$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa File: 9AA539E6A82411EA996D5F41C4F9AE02.roa (raw, json) Hash identifier: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ= Subject key identifier: 2B:30:79:55:BD:7B:03:F3:96:E9:04:5F:87:F1:12:E5:E4:28:B0:6C Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 08E0 Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa Signing time: Sat 22 Mar 2025 20:40:32 +0000 ROA not before: Sat 22 Mar 2025 20:40:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140552 IP address blocks: 103.150.78.0/23 maxlen: 23 103.150.78.0/24 maxlen: 24 103.150.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Mar 22 20:40:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67df2040-bf85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2a:90:7d:95:eb:7c:c1:b2:43:2f:10:7f:97: 18:e1:4f:1c:b6:d5:49:41:e2:63:bd:f7:38:e9:e1: f6:ba:55:a7:25:fc:09:fd:bd:86:56:5b:62:23:d4: 90:1c:53:0c:b3:d9:d1:b1:55:ab:cf:32:76:45:5e: 58:c1:9e:7f:31:e2:f7:de:c1:0d:ca:d6:ce:1b:5b: 74:ea:f6:e7:85:8b:f0:29:5f:42:2d:32:d0:5d:6e: 28:29:0b:99:43:5d:b0:e6:fe:9c:4e:e7:99:89:00: d3:48:dc:a8:91:dc:17:35:1d:00:66:1c:89:51:37: 8d:07:c4:92:6f:fc:88:c4:ac:93:3c:3b:87:8e:b6: 37:04:8c:cf:29:6e:bc:a3:dc:69:fd:39:bb:15:dd: 55:ab:71:56:73:d1:df:cd:df:a3:1d:00:aa:9e:30: 90:ac:9a:73:99:57:52:58:de:97:ae:6c:6b:18:be: bf:a3:dc:38:09:1e:98:6b:f0:e4:22:2b:1d:87:56: 64:ab:49:fd:59:1a:ae:d9:b8:3e:45:e1:7f:0d:1f: 59:ab:9b:eb:16:b5:10:36:81:56:b9:14:f9:85:d6: 41:6d:43:6b:8c:16:82:2f:ea:aa:d9:21:6e:32:3c: 94:da:30:77:08:5c:fe:2a:84:cb:6f:7e:d9:e0:66: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:30:79:55:BD:7B:03:F3:96:E9:04:5F:87:F1:12:E5:E4:28:B0:6C X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.78.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:d3:66:fa:33:84:dd:ae:38:1b:07:10:db:26:dd:2b:a5:51: 48:dc:60:60:26:c6:54:5a:fa:c6:ae:d7:b9:29:4e:aa:5f:9b: 6d:92:21:22:66:73:6e:62:0d:b7:47:42:3c:ab:b1:e6:d4:37: 6a:52:b5:4d:ca:ee:b6:1e:33:97:10:5d:73:b2:28:c2:fa:13: c2:d6:00:ed:f2:65:54:8d:c4:71:df:34:63:b1:ef:9e:f9:2a: 63:ee:18:cb:4f:cd:11:82:d8:71:cf:29:4d:54:ce:12:67:36: 48:ca:e1:b6:01:c4:f6:83:2e:25:70:4b:43:3e:c8:e7:40:3e: 60:78:07:5a:1e:f5:47:45:d3:e1:70:32:cc:2e:6f:c3:cc:58: bd:99:db:9e:3b:13:40:dc:e0:03:74:6b:29:f0:58:e1:d3:7b: c4:d2:ea:24:27:7f:c8:8c:a6:66:45:36:0f:af:3f:a5:fd:1a: 8a:da:d3:0e:be:80:88:c9:ac:73:77:e8:56:8c:00:f6:64:2b: ef:f1:7a:66:62:9d:f5:1a:6a:19:9e:a9:e4:61:ae:ce:bc:37: 97:cc:e2:d3:27:76:ee:37:96:9a:f1:37:38:99:e2:88:69:4f: d6:33:f8:8a:38:d5:76:16:c5:6a:ce:4f:db:ca:2e:34:92:91: da:69:20:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUwMzIyMjA0MDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RmMjA0MC1iZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSqQfZXrfMGyQy8Qf5cY4U8cttVJQeJjvfc46eH2ulWnJfwJ/b2GVltiI9SQ HFMMs9nRsVWrzzJ2RV5YwZ5/MeL33sENytbOG1t06vbnhYvwKV9CLTLQXW4oKQuZ Q12w5v6cTueZiQDTSNyokdwXNR0AZhyJUTeNB8SSb/yIxKyTPDuHjrY3BIzPKW68 o9xp/Tm7Fd1Vq3FWc9Hfzd+jHQCqnjCQrJpzmVdSWN6XrmxrGL6/o9w4CR6Ya/Dk Iisdh1Zkq0n9WRqu2bg+ReF/DR9Zq5vrFrUQNoFWuRT5hdZBbUNrjBaCL+qq2SFu MjyU2jB3CFz+KoTLb37Z4GYRVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCsweVW9 ewPzlukEX4fxEuXkKLBsMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMzMTgvNjVCNjcxQjZBODIyMTFFQUFCQUEyRjE5QzRGOUFFMDIvOUFBNTM5RTZB ODI0MTFFQTk5NkQ1RjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlk4wDQYJKoZIhvcNAQELBQADggEBAAzTZvozhN2uOBsH ENsm3SulUUjcYGAmxlRa+sau17kpTqpfm22SISJmc25iDbdHQjyrsebUN2pStU3K 7rYeM5cQXXOyKML6E8LWAO3yZVSNxHHfNGOx7575KmPuGMtPzRGC2HHPKU1UzhJn NkjK4bYBxPaDLiVwS0M+yOdAPmB4B1oe9UdF0+FwMswub8PMWL2Z2547E0Dc4AN0 aynwWOHTe8TS6iQnf8iMpmZFNg+vP6X9Gora0w6+gIjJrHN36FaMAPZkK+/xemZi nfUaahmeqeRhrs68N5fM4tMndu43lprxNziZ4ohpT9Yz+Io41XYWxWrOT9vKLjSS kdppILM= -----END CERTIFICATE-----Generated at Wed Nov 5 18:34:55 2025 by rpki-client