$ rpki-client -vvf rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa File: 862720F4031611EB9086351AC4F9AE02.roa (raw, json) Hash identifier: 0U1qDwyT+BXkTCNxIT2/eM9Em/bib1Kk+8kHpIN2HS0= Subject key identifier: C6:50:D6:8F:65:E2:3B:D2:F9:E6:2C:D7:8B:AA:48:6A:59:4A:53:EF Certificate issuer: /CN=A913DD6A/serialNumber=BB9D5D50F75581972FC3AF1C6CE6AFCF57CFB93F Certificate serial: 082F Authority key identifier: BB:9D:5D:50:F7:55:81:97:2F:C3:AF:1C:6C:E6:AF:CF:57:CF:B9:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa Signing time: Thu 30 Oct 2025 21:11:09 +0000 ROA not before: Thu 30 Oct 2025 21:11:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 63931 IP address blocks: 103.47.246.0/23 maxlen: 24 103.204.104.0/23 maxlen: 24 192.140.248.0/22 maxlen: 24 2402:1280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.crl rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DD6A, serialNumber=BB9D5D50F75581972FC3AF1C6CE6AFCF57CFB93F Validity Not Before: Oct 30 21:11:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6903d46d-f9ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:2d:ff:46:9f:93:d3:4c:e2:ac:f6:c7:68: a3:8f:01:50:67:89:f7:c1:c0:9f:90:0b:5b:e5:54: eb:a8:0d:65:fb:58:6d:23:a4:c7:76:1e:9c:c2:24: 0b:70:1b:86:10:a6:75:21:1b:ea:d4:98:2d:c8:2a: 0b:42:f9:1f:f8:da:e7:37:fa:06:cb:c1:53:dd:e2: 3b:9b:6e:ee:ca:0e:52:21:99:62:ca:8a:8a:92:c2: 04:19:07:79:0d:37:dd:02:51:14:0e:7c:18:51:df: db:ce:31:4a:95:2b:a4:5f:56:1d:c9:32:0e:cb:86: 9e:e9:9d:4c:ca:55:58:e8:65:5f:f1:b6:98:33:94: ae:00:65:b9:32:5a:d6:c1:c5:aa:9f:3c:c2:84:c9: c2:ea:99:3e:72:99:6a:00:4d:bb:83:50:2a:95:13: 9c:a9:40:0b:1d:42:4f:f1:66:ad:23:00:a2:7c:ec: a9:c0:80:91:dd:51:36:7a:3f:af:8f:24:db:48:e4: cd:00:7f:94:de:e6:42:e1:e5:ef:30:05:35:32:94: 03:5a:04:29:ad:27:fc:4d:f1:a0:75:10:14:83:55: fd:b0:e1:32:d0:b8:3a:9f:11:ee:eb:2c:82:c2:30: 10:3b:90:0b:3b:52:ed:af:bb:c2:9a:1a:0c:b0:c8: 65:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:50:D6:8F:65:E2:3B:D2:F9:E6:2C:D7:8B:AA:48:6A:59:4A:53:EF X509v3 Authority Key Identifier: keyid:BB:9D:5D:50:F7:55:81:97:2F:C3:AF:1C:6C:E6:AF:CF:57:CF:B9:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/u51dUPdVgZcvw68cbOavz1fPuT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u51dUPdVgZcvw68cbOavz1fPuT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DD6A/39F48A10031511EBB55D2219C4F9AE02/862720F4031611EB9086351AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.246.0/23 103.204.104.0/23 192.140.248.0/22 IPv6: 2402:1280::/32 Signature Algorithm: sha256WithRSAEncryption 97:44:e8:55:16:4b:2b:b0:4d:09:cf:48:34:48:24:33:91:40: 5b:8f:39:c3:e6:e2:1b:f2:fc:37:80:fc:fc:47:fd:e6:af:5b: 53:e9:ff:74:74:25:c5:35:2b:94:34:f1:36:72:8f:79:ee:1a: 6f:27:b3:3b:03:c4:8c:29:3b:81:39:e4:8f:51:04:3c:b4:02: a6:26:e5:09:d0:de:16:05:7f:80:71:43:6b:31:32:ed:74:15: 9e:b3:5b:26:8e:ed:0f:d6:7b:2d:23:8c:c1:66:df:f4:ed:9c: 3e:a1:6f:b0:29:ac:52:ac:bd:06:a2:52:fb:d4:60:96:53:17: 0d:f7:40:d7:c5:01:03:d3:61:bc:3c:ab:aa:75:4a:1e:db:c3: fc:27:3f:7c:4e:67:6d:cc:c9:89:d3:ba:28:85:64:32:93:cc: ec:73:8e:77:f2:b9:cc:40:e6:09:19:3d:1a:14:4a:e8:e8:99: dc:75:89:93:f9:f6:b4:84:4b:40:f0:d7:dc:ab:44:00:99:6e: ad:d3:68:80:b8:e3:36:8e:92:b7:cd:75:ab:4f:c8:34:8c:9c: 0d:12:41:27:4f:eb:79:d9:80:62:e8:91:23:1b:53:9a:8a:b3: c9:49:97:9d:82:b5:19:1d:75:78:36:2e:fd:85:17:b9:00:73: f2:84:9a:91 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RENkExMTAvBgNVBAUTKEJCOUQ1RDUwRjc1NTgxOTcyRkMzQUYxQzZDRTZBRkNG NTdDRkI5M0YwHhcNMjUxMDMwMjExMTA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZDQ2ZC1mOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lEt/0afk9NM4qz2x2ijjwFQZ4n3wcCfkAtb5VTrqA1l+1htI6THdh6cwiQL cBuGEKZ1IRvq1JgtyCoLQvkf+NrnN/oGy8FT3eI7m27uyg5SIZliyoqKksIEGQd5 DTfdAlEUDnwYUd/bzjFKlSukX1YdyTIOy4ae6Z1MylVY6GVf8baYM5SuAGW5MlrW wcWqnzzChMnC6pk+cplqAE27g1AqlROcqUALHUJP8WatIwCifOypwICR3VE2ej+v jyTbSOTNAH+U3uZC4eXvMAU1MpQDWgQprSf8TfGgdRAUg1X9sOEy0Lg6nxHu6yyC wjAQO5ALO1Ltr7vCmhoMsMhlSwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFMZQ1o9l 4jvS+eYs14uqSGpZSlPvMB8GA1UdIwQYMBaAFLudXVD3VYGXL8OvHGzmr89Xz7k/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREQ2QS8zOUY0OEExMDAz MTUxMUVCQjU1RDIyMTlDNEY5QUUwMi91NTFkVVBkVmdaY3Z3NjhjYk9hdnoxZlB1 VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1MWRVUGRWZ1pjdnc2OGNiT2F2ejFmUHVUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RENkEvMzlGNDhBMTAwMzE1MTFFQkI1NUQyMjE5QzRGOUFFMDIvODYyNzIwRjQw MzE2MTFFQjkwODYzNTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnL/YDBAFnzGgDBALAjPgwDQQCAAIwBwMFACQCEoAwDQYJ KoZIhvcNAQELBQADggEBAJdE6FUWSyuwTQnPSDRIJDORQFuPOcPm4hvy/DeA/PxH /eavW1Pp/3R0JcU1K5Q08TZyj3nuGm8nszsDxIwpO4E55I9RBDy0AqYm5QnQ3hYF f4BxQ2sxMu10FZ6zWyaO7Q/Wey0jjMFm3/TtnD6hb7AprFKsvQaiUvvUYJZTFw33 QNfFAQPTYbw8q6p1Sh7bw/wnP3xOZ23MyYnTuiiFZDKTzOxzjnfyucxA5gkZPRoU Sujomdx1iZP59rSES0Dw19yrRACZbq3TaIC44zaOkrfNdatPyDSMnA0SQSdP63nZ gGLokSMbU5qKs8lJl52CtRkddXg2Lv2FF7kAc/KEmpE= -----END CERTIFICATE-----Generated at Wed Nov 5 14:34:04 2025 by rpki-client