$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/B4F0A9F800A011E8B6C9E20AC4F9AE02.roa File: B4F0A9F800A011E8B6C9E20AC4F9AE02.roa (raw, json) Hash identifier: nE2SMAFaQ2lno0OXjrXqdk80Cil1YlPktKv0bTOPaBc= Subject key identifier: 70:63:DB:30:76:D2:21:98:F2:FE:76:FE:3B:84:59:EA:19:2C:64:97 Certificate issuer: /CN=A916EF76/serialNumber=7B3589D7D8DA6BDDE60F398E7E52BA85E5AE3357 Certificate serial: 178B Authority key identifier: 7B:35:89:D7:D8:DA:6B:DD:E6:0F:39:8E:7E:52:BA:85:E5:AE:33:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ezWJ19jaa93mDzmOflK6heWuM1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/B4F0A9F800A011E8B6C9E20AC4F9AE02.roa Signing time: Thu 24 Oct 2024 16:56:06 +0000 ROA not before: Thu 24 Oct 2024 16:56:06 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14907 IP address blocks: 103.102.166.0/24 maxlen: 24 2001:df2:e500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/ezWJ19jaa93mDzmOflK6heWuM1c.crl rsync://rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/ezWJ19jaa93mDzmOflK6heWuM1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ezWJ19jaa93mDzmOflK6heWuM1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6027 (0x178b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF76, serialNumber=7B3589D7D8DA6BDDE60F398E7E52BA85E5AE3357 Validity Not Before: Oct 24 16:56:06 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a7c25-2349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e4:01:80:0e:1a:12:16:25:9e:d2:c3:17:2a: f8:68:d0:32:f7:ab:a1:50:9d:70:a8:12:bf:67:ec: df:44:1f:eb:61:5d:c3:29:34:5b:af:03:2f:43:e9: 13:cf:e2:4c:25:20:9a:f6:b3:53:2f:ca:93:34:14: d0:b3:41:2e:02:47:fb:99:d4:28:09:f8:43:ce:f5: d6:f9:ef:26:e5:cb:73:cf:34:2d:16:7c:6e:e2:84: d9:dc:e8:bb:d1:00:d8:cf:a3:81:f7:b2:8c:70:1b: 88:20:f2:94:2b:f0:89:2b:fc:ef:ca:6f:eb:65:86: e6:14:e3:5c:42:45:12:2a:3f:54:7f:c2:3b:87:31: 21:86:c4:2a:b2:c0:4a:cd:b2:ea:19:55:94:24:19: 36:73:58:f0:2c:dc:9e:05:92:e4:ef:87:5d:f9:ea: 16:e3:70:09:c7:18:24:ee:25:84:44:45:2c:71:90: 2c:0f:25:ce:ae:d5:ec:8a:a9:f1:0e:39:2c:83:a3: dd:23:72:f9:2b:a1:54:65:c3:f9:81:cd:a9:4e:72: bc:ca:df:6b:8c:9d:06:ee:b6:10:0b:de:d7:6e:a4: f2:13:72:f5:70:38:48:38:3f:29:11:82:16:df:08: 30:0e:e3:c0:10:6c:36:07:a1:97:03:15:ca:7b:b8: a0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:63:DB:30:76:D2:21:98:F2:FE:76:FE:3B:84:59:EA:19:2C:64:97 X509v3 Authority Key Identifier: keyid:7B:35:89:D7:D8:DA:6B:DD:E6:0F:39:8E:7E:52:BA:85:E5:AE:33:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/ezWJ19jaa93mDzmOflK6heWuM1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ezWJ19jaa93mDzmOflK6heWuM1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF76/29BE58F0B8CD11E79E431861C4F9AE02/B4F0A9F800A011E8B6C9E20AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.166.0/24 IPv6: 2001:df2:e500::/48 Signature Algorithm: sha256WithRSAEncryption 79:cf:f8:0d:44:5f:e9:80:27:67:e2:0e:e7:0d:4b:78:1d:d3: 8e:c7:1c:b2:53:74:c6:52:2a:58:c5:98:c0:43:47:82:1f:e5: d7:fa:50:e3:9e:cd:c4:d7:97:25:ae:38:67:6c:e6:fe:af:9e: 90:1f:a4:b6:ab:dd:61:a0:df:e4:f2:c8:cf:c8:72:2f:6a:ae: 28:33:f8:4e:51:f6:74:9e:b2:b0:74:44:28:07:52:cf:fa:74: 7e:4c:ce:65:0a:6a:00:37:58:2a:48:a1:8d:65:4c:a3:4e:b0: 4f:00:3e:26:9a:aa:c9:c9:f0:38:fc:bd:65:14:4d:0a:fb:07: 32:21:65:7e:b5:fb:d4:f6:77:1f:cc:e2:27:bc:ee:f6:bf:bd: 1a:9e:90:22:1a:c8:c8:09:a8:6a:8e:22:08:3b:77:97:4e:87: bf:6c:af:c0:45:d3:20:09:cb:9c:ea:61:b4:77:7b:95:c7:51: a1:f5:50:26:c5:a4:b0:6d:fc:83:16:21:df:72:05:da:b1:52: c7:d4:c6:03:ae:0f:1e:4c:76:03:47:16:38:90:c6:e4:bb:ce: e6:fc:d7:a2:01:66:1d:3e:e5:17:2a:c9:f1:17:7e:2a:01:60: a4:da:a3:2c:86:ef:6e:0e:2f:7a:07:51:67:cb:29:05:96:d6: 0c:8e:4c:b9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICF4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNzYxMTAvBgNVBAUTKDdCMzU4OUQ3RDhEQTZCRERFNjBGMzk4RTdFNTJCQTg1 RTVBRTMzNTcwHhcNMjQxMDI0MTY1NjA2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhN2MyNS0yMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OQBgA4aEhYlntLDFyr4aNAy96uhUJ1wqBK/Z+zfRB/rYV3DKTRbrwMvQ+kT z+JMJSCa9rNTL8qTNBTQs0EuAkf7mdQoCfhDzvXW+e8m5ctzzzQtFnxu4oTZ3Oi7 0QDYz6OB97KMcBuIIPKUK/CJK/zvym/rZYbmFONcQkUSKj9Uf8I7hzEhhsQqssBK zbLqGVWUJBk2c1jwLNyeBZLk74dd+eoW43AJxxgk7iWEREUscZAsDyXOrtXsiqnx Djksg6PdI3L5K6FUZcP5gc2pTnK8yt9rjJ0G7rYQC97XbqTyE3L1cDhIOD8pEYIW 3wgwDuPAEGw2B6GXAxXKe7igYwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHBj2zB2 0iGY8v52/juEWeoZLGSXMB8GA1UdIwQYMBaAFHs1idfY2mvd5g85jn5SuoXlrjNX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY3Ni8yOUJFNThGMEI4 Q0QxMUU3OUU0MzE4NjFDNEY5QUUwMi9leldKMTlqYWE5M21Eem1PZmxLNmhlV3VN MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6V0oxOWphYTkzbUR6bU9mbEs2aGVXdU0xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVGNzYvMjlCRTU4RjBCOENEMTFFNzlFNDMxODYxQzRGOUFFMDIvQjRGMEE5Rjgw MEEwMTFFOEI2QzlFMjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZqYwDwQCAAIwCQMHACABDfLlADANBgkqhkiG9w0BAQsF AAOCAQEAec/4DURf6YAnZ+IO5w1LeB3TjsccslN0xlIqWMWYwENHgh/l1/pQ457N xNeXJa44Z2zm/q+ekB+ktqvdYaDf5PLIz8hyL2quKDP4TlH2dJ6ysHREKAdSz/p0 fkzOZQpqADdYKkihjWVMo06wTwA+JpqqycnwOPy9ZRRNCvsHMiFlfrX71PZ3H8zi J7zu9r+9Gp6QIhrIyAmoao4iCDt3l06Hv2yvwEXTIAnLnOphtHd7lcdRofVQJsWk sG38gxYh33IF2rFSx9TGA64PHkx2A0cWOJDG5LvO5vzXogFmHT7lFyrJ8Rd+KgFg pNqjLIbvbg4vegdRZ8spBZbWDI5MuQ== -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:42 2025 by rpki-client