$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa File: 03476D523FB011F097B5F864C4F9AE02.roa (raw, json) Hash identifier: nR7G1WKVHgoejOczmztbNWOPg/UYf5k0nHYsKAHUYQo= Subject key identifier: D9:EC:6D:5E:5F:5A:78:E5:FA:0D:41:7C:74:77:B4:73:A3:1C:18:53 Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 08A2 Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa Signing time: Sat 04 Oct 2025 20:51:33 +0000 ROA not before: Sat 04 Oct 2025 20:51:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153933 IP address blocks: 103.72.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF, serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Validity Not Before: Oct 4 20:51:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e188d5-f630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e2:43:11:f1:8f:0d:14:15:14:59:22:3d:0a: e6:75:c0:8e:43:60:3f:25:3c:a5:a2:02:48:f1:b3: 36:07:8f:b5:26:99:84:4c:26:bc:36:49:c7:b1:2c: b1:32:5a:59:33:79:13:e0:3e:30:4f:5d:08:88:8d: fa:71:bc:80:ab:c7:d3:df:a7:98:34:ca:c6:03:31: bb:72:87:ea:94:77:60:c2:74:c8:25:d4:ad:dc:ea: 98:ea:7d:b1:93:0e:98:9b:f5:1e:ea:ec:db:46:7d: 95:64:c0:a5:a7:71:03:a3:97:1e:66:36:19:93:21: 09:08:d8:fc:a1:c1:36:d3:6d:86:fa:e9:be:72:3c: bc:a1:e0:ae:18:cd:d2:3b:ca:f4:62:6f:c0:87:e0: 06:70:ab:50:a4:39:a9:d5:fe:82:65:b8:d9:ca:be: 11:b1:df:a4:75:27:94:a9:fc:bd:ac:bb:02:e8:ef: 0f:ed:16:51:11:ab:d1:b9:74:07:6e:92:b7:c5:ad: 97:fc:99:61:f6:2d:32:bb:8d:93:4c:81:f8:41:92: dd:41:ae:3b:b0:ab:e8:0f:ca:fc:bf:e9:de:e4:03: 23:8d:f3:71:22:59:44:9f:74:bc:d7:d5:95:de:a3: c2:04:8d:d8:5b:d7:cf:5c:31:de:d9:6c:35:e6:b5: c7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EC:6D:5E:5F:5A:78:E5:FA:0D:41:7C:74:77:B4:73:A3:1C:18:53 X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/03476D523FB011F097B5F864C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.100.0/24 Signature Algorithm: sha256WithRSAEncryption ac:32:17:b4:41:f7:3d:d1:3a:00:e4:71:ce:1a:90:31:c1:d3: 85:75:a2:8f:e9:02:f5:8d:8b:24:71:68:7c:b6:15:0f:f2:5c: 63:a2:9e:5d:b4:60:aa:5e:77:d0:1e:19:17:7d:ff:d4:2d:6a: 87:e3:a2:47:4a:92:c6:91:ef:f9:c6:d4:9c:79:e9:8c:95:9d: b6:e1:9f:90:c5:e9:eb:f1:a7:af:1a:6b:12:81:0a:dd:aa:18: 38:8d:b8:32:29:f5:cc:80:7c:1e:c0:bc:fd:f3:14:22:1e:73: 74:b3:33:9d:f9:ee:22:65:d6:fb:b2:2e:98:b3:2d:8b:c6:01: ab:70:ca:70:98:d5:91:c7:0d:48:95:e7:d1:ee:d9:72:e2:82: d0:e4:1b:59:45:d3:85:5f:12:1d:9d:b0:25:cd:97:59:5a:ef: 47:13:b8:20:e6:c3:a8:3c:a5:12:c9:c7:e9:9f:4e:f0:40:db: 7b:c5:79:ef:a3:89:f9:09:40:1e:2b:f8:c1:5e:17:a6:b8:52: 84:b8:dc:c4:95:65:79:77:74:4c:33:54:d9:9a:f5:78:61:44: b2:cb:ee:16:57:7c:bc:cb:6b:a3:9f:de:13:ed:00:ac:e8:34: 4e:73:a4:e5:07:0d:c8:7a:b9:bc:dc:4f:86:6b:43:95:e2:74: 27:da:44:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjUxMDA0MjA1MTMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxODhkNS1mNjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eJDEfGPDRQVFFkiPQrmdcCOQ2A/JTylogJI8bM2B4+1JpmETCa8NknHsSyx MlpZM3kT4D4wT10IiI36cbyAq8fT36eYNMrGAzG7cofqlHdgwnTIJdSt3OqY6n2x kw6Ym/Ue6uzbRn2VZMClp3EDo5ceZjYZkyEJCNj8ocE2022G+um+cjy8oeCuGM3S O8r0Ym/Ah+AGcKtQpDmp1f6CZbjZyr4Rsd+kdSeUqfy9rLsC6O8P7RZREavRuXQH bpK3xa2X/Jlh9i0yu42TTIH4QZLdQa47sKvoD8r8v+ne5AMjjfNxIllEn3S819WV 3qPCBI3YW9fPXDHe2Ww15rXHMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNnsbV5f Wnjl+g1BfHR3tHOjHBhTMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvMDM0NzZENTIz RkIwMTFGMDk3QjVGODY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSGQwDQYJKoZIhvcNAQELBQADggEBAKwyF7RB9z3ROgDk cc4akDHB04V1oo/pAvWNiyRxaHy2FQ/yXGOinl20YKped9AeGRd9/9QtaofjokdK ksaR7/nG1Jx56YyVnbbhn5DF6evxp68aaxKBCt2qGDiNuDIp9cyAfB7AvP3zFCIe c3SzM5357iJl1vuyLpizLYvGAatwynCY1ZHHDUiV59Hu2XLigtDkG1lF04VfEh2d sCXNl1la70cTuCDmw6g8pRLJx+mfTvBA23vFee+jifkJQB4r+MFeF6a4UoS43MSV ZXl3dEwzVNma9XhhRLLL7hZXfLzLa6Of3hPtAKzoNE5zpOUHDch6ubzcT4ZrQ5Xi dCfaRI4= -----END CERTIFICATE-----Generated at Wed Nov 5 11:34:00 2025 by rpki-client