$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa File: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (raw, json) Hash identifier: ukIxpeCDJL+cHaq9Y1gYJ/+w2w9VIUdZg9SIKhaaemE= Subject key identifier: BF:5E:9E:68:B8:41:6F:2C:34:CA:5E:E7:56:CE:D4:F1:01:50:BC:74 Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 0614 Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa Signing time: Tue 28 Oct 2025 22:42:34 +0000 ROA not before: Tue 28 Oct 2025 22:42:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.41.12.0/22 maxlen: 22 2001:ded::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C, serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Oct 28 22:42:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690146da-ec23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:5e:3d:fb:00:2f:50:0e:f6:59:35:99:3d: aa:bf:f9:09:47:5e:67:7c:d5:c1:e9:6d:78:67:1a: 36:92:c8:b5:d0:22:2b:be:df:51:b0:2b:7e:60:b7: e9:07:06:19:fc:9d:2a:59:e3:56:52:47:a1:d3:d2: b3:b4:3f:ed:95:3d:f6:9b:bb:16:2c:a0:76:84:e6: c0:01:ef:9d:c7:2b:d0:73:b8:50:8d:92:2c:60:1b: bc:04:77:ff:51:28:84:12:77:e0:81:39:5d:26:fc: 1e:95:cb:9e:fa:ba:ed:1b:dd:b9:98:7f:cc:e1:31: b9:8d:97:a0:fb:e1:41:aa:0f:ea:f8:6d:33:c3:b1: 28:32:5e:8a:06:1b:51:d5:6c:62:e4:01:91:25:ab: 24:8c:3c:75:bc:19:ab:53:f4:83:04:22:d7:05:1a: af:dc:a3:e4:84:f2:2e:08:c4:71:b3:1a:ca:7f:7c: 86:99:2c:51:ed:30:73:15:fb:13:f8:7e:de:65:9d: 17:45:9d:da:4b:36:d5:1e:b1:c4:fa:bf:42:f4:7d: 36:dd:fe:e3:1c:0c:35:99:e0:41:81:5b:17:69:88: 86:2f:ee:9f:75:4e:48:99:bc:4f:1e:c3:d6:a5:15: 1a:22:08:bd:e8:e0:81:64:d7:be:cb:d3:32:99:c8: 29:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5E:9E:68:B8:41:6F:2C:34:CA:5E:E7:56:CE:D4:F1:01:50:BC:74 X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.12.0/22 IPv6: 2001:ded::/64 Signature Algorithm: sha256WithRSAEncryption 2f:97:24:d3:22:0a:c6:cf:72:b3:99:a0:0f:81:df:bc:19:8b: 7a:14:74:01:e1:87:43:bf:2a:0a:3f:39:c3:3f:bb:e5:d2:b9: 2d:7b:08:5b:a0:0f:d8:c7:47:04:06:8e:4f:e8:6c:7c:64:0c: 20:04:f5:9a:91:f3:d9:11:82:85:14:b3:37:e1:24:30:fa:e5: 43:97:48:8a:0e:7c:1e:e1:d7:0d:96:5e:d2:cb:4e:db:50:a1: 27:f9:23:83:9f:cc:f1:59:3a:64:ca:84:ec:f6:e5:3a:f9:5e: f5:8d:78:29:f8:16:f5:05:a6:9e:f7:3f:fa:b7:da:30:fd:d0: 8a:24:81:95:a0:9d:c3:f1:e1:ab:9e:8c:15:de:29:2c:f9:1b: 2e:d7:b3:1d:77:33:56:ac:97:58:06:01:ac:4b:82:21:98:a6: d1:c8:6e:ff:c9:b5:4e:84:c1:6d:3e:4c:56:09:9a:c5:2b:3f: 07:ec:71:b6:48:b2:9b:14:00:8d:bf:20:21:49:dd:be:36:fe: 20:85:9e:a3:1e:b1:93:4f:22:91:65:0b:05:58:26:1a:4d:9c: 36:7f:a5:1a:bc:db:51:2f:1a:2d:46:32:9d:4d:69:a1:10:e9: f9:08:6f:82:d7:b3:24:63:09:bd:67:87:5f:b2:19:b7:1e:2f: 8a:70:33:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjUxMDI4MjI0MjM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxNDZkYS1lYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB9ePfsAL1AO9lk1mT2qv/kJR15nfNXB6W14Zxo2ksi10CIrvt9RsCt+YLfp BwYZ/J0qWeNWUkeh09KztD/tlT32m7sWLKB2hObAAe+dxyvQc7hQjZIsYBu8BHf/ USiEEnfggTldJvwelcue+rrtG925mH/M4TG5jZeg++FBqg/q+G0zw7EoMl6KBhtR 1Wxi5AGRJaskjDx1vBmrU/SDBCLXBRqv3KPkhPIuCMRxsxrKf3yGmSxR7TBzFfsT +H7eZZ0XRZ3aSzbVHrHE+r9C9H023f7jHAw1meBBgVsXaYiGL+6fdU5ImbxPHsPW pRUaIgi96OCBZNe+y9MymcgpxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9enmi4 QW8sNMpe51bO1PEBULx0MB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBM0MvRDgzNjQ2RkVDMUYyMTFFQjk4NTY0MTc0QzRGOUFFMDIvNDMyQkJBOTBD MUY2MTFFQkFEOEQ3NDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBAJnKQwwEQQCAAIwCwMJACABDe0AAAAAMA0GCSqGSIb3DQEB CwUAA4IBAQAvlyTTIgrGz3KzmaAPgd+8GYt6FHQB4YdDvyoKPznDP7vl0rktewhb oA/Yx0cEBo5P6Gx8ZAwgBPWakfPZEYKFFLM34SQw+uVDl0iKDnwe4dcNll7Sy07b UKEn+SODn8zxWTpkyoTs9uU6+V71jXgp+Bb1Baae9z/6t9ow/dCKJIGVoJ3D8eGr nowV3iks+Rsu17MddzNWrJdYBgGsS4IhmKbRyG7/ybVOhMFtPkxWCZrFKz8H7HG2 SLKbFACNvyAhSd2+Nv4ghZ6jHrGTTyKRZQsFWCYaTZw2f6UavNtRLxotRjKdTWmh EOn5CG+C17MkYwm9Z4dfshm3Hi+KcDO2 -----END CERTIFICATE-----Generated at Tue Nov 4 16:37:59 2025 by rpki-client