$ rpki-client -vvf rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa File: 7F424CC0350711E9955C524EC4F9AE02.roa (raw, json) Hash identifier: eQnD9tuW7mCROXO8w7iWEfhQEqqXF3EP7V3sYeG0gI8= Subject key identifier: 54:99:98:29:8D:EA:66:4B:50:63:29:3C:A1:8E:17:C9:BB:4C:87:72 Certificate issuer: /CN=A914E08F/serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7 Certificate serial: 135B Authority key identifier: BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa Signing time: Sun 02 Nov 2025 17:05:24 +0000 ROA not before: Sun 02 Nov 2025 17:05:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138209 IP address blocks: 103.129.224.0/24 maxlen: 24 103.129.225.0/24 maxlen: 24 103.129.226.0/24 maxlen: 24 2403:8ac0:ef60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.crl rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4955 (0x135b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E08F, serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7 Validity Not Before: Nov 2 17:05:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69078f53-d12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:44:05:5f:b7:da:bd:c6:bc:26:11:5e:d5:31: 57:63:d3:6f:be:16:1b:42:54:06:d8:25:ac:45:1d: 1c:f7:18:24:be:a1:ff:89:20:1a:03:54:ad:f7:3e: fc:e0:38:07:02:af:68:f2:ae:12:d1:fb:4f:46:00: 0c:17:ae:d6:c0:fc:b9:2b:66:fe:d1:73:ac:0a:d8: 52:82:0a:ba:f2:6b:c8:83:cc:54:f2:5e:38:ea:e5: 65:2d:a1:17:41:59:e3:1a:eb:fd:84:57:47:1d:7f: d0:d7:1a:59:a8:e7:fa:d9:4b:da:d8:25:c9:b5:d3: bf:d3:de:10:2c:1f:ba:8a:08:8d:2d:14:8b:8e:94: ac:19:3f:93:25:8e:51:c4:32:a4:04:73:97:fb:1b: 3f:90:e1:c8:33:1a:bc:3f:ba:32:3b:25:80:50:42: ba:59:a6:59:62:eb:8c:42:5c:48:11:43:eb:8e:a2: b2:84:fc:2c:d7:2e:75:eb:7e:d2:d1:73:e9:0c:9c: 1f:7b:e9:01:66:d5:ae:fa:eb:54:fd:8e:cb:cc:4b: b0:b8:34:bf:31:84:7d:d0:d7:34:66:d4:70:13:95: ce:9c:fb:f3:01:48:f8:9c:a7:3a:6e:32:90:50:2e: bf:07:75:61:b1:f0:9f:f2:4f:09:aa:15:da:da:8d: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:99:98:29:8D:EA:66:4B:50:63:29:3C:A1:8E:17:C9:BB:4C:87:72 X509v3 Authority Key Identifier: keyid:BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.224.0-103.129.226.255 IPv6: 2403:8ac0:ef60::/48 Signature Algorithm: sha256WithRSAEncryption 86:db:0f:93:f5:7f:da:9d:75:cd:c4:89:bf:e4:ef:dd:eb:92: 0c:d6:d9:4f:ec:7f:61:54:fc:54:4c:01:cc:18:b7:4e:24:6a: 10:29:db:b6:4d:4e:0d:e6:fe:80:d7:44:95:5a:d7:24:c8:65: 3b:02:f1:50:b9:3a:38:42:e9:d5:1c:34:1b:19:9b:90:24:06: 9e:55:98:40:fd:e8:6d:04:2e:56:a3:23:ed:b3:4e:95:b3:4c: f6:b6:08:47:ac:56:52:16:9a:d8:78:eb:42:65:ed:8b:c1:c3: 17:33:86:69:67:94:ef:a3:01:dc:5d:3a:be:ef:e4:26:74:96: 2f:55:54:aa:89:fe:16:7a:f3:7d:e2:4e:66:26:5f:c9:4d:55: 49:bc:c3:c2:db:71:e8:a3:4e:f8:ca:33:ee:61:c7:db:41:f9: 54:40:99:c9:6a:ee:3f:f4:08:2a:c3:34:6d:9c:aa:04:f6:cd: 58:d7:20:70:0c:4d:d0:9c:43:fe:d7:b8:c0:e1:5d:a5:c3:48: 80:4e:c3:f6:2c:0b:5c:28:e2:0d:3b:04:b8:ef:8d:fb:6b:a2: 37:25:f2:e3:ec:ed:1a:83:db:e2:01:b3:d7:70:d9:70:82:d8: 5c:6b:4a:a7:ce:10:79:df:b6:5e:99:1f:af:83:c8:85:01:cd: de:6d:b8:d0 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICE1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwOEYxMTAvBgNVBAUTKEJGNTVBNUIwMDYyQTRFNkEzREM4NzlFM0M5RkNCMjY2 N0M2ODkyQjcwHhcNMjUxMTAyMTcwNTI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3OGY1My1kMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukQFX7favca8JhFe1TFXY9NvvhYbQlQG2CWsRR0c9xgkvqH/iSAaA1St9z78 4DgHAq9o8q4S0ftPRgAMF67WwPy5K2b+0XOsCthSggq68mvIg8xU8l446uVlLaEX QVnjGuv9hFdHHX/Q1xpZqOf62Uva2CXJtdO/094QLB+6igiNLRSLjpSsGT+TJY5R xDKkBHOX+xs/kOHIMxq8P7oyOyWAUEK6WaZZYuuMQlxIEUPrjqKyhPws1y51637S 0XPpDJwfe+kBZtWu+utU/Y7LzEuwuDS/MYR90Nc0ZtRwE5XOnPvzAUj4nKc6bjKQ UC6/B3VhsfCf8k8JqhXa2o35DwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFFSZmCmN 6mZLUGMpPKGOF8m7TIdyMB8GA1UdIwQYMBaAFL9VpbAGKk5qPch548n8smZ8aJK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA4Ri9BOEYyMDMwOEI1 QjkxMUU4OEFEOUEyMERDNEY5QUUwMi92MVdsc0FZcVRtbzl5SG5qeWZ5eVpueG9r cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxV2xzQVlxVG1vOXlIbmp5Znl5Wm54b2tyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwOEYvQThGMjAzMDhCNUI5MTFFODhBRDlBMjBEQzRGOUFFMDIvN0Y0MjRDQzAz NTA3MTFFOTk1NUM1MjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEBWeB4AMEAGeB4jAPBAIAAjAJAwcAJAOKwO9gMA0GCSqG SIb3DQEBCwUAA4IBAQCG2w+T9X/anXXNxIm/5O/d65IM1tlP7H9hVPxUTAHMGLdO JGoQKdu2TU4N5v6A10SVWtckyGU7AvFQuTo4QunVHDQbGZuQJAaeVZhA/ehtBC5W oyPts06Vs0z2tghHrFZSFprYeOtCZe2LwcMXM4ZpZ5TvowHcXTq+7+QmdJYvVVSq if4WevN94k5mJl/JTVVJvMPC23Hoo074yjPuYcfbQflUQJnJau4/9AgqwzRtnKoE 9s1Y1yBwDE3QnEP+17jA4V2lw0iATsP2LAtcKOINOwS47437a6I3JfLj7O0ag9vi AbPXcNlwgthca0qnzhB537ZemR+vg8iFAc3ebbjQ -----END CERTIFICATE-----Generated at Tue Nov 4 22:28:22 2025 by rpki-client