$ rpki-client -vvf rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa File: 800F1868BEB311EAAFE28B42C4F9AE02.roa (raw, json) Hash identifier: DJlPhIx4YqqClR2h+Oy9c2Nr2oIq6a7gz2KUzsszzP4= Subject key identifier: 73:76:E1:EC:C5:D1:83:18:E5:71:95:B7:81:25:7E:30:B7:E5:92:F2 Certificate issuer: /CN=A916683C/serialNumber=A6C5049DFFC264271F4A77A5AEEAE477D7EEEAF3 Certificate serial: 0A23 Authority key identifier: A6:C5:04:9D:FF:C2:64:27:1F:4A:77:A5:AE:EA:E4:77:D7:EE:EA:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa Signing time: Thu 02 Oct 2025 20:21:17 +0000 ROA not before: Thu 02 Oct 2025 20:21:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140583 IP address blocks: 103.152.0.0/24 maxlen: 24 103.157.17.0/24 maxlen: 24 2001:df3:7880::/48 maxlen: 48 2407:3dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.crl rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916683C, serialNumber=A6C5049DFFC264271F4A77A5AEEAE477D7EEEAF3 Validity Not Before: Oct 2 20:21:17 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68dedebd-7b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:ec:bb:3c:81:51:b1:79:91:87:34:3f:e1: 9e:91:1c:de:01:cf:7b:6c:d3:e6:86:e0:5d:ed:12: 3a:e4:f9:d8:02:1b:fd:71:4d:d9:64:83:92:f6:10: b8:b2:31:a9:18:71:71:65:38:fd:b1:a5:6d:4a:fa: b5:d6:cd:7e:fc:6d:3e:fb:9b:7f:14:73:1f:44:38: 04:1a:5d:ae:d2:07:f1:91:08:ba:71:88:17:9a:d6: 5d:c1:ef:55:28:ec:ff:3d:90:aa:e0:68:85:05:99: 4e:8a:e5:bc:e7:62:f8:b7:0d:ce:25:14:a7:07:d1: 24:fb:4b:47:dc:07:cb:55:26:ee:7d:de:cf:90:2c: e6:56:d1:d4:b1:9f:21:9e:d3:e0:67:e0:c4:48:71: f5:17:57:e9:f2:51:4b:4c:7c:91:df:6d:bb:cd:c0: d3:26:57:8f:64:88:11:b9:46:f6:63:0b:58:53:e7: 66:b4:fc:9e:c9:21:d8:f9:95:41:78:e4:80:b8:d4: c1:0a:11:90:5e:65:98:97:9e:e9:5e:9f:7c:56:e0: b6:b4:5a:51:ec:16:f4:88:b3:5c:ba:11:78:63:3d: 12:b3:ce:f4:42:11:04:49:ca:a8:6d:20:48:12:d0: 55:41:39:ec:aa:07:01:b4:ab:e0:45:7f:1c:75:b7: ec:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:76:E1:EC:C5:D1:83:18:E5:71:95:B7:81:25:7E:30:B7:E5:92:F2 X509v3 Authority Key Identifier: keyid:A6:C5:04:9D:FF:C2:64:27:1F:4A:77:A5:AE:EA:E4:77:D7:EE:EA:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.0.0/24 103.157.17.0/24 IPv6: 2001:df3:7880::/48 2407:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 54:0d:f4:d5:e3:24:23:ce:a6:8b:4f:54:6c:d5:1f:d9:ff:a5: d6:a8:78:8d:f3:2c:21:3c:70:fc:63:ff:57:21:4a:83:f6:02: 94:57:37:6b:9d:44:31:87:a0:c0:37:15:c5:93:da:c2:dc:18: 6f:78:42:af:09:d5:0f:b8:f6:2f:b3:f7:33:41:6f:f0:d7:b0: b6:63:9f:23:46:df:cb:65:ca:ec:15:ba:db:52:b0:9d:eb:8b: 1c:c0:07:58:b3:cc:70:06:43:4a:88:2e:f3:42:53:e9:ea:e3: e6:97:7c:9f:38:1c:fc:a3:23:65:b6:2a:cc:ad:f6:b0:1f:b6: 6f:45:1e:a5:8e:bd:1e:73:5d:66:29:86:09:c8:56:fb:a8:d9: a0:58:1b:8d:16:9d:7d:92:42:bf:73:70:32:a7:37:05:75:3e: f1:da:d1:d4:23:d2:ac:cb:78:78:c6:e0:69:2d:9d:dd:f0:7c: 60:53:dd:f2:6c:7b:33:1e:33:86:80:42:cc:4a:ce:78:5a:7f: 5e:0c:f6:4e:2c:30:85:3e:96:27:7c:34:19:98:03:68:4f:49: 3b:19:2d:87:9e:2d:d0:4a:12:4b:8a:a7:d4:0f:aa:b8:f1:48: fb:e5:a1:53:6a:cd:b3:b4:78:5f:a7:43:ef:ef:0d:d0:60:d4: f0:a1:91:c9 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY4M0MxMTAvBgNVBAUTKEE2QzUwNDlERkZDMjY0MjcxRjRBNzdBNUFFRUFFNDc3 RDdFRUVBRjMwHhcNMjUxMDAyMjAyMTE3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlZGViZC03YjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxzsuzyBUbF5kYc0P+GekRzeAc97bNPmhuBd7RI65PnYAhv9cU3ZZIOS9hC4 sjGpGHFxZTj9saVtSvq11s1+/G0++5t/FHMfRDgEGl2u0gfxkQi6cYgXmtZdwe9V KOz/PZCq4GiFBZlOiuW852L4tw3OJRSnB9Ek+0tH3AfLVSbufd7PkCzmVtHUsZ8h ntPgZ+DESHH1F1fp8lFLTHyR3227zcDTJlePZIgRuUb2YwtYU+dmtPyeySHY+ZVB eOSAuNTBChGQXmWYl57pXp98VuC2tFpR7Bb0iLNcuhF4Yz0Ss870QhEEScqobSBI EtBVQTnsqgcBtKvgRX8cdbfs9QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHN24ezF 0YMY5XGVt4ElfjC35ZLyMB8GA1UdIwQYMBaAFKbFBJ3/wmQnH0p3pa7q5HfX7urz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjgzQy9FMEI1ODAyRTgw N0IxMUVBODI0NDYxMjVDNEY5QUUwMi9wc1VFbmZfQ1pDY2ZTbmVscnVya2Q5ZnU2 dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzVUVuZl9DWkNjZlNuZWxydXJrZDlmdTZ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY4M0MvRTBCNTgwMkU4MDdCMTFFQTgyNDQ2MTI1QzRGOUFFMDIvODAwRjE4NjhC RUIzMTFFQUFGRTI4QjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBABnmAADBABnnREwFgQCAAIwEAMHACABDfN4gAMFACQHPcAw DQYJKoZIhvcNAQELBQADggEBAFQN9NXjJCPOpotPVGzVH9n/pdaoeI3zLCE8cPxj /1chSoP2ApRXN2udRDGHoMA3FcWT2sLcGG94Qq8J1Q+49i+z9zNBb/DXsLZjnyNG 38tlyuwVuttSsJ3rixzAB1izzHAGQ0qILvNCU+nq4+aXfJ84HPyjI2W2Ksyt9rAf tm9FHqWOvR5zXWYphgnIVvuo2aBYG40WnX2SQr9zcDKnNwV1PvHa0dQj0qzLeHjG 4Gktnd3wfGBT3fJsezMeM4aAQsxKznhaf14M9k4sMIU+lid8NBmYA2hPSTsZLYee LdBKEkuKp9QPqrjxSPvloVNqzbO0eF+nQ+/vDdBg1PChkck= -----END CERTIFICATE-----Generated at Wed Nov 5 05:29:24 2025 by rpki-client