:5c:76: 6a:36:65:52:e6:e7:29:5a:9b:e3:a7:c4:96:85:84: 3e:0e:2b:96:76:e8:16:8d:64:34:db:e5:b7:b3:d0: 2a:4c:e2:c2:2f:af:3b:3d:0e:ac:52:a9:70:bd:96: 97:60:ec:b8:0d:4f:77:5a:31:c0:70:91:27:aa:3b: 0b:f0:0c:1c:32:ca:3e:fc:77:94:89:a2:fe:8c:93: b1:20:4c:07:fd:60:a0:f2:92:44:48:62:29:6b:a1: b2:ef:f6:b8:87:58:e1:56:af:5b:7f:1f:ed:a2:ad: 25:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BF:C5:82:07:FB:21:60:38:07:4C:E5:0E:FA:9C:53:A2:A5:83:39 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.144.0/22 IPv6: 2403:5940::/32 Signature Algorithm: sha256WithRSAEncryption 74:2f:a6:32:00:e4:f5:5c:24:16:f4:e3:ba:b7:af:fe:d2:2f: fb:77:58:da:0a:9d:ab:88:a8:1d:f5:e0:0f:40:a7:98:8b:7c: 97:f1:cb:5e:aa:91:27:9f:90:7c:a3:8c:b2:67:78:d4:85:65: 09:60:fc:19:4b:d5:e2:64:04:ea:9f:52:36:37:3b:58:10:06: b9:88:c8:14:d8:bb:a9:dd:f8:8a:43:bc:08:06:a2:23:07:a4: c3:b6:f8:6e:5b:e6:b3:b6:bf:c7:df:f9:30:d1:97:61:11:8e: 2a:a8:be:83:3e:29:00:30:da:a0:48:44:6a:bf:3e:65:7c:c8: 39:9e:ad:e4:05:da:06:63:c6:cb:ce:92:4d:49:8a:d1:ec:c7: b3:81:e0:1b:26:44:94:7f:e4:4a:6c:70:80:b1:c5:a5:c6:ce: 13:63:fc:5b:d3:86:1a:35:81:81:6f:1f:54:17:dd:e4:16:00: 94:38:38:97:a4:89:4b:02:b4:04:27:dc:3b:e3:83:18:58:37: 56:70:2e:02:55:28:b6:1b:53:ae:cf:57:5a:18:47:66:3e:fe: f3:33:a8:25:b7:78:19:d3:05:f1:f5:8a:0f:36:c9:4b:4b:fb: 37:55:b5:b5:90:86:99:a0:85:c6:02:1d:db:c7:ee:ec:53:ac: c6:46:f0:83 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICE9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUxMDE2MTc1NTE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxMzE4NS1hNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QXyGs2N25r7iTDQ7w5WyfHMnsErpFjXt2hnv4Ti4FpoIS9gGzOENs1uu4bG v4CzGo5wq7jlhnS7GbH3fR2uHmVQ9TPz3I0PA38TzxVZpVw+Dn+zZfqxtbcDQ2mp XMX/JYWnKKU5hUfTKTDHt+uQqDnFnBvPGHcZmCe81CWCHwzmwUwAPveIovMHLd2H L/KcczCnXHZqNmVS5ucpWpvjp8SWhYQ+DiuWdugWjWQ02+W3s9AqTOLCL687PQ6s UqlwvZaXYOy4DU93WjHAcJEnqjsL8AwcMso+/HeUiaL+jJOxIEwH/WCg8pJESGIp a6Gy7/a4h1jhVq9bfx/toq0lVwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIO/xYIH +yFgOAdM5Q76nFOipYM5MB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEFGMzIvOURFQzA3NDA5RTUwMTFFODk4MDNEODI2QzRGOUFFMDIvODEzQTI1NTQy M0E2MTFGMDkwMjVGQzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneJAwDQQCAAIwBwMFACQDWUAwDQYJKoZIhvcNAQELBQAD ggEBAHQvpjIA5PVcJBb047q3r/7SL/t3WNoKnauIqB314A9Ap5iLfJfxy16qkSef kHyjjLJneNSFZQlg/BlL1eJkBOqfUjY3O1gQBrmIyBTYu6nd+IpDvAgGoiMHpMO2 +G5b5rO2v8ff+TDRl2ERjiqovoM+KQAw2qBIRGq/PmV8yDmereQF2gZjxsvOkk1J itHsx7OB4BsmRJR/5EpscICxxaXGzhNj/FvThho1gYFvH1QX3eQWAJQ4OJekiUsC tAQn3DvjgxhYN1ZwLgJVKLYbU67PV1oYR2Y+/vMzqCW3eBnTBfH1ig82yUtL+zdV tbWQhpmghcYCHdvH7uxTrMZG8IM= -----END CERTIFICATE-----Generated at Wed Nov 5 21:19:35 2025 by rpki-client