$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa File: 354725E6763311EABAE64466C4F9AE02.roa (raw, json) Hash identifier: bs2WaiU2EHsdavOyCOj936j3V7QF3geo8o9d56rg2ig= Subject key identifier: 5E:F9:DD:55:3A:88:DF:65:CA:18:B9:6F:66:D4:5C:1C:4F:EA:7E:DD Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A5A Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa Signing time: Tue 04 Nov 2025 20:09:12 +0000 ROA not before: Tue 04 Nov 2025 20:09:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137039 IP address blocks: 103.102.220.0/24 maxlen: 24 103.146.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Nov 4 20:09:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a5d68-5da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fb:28:60:3f:6b:6f:a7:44:d9:25:2b:44:4c: 10:da:86:e8:f3:af:1b:30:fb:49:35:90:82:b1:62: a5:b6:1a:a1:b4:f4:ba:74:fd:1c:df:47:aa:8c:93: 76:e3:58:5d:5e:03:72:d1:f4:10:2d:da:a6:c5:aa: e3:5e:ee:d0:df:81:06:ea:f1:4e:df:67:e3:15:8d: 3c:09:d3:61:88:5f:a8:91:3c:6c:04:6c:ca:72:bd: 7d:2d:a4:e4:09:a5:3d:22:5b:40:69:b8:64:f3:6e: 93:f8:4b:e3:02:8b:5f:44:80:e9:f8:57:28:b7:cd: 5e:79:68:93:56:f1:a6:9d:25:c7:2f:3d:79:16:1b: 6c:2d:5c:1c:19:4c:b8:02:7d:2f:a2:3f:1c:c8:63: 77:2d:77:74:a0:f9:de:b2:42:c4:6a:dd:55:72:ce: 88:f9:96:cb:de:e0:59:5d:39:32:8e:d1:db:b4:47: 88:6a:09:8a:ed:ec:53:c1:28:7d:51:c1:1f:61:f0: 28:36:04:9b:f7:81:3c:93:b3:d5:fa:08:4d:58:b8: 6a:54:50:dc:9e:02:cb:bb:f4:01:a4:09:7f:76:99: da:9f:8b:30:03:5a:57:28:a7:36:e8:e2:b3:db:db: 43:f1:ef:0b:ee:ab:15:35:c8:4d:f0:87:46:17:50: 42:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F9:DD:55:3A:88:DF:65:CA:18:B9:6F:66:D4:5C:1C:4F:EA:7E:DD X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.220.0/24 103.146.198.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:05:cf:10:dc:2f:ee:ad:d4:d9:84:31:04:71:c2:99:57:ca: 4a:2a:aa:e5:bc:0e:d5:0e:96:32:4c:0d:6d:22:29:2b:0e:ef: 84:eb:69:55:4b:cc:c9:a3:88:c6:28:81:c5:41:20:9b:34:ee: d3:6e:1e:8a:3a:9d:31:cb:5f:33:32:1a:87:d6:92:a5:70:e7: 56:73:1f:e5:be:50:77:76:b5:31:2e:88:08:32:a0:53:08:82: 79:06:10:f4:17:e0:8e:85:0d:cb:fd:19:74:c8:7e:73:d9:ec: b2:7d:f8:89:cb:64:11:63:d0:1a:a9:b0:84:7b:53:19:9d:43: 88:73:05:8e:16:18:3c:a2:18:9e:49:6a:8b:cb:56:ab:70:8c: 59:6c:7a:55:2b:61:6a:b0:f4:11:88:94:75:01:fa:b2:91:c3: 75:28:f3:db:76:64:51:d1:6e:1c:d7:5e:34:04:1f:1f:45:19: 79:a0:21:09:d7:82:41:61:a1:49:24:51:da:b9:d3:a6:55:a1: 81:69:d3:7a:38:88:07:ad:2e:fe:77:6c:03:8d:6f:22:a1:62: 91:ee:5c:d5:25:cc:88:b6:71:db:00:1d:69:0a:60:35:dd:f4: ed:0b:d8:a9:c5:0f:39:f1:a5:67:e9:ba:20:39:bc:a2:95:2a: d1:6d:74:e7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUxMTA0MjAwOTEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNWQ2OC01ZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PsoYD9rb6dE2SUrREwQ2obo868bMPtJNZCCsWKlthqhtPS6dP0c30eqjJN2 41hdXgNy0fQQLdqmxarjXu7Q34EG6vFO32fjFY08CdNhiF+okTxsBGzKcr19LaTk CaU9IltAabhk826T+EvjAotfRIDp+Fcot81eeWiTVvGmnSXHLz15FhtsLVwcGUy4 An0voj8cyGN3LXd0oPneskLEat1Vcs6I+ZbL3uBZXTkyjtHbtEeIagmK7exTwSh9 UcEfYfAoNgSb94E8k7PV+ghNWLhqVFDcngLLu/QBpAl/dpnan4swA1pXKKc26OKz 29tD8e8L7qsVNchN8IdGF1BCvQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF753VU6 iN9lyhi5b2bUXBxP6n7dMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUzRjUvODExQjYwNEM3NjMxMTFFQTk3MTVGODYwQzRGOUFFMDIvMzU0NzI1RTY3 NjMzMTFFQUJBRTY0NDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZtwDBABnksYwDQYJKoZIhvcNAQELBQADggEBAG4FzxDc L+6t1NmEMQRxwplXykoqquW8DtUOljJMDW0iKSsO74TraVVLzMmjiMYogcVBIJs0 7tNuHoo6nTHLXzMyGofWkqVw51ZzH+W+UHd2tTEuiAgyoFMIgnkGEPQX4I6FDcv9 GXTIfnPZ7LJ9+InLZBFj0BqpsIR7UxmdQ4hzBY4WGDyiGJ5JaovLVqtwjFlselUr YWqw9BGIlHUB+rKRw3Uo89t2ZFHRbhzXXjQEHx9FGXmgIQnXgkFhoUkkUdq506ZV oYFp03o4iAetLv53bAONbyKhYpHuXNUlzIi2cdsAHWkKYDXd9O0L2KnFDznxpWfp uiA5vKKVKtFtdOc= -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:53 2025 by rpki-client