$ rpki-client -vvf rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/83595478B65E11EF8DB85B32C4F9AE02.roa File: 83595478B65E11EF8DB85B32C4F9AE02.roa (raw, json) Hash identifier: NqCe6ivtot+2EiDBeB5rI+v3Md3AvU9IqI8GrM7MqMs= Subject key identifier: 92:5F:BB:F5:EE:FA:C4:42:F5:55:41:E3:0F:05:2A:1A:84:53:0D:48 Certificate issuer: /CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Certificate serial: 0513 Authority key identifier: C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/83595478B65E11EF8DB85B32C4F9AE02.roa Signing time: Thu 30 Oct 2025 23:44:38 +0000 ROA not before: Thu 30 Oct 2025 23:44:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150683 IP address blocks: 103.174.4.0/24 maxlen: 24 103.174.5.0/24 maxlen: 24 2400:7360::/32 maxlen: 32 2400:7360::/40 maxlen: 48 2400:7360:100::/40 maxlen: 48 2400:7360:200::/40 maxlen: 48 2400:7360:300::/40 maxlen: 48 2400:7360:400::/40 maxlen: 48 2400:7360:500::/40 maxlen: 48 2400:7360:600::/40 maxlen: 48 2400:7360:700::/40 maxlen: 48 2400:7360:800::/40 maxlen: 48 2400:7360:900::/40 maxlen: 48 2400:7360:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E791, serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Validity Not Before: Oct 30 23:44:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903f865-40be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:f3:81:60:9a:cd:86:90:ef:17:8f:04:5e: a7:e8:6c:12:67:85:22:c3:d2:cc:e8:82:7d:36:fb: 86:fa:02:e2:88:e1:7c:c4:c0:9f:77:ce:57:c6:4c: a7:f1:33:3c:5e:75:3d:8a:2b:f7:07:6e:d0:19:a7: 39:c7:10:76:54:51:5e:f2:a9:b7:ff:15:70:53:64: be:db:36:c6:d6:2f:63:1e:a6:c0:c6:2f:33:4d:ff: 25:df:2d:2a:2d:40:cc:ac:48:00:50:dc:e8:2b:e7: b8:06:6f:1c:3b:d5:93:b0:d7:41:90:29:af:eb:8c: 4a:52:f9:25:e7:87:39:16:48:79:f6:00:cd:68:ef: 56:d6:33:62:bd:09:19:77:c6:fe:af:70:4f:3c:ac: 4e:b8:ae:32:65:b7:2f:2f:00:fd:c6:5b:ff:70:22: ba:7b:28:f9:98:4b:dc:ff:41:aa:3d:a4:f8:6f:87: 97:d9:88:11:7d:ee:0b:fb:8b:d8:8a:f1:09:d4:30: 08:a9:09:88:29:dd:b6:c0:a6:f8:b8:07:50:bf:93: 13:00:19:00:24:c0:8d:27:ad:66:39:82:6e:c3:59: ee:25:06:29:b0:9d:20:80:e5:da:a0:a7:cb:36:67: c7:d5:74:54:b0:a2:21:94:a1:45:be:78:8a:87:ad: ba:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5F:BB:F5:EE:FA:C4:42:F5:55:41:E3:0F:05:2A:1A:84:53:0D:48 X509v3 Authority Key Identifier: keyid:C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/83595478B65E11EF8DB85B32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.4.0/23 IPv6: 2400:7360::/32 Signature Algorithm: sha256WithRSAEncryption ce:da:8d:0e:d5:02:16:80:ae:7a:ec:37:6e:e8:0e:75:bb:fc: ed:80:15:04:15:6c:4f:18:4f:8b:61:c8:98:b0:29:65:a4:05: e2:5c:3a:85:b1:eb:ad:7f:39:9a:02:5a:f0:7e:d9:64:67:8b: c2:cc:84:c1:00:91:fd:84:98:46:aa:8c:41:27:98:6f:77:f9: a2:be:1f:d2:31:b5:bd:44:1f:2c:e0:4a:8a:8a:86:ca:73:d1: 68:33:43:7d:b5:23:e8:c2:1d:ef:1d:1f:c0:be:9b:21:17:56: 8a:ff:c4:e0:de:d2:77:1b:a5:bc:7a:44:37:71:e1:16:d7:0d: 63:f1:05:10:d9:89:aa:1a:fd:3c:79:e5:2d:1a:b4:3d:17:ed: 33:fa:6e:8d:88:a9:df:cf:1b:9f:22:c1:02:ad:60:16:09:6f: f5:ef:4a:51:19:84:f1:fb:20:41:9a:c8:08:ed:cc:0f:be:34: 58:d2:18:46:a8:17:0d:63:a3:46:ac:7c:76:db:9a:a8:79:c6: d9:24:d3:c3:ba:59:4a:29:6c:09:b9:a9:8a:3c:cb:14:ac:d9: c8:d0:28:06:eb:4d:8d:f1:cb:41:42:6b:3b:e8:10:2b:67:e6: 42:2d:00:2e:73:f0:05:e3:61:e5:c4:4b:34:1e:e9:00:1c:f6: 43:39:1f:df -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU3OTExMTAvBgNVBAUTKEM0RDdCOTRCOURGQjY0RjVDMTg5MjcyMzMwREJEQ0FE MkE3RDAxNkUwHhcNMjUxMDMwMjM0NDM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZjg2NS00MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd3zgWCazYaQ7xePBF6n6GwSZ4Uiw9LM6IJ9NvuG+gLiiOF8xMCfd85Xxkyn 8TM8XnU9iiv3B27QGac5xxB2VFFe8qm3/xVwU2S+2zbG1i9jHqbAxi8zTf8l3y0q LUDMrEgAUNzoK+e4Bm8cO9WTsNdBkCmv64xKUvkl54c5Fkh59gDNaO9W1jNivQkZ d8b+r3BPPKxOuK4yZbcvLwD9xlv/cCK6eyj5mEvc/0GqPaT4b4eX2YgRfe4L+4vY ivEJ1DAIqQmIKd22wKb4uAdQv5MTABkAJMCNJ61mOYJuw1nuJQYpsJ0ggOXaoKfL NmfH1XRUsKIhlKFFvniKh626iwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJJfu/Xu +sRC9VVB4w8FKhqEUw1IMB8GA1UdIwQYMBaAFMTXuUud+2T1wYknIzDb3K0qfQFu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTc5MS8xOUM2OEQwNjNB MDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQWEJpU2NqTU52Y3JTcDlB VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZTVTNTM3WlBYQmlTY2pNTnZjclNwOUFXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU3OTEvMTlDNjhEMDYzQTA1MTFFQ0E5NDQwNTFCQzRGOUFFMDIvODM1OTU0NzhC NjVFMTFFRjhEQjg1QjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrgQwDQQCAAIwBwMFACQAc2AwDQYJKoZIhvcNAQELBQAD ggEBAM7ajQ7VAhaArnrsN27oDnW7/O2AFQQVbE8YT4thyJiwKWWkBeJcOoWx661/ OZoCWvB+2WRni8LMhMEAkf2EmEaqjEEnmG93+aK+H9Ixtb1EHyzgSoqKhspz0Wgz Q321I+jCHe8dH8C+myEXVor/xODe0ncbpbx6RDdx4RbXDWPxBRDZiaoa/Tx55S0a tD0X7TP6bo2Iqd/PG58iwQKtYBYJb/XvSlEZhPH7IEGayAjtzA++NFjSGEaoFw1j o0asfHbbmqh5xtkk08O6WUopbAm5qYo8yxSs2cjQKAbrTY3xy0FCazvoECtn5kIt AC5z8AXjYeXESzQe6QAc9kM5H98= -----END CERTIFICATE-----Generated at Tue Nov 4 12:09:27 2025 by rpki-client