$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa File: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (raw, json) Hash identifier: whIj4TZ+yyw/VbL0wLVNZHdMGGpE4Mabv0G6g01cTLE= Subject key identifier: 20:FF:23:D2:E5:B2:14:12:23:38:77:C3:3A:33:57:48:2F:98:60:14 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0CE8 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa Signing time: Fri 12 Sep 2025 18:28:15 +0000 ROA not before: Fri 12 Sep 2025 18:28:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134146 IP address blocks: 103.73.224.0/22 maxlen: 22 103.73.224.0/23 maxlen: 23 103.73.224.0/24 maxlen: 24 103.73.225.0/24 maxlen: 24 103.73.226.0/24 maxlen: 24 103.73.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 18:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3304 (0xce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Sep 12 18:28:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c4663f-4b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:96:af:27:4f:af:7c:3f:8e:c6:9b:a7:bb:b1: 6e:53:1f:bd:a4:3d:81:01:90:ec:db:96:e0:4b:ba: 86:43:77:b1:45:1b:3a:83:27:b8:d5:a3:8b:14:6b: a2:08:a7:b9:7d:d5:e2:e0:56:a7:63:62:38:99:1c: 60:24:10:ed:d9:5c:e1:15:c4:b1:65:2e:38:1c:94: d0:57:ee:9b:dd:72:8f:c0:b0:f0:22:e1:62:25:00: f0:44:68:96:ea:86:0a:40:c0:0a:f7:04:fb:43:1b: bd:f0:b6:f7:02:ee:84:cf:2b:6f:24:07:07:11:35: f5:41:57:21:28:7b:c5:38:11:96:43:33:84:3d:f4: a7:19:68:40:5b:d3:fe:07:66:43:ee:10:c5:72:e5: df:a9:e7:4c:ac:7f:29:a6:bd:fb:76:98:f8:86:86: cd:31:cf:f6:d5:fc:23:1e:84:93:1e:48:86:79:26: fa:37:2d:dc:76:3a:4d:43:46:50:25:0c:d8:cf:61: 45:ef:3c:41:b4:ad:5c:90:14:a8:08:c3:da:cf:2e: 74:0b:53:60:2f:86:1f:44:42:e7:90:20:01:d8:ec: b8:48:ef:67:71:b1:ab:7f:e0:c4:43:2d:cc:6e:f0: 81:07:63:04:c1:72:e2:b7:8e:a2:1a:0a:f9:3b:6b: 9e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FF:23:D2:E5:B2:14:12:23:38:77:C3:3A:33:57:48:2F:98:60:14 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.224.0/22 Signature Algorithm: sha256WithRSAEncryption a3:4c:cf:95:6f:6f:f6:86:7e:4f:92:62:ee:e2:ab:23:e5:a4: 65:90:6c:76:0c:a8:a0:dd:37:fc:3d:15:d7:22:62:37:b3:c7: f8:55:d9:45:af:17:34:9d:5e:aa:b3:5a:db:26:dd:e4:6c:c2: 1f:4e:ca:4a:e8:f8:c6:02:7d:a7:ce:a3:8b:0c:e9:5c:ec:e7: b1:ed:22:83:f8:02:3b:91:ec:f6:e6:f3:e9:f6:75:57:5d:11: bf:98:3e:5e:1d:ca:d5:65:00:87:70:38:a6:7e:98:e5:28:94: 61:29:39:18:25:e1:f9:bb:08:ba:51:96:4e:73:26:59:25:3f: 5e:8e:f7:da:b3:0d:f6:f8:6d:67:e1:64:2d:34:97:dd:70:17: 2a:97:2d:4d:fe:83:67:21:9b:62:c2:22:6f:0a:12:69:e3:8a: 7d:59:97:07:13:58:53:65:38:74:62:5f:b8:5c:f7:44:f2:3e: 9d:9f:1b:71:5b:b8:9a:3e:94:46:ae:70:1f:31:6d:2d:ae:6c: 46:a4:c3:79:d4:7e:00:7a:a1:c6:68:f1:e5:cf:38:e9:9a:ea: f9:e3:9d:16:41:e9:5e:0a:b1:ec:36:4d:c5:e5:d4:5c:2f:1d: 00:ff:38:fa:71:9c:6c:cd:17:4a:9c:8c:34:d4:99:e8:76:9d: cd:f8:d8:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjUwOTEyMTgyODE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NjYzZi00YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85avJ0+vfD+Oxpunu7FuUx+9pD2BAZDs25bgS7qGQ3exRRs6gye41aOLFGui CKe5fdXi4FanY2I4mRxgJBDt2VzhFcSxZS44HJTQV+6b3XKPwLDwIuFiJQDwRGiW 6oYKQMAK9wT7Qxu98Lb3Au6EzytvJAcHETX1QVchKHvFOBGWQzOEPfSnGWhAW9P+ B2ZD7hDFcuXfqedMrH8ppr37dpj4hobNMc/21fwjHoSTHkiGeSb6Ny3cdjpNQ0ZQ JQzYz2FF7zxBtK1ckBSoCMPazy50C1NgL4YfRELnkCAB2Oy4SO9ncbGrf+DEQy3M bvCBB2MEwXLit46iGgr5O2ueEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCD/I9Ll shQSIzh3wzozV0gvmGAUMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvQjBCNzIyQkVG QTRBMTFFREE0N0MwOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSeAwDQYJKoZIhvcNAQELBQADggEBAKNMz5Vvb/aGfk+S Yu7iqyPlpGWQbHYMqKDdN/w9FdciYjezx/hV2UWvFzSdXqqzWtsm3eRswh9Oykro +MYCfafOo4sM6Vzs57HtIoP4AjuR7Pbm8+n2dVddEb+YPl4dytVlAIdwOKZ+mOUo lGEpORgl4fm7CLpRlk5zJlklP16O99qzDfb4bWfhZC00l91wFyqXLU3+g2chm2LC Im8KEmnjin1ZlwcTWFNlOHRiX7hc90TyPp2fG3FbuJo+lEaucB8xbS2ubEakw3nU fgB6ocZo8eXPOOma6vnjnRZB6V4Ksew2TcXl1FwvHQD/OPpxnGzNF0qcjDTUmeh2 nc342O8= -----END CERTIFICATE-----Generated at Mon Oct 27 17:31:44 2025 by rpki-client