$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa File: 3ABCE5008B9811EE9C0BA252C4F9AE02.roa (raw, json) Hash identifier: GWLk3JarDTPL/Nuw5ExP7ZtwCD4NJBGph70xGsQwiUg= Subject key identifier: CC:C3:49:B8:40:C2:14:D7:2C:34:10:1B:1D:12:D9:26:97:5E:41:C3 Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 07A5 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa Signing time: Thu 12 Jun 2025 21:39:31 +0000 ROA not before: Thu 12 Jun 2025 21:39:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63916 IP address blocks: 103.42.212.0/22 maxlen: 22 103.42.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 22:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A, serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Jun 12 21:39:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684b4912-a0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:03:09:04:1b:39:e7:52:3b:14:01:94:0e:f9: 21:20:8d:4d:9b:79:ab:6f:47:4f:62:10:82:7f:49: 03:2e:3c:16:cf:f6:7d:88:01:d4:9d:a2:5c:d2:8f: d9:94:16:31:b0:52:76:21:8a:1a:56:b5:f2:d1:15: 45:3d:88:e4:f0:1b:5a:09:d6:45:03:70:b1:63:e7: 7b:40:12:ba:23:3f:b0:a6:28:31:d0:e2:ca:d8:bb: ca:99:98:61:2c:22:d9:ba:f5:7a:c5:45:03:08:73: 8c:ed:e9:51:f3:4f:b1:c3:d1:fd:9b:c8:fe:59:08: 20:32:b6:fb:f3:3c:4d:f1:77:45:19:e9:57:32:57: 5e:a9:0c:e5:85:0e:04:3e:41:b0:19:09:18:28:96: 1d:e5:2e:d6:e2:7e:93:ff:74:23:3e:8e:50:f8:21: 6e:b0:c0:d3:82:5e:bc:86:69:7a:77:db:71:e1:4e: 7c:01:70:51:65:13:3c:0b:70:c4:aa:f0:a9:2e:72: 0b:0a:1a:4c:34:5c:3b:06:b5:2c:24:8b:a7:6e:f4: a9:ed:e5:ad:38:aa:db:f0:a3:c7:f1:d8:c6:ce:96: 03:48:40:f5:7f:39:b4:85:3a:5c:00:b9:fb:69:19: 34:d4:80:4e:dc:d6:e1:b4:cb:f8:d3:09:ff:80:89: 97:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C3:49:B8:40:C2:14:D7:2C:34:10:1B:1D:12:D9:26:97:5E:41:C3 X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.212.0/22 Signature Algorithm: sha256WithRSAEncryption 23:35:95:29:41:64:f3:7d:11:6b:48:4a:a6:dc:e7:07:b7:7b: a0:77:1e:4f:55:9d:9d:54:11:a4:90:01:cf:ec:8a:f8:ac:99: 15:bb:54:28:50:44:2f:84:a9:99:86:c8:2f:f5:91:75:8b:bc: af:d2:04:55:ff:f8:95:3c:50:14:23:68:0b:4e:c9:a2:a4:ad: 60:cd:38:32:98:f6:57:f5:e2:70:66:2c:0b:2d:fe:69:63:4b: 06:fe:0f:de:f5:2a:c4:3c:b1:ad:cf:0e:53:44:03:ff:eb:68: 92:aa:fa:a3:4b:5d:b2:84:c9:50:0f:b1:28:d4:e8:6c:4d:76: d3:bd:cd:38:f9:e2:c1:f2:36:e3:6f:3d:95:c8:de:04:46:95: 32:8d:cd:d8:63:58:17:09:93:ea:39:04:8b:79:5a:20:ae:3b: 4f:e0:85:f4:6b:0c:a4:ff:26:26:62:b7:a8:ff:83:41:e6:e3: ac:77:0b:a9:c1:03:df:ab:f9:c7:90:60:4d:d3:6a:c8:f1:d8: 2e:30:54:06:f6:d0:0b:0e:e3:1a:a1:7e:dc:22:c9:f8:07:88: 3c:06:59:c4:12:c4:41:1a:de:64:3c:4c:32:fd:1b:11:6d:27: 03:0a:23:02:23:47:90:fc:d5:f6:db:ff:08:a0:16:34:23:18: 68:52:70:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjUwNjEyMjEzOTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiNDkxMi1hMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgMJBBs551I7FAGUDvkhII1Nm3mrb0dPYhCCf0kDLjwWz/Z9iAHUnaJc0o/Z lBYxsFJ2IYoaVrXy0RVFPYjk8BtaCdZFA3CxY+d7QBK6Iz+wpigx0OLK2LvKmZhh LCLZuvV6xUUDCHOM7elR80+xw9H9m8j+WQggMrb78zxN8XdFGelXMldeqQzlhQ4E PkGwGQkYKJYd5S7W4n6T/3QjPo5Q+CFusMDTgl68hml6d9tx4U58AXBRZRM8C3DE qvCpLnILChpMNFw7BrUsJIunbvSp7eWtOKrb8KPH8djGzpYDSED1fzm0hTpcALn7 aRk01IBO3NbhtMv40wn/gImXBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMzDSbhA whTXLDQQGx0S2SaXXkHDMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvM0FCQ0U1MDA4 Qjk4MTFFRTlDMEJBMjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKtQwDQYJKoZIhvcNAQELBQADggEBACM1lSlBZPN9EWtI Sqbc5we3e6B3Hk9VnZ1UEaSQAc/sivismRW7VChQRC+EqZmGyC/1kXWLvK/SBFX/ +JU8UBQjaAtOyaKkrWDNODKY9lf14nBmLAst/mljSwb+D971KsQ8sa3PDlNEA//r aJKq+qNLXbKEyVAPsSjU6GxNdtO9zTj54sHyNuNvPZXI3gRGlTKNzdhjWBcJk+o5 BIt5WiCuO0/ghfRrDKT/JiZit6j/g0Hm46x3C6nBA9+r+ceQYE3Tasjx2C4wVAb2 0AsO4xqhftwiyfgHiDwGWcQSxEEa3mQ8TDL9GxFtJwMKIwIjR5D81fbb/wigFjQj GGhScK4= -----END CERTIFICATE-----Generated at Mon Oct 27 14:33:13 2025 by rpki-client