$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa File: EDDDD55C252E11EEB91A8941C4F9AE02.roa (raw, json) Hash identifier: y2CRuE70MquHCIr0B6b6CP/AdGdh0+ETsyjf8zknJdU= Subject key identifier: AD:7D:A6:D1:9D:AF:4E:E7:3F:2A:87:C0:F6:80:12:4A:7F:68:4D:E5 Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 019F Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa Signing time: Tue 17 Jun 2025 03:01:29 +0000 ROA not before: Tue 17 Jun 2025 03:01:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151333 IP address blocks: 103.199.140.0/24 maxlen: 24 103.199.141.0/24 maxlen: 24 2001:df2:70c0::/48 maxlen: 48 2001:df2:70c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24, serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Jun 17 03:01:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6850da88-53a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e9:73:cf:f2:ce:df:f1:9b:90:9b:b1:ed:c6: 75:98:e4:81:bd:6c:71:42:c2:fa:60:b4:18:1c:c9: aa:ce:d0:72:80:4a:75:ca:2d:38:c6:90:29:49:af: 17:66:82:94:3b:a1:c6:99:8a:0b:27:68:28:68:eb: db:4b:31:32:82:2d:8c:22:2c:3b:ed:21:fa:51:31: d9:ca:c1:cb:a5:5e:8d:10:e8:f9:4e:fe:90:f0:ad: 3a:cd:cf:7a:e3:12:7e:6a:c7:e1:b7:c5:d1:40:36: 62:c5:49:58:d6:9b:16:f5:99:0a:8c:8b:4f:d7:7b: 52:10:ca:44:10:e8:25:10:05:f3:b4:18:a5:31:d1: c4:5b:b1:b9:35:dd:64:be:1a:e9:5a:55:00:a3:3d: 56:68:89:14:ac:00:23:83:68:1d:88:5f:fc:b8:ae: 67:d6:a3:ac:ae:a5:0d:76:8b:35:c7:6d:28:cb:2c: 14:3a:b4:fc:4e:2c:6a:91:d6:60:91:23:90:c6:fa: 73:bf:f7:92:8b:36:e0:a5:fb:42:e0:10:0c:75:6e: 70:a4:3c:fb:d0:10:3c:92:f9:ce:af:1b:1e:cb:fb: d4:23:2b:ee:47:17:08:c9:f0:f1:af:2c:b8:3f:e3: 62:59:95:91:5c:5e:45:90:ba:b7:35:dd:81:91:e5: 93:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7D:A6:D1:9D:AF:4E:E7:3F:2A:87:C0:F6:80:12:4A:7F:68:4D:E5 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.140.0/23 IPv6: 2001:df2:70c0::/47 Signature Algorithm: sha256WithRSAEncryption 9a:08:0f:c0:bb:6d:e8:49:b4:30:29:49:bb:cb:f3:76:b3:b6: 2d:a9:4f:6e:b9:41:3e:18:b7:21:c1:27:8a:24:6e:2d:d1:58: 22:42:34:40:5e:b8:d6:21:3e:d5:72:74:82:74:d7:59:bf:e6: a9:68:78:67:b7:f6:8e:b2:ca:24:54:47:6e:3d:76:ea:bb:59: fb:41:00:5e:52:3a:b0:47:bf:9e:23:8b:5f:a5:dd:1e:0d:89: df:f7:5b:8e:a5:7f:ff:66:ca:0d:de:88:60:bf:ce:f7:26:5d: 58:ac:78:65:0c:84:4c:9b:41:e8:5c:a9:29:b3:41:2d:86:53: 49:da:b8:10:33:7f:3b:94:23:07:09:ab:6d:dc:13:80:56:20: 9e:37:4a:91:da:ba:ea:02:27:24:90:36:39:90:d2:cc:e5:2a: 3e:7c:ea:a8:53:5f:0b:f2:a0:7f:55:9a:8c:db:af:d4:f5:f9: 39:18:36:41:a1:b9:d1:2a:3a:44:fe:eb:c4:b5:d6:de:7b:c0: 5e:5c:87:10:2e:05:46:8b:a3:75:e9:7e:eb:5c:dc:51:c0:07: 38:f9:60:52:2e:7b:56:bf:f5:9c:7d:d4:d7:53:94:ab:08:ba: 9b:a9:ae:c7:35:fa:88:22:e2:2d:05:d4:d2:dc:48:a7:c9:28: 0b:ca:eb:39 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjUwNjE3MDMwMTI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwZGE4OC01M2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Olzz/LO3/GbkJux7cZ1mOSBvWxxQsL6YLQYHMmqztBygEp1yi04xpApSa8X ZoKUO6HGmYoLJ2goaOvbSzEygi2MIiw77SH6UTHZysHLpV6NEOj5Tv6Q8K06zc96 4xJ+asfht8XRQDZixUlY1psW9ZkKjItP13tSEMpEEOglEAXztBilMdHEW7G5Nd1k vhrpWlUAoz1WaIkUrAAjg2gdiF/8uK5n1qOsrqUNdos1x20oyywUOrT8TixqkdZg kSOQxvpzv/eSizbgpftC4BAMdW5wpDz70BA8kvnOrxsey/vUIyvuRxcIyfDxryy4 P+NiWZWRXF5FkLq3Nd2BkeWTwwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK19ptGd r07nPyqHwPaAEkp/aE3lMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFMjQvRjJGNjc1RkVGM0ZGMTFFRDk1MkQ3NDFDQzRGOUFFMDIvRUREREQ1NUMy NTJFMTFFRUI5MUE4OTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnx4wwDwQCAAIwCQMHASABDfJwwDANBgkqhkiG9w0BAQsF AAOCAQEAmggPwLtt6Em0MClJu8vzdrO2LalPbrlBPhi3IcEniiRuLdFYIkI0QF64 1iE+1XJ0gnTXWb/mqWh4Z7f2jrLKJFRHbj126rtZ+0EAXlI6sEe/niOLX6XdHg2J 3/dbjqV//2bKDd6IYL/O9yZdWKx4ZQyETJtB6FypKbNBLYZTSdq4EDN/O5QjBwmr bdwTgFYgnjdKkdq66gInJJA2OZDSzOUqPnzqqFNfC/Kgf1WajNuv1PX5ORg2QaG5 0So6RP7rxLXW3nvAXlyHEC4FRoujdel+61zcUcAHOPlgUi57Vr/1nH3U11OUqwi6 m6muxzX6iCLiLQXU0txIp8koC8rrOQ== -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:18 2025 by rpki-client