$ rpki-client -vvf rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa File: 203ADB5E412E11F097D29A20C4F9AE02.roa (raw, json) Hash identifier: uJaHPmu5b/LTwhSQC3Yb+mo7Y9maBsfJr86vHvf1sw8= Subject key identifier: 87:8D:E8:18:AC:5C:71:90:54:0D:DF:63:4B:8C:CB:80:62:B5:40:EE Certificate issuer: /CN=A916E501/serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Certificate serial: 078C Authority key identifier: 43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa Signing time: Tue 28 Oct 2025 21:40:58 +0000 ROA not before: Tue 28 Oct 2025 21:40:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137934 IP address blocks: 103.159.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1932 (0x78c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E501, serialNumber=43B39C8FA3346D6319EA49BC5A067EEFE0D3446D Validity Not Before: Oct 28 21:40:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6901386a-4c83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:50:7b:83:d1:f4:3b:90:8b:02:b8:2b:b0:87: 9d:c5:b1:da:c6:22:50:97:7e:fe:83:9e:2d:bb:33: 1d:d7:27:17:63:52:c0:4a:7f:fa:0d:79:1f:59:81: 5b:ee:42:af:89:b9:14:4e:3a:f8:10:17:28:f9:81: e7:9a:72:14:4c:b4:4d:22:6d:c7:33:95:60:53:7c: 30:b0:c3:db:64:9c:2c:62:6d:aa:e0:83:79:be:fb: b8:b3:98:a0:90:4b:2c:12:65:56:f7:60:df:a1:1f: 31:3d:e5:5d:c1:ec:19:10:69:19:69:3b:be:a4:2a: 6c:af:6f:44:2f:55:51:e4:c5:7d:24:7d:8d:f1:8f: d6:78:70:a5:52:8f:03:f1:44:39:19:1f:44:af:83: 88:61:c5:2a:13:cc:37:48:1f:fd:3d:de:64:7b:9d: 91:cf:f3:c8:fb:10:fb:08:4f:f7:15:e6:42:52:1a: 7c:98:23:36:e3:4c:2e:32:8b:5e:b9:7b:bb:df:a2: 1c:04:52:63:f7:03:b8:bd:9a:e0:8d:5a:3e:49:86: 57:6d:f6:d6:ab:28:0b:0b:c3:81:54:f6:d7:d7:51: 7d:6a:f1:0a:02:3d:10:63:c1:b4:89:d7:d3:d2:0d: eb:ef:6a:4f:82:47:98:85:89:26:67:17:14:13:d5: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8D:E8:18:AC:5C:71:90:54:0D:DF:63:4B:8C:CB:80:62:B5:40:EE X509v3 Authority Key Identifier: keyid:43:B3:9C:8F:A3:34:6D:63:19:EA:49:BC:5A:06:7E:EF:E0:D3:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q7Ocj6M0bWMZ6km8WgZ-7-DTRG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E501/2B2D88042FB311EBB58A463DC4F9AE02/203ADB5E412E11F097D29A20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.1.0/24 Signature Algorithm: sha256WithRSAEncryption b4:4c:1b:19:02:52:b0:83:7e:38:49:1c:b7:24:24:f5:a1:6d: b7:1f:76:b6:7d:f3:35:d3:5d:bf:c9:9e:b0:a7:d0:05:7f:77: ef:dc:44:8f:4f:81:a1:33:da:0c:a6:c0:a9:54:45:f9:7b:b7: c6:f1:25:71:39:70:7f:12:4a:65:ec:27:94:82:47:60:24:2b: 08:e4:d1:cd:c7:65:48:1a:42:c6:6a:6c:48:ad:36:17:ae:a2: 1c:84:0c:47:b2:88:b6:69:c8:b8:c2:2e:a5:09:43:81:ce:64: 95:d0:93:3f:90:13:1b:35:1f:7d:8f:3e:cb:fd:c8:a2:88:90: 8b:5f:9a:2c:94:f7:7b:26:fa:f4:6b:7d:00:5e:00:7a:90:f0: ba:23:15:4e:7f:4c:b1:6e:2b:18:7c:46:b1:ed:eb:c5:70:b0: b9:44:61:52:58:69:61:af:ac:17:1e:ba:7d:d9:f0:fc:3e:ce: c1:67:04:5e:4b:da:77:42:ea:3f:fb:65:a5:e1:3d:30:fd:8d: f4:6e:28:5c:2f:c4:9e:c8:ef:ae:c6:35:84:7e:fb:da:34:d4: 5f:72:ed:5f:2c:ad:5c:d1:75:04:3c:b8:0b:a4:cb:c1:3a:d1: 61:b5:4c:5e:07:c9:74:48:c9:f0:86:91:a5:8f:57:50:28:2c: 30:df:9a:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1MDExMTAvBgNVBAUTKDQzQjM5QzhGQTMzNDZENjMxOUVBNDlCQzVBMDY3RUVG RTBEMzQ0NkQwHhcNMjUxMDI4MjE0MDU4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxMzg2YS00YzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlB7g9H0O5CLArgrsIedxbHaxiJQl37+g54tuzMd1ycXY1LASn/6DXkfWYFb 7kKvibkUTjr4EBco+YHnmnIUTLRNIm3HM5VgU3wwsMPbZJwsYm2q4IN5vvu4s5ig kEssEmVW92DfoR8xPeVdwewZEGkZaTu+pCpsr29EL1VR5MV9JH2N8Y/WeHClUo8D 8UQ5GR9Er4OIYcUqE8w3SB/9Pd5ke52Rz/PI+xD7CE/3FeZCUhp8mCM240wuMote uXu736IcBFJj9wO4vZrgjVo+SYZXbfbWqygLC8OBVPbX11F9avEKAj0QY8G0idfT 0g3r72pPgkeYhYkmZxcUE9XENQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIeN6Bis XHGQVA3fY0uMy4BitUDuMB8GA1UdIwQYMBaAFEOznI+jNG1jGepJvFoGfu/g00Rt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTUwMS8yQjJEODgwNDJG QjMxMUVCQjU4QTQ2M0RDNEY5QUUwMi9RN09jajZNMGJXTVo2a204V2daLTctRFRS RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E3T2NqNk0wYldNWjZrbThXZ1otNy1EVFJHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkU1MDEvMkIyRDg4MDQyRkIzMTFFQkI1OEE0NjNEQzRGOUFFMDIvMjAzQURCNUU0 MTJFMTFGMDk3RDI5QTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnwEwDQYJKoZIhvcNAQELBQADggEBALRMGxkCUrCDfjhJ HLckJPWhbbcfdrZ98zXTXb/JnrCn0AV/d+/cRI9PgaEz2gymwKlURfl7t8bxJXE5 cH8SSmXsJ5SCR2AkKwjk0c3HZUgaQsZqbEitNheuohyEDEeyiLZpyLjCLqUJQ4HO ZJXQkz+QExs1H32PPsv9yKKIkItfmiyU93sm+vRrfQBeAHqQ8LojFU5/TLFuKxh8 RrHt68VwsLlEYVJYaWGvrBceun3Z8Pw+zsFnBF5L2ndC6j/7ZaXhPTD9jfRuKFwv xJ7I767GNYR++9o01F9y7V8srVzRdQQ8uAuky8E60WG1TF4HyXRIyfCGkaWPV1Ao LDDfmik= -----END CERTIFICATE-----Generated at Wed Nov 5 05:58:25 2025 by rpki-client