$ rpki-client -vvf rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/F2BB36DC790E11EC8EA0F77FC4F9AE02.roa File: F2BB36DC790E11EC8EA0F77FC4F9AE02.roa (raw, json) Hash identifier: 17t3m0KvoRjfHzLmSGQMixJ4h1po9W3fjkqykP9EfmA= Subject key identifier: BE:F4:22:F4:7A:2A:2F:C0:B0:BA:FC:5E:64:0E:69:B0:08:FF:67:D7 Certificate issuer: /CN=A913B32D/serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Certificate serial: 03BF Authority key identifier: 3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/F2BB36DC790E11EC8EA0F77FC4F9AE02.roa Signing time: Wed 29 Jan 2025 00:33:38 +0000 ROA not before: Wed 29 Jan 2025 00:33:38 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137015 IP address blocks: 103.179.156.0/23 maxlen: 24 2001:df0:4fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B32D, serialNumber=3A68A222C2C0CF41430C0968D2309AA893C74A3B Validity Not Before: Jan 29 00:33:38 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67997762-7e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a9:a8:92:24:4a:bf:7d:0b:b0:db:b6:97:50: ef:ee:10:c0:88:1d:4f:24:58:a8:27:8d:13:aa:78: c1:74:86:6c:24:d9:23:7d:82:91:c9:60:2c:d6:d1: 3a:b7:b6:f4:10:2b:2b:a8:82:83:d0:70:48:32:c3: 3c:d4:8e:d8:a3:60:2e:59:e6:bb:5b:f0:20:33:1b: f3:df:c6:51:46:49:2f:f8:4c:6b:5f:41:e7:cc:26: 58:6b:2c:6c:c3:e3:ec:0a:bd:ec:3b:12:24:6a:66: 0f:73:b0:38:9e:0c:3a:ee:d2:59:9c:72:9f:ee:d6: ea:97:94:ad:a0:77:71:d2:ae:f5:32:75:81:a6:3c: 9c:25:c5:23:95:8b:c6:6d:4b:79:ad:f7:51:3d:e8: d6:e1:55:48:20:18:99:86:d3:02:68:22:a8:fa:06: e5:1e:1f:32:91:d3:75:85:3f:b6:6a:54:9c:84:15: 68:61:ea:ee:7a:86:8d:f2:40:9d:e2:48:44:2e:97: 98:3e:71:a8:37:f0:48:39:9d:77:38:3f:f2:7d:30: 09:42:ba:5a:c8:e4:86:17:d6:9c:9a:31:48:c0:0c: 5f:05:32:e5:e7:b0:be:1b:8c:2a:c2:35:9c:28:5d: 92:42:48:29:1e:38:f1:1c:00:7d:ff:fa:06:07:7e: 20:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F4:22:F4:7A:2A:2F:C0:B0:BA:FC:5E:64:0E:69:B0:08:FF:67:D7 X509v3 Authority Key Identifier: keyid:3A:68:A2:22:C2:C0:CF:41:43:0C:09:68:D2:30:9A:A8:93:C7:4A:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/OmiiIsLAz0FDDAlo0jCaqJPHSjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OmiiIsLAz0FDDAlo0jCaqJPHSjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B32D/86FD1388790A11EC8D0A2979C4F9AE02/F2BB36DC790E11EC8EA0F77FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.156.0/23 IPv6: 2001:df0:4fc0::/48 Signature Algorithm: sha256WithRSAEncryption 12:f4:30:7c:25:e4:8e:7c:39:86:9e:ac:e2:27:7f:06:ab:62: ef:dd:77:1f:d0:82:6d:71:b9:88:52:7a:ff:2f:e4:3e:50:a5: 6a:d4:1a:da:c2:4b:65:ba:5e:1a:66:f2:ee:54:ff:e2:3d:5d: 99:31:49:11:af:5e:13:6c:c7:db:3a:94:03:d0:58:73:fe:dc: f1:84:67:bc:d3:5d:ed:61:8d:83:71:cd:fb:3b:85:50:3a:bc: 14:2c:b5:f0:79:8d:44:93:78:9c:75:07:97:07:2a:12:14:b7: 5b:6e:d4:39:40:94:98:87:57:48:96:c9:89:e9:2b:3e:47:e6: 2a:70:ee:76:30:72:1b:47:01:08:9a:5d:2a:55:6e:5f:f3:48: 56:ec:67:fe:45:27:45:3a:9f:a2:a8:43:3e:ae:99:ca:d5:4c: f1:6c:38:82:bc:d8:32:42:f0:0c:5c:f2:a1:c2:83:5e:55:64: 18:34:88:c3:44:26:cf:4e:00:1c:15:cb:2b:17:02:98:1f:f2: e5:7b:a7:01:43:e4:0c:6b:ce:0f:73:96:5f:c1:a2:72:a5:c9: 21:d8:09:ef:99:2c:01:73:d2:e5:26:25:c0:02:5f:96:89:6d: 89:3d:66:0a:33:17:a8:d2:01:10:65:fa:43:73:1a:53:12:2b: 6a:ab:f4:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMkQxMTAvBgNVBAUTKDNBNjhBMjIyQzJDMENGNDE0MzBDMDk2OEQyMzA5QUE4 OTNDNzRBM0IwHhcNMjUwMTI5MDAzMzM4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5Nzc2Mi03ZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6mokiRKv30LsNu2l1Dv7hDAiB1PJFioJ40TqnjBdIZsJNkjfYKRyWAs1tE6 t7b0ECsrqIKD0HBIMsM81I7Yo2AuWea7W/AgMxvz38ZRRkkv+ExrX0HnzCZYayxs w+PsCr3sOxIkamYPc7A4ngw67tJZnHKf7tbql5StoHdx0q71MnWBpjycJcUjlYvG bUt5rfdRPejW4VVIIBiZhtMCaCKo+gblHh8ykdN1hT+2alSchBVoYerueoaN8kCd 4khELpeYPnGoN/BIOZ13OD/yfTAJQrpayOSGF9acmjFIwAxfBTLl57C+G4wqwjWc KF2SQkgpHjjxHAB9//oGB34gJQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL70IvR6 Ki/AsLr8XmQOabAI/2fXMB8GA1UdIwQYMBaAFDpooiLCwM9BQwwJaNIwmqiTx0o7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMyRC84NkZEMTM4ODc5 MEExMUVDOEQwQTI5NzlDNEY5QUUwMi9PbWlpSXNMQXowRkREQWxvMGpDYXFKUEhT anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taWlJc0xBejBGRERBbG8wakNhcUpQSFNqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0IzMkQvODZGRDEzODg3OTBBMTFFQzhEMEEyOTc5QzRGOUFFMDIvRjJCQjM2REM3 OTBFMTFFQzhFQTBGNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFns5wwDwQCAAIwCQMHACABDfBPwDANBgkqhkiG9w0BAQsF AAOCAQEAEvQwfCXkjnw5hp6s4id/Bqti7913H9CCbXG5iFJ6/y/kPlClatQa2sJL ZbpeGmby7lT/4j1dmTFJEa9eE2zH2zqUA9BYc/7c8YRnvNNd7WGNg3HN+zuFUDq8 FCy18HmNRJN4nHUHlwcqEhS3W27UOUCUmIdXSJbJiekrPkfmKnDudjByG0cBCJpd KlVuX/NIVuxn/kUnRTqfoqhDPq6ZytVM8Ww4grzYMkLwDFzyocKDXlVkGDSIw0Qm z04AHBXLKxcCmB/y5XunAUPkDGvOD3OWX8GicqXJIdgJ75ksAXPS5SYlwAJflolt iT1mCjMXqNIBEGX6Q3MaUxIraqv0tA== -----END CERTIFICATE-----Generated at Wed Nov 5 18:51:12 2025 by rpki-client