$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/F4075E7CF28611EF976CB83AC4F9AE02.roa File: F4075E7CF28611EF976CB83AC4F9AE02.roa (raw, json) Hash identifier: LHvxfj3VCNmuKnrLv2NsZrToWYHoHHWWd+F8Qkfp44A= Subject key identifier: 15:3C:FE:E2:5F:0D:B4:44:97:17:DB:FF:B1:B9:2C:8B:41:F5:09:59 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 07DD Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/F4075E7CF28611EF976CB83AC4F9AE02.roa Signing time: Wed 18 Jun 2025 19:03:38 +0000 ROA not before: Wed 18 Jun 2025 19:03:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135353 IP address blocks: 103.214.218.0/24 maxlen: 24 103.214.219.0/24 maxlen: 24 144.48.160.0/24 maxlen: 24 144.48.161.0/24 maxlen: 24 144.48.162.0/24 maxlen: 24 144.48.163.0/24 maxlen: 24 2404:ba40::/32 maxlen: 32 2404:ba40::/48 maxlen: 48 2404:ba40:1::/48 maxlen: 48 2404:ba40:2::/48 maxlen: 48 2404:ba40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 18:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF, serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Jun 18 19:03:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68530d8a-ed33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dc:2d:a8:2d:1c:92:15:12:60:34:22:6a:b9: 15:ea:15:d5:16:02:5b:af:c4:44:aa:7c:d4:7f:59: af:54:52:0c:79:7c:20:9c:a7:b2:3a:6f:37:93:b1: 38:11:10:78:68:cf:00:79:6b:8f:9d:a1:e3:8b:ca: 23:b3:d1:da:39:91:65:dc:cc:85:c6:e7:7e:df:d9: 52:df:ea:85:b9:9f:fd:ff:af:fa:b2:b8:1b:a0:8f: e5:f1:f7:03:c9:9e:be:ab:21:a7:e3:80:b0:c9:87: 3f:53:e0:c4:96:48:c5:06:f3:01:29:1e:f0:db:53: df:f9:c1:7d:aa:54:45:d8:8e:0c:ea:77:20:ae:aa: 83:80:60:87:23:82:95:fd:41:cd:ee:fd:84:9c:03: 48:92:5e:06:6e:f3:4b:76:65:ec:8c:af:b1:0c:3f: a7:2a:e0:d9:2c:56:f1:69:4c:84:f5:cf:6f:a5:29: af:32:23:ed:11:65:74:de:99:6d:56:c3:44:a5:23: 1e:56:d6:0a:99:5e:a3:17:5b:51:7e:2c:e2:c3:c5: cd:ca:f2:57:96:2a:e0:09:48:a3:34:81:03:26:55: bc:49:1e:14:db:8a:31:ad:32:a3:09:01:85:5a:d1: 9d:57:67:90:86:6e:70:18:73:ff:73:9e:59:ba:f5: 02:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3C:FE:E2:5F:0D:B4:44:97:17:DB:FF:B1:B9:2C:8B:41:F5:09:59 X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/F4075E7CF28611EF976CB83AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.218.0/23 144.48.160.0/22 IPv6: 2404:ba40::/32 Signature Algorithm: sha256WithRSAEncryption 0f:f1:3b:39:31:19:ec:bb:d0:25:cf:45:4d:eb:47:2e:aa:ac: fd:af:82:b9:33:9a:e7:68:69:59:21:55:b5:52:fe:42:41:f2: 1d:14:86:18:f0:78:70:23:87:39:7b:88:24:54:20:f1:a7:26: 07:78:9d:91:17:14:8c:18:03:82:35:43:8a:4b:77:4d:83:81: cb:68:7b:05:05:cc:ad:fa:4a:a3:72:fd:cb:9d:df:73:e8:52: f8:6d:7b:c0:b5:6f:77:dc:cd:1c:78:c3:7e:3f:9b:69:14:2d: ee:50:32:08:f8:e7:21:89:b8:b9:31:6d:1d:fa:b2:96:b6:39: 84:39:88:a9:ce:84:b2:b1:05:32:c9:1e:82:74:51:aa:2e:d2: f2:a5:49:16:1f:9b:22:cc:8e:96:b0:2b:93:a0:25:f9:44:26: e5:6a:c4:96:26:29:bc:47:88:36:97:9e:12:3e:17:3a:78:2c: b4:e0:cd:5e:7c:4a:c1:e9:95:41:e0:d4:c7:fc:ea:4b:73:8c: 8c:d1:a5:31:68:05:a2:81:1c:1c:9c:66:f1:90:c6:42:d6:57: 32:e7:22:ec:7e:2c:b7:65:3e:a6:43:07:7f:2a:20:5c:30:8f: 86:b3:78:11:a0:51:fb:47:b8:34:6b:8d:d7:b2:04:89:bd:60: 95:69:ca:71 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjUwNjE4MTkwMzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMGQ4YS1lZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdwtqC0ckhUSYDQiarkV6hXVFgJbr8REqnzUf1mvVFIMeXwgnKeyOm83k7E4 ERB4aM8AeWuPnaHji8ojs9HaOZFl3MyFxud+39lS3+qFuZ/9/6/6srgboI/l8fcD yZ6+qyGn44CwyYc/U+DElkjFBvMBKR7w21Pf+cF9qlRF2I4M6ncgrqqDgGCHI4KV /UHN7v2EnANIkl4GbvNLdmXsjK+xDD+nKuDZLFbxaUyE9c9vpSmvMiPtEWV03plt VsNEpSMeVtYKmV6jF1tRfiziw8XNyvJXlirgCUijNIEDJlW8SR4U24oxrTKjCQGF WtGdV2eQhm5wGHP/c55ZuvUCgwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBU8/uJf DbRElxfb/7G5LItB9QlZMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNEREYvMjY2MDhENDYxMDcyMTFFQUFDMDZCMDc5QzRGOUFFMDIvRjQwNzVFN0NG Mjg2MTFFRjk3NkNCODNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFn1toDBAKQMKAwDQQCAAIwBwMFACQEukAwDQYJKoZIhvcN AQELBQADggEBAA/xOzkxGey70CXPRU3rRy6qrP2vgrkzmudoaVkhVbVS/kJB8h0U hhjweHAjhzl7iCRUIPGnJgd4nZEXFIwYA4I1Q4pLd02DgctoewUFzK36SqNy/cud 33PoUvhte8C1b3fczRx4w34/m2kULe5QMgj45yGJuLkxbR36spa2OYQ5iKnOhLKx BTLJHoJ0Uaou0vKlSRYfmyLMjpawK5OgJflEJuVqxJYmKbxHiDaXnhI+Fzp4LLTg zV58SsHplUHg1Mf86ktzjIzRpTFoBaKBHBycZvGQxkLWVzLnIux+LLdlPqZDB38q IFwwj4azeBGgUftHuDRrjdeyBIm9YJVpynE= -----END CERTIFICATE-----Generated at Sun Nov 2 05:05:28 2025 by rpki-client