$ rpki-client -vvf rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/DAFE4B0C795E11F0B29D8165C4F9AE02.roa File: DAFE4B0C795E11F0B29D8165C4F9AE02.roa (raw, json) Hash identifier: 3DgYbZW04y6kmrfOWNOEvzLYHmAkIXHYQmfTKD4xVdU= Subject key identifier: 0B:31:61:B2:8B:32:D9:24:CC:85:D5:4A:59:04:25:01:8E:B9:3C:3C Certificate issuer: /CN=A9123193/serialNumber=0BBCFDE768675B994F2A23114C351412201555B8 Certificate serial: 078D Authority key identifier: 0B:BC:FD:E7:68:67:5B:99:4F:2A:23:11:4C:35:14:12:20:15:55:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/DAFE4B0C795E11F0B29D8165C4F9AE02.roa Signing time: Fri 31 Oct 2025 22:12:31 +0000 ROA not before: Fri 31 Oct 2025 22:12:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141457 IP address blocks: 103.159.236.0/23 maxlen: 24 2406:ddc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.crl rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123193, serialNumber=0BBCFDE768675B994F2A23114C351412201555B8 Validity Not Before: Oct 31 22:12:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6905344f-5a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a4:97:3d:14:4e:03:4c:02:6f:31:56:b2:43: 8d:db:96:c6:f0:a5:1c:c5:41:82:2f:7d:55:64:df: d7:00:e5:a5:5a:50:c9:1c:c8:60:29:5d:c3:f8:c7: e8:98:3f:45:ae:57:61:56:c7:ad:77:7b:1d:7f:ea: c7:b3:f4:da:3a:15:ac:96:88:ec:1f:81:fc:91:51: e6:f6:1d:74:d9:45:1d:ed:20:28:17:c8:0e:e1:b9: b6:0f:1f:46:4f:65:52:e3:fa:4e:71:a0:95:a5:44: 5f:6d:00:15:69:80:9a:49:7f:6a:5b:b4:18:b6:7d: 3d:86:8d:ce:5d:0d:da:5a:dd:21:b9:9c:4c:ec:e1: 86:e2:8c:8c:39:33:32:f8:43:16:3f:2f:ee:c9:5e: 8e:1f:dc:00:3c:4d:20:09:a8:4c:a8:b4:95:2e:e5: a6:28:ae:e5:85:9f:c5:ed:1c:04:a6:a5:e4:aa:39: 98:16:1c:7c:bc:f4:d2:27:0f:a8:67:3d:8c:af:6c: e1:b5:e6:59:7d:ec:30:91:4b:44:62:dd:d3:00:4a: 8e:8e:97:c6:78:74:b2:1d:5b:25:c1:86:cc:ba:05: d8:2c:b2:e7:01:61:a2:6c:27:6c:19:22:05:13:3b: 2b:5f:fc:d4:5b:c9:bc:06:7a:18:77:b4:b3:5b:81: a8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:31:61:B2:8B:32:D9:24:CC:85:D5:4A:59:04:25:01:8E:B9:3C:3C X509v3 Authority Key Identifier: keyid:0B:BC:FD:E7:68:67:5B:99:4F:2A:23:11:4C:35:14:12:20:15:55:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/C7z952hnW5lPKiMRTDUUEiAVVbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7z952hnW5lPKiMRTDUUEiAVVbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123193/CA8A4B3C39D911EBA781FA57C4F9AE02/DAFE4B0C795E11F0B29D8165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.236.0/23 IPv6: 2406:ddc0::/32 Signature Algorithm: sha256WithRSAEncryption 94:fe:df:cd:bd:05:97:54:ec:af:f8:9e:c6:59:7f:df:ca:29: b2:62:19:54:c7:0a:10:a4:f2:b5:ee:2d:a1:94:61:f1:c1:76: b8:0b:94:e9:9d:8f:1c:01:16:a7:52:5c:3c:8e:fe:44:ac:2f: 96:51:c2:e4:79:c0:6c:ca:4b:45:1f:24:c8:ef:28:c8:cb:cc: 04:40:04:2d:23:29:09:08:4e:b1:de:93:2b:c5:4c:8c:52:f0: 15:b9:fc:7c:fa:d1:87:35:60:50:65:43:91:66:eb:f8:c3:30: 26:dc:6e:97:db:0f:d3:47:9d:a0:35:37:da:bc:6d:c8:75:fd: 70:85:2f:e8:2b:88:33:c7:77:12:97:28:59:1f:ab:fc:e3:ab: 33:e1:67:ec:de:31:51:89:fb:8c:0c:ed:64:51:ca:de:64:76: fb:73:a3:87:66:fc:ec:fb:f5:de:dc:35:5f:b6:ea:e9:04:7d: c4:1a:5f:e6:e8:83:da:c6:a1:ce:24:b4:94:49:62:60:a8:78: bc:ce:6a:21:38:6f:5f:75:d7:3a:ad:dc:bd:f5:dc:d0:16:78: 4f:5d:5a:b7:3d:3b:54:76:e8:2c:43:b5:29:b6:46:23:74:4c: 92:49:c4:8c:06:cf:e9:4f:df:16:57:68:95:74:1d:73:2a:dd: d9:43:88:70 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxOTMxMTAvBgNVBAUTKDBCQkNGREU3Njg2NzVCOTk0RjJBMjMxMTRDMzUxNDEy MjAxNTU1QjgwHhcNMjUxMDMxMjIxMjMxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1MzQ0Zi01YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86SXPRROA0wCbzFWskON25bG8KUcxUGCL31VZN/XAOWlWlDJHMhgKV3D+Mfo mD9FrldhVsetd3sdf+rHs/TaOhWslojsH4H8kVHm9h102UUd7SAoF8gO4bm2Dx9G T2VS4/pOcaCVpURfbQAVaYCaSX9qW7QYtn09ho3OXQ3aWt0huZxM7OGG4oyMOTMy +EMWPy/uyV6OH9wAPE0gCahMqLSVLuWmKK7lhZ/F7RwEpqXkqjmYFhx8vPTSJw+o Zz2Mr2zhteZZfewwkUtEYt3TAEqOjpfGeHSyHVslwYbMugXYLLLnAWGibCdsGSIF EzsrX/zUW8m8BnoYd7SzW4GoFwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAsxYbKL MtkkzIXVSlkEJQGOuTw8MB8GA1UdIwQYMBaAFAu8/edoZ1uZTyojEUw1FBIgFVW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE5My9DQThBNEIzQzM5 RDkxMUVCQTc4MUZBNTdDNEY5QUUwMi9DN3o5NTJoblc1bFBLaU1SVERVVUVpQVZW YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3ejk1MmhuVzVsUEtpTVJURFVVRWlBVlZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMxOTMvQ0E4QTRCM0MzOUQ5MTFFQkE3ODFGQTU3QzRGOUFFMDIvREFGRTRCMEM3 OTVFMTFGMEIyOUQ4MTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnn+wwDQQCAAIwBwMFACQG3cAwDQYJKoZIhvcNAQELBQAD ggEBAJT+3829BZdU7K/4nsZZf9/KKbJiGVTHChCk8rXuLaGUYfHBdrgLlOmdjxwB FqdSXDyO/kSsL5ZRwuR5wGzKS0UfJMjvKMjLzARABC0jKQkITrHekyvFTIxS8BW5 /Hz60Yc1YFBlQ5Fm6/jDMCbcbpfbD9NHnaA1N9q8bch1/XCFL+griDPHdxKXKFkf q/zjqzPhZ+zeMVGJ+4wM7WRRyt5kdvtzo4dm/Oz79d7cNV+26ukEfcQaX+bog9rG oc4ktJRJYmCoeLzOaiE4b1911zqt3L313NAWeE9dWrc9O1R26CxDtSm2RiN0TJJJ xIwGz+lP3xZXaJV0HXMq3dlDiHA= -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:40 2025 by rpki-client