$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa File: C7C28CAC4A0711EEBE153131C4F9AE02.roa (raw, json) Hash identifier: CcqSmSm4lCpqTwyfkGRpqe+7Fg7ZeSpS7rkbNOQEqeI= Subject key identifier: 35:49:F8:03:A2:5D:71:3A:3A:EC:12:AA:8C:91:A9:12:C8:FD:2B:D6 Certificate issuer: /CN=A911EA9E/serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Certificate serial: 018D Authority key identifier: D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa Signing time: Tue 07 Oct 2025 04:01:07 +0000 ROA not before: Tue 07 Oct 2025 04:01:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151650 IP address blocks: 103.249.198.0/23 maxlen: 23 103.249.198.0/24 maxlen: 24 103.249.199.0/24 maxlen: 24 2401:2260::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA9E, serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Validity Not Before: Oct 7 04:01:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e49082-fc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5e:08:98:d6:29:3f:5c:08:ff:2a:c2:c5:77: 44:ad:6a:75:78:8c:40:23:38:04:a3:0a:5f:e4:a3: 3a:89:98:02:56:85:3d:5e:b5:60:b0:62:ec:e3:e1: e0:98:5c:5b:37:06:11:45:82:61:b5:eb:46:68:f2: 7d:60:21:13:b9:2a:84:57:90:1a:6f:aa:03:d4:fb: 90:23:8e:62:8d:ee:5c:05:e1:fc:92:73:c1:ee:f5: ed:8b:7e:e5:5e:e6:1e:60:55:f2:a2:18:e1:8e:88: fa:c8:be:8b:86:15:f6:4b:7c:f0:7c:2c:1f:cc:0e: f0:17:7c:53:06:23:49:a5:4b:c1:12:43:bd:fb:81: d0:29:81:78:42:d9:d4:19:a0:77:39:cf:2b:be:8c: e5:a5:67:b9:00:a2:d8:03:a8:5c:0b:36:81:7a:16: 5b:6f:88:59:42:63:9d:b8:7f:5c:2c:18:81:f4:45: b7:d1:d6:95:37:98:ec:00:c8:f3:b4:ea:89:9d:38: f4:b6:5a:b5:b7:21:5b:ff:c7:c4:cd:7e:e2:6c:29: 51:5f:74:09:9b:14:70:46:a9:44:84:13:0e:82:d6: 54:75:35:ad:b4:14:42:e1:43:8d:9a:83:63:29:6e: 92:fe:1e:47:84:dc:b8:6a:d4:6b:4c:9b:17:cd:69: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:49:F8:03:A2:5D:71:3A:3A:EC:12:AA:8C:91:A9:12:C8:FD:2B:D6 X509v3 Authority Key Identifier: keyid:D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.198.0/23 IPv6: 2401:2260::/32 Signature Algorithm: sha256WithRSAEncryption 38:e2:70:03:73:5f:a7:e9:ec:2e:47:0c:87:ab:4d:b3:f7:ab: dd:d2:84:d9:48:51:c8:a9:8c:4d:9c:b7:07:8f:28:75:cd:26: bc:bf:7c:2d:4e:9c:70:16:17:cf:87:1d:03:45:25:58:3c:48: db:27:2b:c5:f2:30:35:94:a8:4d:33:24:f3:cf:b8:ce:58:d5: 2c:ca:fc:20:f8:54:58:21:32:3c:8c:d0:e5:20:10:a0:3f:6f: be:a9:04:cb:11:e8:12:88:18:86:22:4f:36:88:bd:83:14:de: 8e:da:ff:2a:81:a3:94:34:b2:50:0c:65:55:7e:c7:15:29:18: 02:46:80:8e:58:97:ec:cb:21:86:4b:5c:84:cd:9a:03:f1:78: 14:3a:ca:9d:52:a6:92:c7:48:1b:13:e6:05:89:56:8b:2c:f3: 52:86:90:3f:15:b5:8c:64:37:0f:08:9b:46:53:c8:3a:75:65: cb:74:d1:8c:a3:ca:61:51:8e:0e:80:28:6d:5f:9a:b0:f4:c2: 74:e3:1e:5c:25:e4:7e:3d:ad:e3:e5:e7:2b:60:21:b5:63:3e: 64:bd:e3:d7:4a:d2:b6:61:82:e1:19:6f:88:e7:48:28:c8:e9: 56:02:d5:10:00:7d:1a:a7:68:b6:9c:c2:1d:ae:4e:f1:f8:f0: f0:00:52:31 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBOUUxMTAvBgNVBAUTKEQ2NzU3RkMzMjQwOURCQzJGMjJCNjJDMzE5QjlFNDRE QjlFQTA3OTkwHhcNMjUxMDA3MDQwMTA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0OTA4Mi1mYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl4ImNYpP1wI/yrCxXdErWp1eIxAIzgEowpf5KM6iZgCVoU9XrVgsGLs4+Hg mFxbNwYRRYJhtetGaPJ9YCETuSqEV5Aab6oD1PuQI45ije5cBeH8knPB7vXti37l XuYeYFXyohjhjoj6yL6LhhX2S3zwfCwfzA7wF3xTBiNJpUvBEkO9+4HQKYF4QtnU GaB3Oc8rvozlpWe5AKLYA6hcCzaBehZbb4hZQmOduH9cLBiB9EW30daVN5jsAMjz tOqJnTj0tlq1tyFb/8fEzX7ibClRX3QJmxRwRqlEhBMOgtZUdTWttBRC4UONmoNj KW6S/h5HhNy4atRrTJsXzWnaowIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDVJ+AOi XXE6OuwSqoyRqRLI/SvWMB8GA1UdIwQYMBaAFNZ1f8MkCdvC8itiwxm55E256geZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE5RS82NkUwQzYzODRB MDcxMUVFQTFCRjUwMzBDNEY5QUUwMi8xblZfd3lRSjI4THlLMkxER2Jua1RibnFC NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFuVl93eVFKMjhMeUsyTERHYm5rVGJucUI1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBOUUvNjZFMEM2Mzg0QTA3MTFFRUExQkY1MDMwQzRGOUFFMDIvQzdDMjhDQUM0 QTA3MTFFRUJFMTUzMTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn+cYwDQQCAAIwBwMFACQBImAwDQYJKoZIhvcNAQELBQAD ggEBADjicANzX6fp7C5HDIerTbP3q93ShNlIUcipjE2ctwePKHXNJry/fC1OnHAW F8+HHQNFJVg8SNsnK8XyMDWUqE0zJPPPuM5Y1SzK/CD4VFghMjyM0OUgEKA/b76p BMsR6BKIGIYiTzaIvYMU3o7a/yqBo5Q0slAMZVV+xxUpGAJGgI5Yl+zLIYZLXITN mgPxeBQ6yp1SppLHSBsT5gWJVoss81KGkD8VtYxkNw8Im0ZTyDp1Zct00YyjymFR jg6AKG1fmrD0wnTjHlwl5H49rePl5ytgIbVjPmS949dK0rZhguEZb4jnSCjI6VYC 1RAAfRqnaLacwh2uTvH48PAAUjE= -----END CERTIFICATE-----Generated at Wed Nov 5 21:00:48 2025 by rpki-client