$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa File: 747C668ECCD911EF9B52C877C4F9AE02.roa (raw, json) Hash identifier: m3GeVlgQwLSASq7XBSa8f1Uvp0nte9cJZ6MnwsMfEFs= Subject key identifier: 64:E2:DB:85:96:1D:B8:F7:D3:93:9F:F7:26:EF:06:4F:04:CE:BE:08 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: DF Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa Signing time: Wed 15 Oct 2025 09:32:33 +0000 ROA not before: Wed 15 Oct 2025 09:32:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 103.151.248.0/24 maxlen: 24 103.251.25.0/24 maxlen: 24 116.206.148.0/24 maxlen: 24 116.206.150.0/24 maxlen: 24 203.19.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: Oct 15 09:32:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef6a30-3ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:00:df:e2:d5:4e:31:06:ac:2f:71:db:96: b4:93:b3:e8:d7:67:c8:40:65:39:47:66:f2:e5:e1: 7a:ff:3a:b2:1c:70:7c:2b:48:5c:2d:01:04:6f:f5: f8:1c:58:be:05:c3:b6:27:21:77:80:4b:54:19:02: 54:be:fe:4c:70:39:1a:68:56:3b:95:d1:f8:e9:63: 55:0d:b8:d9:e0:27:43:79:dd:9a:ed:99:f3:27:51: f4:fb:97:90:c0:86:ce:f8:fc:86:00:cd:34:92:4f: af:99:a9:6b:bb:bb:5d:cf:da:f6:db:ab:4b:79:76: 15:4d:0a:2a:8b:58:0a:0c:51:cd:65:96:42:d8:30: 2d:e5:e5:5a:75:92:4f:e4:c1:09:67:88:2c:96:28: a9:9f:b7:2d:f0:62:8c:c5:a1:da:46:99:1f:ec:6c: c8:73:1b:c1:b2:25:5e:d1:cd:54:57:88:c1:96:8f: 1e:4d:02:e4:e1:6f:0f:d1:9c:0d:eb:0a:01:c0:3d: fd:d0:6b:17:68:5c:8a:36:88:fa:dc:d3:d9:49:4f: 8c:29:57:25:08:bf:fc:de:74:d4:ff:62:f0:58:e4: 60:1b:86:66:a3:bd:2e:88:f2:85:32:9c:7e:f7:52: df:db:76:d9:0c:d7:3f:ec:9a:1e:64:92:98:e9:fc: a8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E2:DB:85:96:1D:B8:F7:D3:93:9F:F7:26:EF:06:4F:04:CE:BE:08 X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/747C668ECCD911EF9B52C877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.248.0/24 103.251.25.0/24 116.206.148.0/24 116.206.150.0/24 203.19.243.0/24 Signature Algorithm: sha256WithRSAEncryption 05:63:5c:4b:bb:8f:4c:16:1d:27:ff:38:1e:90:58:ac:0c:bf: 79:f3:3d:87:31:a4:5e:42:2f:0e:c6:be:dc:02:97:51:ba:5e: 93:f2:de:60:2e:d8:0e:a9:2f:32:24:f3:be:a2:e6:09:6e:3b: fe:8c:5d:74:1c:92:6a:3f:6c:03:c6:93:a2:29:23:97:7d:44: f0:79:08:21:7f:31:c4:27:45:1e:e1:80:2f:49:a2:91:53:5e: 4e:65:88:85:b5:95:16:8b:43:4f:81:46:f9:69:8b:56:9e:01: c6:ee:a6:8a:48:c0:00:fb:8f:7d:fc:00:03:4a:3d:b7:97:d3: 5e:cc:90:c5:f8:45:5d:18:0a:d6:2d:bc:2c:99:67:f4:7d:ee: 90:73:05:6f:14:6e:f0:f5:8d:47:10:3d:b4:2f:cf:18:3b:7a: 78:1c:62:de:5a:9b:f9:15:21:e9:b3:0c:4d:c9:22:23:6c:38: 37:0e:76:74:21:81:96:8e:e9:3c:f1:05:3c:a9:a7:ed:a6:b9: 15:a7:59:82:2e:86:be:62:03:67:bc:2a:60:43:63:05:0c:54: a1:08:c4:15:b1:62:ea:fa:43:5a:0d:8b:e8:e7:a3:39:01:95: cd:d3:dc:cb:73:40:ae:cf:c1:6e:07:27:a3:fc:e8:75:fc:dd: fb:e3:59:07 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjUxMDE1MDkzMjMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmNmEzMC0zZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhUA3+LVTjEGrC9x25a0k7Po12fIQGU5R2by5eF6/zqyHHB8K0hcLQEEb/X4 HFi+BcO2JyF3gEtUGQJUvv5McDkaaFY7ldH46WNVDbjZ4CdDed2a7ZnzJ1H0+5eQ wIbO+PyGAM00kk+vmalru7tdz9r226tLeXYVTQoqi1gKDFHNZZZC2DAt5eVadZJP 5MEJZ4gsliipn7ct8GKMxaHaRpkf7GzIcxvBsiVe0c1UV4jBlo8eTQLk4W8P0ZwN 6woBwD390GsXaFyKNoj63NPZSU+MKVclCL/83nTU/2LwWORgG4Zmo70uiPKFMpx+ 91Lf23bZDNc/7JoeZJKY6fyoxwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGTi24WW Hbj305Of9ybvBk8Ezr4IMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNTIxQzhFNUM3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvNzQ3QzY2OEVD Q0Q5MTFFRjlCNTJDODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnl/gDBABn+xkDBAB0zpQDBAB0zpYDBADLE/MwDQYJKoZI hvcNAQELBQADggEBAAVjXEu7j0wWHSf/OB6QWKwMv3nzPYcxpF5CLw7GvtwCl1G6 XpPy3mAu2A6pLzIk876i5gluO/6MXXQckmo/bAPGk6IpI5d9RPB5CCF/McQnRR7h gC9JopFTXk5liIW1lRaLQ0+BRvlpi1aeAcbupopIwAD7j338AANKPbeX017MkMX4 RV0YCtYtvCyZZ/R97pBzBW8UbvD1jUcQPbQvzxg7engcYt5am/kVIemzDE3JIiNs ODcOdnQhgZaO6TzxBTypp+2muRWnWYIuhr5iA2e8KmBDYwUMVKEIxBWxYur6Q1oN i+jnozkBlc3T3MtzQK7PwW4HJ6P86HX83fvjWQc= -----END CERTIFICATE-----Generated at Wed Nov 5 14:35:43 2025 by rpki-client