$ rpki-client -vvf rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/73FB6A56C81111EF84B47370C4F9AE02.roa File: 73FB6A56C81111EF84B47370C4F9AE02.roa (raw, json) Hash identifier: tB8QvSZbd7P3qeXdM5QXhG6BCWU4hUHOOoYEHYM8BvY= Subject key identifier: 1D:C3:58:55:4B:86:28:38:EF:3B:47:0E:DE:9A:26:23:BB:26:72:41 Certificate issuer: /CN=A914661C/serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Certificate serial: 02B3 Authority key identifier: 74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/73FB6A56C81111EF84B47370C4F9AE02.roa Signing time: Mon 27 Oct 2025 03:15:41 +0000 ROA not before: Mon 27 Oct 2025 03:15:41 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138998 IP address blocks: 103.7.4.0/24 maxlen: 24 103.7.5.0/24 maxlen: 24 2400:ac20::/36 maxlen: 36 2400:ac20:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 03:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914661C, serialNumber=74AEB63F2F1DA957D65820964FF79DF0F593800C Validity Not Before: Oct 27 03:15:41 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fee3dd-2823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e3:19:78:93:74:bb:52:d2:e3:cf:bf:4f:da: 99:9a:30:99:12:31:d3:30:4d:d7:7d:77:54:0a:15: 4d:82:ce:49:54:be:5e:73:49:f9:8e:00:79:22:9e: f5:66:39:72:03:f6:ca:a6:4e:46:90:86:9b:ae:29: 8e:e6:3a:76:9b:b8:d0:0d:4b:72:df:43:75:cb:76: 4a:1b:ce:e9:fc:b7:58:1c:77:2b:c9:fa:64:72:c9: ee:2c:a8:42:da:17:5c:49:6e:41:6e:c6:26:22:e4: 1b:f2:3d:75:da:c7:c3:71:93:a8:df:31:68:ae:5f: 67:6d:98:5a:0b:b8:7d:ad:ac:c8:30:e3:fa:73:6f: fd:d7:3c:12:0b:81:c8:15:f9:ba:44:72:ca:5c:85: 9f:3e:d4:e0:90:fc:a9:75:31:df:16:89:8a:66:18: 6a:1a:b7:b6:56:ef:32:71:ed:6d:79:ad:41:83:10: 6c:8d:22:0b:44:ef:91:01:e3:fb:0f:fe:57:80:ae: 47:d0:88:6d:eb:77:d7:9b:d9:eb:02:ff:35:48:7a: 0d:43:01:49:93:2f:8b:c7:48:8d:94:d3:fc:e7:31: 3a:a2:08:c6:ff:4e:97:40:2b:26:4c:70:f8:67:d7: 6b:84:0f:29:63:fa:26:06:ac:5b:24:1e:80:35:b8: b8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C3:58:55:4B:86:28:38:EF:3B:47:0E:DE:9A:26:23:BB:26:72:41 X509v3 Authority Key Identifier: keyid:74:AE:B6:3F:2F:1D:A9:57:D6:58:20:96:4F:F7:9D:F0:F5:93:80:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/dK62Py8dqVfWWCCWT_ed8PWTgAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK62Py8dqVfWWCCWT_ed8PWTgAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914661C/770CBE2436A611ED8FC1702CC4F9AE02/73FB6A56C81111EF84B47370C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.4.0/23 IPv6: 2400:ac20::/35 Signature Algorithm: sha256WithRSAEncryption af:15:1b:77:cf:f2:3a:d2:eb:1c:80:26:b3:8b:2a:51:7d:09: 9f:41:5b:55:ef:ea:21:35:a8:b3:50:2c:15:2d:e9:45:08:70: 40:26:56:18:8b:50:3c:96:bc:30:4b:41:20:32:30:fb:a1:05: 71:0b:7e:e3:e5:c3:73:59:0a:29:0a:15:be:d5:c7:ef:45:a9: 85:d6:b5:16:5d:b0:81:f8:63:9d:a3:33:88:40:fd:a8:25:31: 3d:c2:19:83:40:7c:fb:95:93:aa:61:76:73:b9:74:dc:0e:53: 2e:58:1b:9e:d3:cb:bc:3f:d4:34:4c:3f:bf:a5:d5:7d:22:0a: a1:f5:2d:5b:a0:38:4b:8b:39:43:a2:bf:d9:01:4f:a7:e6:35: 93:87:62:66:16:b2:ab:c4:cc:ca:bd:55:0c:04:4f:9c:24:7b: 44:23:c0:8c:1a:5e:20:21:2f:4a:7d:17:ea:a2:76:b9:07:4f: bb:76:f5:4a:0f:74:fe:83:f0:57:9c:46:9a:cb:0d:28:80:a7: 84:d4:61:f5:ae:cb:0a:f8:0a:d0:66:bf:0a:8d:4a:27:ee:7b: 08:49:a0:7d:f6:aa:a2:53:cc:ec:25:f7:c5:5d:33:8a:35:71: ca:f8:22:94:d5:46:52:6e:1b:94:85:3d:da:69:2d:94:6b:6d: b8:ab:72:8c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2MUMxMTAvBgNVBAUTKDc0QUVCNjNGMkYxREE5NTdENjU4MjA5NjRGRjc5REYw RjU5MzgwMEMwHhcNMjUxMDI3MDMxNTQxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZTNkZC0yODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkeMZeJN0u1LS48+/T9qZmjCZEjHTME3XfXdUChVNgs5JVL5ec0n5jgB5Ip71 ZjlyA/bKpk5GkIabrimO5jp2m7jQDUty30N1y3ZKG87p/LdYHHcryfpkcsnuLKhC 2hdcSW5BbsYmIuQb8j112sfDcZOo3zForl9nbZhaC7h9razIMOP6c2/91zwSC4HI Ffm6RHLKXIWfPtTgkPypdTHfFomKZhhqGre2Vu8yce1tea1BgxBsjSILRO+RAeP7 D/5XgK5H0Iht63fXm9nrAv81SHoNQwFJky+Lx0iNlNP85zE6ogjG/06XQCsmTHD4 Z9drhA8pY/omBqxbJB6ANbi4HQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB3DWFVL hig47ztHDt6aJiO7JnJBMB8GA1UdIwQYMBaAFHSutj8vHalX1lgglk/3nfD1k4AM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjYxQy83NzBDQkUyNDM2 QTYxMUVEOEZDMTcwMkNDNEY5QUUwMi9kSzYyUHk4ZHFWZldXQ0NXVF9lZDhQV1Rn QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLNjJQeThkcVZmV1dDQ1dUX2VkOFBXVGdBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY2MUMvNzcwQ0JFMjQzNkE2MTFFRDhGQzE3MDJDQzRGOUFFMDIvNzNGQjZBNTZD ODExMTFFRjg0QjQ3MzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnBwQwDgQCAAIwCAMGBSQArCAAMA0GCSqGSIb3DQEBCwUA A4IBAQCvFRt3z/I60uscgCaziypRfQmfQVtV7+ohNaizUCwVLelFCHBAJlYYi1A8 lrwwS0EgMjD7oQVxC37j5cNzWQopChW+1cfvRamF1rUWXbCB+GOdozOIQP2oJTE9 whmDQHz7lZOqYXZzuXTcDlMuWBue08u8P9Q0TD+/pdV9Igqh9S1boDhLizlDor/Z AU+n5jWTh2JmFrKrxMzKvVUMBE+cJHtEI8CMGl4gIS9KfRfqona5B0+7dvVKD3T+ g/BXnEaayw0ogKeE1GH1rssK+ArQZr8KjUon7nsISaB99qqiU8zsJffFXTOKNXHK +CKU1UZSbhuUhT3aaS2Ua224q3KM -----END CERTIFICATE-----Generated at Mon Oct 27 12:35:02 2025 by rpki-client