$ rpki-client -vvf rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa File: 1E5E9AEAC81211EFB612B471C4F9AE02.roa (raw, json) Hash identifier: DfTEELTYbZSEDop0PhWnfQdtallPGnkFtyw4EV80WXU= Subject key identifier: 73:90:68:8C:B0:7E:53:96:88:79:65:DB:12:25:77:33:5F:02:BA:67 Certificate issuer: /CN=A914661C/serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Certificate serial: 02B4 Authority key identifier: 74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa Signing time: Mon 27 Oct 2025 03:15:42 +0000 ROA not before: Mon 27 Oct 2025 03:15:42 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151786 IP address blocks: 103.7.4.0/24 maxlen: 24 2400:ac20:3000::/36 maxlen: 36 2400:ac20:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 03:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914661C, serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Validity Not Before: Oct 27 03:15:42 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fee3de-1c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:26:35:c8:89:0a:69:3a:d0:35:b1:0b:39:e8: ff:d0:e2:11:78:21:87:7f:bf:0c:06:db:3d:64:f6: 37:4d:09:22:13:fe:bc:9f:49:8b:7f:01:01:5b:f3: 7a:6c:e1:b4:ae:5a:ac:7e:b9:1c:4e:15:b3:09:bc: 5a:90:c8:0b:31:7f:a7:d0:6c:8f:0c:f5:a7:7d:07: 8b:c1:70:2a:25:92:31:6d:78:6b:2d:88:a0:e5:0c: ff:1e:3b:9f:ef:6e:c8:0b:16:5e:db:73:a0:0e:51: 31:48:3f:66:a0:26:14:d7:15:f1:1f:b2:d6:5c:68: 45:eb:48:27:56:7f:68:26:c3:5f:de:3d:99:27:ca: 67:5e:f2:59:81:00:e4:45:ce:b2:f4:b1:ba:63:f3: f2:5c:a1:9a:e2:6e:16:0e:af:5f:c6:da:49:84:fa: 34:81:7e:ed:70:bd:33:1f:29:07:23:ca:bb:0f:8f: a7:e2:3b:e7:33:38:ed:5a:71:b1:8f:1f:9c:9d:02: b0:78:98:3b:5a:7f:25:13:77:05:9e:51:63:0e:19: 7a:fd:51:26:ad:70:b1:cc:62:e3:80:36:53:fe:96: 2a:81:ab:0a:0f:63:bc:a7:f9:fb:93:1e:80:a4:26: 5c:4f:7c:30:c2:49:9d:35:b9:b2:1a:f9:4e:56:78: 81:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:90:68:8C:B0:7E:53:96:88:79:65:DB:12:25:77:33:5F:02:BA:67 X509v3 Authority Key Identifier: keyid:74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/1E5E9AEAC81211EFB612B471C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.4.0/24 IPv6: 2400:ac20:3000::-2400:ac20:4000:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9f:fe:68:0a:9c:05:ad:81:e7:d1:48:3d:30:3e:34:e0:18:51: 77:c0:82:57:18:43:97:16:ee:0a:f4:df:87:3b:a6:7e:36:31: 27:33:91:56:a6:0b:80:c6:f7:1b:09:93:bc:37:9b:53:4f:99: a7:1c:d7:26:34:38:f1:c4:b6:18:70:25:18:4f:3c:84:a2:02: 2b:b3:b2:e0:a8:34:d1:f9:cc:08:b2:0e:16:a2:6f:e0:01:f0: 23:b2:e2:aa:c1:1f:43:09:65:3a:9e:e2:8a:9b:85:6d:8a:42: 77:be:92:9a:c3:90:a4:44:d0:b8:e7:42:08:83:e8:9d:8c:12: 53:52:c6:b1:29:87:ad:59:46:72:d5:41:12:a5:99:b0:c2:d9: 87:17:53:20:a8:76:db:42:9b:83:79:b3:4c:71:96:13:78:8d: 00:c4:75:b6:a5:de:7f:e0:30:00:5c:d8:79:ab:c5:8f:02:4e: eb:48:1f:98:66:62:2b:fd:b9:f1:35:3c:3c:d0:31:ff:da:13: cc:89:37:0b:6a:29:87:74:d0:38:7a:92:06:ac:ba:b3:98:04: db:00:22:05:dc:09:eb:a4:0c:0b:62:c7:78:eb:9d:e0:f1:a1: 70:12:6c:39:ae:dc:a5:74:e7:98:23:4d:72:e4:dd:86:9d:0a: 29:77:cd:a8 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2MUMxMTAvBgNVBAUTKDc0QUVCNjNGMkYxREE5NTdENjU4MjA5NjRGRjc5REYw RjU5MzgwMEMwHhcNMjUxMDI3MDMxNTQyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZTNkZS0xYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSY1yIkKaTrQNbELOej/0OIReCGHf78MBts9ZPY3TQkiE/68n0mLfwEBW/N6 bOG0rlqsfrkcThWzCbxakMgLMX+n0GyPDPWnfQeLwXAqJZIxbXhrLYig5Qz/Hjuf 727ICxZe23OgDlExSD9moCYU1xXxH7LWXGhF60gnVn9oJsNf3j2ZJ8pnXvJZgQDk Rc6y9LG6Y/PyXKGa4m4WDq9fxtpJhPo0gX7tcL0zHykHI8q7D4+n4jvnMzjtWnGx jx+cnQKweJg7Wn8lE3cFnlFjDhl6/VEmrXCxzGLjgDZT/pYqgasKD2O8p/n7kx6A pCZcT3wwwkmdNbmyGvlOVniBmQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHOQaIyw flOWiHll2xIldzNfArpnMB8GA1UdIwQYMBaAFHSutj8vHalX1lgglk/3nfD1k4AM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjYxQy83NzBDQkUyNDM2 QTYxMUVEOEZDMTcwMkNDNEY5QUUwMi9kSzYyUHk4ZHFWZldXQ0NXVF9lZDhQV1Rn QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLNjJQeThkcVZmV1dDQ1dUX2VkOFBXVGdBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY2MUMvNzcwQ0JFMjQzNkE2MTFFRDhGQzE3MDJDQzRGOUFFMDIvMUU1RTlBRUFD ODEyMTFFRkI2MTJCNDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMAwEAgABMAYDBABnBwQwGQQCAAIwEzARAwYEJACsIDADBwAkAKwgQAAwDQYJ KoZIhvcNAQELBQADggEBAJ/+aAqcBa2B59FIPTA+NOAYUXfAglcYQ5cW7gr034c7 pn42MSczkVamC4DG9xsJk7w3m1NPmacc1yY0OPHEthhwJRhPPISiAiuzsuCoNNH5 zAiyDhaib+AB8COy4qrBH0MJZTqe4oqbhW2KQne+kprDkKRE0LjnQgiD6J2MElNS xrEph61ZRnLVQRKlmbDC2YcXUyCodttCm4N5s0xxlhN4jQDEdbal3n/gMABc2Hmr xY8CTutIH5hmYiv9ufE1PDzQMf/aE8yJNwtqKYd00Dh6kgasurOYBNsAIgXcCeuk DAtix3jrneDxoXASbDmu3KV055gjTXLk3YadCil3zag= -----END CERTIFICATE-----Generated at Mon Oct 27 17:44:20 2025 by rpki-client