$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/DF7C7778A97711F0A76BF369C4F9AE02.roa File: DF7C7778A97711F0A76BF369C4F9AE02.roa (raw, json) Hash identifier: OSXhKKiDl5kubjEXiVsvjwFhJaQLJC7jeqKNWBQrzaE= Subject key identifier: 24:75:8A:4E:E0:18:E1:9A:96:42:8E:3E:F0:A9:BC:3E:7D:96:EA:44 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0C54 Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/DF7C7778A97711F0A76BF369C4F9AE02.roa Signing time: Wed 15 Oct 2025 03:34:36 +0000 ROA not before: Wed 15 Oct 2025 03:34:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153038 IP address blocks: 103.155.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Oct 15 03:34:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ef164c-c644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:73:ca:08:61:19:6c:81:4e:b8:8a:af:54:9d: 33:53:4e:15:5e:42:64:2b:df:33:ca:d5:c3:93:01: 1f:92:22:5e:da:eb:67:2c:c2:51:c4:30:7b:4a:b9: b1:a2:c2:9a:13:01:a1:96:47:10:a9:03:89:1a:de: 1b:85:ee:73:ee:10:48:65:3a:49:bb:b3:02:c8:db: 39:fa:fd:e1:be:1a:4b:a5:f7:35:20:ce:b7:6a:3f: 2b:c5:f3:e3:4c:43:d0:05:9d:6b:d4:55:65:f4:c3: b3:5e:42:5b:66:79:fd:41:31:7b:25:64:3c:d5:6a: f9:14:92:39:28:7c:99:08:52:2a:6b:3e:4c:6c:fb: 03:8c:dc:8c:fb:56:25:7f:d7:39:9c:db:02:ba:e7: 68:f9:82:be:54:61:ee:8d:de:2d:8c:27:2e:5e:99: 82:d3:2b:79:69:6d:3c:4a:10:c5:02:fb:f3:e3:6b: db:df:27:60:94:3b:66:b0:a6:bf:81:62:00:f0:fe: 3b:65:79:c8:43:6d:df:35:be:13:be:53:4e:80:16: 5b:65:b7:dd:5b:4d:69:cb:3a:4a:73:c4:de:25:67: 57:26:d1:8a:3a:66:0e:19:ee:e5:c8:12:83:9d:ea: b8:c0:e9:91:43:84:f4:de:4b:63:54:8c:5c:ff:63: 22:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:75:8A:4E:E0:18:E1:9A:96:42:8E:3E:F0:A9:BC:3E:7D:96:EA:44 X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/DF7C7778A97711F0A76BF369C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.27.0/24 Signature Algorithm: sha256WithRSAEncryption 46:34:a5:dc:7d:ec:9a:b2:8e:f6:d1:8b:6c:9c:fe:66:40:1f: fb:33:5a:93:9c:4c:e2:ad:fe:ec:6f:04:5e:41:0a:93:24:67: 69:be:a8:89:86:e0:8e:8b:b1:a8:65:a7:19:70:e0:b0:dd:2c: b1:0c:62:5c:b4:c2:63:9b:08:b6:b7:23:d8:a8:c7:8d:0e:10: 56:9f:44:45:1a:6b:23:f5:1b:52:e7:9e:ed:1f:1b:9a:19:f2: c6:a6:8f:63:de:8a:d8:c3:f3:dc:1f:28:6a:23:06:7e:6f:ce: 41:ea:fd:b4:3c:4f:c8:ee:69:45:dc:aa:c7:5a:3f:cd:f6:ae: 73:05:91:f6:7b:ac:20:93:19:0b:e8:e1:d7:81:6e:71:42:31: 05:b0:50:f7:62:18:ac:68:a1:c5:29:12:51:65:89:bd:d2:87: 5e:b2:9e:51:2c:75:d3:76:d3:46:c2:a0:0c:aa:1e:09:77:86: 48:dc:aa:0e:1e:68:a9:e5:55:a5:6f:2b:22:b7:1c:9a:68:8b: 83:83:99:82:06:47:de:03:59:2d:bd:9a:c2:79:55:01:b7:f9: cb:72:83:d8:2c:be:77:9d:4f:6f:52:b6:7d:b4:fb:46:c2:3a: 51:69:65:80:39:7a:e8:a6:fd:fe:51:2b:bb:8e:f7:22:5e:d5: b5:25:b4:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjUxMDE1MDMzNDM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmMTY0Yy1jNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XPKCGEZbIFOuIqvVJ0zU04VXkJkK98zytXDkwEfkiJe2utnLMJRxDB7Srmx osKaEwGhlkcQqQOJGt4bhe5z7hBIZTpJu7MCyNs5+v3hvhpLpfc1IM63aj8rxfPj TEPQBZ1r1FVl9MOzXkJbZnn9QTF7JWQ81Wr5FJI5KHyZCFIqaz5MbPsDjNyM+1Yl f9c5nNsCuudo+YK+VGHujd4tjCcuXpmC0yt5aW08ShDFAvvz42vb3ydglDtmsKa/ gWIA8P47ZXnIQ23fNb4TvlNOgBZbZbfdW01pyzpKc8TeJWdXJtGKOmYOGe7lyBKD neq4wOmRQ4T03ktjVIxc/2MinwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCR1ik7g GOGalkKOPvCpvD59lupEMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U0QUEvNjc0Q0EyOUUxMURCMTFFQUJGNDVEQTU1QzRGOUFFMDIvREY3Qzc3NzhB OTc3MTFGMEE3NkJGMzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmxswDQYJKoZIhvcNAQELBQADggEBAEY0pdx97JqyjvbR i2yc/mZAH/szWpOcTOKt/uxvBF5BCpMkZ2m+qImG4I6Lsahlpxlw4LDdLLEMYly0 wmObCLa3I9iox40OEFafREUaayP1G1Lnnu0fG5oZ8samj2PeitjD89wfKGojBn5v zkHq/bQ8T8juaUXcqsdaP832rnMFkfZ7rCCTGQvo4deBbnFCMQWwUPdiGKxoocUp ElFlib3Sh16ynlEsddN200bCoAyqHgl3hkjcqg4eaKnlVaVvKyK3HJpoi4ODmYIG R94DWS29msJ5VQG3+ctyg9gsvnedT29Stn20+0bCOlFpZYA5euim/f5RK7uO9yJe 1bUltOo= -----END CERTIFICATE-----Generated at Mon Nov 3 00:03:32 2025 by rpki-client