$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa File: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (raw, json) Hash identifier: Ac+21perclmyIdH4cwpABd4VrpSu8D0aj/0rXmLovJY= Subject key identifier: C1:23:52:FE:23:A7:2B:FB:3D:17:3E:F1:82:89:95:B7:D3:37:60:32 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0716 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa Signing time: Tue 02 Sep 2025 22:42:42 +0000 ROA not before: Tue 02 Sep 2025 22:42:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133044 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Sep 2 22:42:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b772e1-ba48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:46:b6:57:c6:58:98:f7:18:75:3d:52:ad:33: 03:52:4c:a7:2d:cc:a8:5a:b9:86:5b:22:c7:f0:89: 91:06:e6:c2:e3:e6:fd:58:3a:cc:b7:96:d6:28:e7: fe:cd:e0:ab:2e:89:99:08:e6:34:b6:8f:d7:c0:f2: ef:46:fd:83:ae:86:9f:7a:c5:38:36:c1:72:cd:47: 88:9e:b8:b5:ab:cc:2a:31:f6:54:ea:ec:85:c9:f9: f5:a2:29:ac:ac:b0:15:27:1f:90:cd:06:39:01:fa: f7:04:a4:cb:e7:a8:d8:9f:7e:93:d6:03:cb:92:11: cb:ff:10:2a:bd:fe:d7:33:7b:bd:3d:68:f2:b0:4a: d4:19:fd:9e:5c:6f:df:73:9d:cb:d9:30:f7:51:8d: b9:2d:02:10:4a:21:9a:e7:6e:e3:b9:00:27:8d:4f: df:a0:10:87:f6:33:f9:dd:da:a8:7d:e3:7e:3e:6e: e0:84:e8:1f:53:d2:40:82:69:60:c3:4d:62:60:a5: c7:7c:02:a4:52:5e:30:07:8a:54:0e:08:5d:44:be: 66:6d:9e:b5:e3:f0:3c:35:bb:96:84:2c:09:54:8e: ab:6c:1c:2b:df:a1:21:d6:97:84:3d:f2:5f:81:bc: ff:d7:7e:f0:b6:30:99:3d:50:8f:bc:48:9e:1e:67: e7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:23:52:FE:23:A7:2B:FB:3D:17:3E:F1:82:89:95:B7:D3:37:60:32 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption 82:59:76:5a:12:71:a1:57:89:88:5b:fa:1a:ea:46:fe:e6:8a: 33:a7:d1:db:36:4d:19:9e:9a:48:08:a4:70:a7:3e:91:75:f1: 30:28:8f:bb:a7:af:e1:c7:c3:12:05:af:d5:b1:04:2a:c9:55: 2b:d3:35:16:fb:54:ac:ed:ab:3b:cc:08:4f:ec:d3:6c:b0:4f: 86:27:e0:8c:78:09:e6:37:b1:c7:f8:62:fd:92:48:94:93:77: 07:08:4f:a7:81:b2:7b:5b:7d:9d:df:95:53:6d:65:a0:79:9d: fd:f9:c4:70:04:54:c5:28:96:fc:62:ec:b6:e3:34:96:26:49: 86:26:d5:ea:92:df:57:c1:aa:1a:08:5e:20:ec:6e:b9:e9:cc: 6c:a1:60:2d:b8:79:fa:d3:e0:9a:d5:a4:7b:b6:0d:ae:1b:a6: 6a:9e:09:b2:db:90:dd:9f:6b:3a:75:2b:bc:60:53:4d:cc:59: 7c:06:5b:7a:12:3e:9e:93:b8:3b:c2:9c:56:62:ac:04:a8:19: 93:19:22:50:65:1f:fe:b5:11:0b:bc:3d:b6:7b:c7:61:52:e1: d9:d6:23:e3:49:20:f9:73:fe:74:3d:6a:b4:87:dd:e3:11:69: 94:1e:f0:e0:dc:27:a5:cc:1e:72:1a:1a:44:10:9f:29:85:07: d1:a7:48:b9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwOTAyMjI0MjQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NzJlMS1iYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtka2V8ZYmPcYdT1SrTMDUkynLcyoWrmGWyLH8ImRBubC4+b9WDrMt5bWKOf+ zeCrLomZCOY0to/XwPLvRv2DroafesU4NsFyzUeInri1q8wqMfZU6uyFyfn1oims rLAVJx+QzQY5Afr3BKTL56jYn36T1gPLkhHL/xAqvf7XM3u9PWjysErUGf2eXG/f c53L2TD3UY25LQIQSiGa527juQAnjU/foBCH9jP53dqofeN+Pm7ghOgfU9JAgmlg w01iYKXHfAKkUl4wB4pUDghdRL5mbZ614/A8NbuWhCwJVI6rbBwr36Eh1peEPfJf gbz/137wtjCZPVCPvEieHmfnZQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMEjUv4j pyv7PRc+8YKJlbfTN2AyMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvMEYyMDZBRUE3 NzZGMTFFRDhFN0I4Nzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnY2UDBABn8jEwDwQCAAIwCQMHACABDfPQADANBgkqhkiG 9w0BAQsFAAOCAQEAgll2WhJxoVeJiFv6GupG/uaKM6fR2zZNGZ6aSAikcKc+kXXx MCiPu6ev4cfDEgWv1bEEKslVK9M1FvtUrO2rO8wIT+zTbLBPhifgjHgJ5jexx/hi /ZJIlJN3BwhPp4Gye1t9nd+VU21loHmd/fnEcARUxSiW/GLstuM0liZJhibV6pLf V8GqGgheIOxuuenMbKFgLbh5+tPgmtWke7YNrhumap4JstuQ3Z9rOnUrvGBTTcxZ fAZbehI+npO4O8KcVmKsBKgZkxkiUGUf/rURC7w9tnvHYVLh2dYj40kg+XP+dD1q tIfd4xFplB7w4NwnpcwechoaRBCfKYUH0adIuQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:17:07 2025 by rpki-client