$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa File: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (raw, json) Hash identifier: 0VizvwlSvt2Typg26qLoIMnU5PdKIxjIiPdXQB++0ps= Subject key identifier: 47:0C:B6:17:F4:8B:94:A6:15:8E:B7:96:C1:9A:10:D0:BF:B8:61:C9 Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 013C Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa Signing time: Thu 03 Apr 2025 04:01:31 +0000 ROA not before: Thu 03 Apr 2025 04:01:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24459 IP address blocks: 103.248.176.0/24 maxlen: 24 103.248.177.0/24 maxlen: 24 103.248.178.0/24 maxlen: 24 202.37.129.0/24 maxlen: 24 2406:fd00:100::/40 maxlen: 40 2406:fd00:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Apr 3 04:01:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ee081b-ae4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ed:d8:51:c9:71:0e:c5:5e:83:cc:8e:8c:6d: 7b:4c:b0:37:49:df:7e:d8:e6:4b:91:9a:3f:66:36: 17:1e:81:3b:e7:33:8d:57:87:70:b1:4b:f7:5c:2a: 06:02:1b:cd:9b:03:ba:8f:6e:5f:3e:da:4b:e8:7e: a9:15:f7:d8:1e:b0:d2:1c:35:70:64:64:a4:7a:bf: 1a:9c:53:13:1c:05:ef:03:7d:1f:a7:c6:39:cc:ab: e3:02:89:18:33:9d:c1:78:92:f9:ff:db:10:97:c6: c1:3a:a3:e1:a9:e6:0e:a2:b2:da:b5:47:60:3c:d1: af:f1:97:1f:18:42:c8:a7:4c:eb:90:78:34:7d:d2: 57:67:1f:5d:2c:e6:a1:69:99:7f:95:44:76:cc:1f: 15:7a:32:d7:07:35:e9:8b:77:59:16:55:c4:06:fb: a1:a1:51:83:bb:b5:ab:8a:da:76:74:2f:5f:54:ca: 39:c2:9b:b8:25:2a:a5:bc:b7:e3:b8:4c:4f:e8:84: 55:62:3b:d2:46:69:e8:48:3f:50:b4:33:93:3b:28: e3:20:f5:b5:46:01:93:27:0e:8d:ef:09:dc:84:e0: 3d:94:5e:94:50:a9:0a:97:10:4c:d2:8a:1b:ff:31: 7f:a7:74:a9:60:fa:de:ac:1b:cf:e3:4b:16:91:eb: 1d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0C:B6:17:F4:8B:94:A6:15:8E:B7:96:C1:9A:10:D0:BF:B8:61:C9 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.176.0-103.248.178.255 202.37.129.0/24 IPv6: 2406:fd00:100::/40 2406:fd00:800::/40 Signature Algorithm: sha256WithRSAEncryption cb:b9:40:69:7d:d9:d9:93:c3:ab:ed:53:69:63:11:8d:9e:a7: a3:d3:a2:b8:3c:e8:b2:bc:bc:36:df:f0:ba:97:be:0a:08:4e: 6f:d3:ea:41:2b:36:6a:e9:f0:fb:8d:cf:ac:f4:99:da:d5:71: d1:b2:a6:84:56:d3:b1:2c:db:2d:82:14:6d:93:3c:44:49:5e: 97:14:8f:5d:6a:75:89:02:71:8f:03:b8:1c:3b:57:d0:fc:5b: 40:9f:c2:0b:53:a3:8a:26:95:82:8c:fa:37:9c:0f:ad:07:f5: 46:6a:84:9e:d2:52:0b:a5:8e:b2:72:74:52:57:de:97:1c:4e: d0:ba:61:ef:69:fd:73:c6:ce:ea:eb:2e:1c:c4:40:a2:78:8d: 58:71:c6:14:2a:bb:9d:ec:ea:17:16:51:83:9d:d8:1d:9f:73: a0:54:1a:d6:c9:33:03:98:67:52:c9:f7:f9:d9:fd:20:5e:24: 2e:f3:16:a1:25:1e:2e:64:90:60:19:2c:e0:ab:a9:ba:2a:29: b3:3a:4b:77:0e:38:22:06:b8:86:a7:b0:9d:e0:3d:80:d2:45: df:a1:14:ce:eb:c6:c0:2c:db:b0:30:57:de:cf:d2:84:0f:29: 24:c0:1c:30:f6:c9:89:bb:55:ef:3f:2d:ed:ba:b6:e1:36:49: 5e:23:d2:5b -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUwNDAzMDQwMTMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMDgxYi1hZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu3YUclxDsVeg8yOjG17TLA3Sd9+2OZLkZo/ZjYXHoE75zONV4dwsUv3XCoG AhvNmwO6j25fPtpL6H6pFffYHrDSHDVwZGSker8anFMTHAXvA30fp8Y5zKvjAokY M53BeJL5/9sQl8bBOqPhqeYOorLatUdgPNGv8ZcfGELIp0zrkHg0fdJXZx9dLOah aZl/lUR2zB8VejLXBzXpi3dZFlXEBvuhoVGDu7Writp2dC9fVMo5wpu4JSqlvLfj uExP6IRVYjvSRmnoSD9QtDOTOyjjIPW1RgGTJw6N7wnchOA9lF6UUKkKlxBM0oob /zF/p3SpYPrerBvP40sWkesdXQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFEcMthf0 i5SmFY63lsGaENC/uGHJMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2MjMvQTI1RDQ4OUU1MDQ3MTFFRUI2NzczNjVEQzRGOUFFMDIvQzEyQUNFNkFD MTdFMTFFRTk1RDY4MjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBoEAgABMBQwDAMEBGf4sAMEAGf4sgMEAMolgTAWBAIAAjAQAwYAJAb9AAED BgAkBv0ACDANBgkqhkiG9w0BAQsFAAOCAQEAy7lAaX3Z2ZPDq+1TaWMRjZ6no9Oi uDzosry8Nt/wupe+CghOb9PqQSs2aunw+43PrPSZ2tVx0bKmhFbTsSzbLYIUbZM8 RElelxSPXWp1iQJxjwO4HDtX0PxbQJ/CC1OjiiaVgoz6N5wPrQf1RmqEntJSC6WO snJ0UlfelxxO0Lph72n9c8bO6usuHMRAoniNWHHGFCq7nezqFxZRg53YHZ9zoFQa 1skzA5hnUsn3+dn9IF4kLvMWoSUeLmSQYBks4KupuiopszpLdw44Iga4hqewneA9 gNJF36EUzuvGwCzbsDBX3s/ShA8pJMAcMPbJibtV7z8t7bq24TZJXiPSWw== -----END CERTIFICATE-----Generated at Tue Nov 4 16:38:12 2025 by rpki-client