$ rpki-client -vvf rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa File: 41DE51D0DF3E11EEBE02E04AC4F9AE02.roa (raw, json) Hash identifier: c58CEgh4CjRukGrqeNGEEV6pW1Olrp6Yxcjw73N7YrM= Subject key identifier: 77:7C:80:56:6D:62:00:58:4F:95:8D:04:5A:89:95:A5:1C:06:BE:33 Certificate issuer: /CN=A915E742/serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Certificate serial: 34F6 Authority key identifier: 60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa Signing time: Tue 28 Oct 2025 05:31:21 +0000 ROA not before: Tue 28 Oct 2025 05:31:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 56089 IP address blocks: 103.24.112.0/22 maxlen: 22 103.24.115.0/24 maxlen: 24 114.69.176.0/20 maxlen: 20 175.158.128.0/18 maxlen: 18 202.22.128.0/19 maxlen: 19 202.166.176.0/21 maxlen: 21 203.104.48.0/20 maxlen: 20 2404:2a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13558 (0x34f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E742, serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Validity Not Before: Oct 28 05:31:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69005529-5340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4b:e6:80:65:f3:1c:b6:c9:ce:51:6a:f4:53: 0e:46:90:03:2d:b6:67:61:58:22:07:3d:61:14:05: 5a:3a:c9:fc:2d:37:ec:ee:93:3f:a4:5c:a7:53:1a: 8b:63:e4:ac:2a:ff:cb:54:02:e6:4e:b9:ed:c6:1c: 2a:00:22:4a:4e:c9:b5:bb:a3:45:72:82:45:6b:85: 17:31:98:e8:67:d1:85:da:5a:41:10:d8:f6:a1:3b: f5:1c:37:a5:42:ce:b9:1d:03:bd:8b:98:2d:1c:67: 87:c7:0b:64:f5:ba:3b:18:40:be:14:e1:1e:fd:62: e7:f3:c1:ac:64:f8:cd:c4:4f:94:49:e9:d7:f2:98: f1:50:74:8c:08:d4:93:0d:e7:27:05:70:fd:54:ea: e8:4a:3e:6e:cd:1b:47:b2:71:3d:6b:21:49:4f:73: 52:3a:bb:c1:eb:e2:e5:c0:a9:3a:03:bc:ef:3e:69: 1f:12:60:8b:a6:2a:de:3e:48:7b:58:47:8f:10:96: 8a:1e:00:80:f2:99:e8:20:cc:32:46:16:99:9c:e3: 22:c3:79:9a:40:d7:8b:a3:f3:e6:59:3e:3c:92:41: 4a:e1:81:b9:7b:45:4a:41:ac:58:0d:6f:01:4b:4d: d1:ca:41:b6:ec:b0:71:68:83:60:df:2f:f5:bc:3a: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7C:80:56:6D:62:00:58:4F:95:8D:04:5A:89:95:A5:1C:06:BE:33 X509v3 Authority Key Identifier: keyid:60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.112.0/22 114.69.176.0/20 175.158.128.0/18 202.22.128.0/19 202.166.176.0/21 203.104.48.0/20 IPv6: 2404:2a00::/32 Signature Algorithm: sha256WithRSAEncryption af:d2:6f:fe:ad:8a:99:26:fc:3a:6e:89:6d:e3:cb:58:14:03: 63:3d:4f:b7:d2:4a:ee:20:2f:db:1a:35:23:41:66:b2:36:40: 4b:84:f6:a6:6b:a7:35:87:59:80:71:0d:61:28:16:f0:d0:a5: 36:39:07:f6:71:a3:99:93:78:d5:8d:94:df:bd:89:ba:a9:3e: 27:5c:53:12:7b:2c:2c:c4:28:54:b4:06:77:2c:51:18:29:10: fc:4f:30:eb:fa:c8:3a:b2:40:25:c2:7c:2f:e3:01:8c:a1:6d: 21:23:36:4f:b2:89:65:64:73:eb:60:97:6b:72:39:af:3b:b0: 4e:47:1e:87:41:b1:c9:ff:2d:1b:f8:8c:0e:13:0a:a5:99:25: 50:7f:4d:07:22:95:d3:22:41:ca:11:31:7b:ee:aa:67:83:42: 33:f5:a7:7b:db:b0:39:5d:9c:9e:dc:67:57:b6:9c:1d:80:e8: 65:be:ba:91:44:39:42:0d:45:4a:02:06:c8:d3:37:ff:26:b5: 73:81:c6:6b:dd:e8:2f:57:6e:a5:99:35:67:e2:4e:7d:25:da: 8b:b9:16:4a:a0:76:dd:d7:89:35:d2:71:64:5b:b4:1d:c9:92: 0d:b1:77:ac:5c:45:45:71:df:14:f7:16:d5:17:48:60:e4:cb: 1e:52:fe:f0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NDIxMTAvBgNVBAUTKDYwOTdCMzRENjc0MDEzMjgwNjI5Rjg4NUNBOTAzRkQ2 OUFCOTVCRTMwHhcNMjUxMDI4MDUzMTIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAwNTUyOS01MzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUvmgGXzHLbJzlFq9FMORpADLbZnYVgiBz1hFAVaOsn8LTfs7pM/pFynUxqL Y+SsKv/LVALmTrntxhwqACJKTsm1u6NFcoJFa4UXMZjoZ9GF2lpBENj2oTv1HDel Qs65HQO9i5gtHGeHxwtk9bo7GEC+FOEe/WLn88GsZPjNxE+USenX8pjxUHSMCNST DecnBXD9VOroSj5uzRtHsnE9ayFJT3NSOrvB6+LlwKk6A7zvPmkfEmCLpirePkh7 WEePEJaKHgCA8pnoIMwyRhaZnOMiw3maQNeLo/PmWT48kkFK4YG5e0VKQaxYDW8B S03RykG27LBxaINg3y/1vDr55wIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFHd8gFZt YgBYT5WNBFqJlaUcBr4zMB8GA1UdIwQYMBaAFGCXs01nQBMoBin4hcqQP9aauVvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc0Mi8yRUQwRjVGQzFE ODUxMUUyQjAzMkE5REIwOEIwMkNEMi9ZSmV6VFdkQUV5Z0dLZmlGeXBBXzFwcTVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKZXpUV2RBRXlnR0tmaUZ5cEFfMXBxNVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU3NDIvMkVEMEY1RkMxRDg1MTFFMkIwMzJBOURCMDhCMDJDRDIvNDFERTUxRDBE RjNFMTFFRUJFMDJFMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnGHADBARyRbADBAavnoADBAXKFoADBAPKprADBATLaDAw DQQCAAIwBwMFACQEKgAwDQYJKoZIhvcNAQELBQADggEBAK/Sb/6tipkm/DpuiW3j y1gUA2M9T7fSSu4gL9saNSNBZrI2QEuE9qZrpzWHWYBxDWEoFvDQpTY5B/Zxo5mT eNWNlN+9ibqpPidcUxJ7LCzEKFS0BncsURgpEPxPMOv6yDqyQCXCfC/jAYyhbSEj Nk+yiWVkc+tgl2tyOa87sE5HHodBscn/LRv4jA4TCqWZJVB/TQcildMiQcoRMXvu qmeDQjP1p3vbsDldnJ7cZ1e2nB2A6GW+upFEOUINRUoCBsjTN/8mtXOBxmvd6C9X bqWZNWfiTn0l2ou5Fkqgdt3XiTXScWRbtB3Jkg2xd6xcRUVx3xT3FtUXSGDkyx5S /vA= -----END CERTIFICATE-----Generated at Wed Nov 5 17:00:49 2025 by rpki-client