$ rpki-client -vvf rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa File: D257C8F88FAB11F0A7F64E1AC4F9AE02.roa (raw, json) Hash identifier: hYZQfUT77wWm9wA8h4SPaexykIcEBdPcCnbabzBH2A4= Subject key identifier: 84:FB:3F:ED:CD:33:BD:5A:63:E6:EC:33:A4:72:4F:10:16:15:18:06 Certificate issuer: /CN=A912994F/serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Certificate serial: 350E Authority key identifier: 4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa Signing time: Tue 16 Sep 2025 12:53:51 +0000 ROA not before: Tue 16 Sep 2025 12:53:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24382 IP address blocks: 103.9.104.0/24 maxlen: 24 103.44.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13582 (0x350e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912994F, serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Validity Not Before: Sep 16 12:53:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c95ddf-96e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:26:3d:ec:97:5f:5a:9e:c9:6d:ef:f0:47: c3:91:ae:9b:79:e9:af:b2:a5:e9:87:1a:31:4e:27: e1:f1:b5:39:74:d3:35:5b:26:62:3a:8d:03:7c:5c: 04:79:3c:ea:1f:37:a9:1c:b6:b7:91:c5:b6:61:a3: d4:4e:db:f0:85:eb:fe:ac:4e:f6:04:65:89:43:a0: e2:a3:e8:cb:2f:d0:8b:83:25:89:87:62:89:0e:8e: 1a:c0:7a:ef:77:fc:e1:a7:35:94:3b:eb:d7:e2:99: 4b:5c:b8:c2:0c:bb:91:d9:a9:58:6e:3c:16:c6:58: 56:5d:94:ab:5a:0b:df:9b:0f:0e:fd:f3:0b:0d:bb: 20:86:b8:d3:3c:23:72:41:c3:4d:09:37:ab:2a:61: cd:06:5b:dd:83:68:51:15:54:37:3f:f6:ad:63:a5: eb:5d:4e:07:c9:29:0f:e7:e1:fb:0e:b7:f6:76:b9: ff:38:99:59:34:ff:b7:21:cb:5b:a7:b1:5e:56:7d: 3f:fc:5e:b0:58:7e:47:e2:68:fa:70:62:5c:c3:7c: a6:1c:01:a0:1d:f6:b0:ff:9b:d2:e3:90:6f:de:9e: bd:73:d9:37:cc:f9:fb:a8:52:ce:0d:a8:f9:a5:07: cf:68:69:b5:99:b1:99:10:93:95:35:16:67:df:21: e9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FB:3F:ED:CD:33:BD:5A:63:E6:EC:33:A4:72:4F:10:16:15:18:06 X509v3 Authority Key Identifier: keyid:4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.104.0/24 103.44.150.0/24 Signature Algorithm: sha256WithRSAEncryption 85:96:46:de:e7:28:6f:03:06:0a:d5:c2:ca:f7:cf:a5:b9:d1: 38:4b:28:a8:bf:f2:52:b5:8e:83:92:9b:9a:19:8d:f8:27:ea: e1:f8:3b:07:81:e4:02:64:64:e4:dd:eb:a7:d5:9c:02:39:bc: 25:51:01:5c:7d:78:ea:96:b8:17:d0:a2:db:97:82:72:02:83: 45:1d:5c:db:f9:16:26:b3:2f:77:4f:89:10:f4:55:27:c7:c4: 47:ee:9d:f8:7e:0c:32:a5:e9:da:c1:85:74:c9:91:c2:a7:d7: 60:97:5a:0c:ce:cc:07:d3:a5:ac:5f:65:7f:d3:6b:31:4d:64: a0:61:50:f3:e7:ce:5e:71:11:88:1b:78:15:cb:68:fc:4a:3f: 05:09:79:a2:f9:7e:ab:24:34:b3:52:49:7b:ce:02:f0:7f:ea: 92:f8:c7:ae:54:48:c7:5f:f7:12:d1:61:e8:b5:08:c0:d9:8c: 89:29:02:5d:0b:09:e0:04:72:f2:45:1c:44:1d:a1:b2:62:93: 46:3f:35:81:d1:66:cf:9a:86:58:6b:20:31:70:b3:c3:e2:30: 8b:46:1f:cd:97:26:0d:f1:6d:e0:a2:f2:cb:04:50:b8:e6:bd: 76:ed:f5:77:93:0e:83:08:82:4c:5a:d4:a2:0d:b2:42:a4:63: 66:a0:b5:89 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NEYxMTAvBgNVBAUTKDRCRUQ1OEJDNDU0NEU3RTNCNUU5Nzg5QzY3QzYzQkVD OTFDMjdDREQwHhcNMjUwOTE2MTI1MzUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5NWRkZi05NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL8mPeyXX1qeyW3v8EfDka6beemvsqXphxoxTifh8bU5dNM1WyZiOo0DfFwE eTzqHzepHLa3kcW2YaPUTtvwhev+rE72BGWJQ6Dio+jLL9CLgyWJh2KJDo4awHrv d/zhpzWUO+vX4plLXLjCDLuR2alYbjwWxlhWXZSrWgvfmw8O/fMLDbsghrjTPCNy QcNNCTerKmHNBlvdg2hRFVQ3P/atY6XrXU4HySkP5+H7Drf2drn/OJlZNP+3Ictb p7FeVn0//F6wWH5H4mj6cGJcw3ymHAGgHfaw/5vS45Bv3p69c9k3zPn7qFLODaj5 pQfPaGm1mbGZEJOVNRZn3yHpJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIT7P+3N M71aY+bsM6RyTxAWFRgGMB8GA1UdIwQYMBaAFEvtWLxFROfjtel4nGfGO+yRwnzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk0Ri9BMDI5QTUyNjFE QUExMUUyOUJGQzY3QTYwOEIwMkNEMi9TLTFZdkVWRTUtTzE2WGljWjhZNzdKSENm TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MtMVl2RVZFNS1PMTZYaWNaOFk3N0pIQ2ZOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NEYvQTAyOUE1MjYxREFBMTFFMjlCRkM2N0E2MDhCMDJDRDIvRDI1N0M4Rjg4 RkFCMTFGMEE3RjY0RTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnCWgDBABnLJYwDQYJKoZIhvcNAQELBQADggEBAIWWRt7n KG8DBgrVwsr3z6W50ThLKKi/8lK1joOSm5oZjfgn6uH4OweB5AJkZOTd66fVnAI5 vCVRAVx9eOqWuBfQotuXgnICg0UdXNv5FiazL3dPiRD0VSfHxEfunfh+DDKl6drB hXTJkcKn12CXWgzOzAfTpaxfZX/TazFNZKBhUPPnzl5xEYgbeBXLaPxKPwUJeaL5 fqskNLNSSXvOAvB/6pL4x65USMdf9xLRYei1CMDZjIkpAl0LCeAEcvJFHEQdobJi k0Y/NYHRZs+ahlhrIDFws8PiMItGH82XJg3xbeCi8ssEULjmvXbt9XeTDoMIgkxa 1KINskKkY2agtYk= -----END CERTIFICATE-----Generated at Wed Nov 5 08:09:55 2025 by rpki-client