$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D25A6970F40911EA8A5C9E70C4F9AE02.roa File: D25A6970F40911EA8A5C9E70C4F9AE02.roa (raw, json) Hash identifier: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw= Subject key identifier: 69:C1:08:31:0A:2A:7F:6D:47:C6:42:50:42:1C:DB:96:BF:F0:C6:70 Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 080C Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D25A6970F40911EA8A5C9E70C4F9AE02.roa Signing time: Sat 30 Aug 2025 21:42:34 +0000 ROA not before: Sat 30 Aug 2025 21:42:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141155 IP address blocks: 103.155.119.0/24 maxlen: 24 2406:6dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Aug 30 21:42:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b3704a-3747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:e1:7a:0a:1a:3d:a7:45:41:11:f6:7a:70: a2:7d:fe:88:76:cd:af:63:a4:6a:e1:8b:17:78:64: 07:40:e5:74:9f:a8:fa:d7:66:a3:8b:f5:3a:6e:b1: a3:8a:2f:d4:73:9d:49:dd:54:6a:d2:0a:80:b2:58: fc:8b:6b:36:ac:e2:9d:35:3f:3d:fa:c8:b4:4d:69: 30:ba:d2:ea:d7:03:eb:a2:20:98:3a:18:b1:6b:73: e0:c2:b5:a9:ea:63:e9:4a:4a:62:57:c5:f3:2e:80: 0d:52:4a:41:aa:2a:90:ae:06:66:d6:e3:01:45:25: ba:e7:d0:e1:72:0c:4f:f4:ec:4e:a6:3d:64:23:27: a2:87:30:d9:8a:49:dc:17:c1:e2:70:4a:47:6e:5b: b8:26:89:32:a5:4e:bf:e9:a8:06:c2:dd:6d:ec:3e: d2:50:93:d4:a3:87:ec:50:7b:06:a9:ff:f7:bb:6e: 85:9e:69:33:6c:02:81:fb:19:17:68:b5:15:61:33: d8:21:ec:0a:fe:be:56:d0:25:e5:40:32:c4:86:6e: 6a:db:e5:99:66:ce:aa:99:f4:06:7f:38:f8:c8:65: 50:d1:19:ea:6f:65:03:6e:01:5a:85:a0:73:5a:ee: f3:0c:1a:1a:79:72:ff:02:8f:0a:69:fc:fc:7b:de: 25:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C1:08:31:0A:2A:7F:6D:47:C6:42:50:42:1C:DB:96:BF:F0:C6:70 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D25A6970F40911EA8A5C9E70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.119.0/24 IPv6: 2406:6dc0::/32 Signature Algorithm: sha256WithRSAEncryption ba:50:7d:55:ab:13:8e:ac:88:26:3f:ca:93:8e:12:a2:a7:17: 04:fb:64:3d:e2:cb:6c:a4:4d:c7:fb:a1:4b:50:21:d9:97:40: 99:a7:6a:80:97:c2:47:78:67:df:a1:2f:aa:7d:ed:f9:31:e7: 7a:2d:83:52:4f:3a:83:b1:67:4c:3d:e0:5f:47:06:c7:8c:cf: 1f:e0:e8:b8:a9:75:5d:29:73:c4:11:59:25:35:e2:59:69:a7: d9:fe:e3:7d:db:b3:65:09:30:19:52:5c:85:75:fe:47:be:f0: 8f:ad:d0:76:de:2e:1c:3d:0e:39:12:74:c8:1f:f6:bd:fa:22: 2c:f5:60:7f:e3:2c:c9:b2:0b:b6:ed:35:1d:be:f2:af:31:a4: a0:b1:03:e5:59:70:0a:dc:08:f8:a8:41:ee:e3:d1:01:23:56: 72:82:e5:cf:c3:23:1c:f3:e4:30:9c:26:bf:3e:26:6b:be:db: e2:62:7f:cb:33:46:1c:12:ed:43:f7:93:d3:35:b1:1e:d5:86: f6:79:87:5c:80:db:f5:34:c3:01:4f:94:88:a8:a5:7d:0a:34: 9c:04:62:13:57:75:c4:24:5b:f7:8f:0f:a8:12:72:e4:60:03: 0e:72:74:57:95:a7:96:92:ea:e6:76:18:55:1b:81:5d:c1:3e: c3:85:30:85 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwODMwMjE0MjM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNzA0YS0zNzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2ThegoaPadFQRH2enCiff6Ids2vY6Rq4YsXeGQHQOV0n6j612aji/U6brGj ii/Uc51J3VRq0gqAslj8i2s2rOKdNT89+si0TWkwutLq1wProiCYOhixa3PgwrWp 6mPpSkpiV8XzLoANUkpBqiqQrgZm1uMBRSW659DhcgxP9OxOpj1kIyeihzDZiknc F8HicEpHblu4JokypU6/6agGwt1t7D7SUJPUo4fsUHsGqf/3u26FnmkzbAKB+xkX aLUVYTPYIewK/r5W0CXlQDLEhm5q2+WZZs6qmfQGfzj4yGVQ0Rnqb2UDbgFahaBz Wu7zDBoaeXL/Ao8Kafz8e94lswIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGnBCDEK Kn9tR8ZCUEIc25a/8MZwMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVEMkIvOEI2NzAwQTZGNDA4MTFFQTkwQUM1NjZGQzRGOUFFMDIvRDI1QTY5NzBG NDA5MTFFQThBNUM5RTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnm3cwDQQCAAIwBwMFACQGbcAwDQYJKoZIhvcNAQELBQAD ggEBALpQfVWrE46siCY/ypOOEqKnFwT7ZD3iy2ykTcf7oUtQIdmXQJmnaoCXwkd4 Z9+hL6p97fkx53otg1JPOoOxZ0w94F9HBseMzx/g6LipdV0pc8QRWSU14llpp9n+ 433bs2UJMBlSXIV1/ke+8I+t0HbeLhw9DjkSdMgf9r36Iiz1YH/jLMmyC7btNR2+ 8q8xpKCxA+VZcArcCPioQe7j0QEjVnKC5c/DIxzz5DCcJr8+Jmu+2+Jif8szRhwS 7UP3k9M1sR7VhvZ5h1yA2/U0wwFPlIiopX0KNJwEYhNXdcQkW/ePD6gScuRgAw5y dFeVp5aS6uZ2GFUbgV3BPsOFMIU= -----END CERTIFICATE-----Generated at Mon Sep 8 13:17:40 2025 by rpki-client