$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa File: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (raw, json) Hash identifier: oQkH3u9NTYvKUYQPQlkbYyuLgyzF8QlzdxljTJ0MaOk= Subject key identifier: C9:43:8F:1B:FF:45:42:76:E1:7E:05:43:FD:80:95:E6:5F:EA:F9:D4 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 01AE Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa Signing time: Fri 19 Sep 2025 04:11:03 +0000 ROA not before: Fri 19 Sep 2025 04:11:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23532 IP address blocks: 103.135.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 06:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Sep 19 04:11:03 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ccd7d7-0be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:5a:36:f5:79:1b:74:c8:a0:0b:93:39:88: 27:10:73:67:dd:69:90:50:6c:68:d6:88:31:e2:ba: aa:14:60:9a:d7:e6:3e:f5:0d:c2:32:81:76:df:da: 96:09:22:56:4e:76:29:c4:23:37:b4:21:6d:4f:30: b1:0b:c3:4c:4c:37:74:ed:e8:c6:70:87:dd:d0:ae: a9:23:45:fe:88:9c:e3:ca:80:c4:40:10:f1:3d:a6: d0:f3:04:39:9a:dd:00:12:3d:30:55:ce:e7:ae:b2: bc:43:eb:ee:d5:5f:3c:fb:15:f3:85:fa:8f:8c:ac: 1f:f4:37:dc:0f:a0:9b:75:0f:52:57:ca:57:51:bc: a2:9b:66:56:f5:75:67:ee:57:c3:d3:84:06:7a:b0: 3d:ed:39:94:fb:7e:5f:f9:57:cd:2a:f2:ca:a6:f2: 68:08:56:7b:9c:36:c6:65:8b:d3:ef:d2:6a:0f:91: a7:8e:6b:4d:3c:d3:a0:c1:98:d1:36:38:92:cb:f8: e0:7b:11:34:7b:f7:79:18:84:02:e1:99:bd:50:5c: 36:0a:90:fe:2b:84:ce:e8:6e:23:e4:33:61:33:77: 81:11:3e:96:1f:ba:a8:3c:c0:46:3c:1f:6c:e4:a4: 41:1d:82:8c:01:27:12:9e:12:4e:46:82:9e:f0:c8: 7e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:43:8F:1B:FF:45:42:76:E1:7E:05:43:FD:80:95:E6:5F:EA:F9:D4 X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.44.0/24 Signature Algorithm: sha256WithRSAEncryption 78:7a:e1:88:bd:9b:99:8e:73:c0:9e:30:bf:71:77:e7:f0:02: e6:f6:37:61:df:34:fd:be:de:b7:44:e7:01:a5:e1:ec:73:ab: be:34:5e:03:00:d5:e0:3a:a4:76:1f:2c:e2:47:e5:bf:88:99: 9d:cc:94:fe:d4:91:a8:f7:0d:9b:57:89:d6:8a:ae:c5:d1:ef: 8e:47:e5:09:7b:08:0c:19:ba:7c:25:a3:5f:37:e5:4c:3d:74: 56:2d:62:ff:00:d2:5d:21:76:eb:ef:01:9f:09:58:ec:d4:0f: 87:b1:1e:c5:a6:0c:32:c0:e2:70:3f:75:a7:6f:ec:be:a5:a5: ac:ab:57:35:9c:18:ca:d3:a4:15:ce:fc:5c:a8:d6:32:d9:dc: ba:38:04:64:53:8c:8e:d4:13:ff:b6:2a:c9:16:19:c0:d3:ca: 3f:72:ab:5d:f1:20:68:d7:6c:4e:3b:e6:b7:4c:d5:70:8f:f9: a3:1a:ff:d5:94:30:2e:63:b6:0e:3c:c2:ba:2b:62:6c:af:ed: 7a:0b:ae:3a:3e:f1:a4:ca:06:94:f0:3c:fa:c5:18:7c:f3:b1: 60:99:2a:6c:0b:7e:82:50:23:07:8d:2b:80:ca:be:c8:93:80: 8b:4c:30:cc:93:a5:ba:ac:58:cf:46:e0:29:2a:d7:5f:74:be: 6d:b1:91:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUwOTE5MDQxMTAzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjZDdkNy0wYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvadaNvV5G3TIoAuTOYgnEHNn3WmQUGxo1ogx4rqqFGCa1+Y+9Q3CMoF239qW CSJWTnYpxCM3tCFtTzCxC8NMTDd07ejGcIfd0K6pI0X+iJzjyoDEQBDxPabQ8wQ5 mt0AEj0wVc7nrrK8Q+vu1V88+xXzhfqPjKwf9DfcD6CbdQ9SV8pXUbyim2ZW9XVn 7lfD04QGerA97TmU+35f+VfNKvLKpvJoCFZ7nDbGZYvT79JqD5GnjmtNPNOgwZjR NjiSy/jgexE0e/d5GIQC4Zm9UFw2CpD+K4TO6G4j5DNhM3eBET6WH7qoPMBGPB9s 5KRBHYKMAScSnhJORoKe8Mh+BwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMlDjxv/ RUJ24X4FQ/2AleZf6vnUMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU4QkYvQjM4OUNGMzg0MUE3MTFFRTkyRTVCMzc4QzRGOUFFMDIvRDA2MEI1QzRC OUVBMTFFRkJCNzFBOTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhywwDQYJKoZIhvcNAQELBQADggEBAHh64Yi9m5mOc8Ce ML9xd+fwAub2N2HfNP2+3rdE5wGl4exzq740XgMA1eA6pHYfLOJH5b+ImZ3MlP7U kaj3DZtXidaKrsXR745H5Ql7CAwZunwlo1835Uw9dFYtYv8A0l0hduvvAZ8JWOzU D4exHsWmDDLA4nA/dadv7L6lpayrVzWcGMrTpBXO/Fyo1jLZ3Lo4BGRTjI7UE/+2 KskWGcDTyj9yq13xIGjXbE475rdM1XCP+aMa/9WUMC5jtg48wrorYmyv7XoLrjo+ 8aTKBpTwPPrFGHzzsWCZKmwLfoJQIweNK4DKvsiTgItMMMyTpbqsWM9G4Ckq1190 vm2xkSI= -----END CERTIFICATE-----Generated at Tue Oct 14 17:26:36 2025 by rpki-client