$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa File: A11D7694261F11EAA88CE128C4F9AE02.roa (raw, json) Hash identifier: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM= Subject key identifier: 1D:EB:B8:32:75:C3:30:73:77:8D:81:A3:B9:B0:9E:6A:57:6F:BE:50 Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0BA2 Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa Signing time: Mon 02 Jun 2025 19:42:07 +0000 ROA not before: Mon 02 Jun 2025 19:42:07 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135307 IP address blocks: 103.113.84.0/22 maxlen: 22 103.113.84.0/24 maxlen: 24 103.113.85.0/24 maxlen: 24 103.113.86.0/24 maxlen: 24 103.113.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Jun 2 19:42:07 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683dfe8f-74bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a6:91:59:8a:81:3f:8b:4c:5b:b2:d6:3c:3f: 5b:76:85:1f:db:15:10:0d:92:8b:86:93:aa:2e:b3: bd:7d:d6:c2:18:77:0b:ae:e1:55:2a:5f:c8:1a:96: 2c:38:ed:54:c4:49:d9:7c:ee:70:c8:07:9c:93:18: 1d:36:67:8a:ae:23:2f:db:51:3d:79:05:a1:d1:b9: 73:80:e0:85:24:9e:72:dc:7a:d7:87:83:9c:20:68: 9e:c7:ae:a5:d9:f6:1d:6f:35:7b:ea:36:f8:42:cd: bb:05:8c:35:1f:d6:79:45:92:60:3e:da:8a:9b:a9: ae:7c:95:09:5c:6c:d3:6c:d7:b8:17:dd:90:08:0d: ee:98:be:41:70:39:71:42:4d:f3:ba:c0:94:d3:38: 98:43:ac:a8:01:f5:4d:f2:c6:ae:3b:e4:2c:76:2c: 8e:d4:77:1e:fe:f3:b1:43:c1:17:6f:74:f0:c1:5d: e5:6b:2a:46:fb:b7:33:44:18:8f:65:38:79:2e:36: f8:68:1d:f3:54:59:12:89:ac:f9:12:22:85:9a:c6: e5:d5:6b:eb:84:42:57:0b:80:f3:6f:05:7e:54:50: af:d7:c6:a8:df:25:35:71:0c:3f:9e:78:14:da:54: 79:be:9a:2e:e3:70:61:37:5d:14:be:d9:8d:43:6b: 68:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:EB:B8:32:75:C3:30:73:77:8D:81:A3:B9:B0:9E:6A:57:6F:BE:50 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.84.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:dd:87:3d:99:ff:b6:3c:d4:bf:bf:d1:bf:b3:dc:0a:82:af: e6:6c:77:51:35:89:74:55:90:a9:6b:54:e1:28:81:7d:9b:88: 88:5c:32:de:46:65:17:5e:d3:f7:51:62:cd:38:c3:f6:41:44: 6d:21:e2:9a:42:6c:bb:5e:82:38:f7:7c:a6:88:2b:59:18:96: 03:df:75:e6:9b:15:31:93:9a:70:80:19:a9:b7:2d:6d:71:d2: c7:7f:44:6b:e2:9d:85:13:b1:d1:4c:b2:1e:b1:a7:ab:02:bb: eb:44:3d:47:4e:05:4c:4c:6e:e0:d4:c4:54:75:e0:53:58:45: 57:2a:16:75:5b:af:35:7b:57:3f:10:b9:5e:6f:af:1e:a6:8e: 19:67:c1:58:14:19:0c:35:31:10:d2:bb:1a:c2:a8:58:33:65: 79:3f:09:d7:9b:f4:d0:92:6d:17:ff:22:e5:90:08:a3:37:b8: ea:43:ee:12:29:44:6c:0d:7d:00:c6:48:f6:17:79:8a:71:8a: fb:92:3d:bc:1c:a3:a0:a2:50:48:4c:e4:da:8d:52:ee:94:c9: b8:be:0c:f5:47:62:eb:37:8e:d8:bb:50:a8:f3:56:76:36:77: 74:72:26:b8:ec:e8:7c:bd:0a:66:46:64:ef:84:52:63:74:82: 3f:a6:3c:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUwNjAyMTk0MjA3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkZmU4Zi03NGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaaRWYqBP4tMW7LWPD9bdoUf2xUQDZKLhpOqLrO9fdbCGHcLruFVKl/IGpYs OO1UxEnZfO5wyAeckxgdNmeKriMv21E9eQWh0blzgOCFJJ5y3HrXh4OcIGiex66l 2fYdbzV76jb4Qs27BYw1H9Z5RZJgPtqKm6mufJUJXGzTbNe4F92QCA3umL5BcDlx Qk3zusCU0ziYQ6yoAfVN8sauO+QsdiyO1Hce/vOxQ8EXb3TwwV3laypG+7czRBiP ZTh5Ljb4aB3zVFkSiaz5EiKFmsbl1WvrhEJXC4DzbwV+VFCv18ao3yU1cQw/nngU 2lR5vpou43BhN10UvtmNQ2to9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFB3ruDJ1 wzBzd42Bo7mwnmpXb75QMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZGMEUvMUE3NThCMEUyNjFGMTFFQUFFMkU4RjI4QzRGOUFFMDIvQTExRDc2OTQy NjFGMTFFQUE4OENFMTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncVQwDQYJKoZIhvcNAQELBQADggEBAFzdhz2Z/7Y81L+/ 0b+z3AqCr+Zsd1E1iXRVkKlrVOEogX2biIhcMt5GZRde0/dRYs04w/ZBRG0h4ppC bLtegjj3fKaIK1kYlgPfdeabFTGTmnCAGam3LW1x0sd/RGvinYUTsdFMsh6xp6sC u+tEPUdOBUxMbuDUxFR14FNYRVcqFnVbrzV7Vz8QuV5vrx6mjhlnwVgUGQw1MRDS uxrCqFgzZXk/Cdeb9NCSbRf/IuWQCKM3uOpD7hIpRGwNfQDGSPYXeYpxivuSPbwc o6CiUEhM5NqNUu6Uybi+DPVHYus3jti7UKjzVnY2d3RyJrjs6Hy9CmZGZO+EUmN0 gj+mPCc= -----END CERTIFICATE-----Generated at Wed Nov 5 20:56:37 2025 by rpki-client