$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CF554666863D11F08BD39411C4F9AE02.roa File: CF554666863D11F08BD39411C4F9AE02.roa (raw, json) Hash identifier: xO1be/sHFWCSWufgswMtE4HFdmxcDzgkTtFF/fSGsp4= Subject key identifier: 43:1F:86:2C:F3:A7:85:B0:60:F1:D0:88:DC:BA:08:C1:4F:99:AF:88 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 3965 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CF554666863D11F08BD39411C4F9AE02.roa Signing time: Sun 31 Aug 2025 07:41:58 +0000 ROA not before: Sun 31 Aug 2025 07:41:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18053 IP address blocks: 115.186.48.0/22 maxlen: 24 203.81.236.0/24 maxlen: 24 203.81.237.0/24 maxlen: 24 203.81.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14693 (0x3965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Aug 31 07:41:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b3fcc5-8e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:57:07:d6:90:fd:7a:b8:69:37:f3:5c:e2: 75:79:ed:92:94:63:f7:2c:14:f8:1e:e7:4a:dc:71: e6:f7:7b:6f:9c:5d:a1:ca:e9:d5:77:da:24:1b:16: 05:78:94:db:ba:58:bc:ef:d7:03:29:6b:a3:55:c1: f2:e3:cc:1a:3c:0e:8c:07:f4:36:d1:02:76:6f:d6: 37:37:61:4d:81:4c:0a:11:2e:a1:77:18:8e:12:ff: 1e:d1:36:57:fb:c6:1d:88:fc:35:c4:66:a6:66:dd: db:26:14:b4:7d:24:14:c6:c6:92:26:54:b5:f6:7f: 73:b0:d5:20:e5:18:9b:6b:25:5b:82:f5:12:1e:c3: fb:e3:23:0c:3c:e3:7a:cb:86:ae:ae:a5:a1:51:1e: 13:83:ed:8f:f6:a0:53:61:4d:35:f7:fe:99:b1:ad: 9c:99:e9:4b:2f:80:78:6d:15:ea:7d:05:a8:20:54: ac:ec:1a:c1:a9:6d:f5:22:75:64:65:5c:f4:21:6e: 18:f4:35:cc:c8:f2:b4:64:67:77:a7:60:76:cd:b9: 94:a1:ee:94:0f:de:e5:fb:27:9b:1e:4b:3e:c7:30: fa:93:b9:af:05:dc:77:6a:d3:d7:1c:6d:ed:c0:ba: 99:11:0f:a5:ff:3a:1d:3b:54:cc:6a:27:a0:c5:1d: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1F:86:2C:F3:A7:85:B0:60:F1:D0:88:DC:BA:08:C1:4F:99:AF:88 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CF554666863D11F08BD39411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.186.48.0/22 203.81.236.0-203.81.238.255 Signature Algorithm: sha256WithRSAEncryption 7f:65:2a:f2:07:e7:43:c3:69:a6:e5:62:86:9c:a7:82:14:b2: 68:75:52:9c:51:d2:8e:56:ca:94:16:63:93:ba:9e:f6:b5:1d: 89:27:7a:ea:30:a7:b8:3b:e9:4a:8b:e9:9c:68:df:bd:e8:40: 03:4a:b6:d6:5b:59:ff:67:db:fc:ba:34:6e:37:15:48:92:8a: e5:17:2c:0b:1e:5b:1a:d9:f1:62:cd:ae:9e:09:c0:ba:64:07: 9a:17:2a:5b:d9:84:ab:81:ee:9c:66:e7:ff:36:fc:2e:e5:c0: d2:c1:c8:5b:d6:62:31:94:fa:7d:91:2f:33:6a:54:0c:47:0e: f5:65:15:14:4e:59:40:58:62:2f:73:a0:0e:7e:f0:cc:fc:71: 1e:16:49:7a:de:6f:f3:67:d1:98:74:43:81:77:f9:97:21:6e: 65:42:93:c2:f1:78:af:bb:70:bb:45:87:b4:22:0a:6c:6f:69: 9c:43:48:0a:a2:03:ad:4c:ee:9c:17:96:40:72:b1:bb:2c:81: 33:53:1e:e7:8d:21:4e:53:ab:51:ab:9e:32:ee:39:a4:9c:52: 49:f4:b9:7a:58:93:46:64:d1:28:be:2f:bc:93:bc:dd:05:93: 38:df:bd:a5:85:d7:b7:e6:17:8b:e2:64:79:c4:6e:35:49:19: f2:0d:07:33 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICOWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwODMxMDc0MTU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZmNjNS04ZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEVXB9aQ/Xq4aTfzXOJ1ee2SlGP3LBT4HudK3HHm93tvnF2hyunVd9okGxYF eJTbuli879cDKWujVcHy48waPA6MB/Q20QJ2b9Y3N2FNgUwKES6hdxiOEv8e0TZX +8YdiPw1xGamZt3bJhS0fSQUxsaSJlS19n9zsNUg5RibayVbgvUSHsP74yMMPON6 y4aurqWhUR4Tg+2P9qBTYU019/6Zsa2cmelLL4B4bRXqfQWoIFSs7BrBqW31InVk ZVz0IW4Y9DXMyPK0ZGd3p2B2zbmUoe6UD97l+yebHks+xzD6k7mvBdx3atPXHG3t wLqZEQ+l/zodO1TMaiegxR1koQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFEMfhizz p4WwYPHQiNy6CMFPma+IMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvQ0Y1NTQ2NjY4 NjNEMTFGMDhCRDM5NDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJzujAwDAMEAstR7AMEAMtR7jANBgkqhkiG9w0BAQsFAAOC AQEAf2Uq8gfnQ8NppuVihpynghSyaHVSnFHSjlbKlBZjk7qe9rUdiSd66jCnuDvp SovpnGjfvehAA0q21ltZ/2fb/Lo0bjcVSJKK5RcsCx5bGtnxYs2ungnAumQHmhcq W9mEq4HunGbn/zb8LuXA0sHIW9ZiMZT6fZEvM2pUDEcO9WUVFE5ZQFhiL3OgDn7w zPxxHhZJet5v82fRmHRDgXf5lyFuZUKTwvF4r7twu0WHtCIKbG9pnENICqIDrUzu nBeWQHKxuyyBM1Me540hTlOrUaueMu45pJxSSfS5eliTRmTRKL4vvJO83QWTON+9 pYXXt+YXi+JkecRuNUkZ8g0HMw== -----END CERTIFICATE-----Generated at Mon Sep 8 07:15:36 2025 by rpki-client