$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa File: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (raw, json) Hash identifier: QqBINDd+m6GAidQPZDLnjXwqI13nDti3MNbtgoHfQfI= Subject key identifier: 93:42:F3:A4:59:2F:3B:28:F3:B1:0C:99:12:7F:86:CA:77:27:65:82 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 01A6 Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa Signing time: Wed 21 May 2025 04:12:56 +0000 ROA not before: Wed 21 May 2025 04:12:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136463 IP address blocks: 103.9.42.0/24 maxlen: 24 103.9.43.0/24 maxlen: 24 103.89.18.0/24 maxlen: 24 103.89.19.0/24 maxlen: 24 103.105.140.0/24 maxlen: 24 103.105.141.0/24 maxlen: 24 2400:e940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: May 21 04:12:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682d52c8-7ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:34:5c:9f:55:77:e4:06:d3:49:80:ce:48:5b: bb:29:6d:72:ca:5f:88:02:5c:7c:0b:db:5f:32:fb: b9:54:e5:61:61:f5:23:55:36:3a:b0:8b:f9:e8:55: 95:cf:9d:2f:39:d1:2f:f6:c4:27:39:a3:b3:02:cb: 56:a5:11:b4:d2:6a:31:02:76:ab:f2:21:73:d6:b2: 01:f1:6e:39:31:6c:4c:1e:47:d7:6f:be:c8:60:fc: 98:1a:bd:74:79:84:9c:80:8b:b6:ed:fe:8b:7a:8d: ce:97:08:2d:00:df:94:5e:fa:49:ff:c9:77:a0:51: a8:1f:52:7a:ed:35:ea:a1:13:2c:7b:bb:00:b7:87: c6:48:9e:47:46:c2:35:6b:02:99:46:65:3a:30:5c: 21:1e:8d:f3:35:9c:b8:36:93:27:38:ef:1a:e6:59: 5b:8c:db:8d:3f:75:fe:dc:a3:a6:47:14:f4:ca:c5: f1:8a:0d:9e:7d:f3:d1:e7:05:44:80:70:cc:a8:c1: 06:b9:f4:a7:d4:74:57:99:89:cc:6b:a0:0f:5d:3a: a3:e8:f5:35:67:cc:68:5d:e6:56:d7:92:82:3b:80: 58:bf:b7:00:12:25:15:88:60:a6:1e:d8:51:09:55: ac:66:ab:2c:00:a3:59:33:90:cb:31:14:3e:3d:9b: d1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:42:F3:A4:59:2F:3B:28:F3:B1:0C:99:12:7F:86:CA:77:27:65:82 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.42.0/23 103.89.18.0/23 103.105.140.0/23 IPv6: 2400:e940::/32 Signature Algorithm: sha256WithRSAEncryption 13:66:a7:63:02:ca:58:b1:78:c7:ee:6c:fd:75:bd:bd:93:a2: 78:e8:7b:77:2c:b5:0e:be:7f:45:5e:61:5c:56:ab:db:5a:a2: 51:c6:10:ce:f3:e6:e5:f1:6a:56:0d:54:76:3c:97:2e:d6:90: 34:af:2c:a8:ad:68:81:0d:94:a4:b6:df:63:ea:fc:94:69:db: 9c:f0:ba:43:48:19:58:f0:0e:dd:f6:4e:8d:1b:64:52:7d:bc: 71:b6:a8:b0:ac:78:ad:55:17:4e:e3:cc:85:8b:26:4c:06:46: 20:c8:2f:99:8d:7a:a4:17:2e:2b:94:ba:92:f6:10:43:a3:ef: 96:d2:e3:4a:97:9d:01:3b:fb:e6:cb:1c:35:74:9a:6b:44:73: 0c:6a:76:65:87:db:3b:3e:f8:17:66:3a:9b:7d:8d:98:19:ef: 45:f6:95:80:eb:df:aa:a0:02:62:1f:07:07:69:dc:fe:db:60: f9:56:ba:5c:81:8c:a7:00:5e:3d:3b:ce:9a:be:c7:db:e2:5b: 5c:7b:94:4e:70:50:f1:c0:8f:fa:8f:33:3b:47:dd:aa:7f:12: fd:48:14:90:fe:17:51:52:34:40:56:09:64:4d:76:20:83:a5: 93:19:4a:93:22:60:87:28:03:6c:e6:15:6f:b4:9c:f2:2a:ae: bd:08:6b:14 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUwNTIxMDQxMjU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNTJjOC03ZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTRcn1V35AbTSYDOSFu7KW1yyl+IAlx8C9tfMvu5VOVhYfUjVTY6sIv56FWV z50vOdEv9sQnOaOzAstWpRG00moxAnar8iFz1rIB8W45MWxMHkfXb77IYPyYGr10 eYScgIu27f6Leo3OlwgtAN+UXvpJ/8l3oFGoH1J67TXqoRMse7sAt4fGSJ5HRsI1 awKZRmU6MFwhHo3zNZy4NpMnOO8a5llbjNuNP3X+3KOmRxT0ysXxig2effPR5wVE gHDMqMEGufSn1HRXmYnMa6APXTqj6PU1Z8xoXeZW15KCO4BYv7cAEiUViGCmHthR CVWsZqssAKNZM5DLMRQ+PZvRCwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFJNC86RZ Lzso87EMmRJ/hsp3J2WCMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NDIvRTBFN0RCNTZDODM5MTFFREFDNzJCMTFDQzRGOUFFMDIvNjVFMDI2NzBD ODNFMTFFRDlGQUFGQTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnCSoDBAFnWRIDBAFnaYwwDQQCAAIwBwMFACQA6UAwDQYJ KoZIhvcNAQELBQADggEBABNmp2MCylixeMfubP11vb2Tonjoe3cstQ6+f0VeYVxW q9taolHGEM7z5uXxalYNVHY8ly7WkDSvLKitaIENlKS232Pq/JRp25zwukNIGVjw Dt32To0bZFJ9vHG2qLCseK1VF07jzIWLJkwGRiDIL5mNeqQXLiuUupL2EEOj75bS 40qXnQE7++bLHDV0mmtEcwxqdmWH2zs++BdmOpt9jZgZ70X2lYDr36qgAmIfBwdp 3P7bYPlWulyBjKcAXj07zpq+x9viW1x7lE5wUPHAj/qPMztH3ap/Ev1IFJD+F1FS NEBWCWRNdiCDpZMZSpMiYIcoA2zmFW+0nPIqrr0IaxQ= -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:50 2025 by rpki-client