$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa File: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (raw, json) Hash identifier: oF9pzHgXgFgT7pclB8+4buU+FpQCxpT9fP80ypai+xo= Subject key identifier: 3B:10:59:6C:BD:F2:56:29:7A:95:2B:5C:E6:AB:10:FA:9A:F4:47:E0 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 97 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa Signing time: Tue 09 Sep 2025 06:43:18 +0000 ROA not before: Tue 09 Sep 2025 06:43:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139020 IP address blocks: 103.138.152.0/23 maxlen: 23 2404:d0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Sep 9 06:43:18 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68bfcc86-b0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ac:65:53:6a:d0:e9:64:47:8d:af:28:ab:2b: b2:60:f5:d4:db:63:60:38:33:8e:e0:9f:4a:6e:ed: ea:2d:2c:43:8b:1f:89:b3:5a:79:c3:19:bf:d5:d5: d4:ef:03:88:e5:2d:25:8f:28:e9:7b:56:05:cb:5e: 4b:06:be:66:b8:db:41:7f:50:19:1c:4e:65:6b:62: c9:30:2f:df:16:53:96:df:a1:b1:d7:58:6a:f0:d7: 7b:18:0d:3b:a3:ee:7f:91:a4:a7:f3:5d:ba:41:16: f3:73:38:cc:92:ab:0d:68:3a:56:c7:aa:29:34:e4: 01:9f:03:b3:ef:c4:54:ca:f6:34:e3:30:fe:e0:f6: de:80:e6:ce:69:b1:2b:a4:eb:95:15:e1:e7:b6:62: 4e:fb:14:9a:7e:91:52:e8:78:f0:a8:50:a6:f2:c2: 62:41:cd:25:45:a1:ed:90:e3:7d:8b:fe:b3:94:0f: cb:08:57:ce:00:34:79:b1:ea:ed:75:e5:5b:b4:22: 43:7c:3d:c4:4c:25:0e:d1:7b:52:dd:5f:7a:36:f2: 56:6b:9d:f4:a2:3f:90:bc:97:18:ce:f7:07:e2:f6: 96:0d:77:f5:f6:a3:08:52:bb:ea:45:ca:04:38:b5: f2:27:67:37:20:03:a5:8b:64:c8:46:7d:de:cd:ab: 64:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:10:59:6C:BD:F2:56:29:7A:95:2B:5C:E6:AB:10:FA:9A:F4:47:E0 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.152.0/23 IPv6: 2404:d0c0::/32 Signature Algorithm: sha256WithRSAEncryption 9d:93:e4:ac:7d:91:c3:eb:d7:78:0d:39:62:34:37:6f:34:74: c9:56:a0:96:c8:e9:e2:7b:91:0e:eb:cd:7e:33:4b:9e:1a:1f: 82:e4:18:d0:81:bc:d2:4d:79:67:a1:b6:2b:8c:b5:c6:e9:d7: b0:c6:90:c1:91:f9:02:76:26:d0:dc:31:23:1e:47:5f:9b:da: 56:28:32:13:e7:92:71:c4:9a:2e:ee:0e:a5:4d:21:2f:87:54: 3a:ae:f5:48:45:60:fb:a5:d5:a6:5d:0f:16:09:30:7c:f1:53: 64:f4:dd:d3:cd:ea:e8:6e:7c:87:84:9e:97:0d:87:ba:8a:04: 46:cc:d8:ad:56:3a:47:77:9e:36:80:c1:07:02:b4:34:5e:02: e4:20:b2:32:75:3f:52:d8:10:0e:90:1b:81:94:1b:4e:53:04: 88:67:26:62:f3:52:4a:5d:8a:93:f1:90:7d:98:a0:2b:0b:15: 52:e6:9c:7b:21:ec:c5:5c:fa:80:40:7b:1f:78:b4:81:b8:b5: f3:e6:99:04:1a:db:3c:95:40:b3:44:e1:71:78:50:80:bf:dd: 22:b9:b5:25:37:75:f3:50:99:e0:2c:92:0e:0a:0d:0e:cc:16: 98:43:fd:76:65:9f:60:c5:2a:b2:63:d5:0e:34:7f:d6:ca:31: 79:95:27:17 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUwOTA5MDY0MzE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmY2M4Ni1iMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKxlU2rQ6WRHja8oqyuyYPXU22NgODOO4J9Kbu3qLSxDix+Js1p5wxm/1dXU 7wOI5S0ljyjpe1YFy15LBr5muNtBf1AZHE5la2LJMC/fFlOW36Gx11hq8Nd7GA07 o+5/kaSn8126QRbzczjMkqsNaDpWx6opNOQBnwOz78RUyvY04zD+4PbegObOabEr pOuVFeHntmJO+xSafpFS6HjwqFCm8sJiQc0lRaHtkON9i/6zlA/LCFfOADR5sert deVbtCJDfD3ETCUO0XtS3V96NvJWa530oj+QvJcYzvcH4vaWDXf19qMIUrvqRcoE OLXyJ2c3IAOli2TIRn3ezatkvQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDsQWWy9 8lYpepUrXOarEPqa9EfgMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZBQ0IvMjVEMTE4ODZCNDY1MTFFRjlCRkJBQTY3QzRGOUFFMDIvODFGQzE2QTZC NDY1MTFFRjg2QkVBQzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnipgwDQQCAAIwBwMFACQE0MAwDQYJKoZIhvcNAQELBQAD ggEBAJ2T5Kx9kcPr13gNOWI0N280dMlWoJbI6eJ7kQ7rzX4zS54aH4LkGNCBvNJN eWehtiuMtcbp17DGkMGR+QJ2JtDcMSMeR1+b2lYoMhPnknHEmi7uDqVNIS+HVDqu 9UhFYPul1aZdDxYJMHzxU2T03dPN6uhufIeEnpcNh7qKBEbM2K1WOkd3njaAwQcC tDReAuQgsjJ1P1LYEA6QG4GUG05TBIhnJmLzUkpdipPxkH2YoCsLFVLmnHsh7MVc +oBAex94tIG4tfPmmQQa2zyVQLNE4XF4UIC/3SK5tSU3dfNQmeAskg4KDQ7MFphD /XZln2DFKrJj1Q40f9bKMXmVJxc= -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:34 2025 by rpki-client