$ rpki-client -vvf rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa File: 3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa (raw, json) Hash identifier: RaDP91UEhN5m0mKcwjFniZyRM8v4oThc8IlQpZodOMI= Subject key identifier: 49:67:64:EA:BA:17:0F:9E:F0:D1:EE:A0:F0:07:06:6F:3B:91:AD:3A Certificate issuer: /CN=A915087F/serialNumber=3A6DD4B70C4560EAC37E81E622CC43809F523B4B Certificate serial: 0282 Authority key identifier: 3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa Signing time: Fri 03 Oct 2025 02:27:33 +0000 ROA not before: Fri 03 Oct 2025 02:27:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.1.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915087F, serialNumber=3A6DD4B70C4560EAC37E81E622CC43809F523B4B Validity Not Before: Oct 3 02:27:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df3495-1644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d0:d2:ff:f9:ff:c5:5b:93:13:58:e9:9b:6c: a5:26:41:36:62:6d:c7:09:3a:f6:ca:fb:ea:1e:57: 36:09:0f:24:3e:e4:c5:81:e4:ef:7b:02:a6:d0:68: ae:dd:a9:b3:2d:dd:44:49:0b:94:47:7c:5f:5f:29: 9f:5f:75:2d:7e:b8:11:85:2e:1e:1f:d4:c1:77:d6: 7f:c1:89:1b:3d:7e:0f:42:3f:16:8f:f6:5b:e5:c5: fd:fb:6d:94:7a:11:26:ca:9c:b2:a1:46:cf:24:b4: 71:60:43:4e:5c:32:a0:bd:e0:61:8b:3a:47:d3:f9: f7:14:04:1c:77:b9:28:cd:67:64:5b:c7:7c:6d:09: 9e:ab:03:48:24:12:1b:10:4c:75:7d:d1:aa:42:f4: 21:81:03:ff:38:ac:ef:1c:08:0f:1e:85:de:f6:d7: e8:4c:32:9a:b0:7b:35:5b:87:9a:6f:a7:ce:1f:1d: 91:ed:7b:16:27:cd:dd:04:5a:60:b6:0a:58:54:b2: 0e:27:6c:b6:a7:61:7c:bf:60:c4:eb:36:89:ed:bb: ce:eb:e8:37:5f:4f:f8:28:8d:1e:25:22:e4:74:c2: d9:8f:c6:ca:69:2e:b9:90:83:cd:50:e4:99:33:b8: 1a:d4:e0:a1:69:b0:33:18:10:85:73:b5:5d:1d:6f: 78:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:67:64:EA:BA:17:0F:9E:F0:D1:EE:A0:F0:07:06:6F:3B:91:AD:3A X509v3 Authority Key Identifier: keyid:3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.158.0/24 Signature Algorithm: sha256WithRSAEncryption 19:1e:f9:25:b8:c9:20:1a:4d:5a:e1:cc:fe:d6:30:bd:00:61: 62:95:0c:80:48:b0:33:f1:58:da:3d:b5:4e:77:a7:ab:db:88: 38:a1:00:9e:c9:1c:47:f2:a6:5b:89:1f:2a:4d:d9:25:14:77: 58:3f:ae:0e:9c:33:23:8e:50:25:29:8f:15:43:e4:29:5b:f9: 93:49:52:15:21:af:a9:3d:1b:8d:69:b8:68:b4:2b:81:94:b2: 4c:43:87:80:6d:0d:c0:cf:7b:e8:f3:00:4e:b7:b8:34:5e:62: b6:07:8d:70:47:bc:54:f1:76:9c:66:eb:dc:6e:62:b1:35:70: b2:88:c0:d9:61:f1:be:8d:54:f8:2d:a1:c7:28:a0:e7:2a:2a: cc:e0:d0:59:28:58:b8:50:ba:2d:96:d5:45:8e:f6:bd:6d:6d: e4:4c:02:2a:21:d6:5a:62:84:6b:b3:a4:f3:5b:d8:dd:c2:2c: b9:7c:67:ec:b6:2c:c6:ca:40:65:5a:3c:80:78:be:72:d5:b3: bd:17:3f:6c:ca:d0:d8:9e:7f:3f:05:9e:1b:23:db:6d:e5:96: 89:03:b0:a3:21:b8:e5:aa:22:67:c8:2a:5e:ce:09:05:64:6c: 8f:6f:a6:5f:95:33:cf:c1:c3:a2:15:36:9e:1d:6b:8f:cc:51: 8c:c6:9f:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4N0YxMTAvBgNVBAUTKDNBNkRENEI3MEM0NTYwRUFDMzdFODFFNjIyQ0M0Mzgw OUY1MjNCNEIwHhcNMjUxMDAzMDIyNzMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmMzQ5NS0xNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NDS//n/xVuTE1jpm2ylJkE2Ym3HCTr2yvvqHlc2CQ8kPuTFgeTvewKm0Giu 3amzLd1ESQuUR3xfXymfX3UtfrgRhS4eH9TBd9Z/wYkbPX4PQj8Wj/Zb5cX9+22U ehEmypyyoUbPJLRxYENOXDKgveBhizpH0/n3FAQcd7kozWdkW8d8bQmeqwNIJBIb EEx1fdGqQvQhgQP/OKzvHAgPHoXe9tfoTDKasHs1W4eab6fOHx2R7XsWJ83dBFpg tgpYVLIOJ2y2p2F8v2DE6zaJ7bvO6+g3X0/4KI0eJSLkdMLZj8bKaS65kIPNUOSZ M7ga1OChabAzGBCFc7VdHW94UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFElnZOq6 Fw+e8NHuoPAHBm87ka06MB8GA1UdIwQYMBaAFDpt1LcMRWDqw36B5iLMQ4CfUjtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDg3Ri9GNzMxOTZBQTMz RTExMUVEQjNBMEVBNThDNEY5QUUwMi9PbTNVdHd4RllPckRmb0htSXN4RGdKOVNP MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09tM1V0d3hGWU9yRGZvSG1Jc3hEZ0o5U08wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA4N0YvRjczMTk2QUEzM0UxMTFFREIzQTBFQTU4QzRGOUFFMDIvM0REOUVEMkM0 QUU4MTFFRjlCQ0Y0QjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnAZ4wDQYJKoZIhvcNAQELBQADggEBABke+SW4ySAaTVrh zP7WML0AYWKVDIBIsDPxWNo9tU53p6vbiDihAJ7JHEfypluJHypN2SUUd1g/rg6c MyOOUCUpjxVD5Clb+ZNJUhUhr6k9G41puGi0K4GUskxDh4BtDcDPe+jzAE63uDRe YrYHjXBHvFTxdpxm69xuYrE1cLKIwNlh8b6NVPgtoccooOcqKszg0FkoWLhQui2W 1UWO9r1tbeRMAioh1lpihGuzpPNb2N3CLLl8Z+y2LMbKQGVaPIB4vnLVs70XP2zK 0Niefz8Fnhsj223llokDsKMhuOWqImfIKl7OCQVkbI9vpl+VM8/Bw6IVNp4da4/M UYzGn2g= -----END CERTIFICATE-----Generated at Mon Oct 20 00:22:59 2025 by rpki-client