$ rpki-client -vvf rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/694F9F9CBE2811EBBB48FF52C4F9AE02.roa File: 694F9F9CBE2811EBBB48FF52C4F9AE02.roa (raw, json) Hash identifier: iTUFdSRp6nWyaxTUI/RtXuC6V6TbUSDHt+jDf6Dd89Y= Subject key identifier: 61:E6:97:E5:58:E0:3F:CF:8D:CE:69:0A:9E:13:04:5F:B3:B7:F8:D0 Certificate issuer: /CN=A914C0F5/serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Certificate serial: 0626 Authority key identifier: 1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/694F9F9CBE2811EBBB48FF52C4F9AE02.roa Signing time: Thu 23 Oct 2025 00:13:33 +0000 ROA not before: Thu 23 Oct 2025 00:13:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138178 IP address blocks: 103.129.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C0F5, serialNumber=1ED7B87CF56B8B00EE143E469678503814E5FA53 Validity Not Before: Oct 23 00:13:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9732c-4a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b3:49:90:18:a8:28:65:08:60:47:4a:5a:c8: c2:a7:0c:13:b3:5d:b1:dd:95:a1:23:87:b9:31:77: a2:22:93:c6:96:cf:8c:a9:f1:c9:4d:6e:e9:00:91: e8:c5:76:f5:19:bd:b9:ed:b0:86:24:a7:12:6a:49: fa:7d:f4:7e:ec:6c:fd:c5:d5:e0:72:52:91:20:5c: 36:cd:6e:f9:a9:f4:a3:b5:a2:f6:39:27:0f:48:7e: 28:de:94:50:92:ba:ad:2b:47:aa:d1:3d:0d:c8:66: fb:9c:fa:a9:df:05:31:35:77:02:e4:fd:0d:7b:55: b3:b8:d7:0c:b7:7b:a4:d7:3c:41:46:c7:b9:65:23: e2:63:6e:66:ea:a4:f0:72:f1:69:90:64:56:ea:77: 71:65:bc:f0:72:10:d1:36:3a:1d:fc:1d:3a:11:71: fe:14:d9:6d:a3:dc:68:5f:00:a7:21:8b:d7:29:c7: 1a:ca:91:28:0b:66:ee:bb:15:f2:ba:9a:72:22:35: e9:0e:29:16:43:90:c3:83:da:6c:78:f4:b9:ff:32: ed:79:3b:98:47:f2:56:6a:cd:33:f2:7b:80:10:63: e0:43:a3:fd:52:dc:6b:38:f1:f1:d1:fd:e2:7e:a9: fd:58:2e:5f:f8:ee:69:19:6a:0d:31:21:aa:1d:81: 36:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E6:97:E5:58:E0:3F:CF:8D:CE:69:0A:9E:13:04:5F:B3:B7:F8:D0 X509v3 Authority Key Identifier: keyid:1E:D7:B8:7C:F5:6B:8B:00:EE:14:3E:46:96:78:50:38:14:E5:FA:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/Hte4fPVriwDuFD5GlnhQOBTl-lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hte4fPVriwDuFD5GlnhQOBTl-lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C0F5/DF013A32BE2511EB94568151C4F9AE02/694F9F9CBE2811EBBB48FF52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:45:6c:a0:e0:c4:4d:0f:b8:13:de:63:fa:53:1e:a0:ef:1f: 76:0a:89:c0:53:f3:76:76:98:be:7c:93:95:de:b7:df:f4:78: 47:c9:e4:21:b9:a6:1e:3d:44:27:7f:2e:bb:4e:a9:fe:dd:ab: 3c:84:06:79:45:c2:2d:7f:91:59:f3:ed:86:59:03:de:60:0c: 5d:33:69:d8:fc:a2:a9:87:4f:c7:85:35:72:7a:bf:c1:a9:d6: 58:e5:c3:f9:f5:1f:59:b4:35:e9:26:4c:1e:a2:84:37:2e:f7: 00:61:68:fd:d8:9a:41:35:9c:48:c0:9c:4a:7f:0e:64:07:ca: e1:6a:4f:70:54:03:3c:c7:31:05:e7:ea:e7:8d:5b:2e:d8:dc: a6:dd:f3:2c:be:fb:de:dd:2e:66:37:a9:cb:80:3e:94:57:a8: b4:40:10:5e:cd:6f:ed:a4:8c:31:5d:d8:88:6a:2f:a3:39:08: 56:a4:81:e9:69:a7:7f:bf:2d:8f:db:ee:a6:2b:68:3f:e5:f7: 6c:93:4f:9b:b1:ab:7e:fe:64:69:28:73:06:2b:6b:69:7e:60: a6:35:5b:ca:c1:48:ce:31:8f:1d:62:74:7d:07:3a:60:33:f1: ea:01:e9:ad:de:38:0d:ea:c6:a9:56:16:08:6a:81:ee:0f:5f: 06:2a:de:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMwRjUxMTAvBgNVBAUTKDFFRDdCODdDRjU2QjhCMDBFRTE0M0U0Njk2Nzg1MDM4 MTRFNUZBNTMwHhcNMjUxMDIzMDAxMzMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NzMyYy00YTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLNJkBioKGUIYEdKWsjCpwwTs12x3ZWhI4e5MXeiIpPGls+MqfHJTW7pAJHo xXb1Gb257bCGJKcSakn6ffR+7Gz9xdXgclKRIFw2zW75qfSjtaL2OScPSH4o3pRQ krqtK0eq0T0NyGb7nPqp3wUxNXcC5P0Ne1WzuNcMt3uk1zxBRse5ZSPiY25m6qTw cvFpkGRW6ndxZbzwchDRNjod/B06EXH+FNlto9xoXwCnIYvXKccaypEoC2buuxXy uppyIjXpDikWQ5DDg9psePS5/zLteTuYR/JWas0z8nuAEGPgQ6P9UtxrOPHx0f3i fqn9WC5f+O5pGWoNMSGqHYE2MQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGHml+VY 4D/Pjc5pCp4TBF+zt/jQMB8GA1UdIwQYMBaAFB7XuHz1a4sA7hQ+RpZ4UDgU5fpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzBGNS9ERjAxM0EzMkJF MjUxMUVCOTQ1NjgxNTFDNEY5QUUwMi9IdGU0ZlBWcml3RHVGRDVHbG5oUU9CVGwt bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZTRmUFZyaXdEdUZENUdsbmhRT0JUbC1sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMwRjUvREYwMTNBMzJCRTI1MTFFQjk0NTY4MTUxQzRGOUFFMDIvNjk0RjlGOUNC RTI4MTFFQkJCNDhGRjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngSQwDQYJKoZIhvcNAQELBQADggEBAF9FbKDgxE0PuBPe Y/pTHqDvH3YKicBT83Z2mL58k5Xet9/0eEfJ5CG5ph49RCd/LrtOqf7dqzyEBnlF wi1/kVnz7YZZA95gDF0zadj8oqmHT8eFNXJ6v8Gp1ljlw/n1H1m0NekmTB6ihDcu 9wBhaP3YmkE1nEjAnEp/DmQHyuFqT3BUAzzHMQXn6ueNWy7Y3Kbd8yy++97dLmY3 qcuAPpRXqLRAEF7Nb+2kjDFd2IhqL6M5CFakgelpp3+/LY/b7qYraD/l92yTT5ux q37+ZGkocwYra2l+YKY1W8rBSM4xjx1idH0HOmAz8eoB6a3eOA3qxqlWFghqge4P XwYq3lc= -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:52 2025 by rpki-client