$ rpki-client -vvf rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/E331E83206CD11EBA6A91612C4F9AE02.roa File: E331E83206CD11EBA6A91612C4F9AE02.roa (raw, json) Hash identifier: ClScTJuNUI3ehn5b9ACaV/F/3LpPsKfynlYEv83kYE0= Subject key identifier: 68:E6:05:A2:8A:1B:E3:43:87:88:2C:97:5C:5E:57:4F:E4:CB:31:85 Certificate issuer: /CN=A917EF96/serialNumber=809B7E6DDDE42F0627843DB59FA41AFA7F3B7C3B Certificate serial: 07D2 Authority key identifier: 80:9B:7E:6D:DD:E4:2F:06:27:84:3D:B5:9F:A4:1A:FA:7F:3B:7C:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJt-bd3kLwYnhD21n6Qa-n87fDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/E331E83206CD11EBA6A91612C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:41:35 +0000 ROA not before: Tue 02 Sep 2025 21:41:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140918 IP address blocks: 103.153.118.0/24 maxlen: 24 2001:df4:4480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/gJt-bd3kLwYnhD21n6Qa-n87fDs.crl rsync://rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/gJt-bd3kLwYnhD21n6Qa-n87fDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJt-bd3kLwYnhD21n6Qa-n87fDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EF96, serialNumber=809B7E6DDDE42F0627843DB59FA41AFA7F3B7C3B Validity Not Before: Sep 2 21:41:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7648e-5b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:09:24:e5:a3:68:e2:5e:c8:a0:65:e4:c7:da: 79:cc:c7:e9:3d:c9:67:65:a0:0b:af:37:c7:91:3c: 59:70:c6:00:ee:49:5f:09:9c:66:1e:cf:b7:1a:89: c9:c2:fd:c1:39:73:de:e2:b1:5b:8f:51:98:4c:66: cd:75:20:06:0d:47:8e:0f:ee:cb:2f:f2:fe:f7:11: ad:29:dc:39:e7:78:19:3b:8f:cb:21:07:09:90:f2: 90:25:7c:72:27:ad:c4:95:82:11:b8:b1:19:a9:e1: 3f:50:5e:bf:db:53:81:da:72:f0:8f:f5:e5:ca:dd: 7d:31:b5:b6:fd:8c:da:21:f0:3f:ab:9e:b8:4f:93: b9:b1:31:b7:81:99:bf:44:33:70:eb:8a:a9:4c:88: 3a:53:60:b7:fa:81:d6:73:ce:7e:09:3e:ca:12:1e: 76:61:dd:6c:cf:58:6f:a3:91:4f:93:40:b0:a9:3c: d6:85:c5:44:89:9d:b3:4b:98:30:87:a4:23:70:be: 24:7d:94:08:bb:a3:d2:a7:b8:0e:5a:b0:ad:66:9b: c5:a5:4a:d6:ad:9f:f4:0c:d0:6a:ca:77:f4:a6:6e: 49:32:a8:da:a6:a1:0b:62:f8:3c:29:3b:44:51:aa: 35:88:9c:91:c1:c8:28:14:7d:31:66:25:cb:cf:3d: cf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E6:05:A2:8A:1B:E3:43:87:88:2C:97:5C:5E:57:4F:E4:CB:31:85 X509v3 Authority Key Identifier: keyid:80:9B:7E:6D:DD:E4:2F:06:27:84:3D:B5:9F:A4:1A:FA:7F:3B:7C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/gJt-bd3kLwYnhD21n6Qa-n87fDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJt-bd3kLwYnhD21n6Qa-n87fDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EF96/0F86E60E06CD11EB9F00AF11C4F9AE02/E331E83206CD11EBA6A91612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.118.0/24 IPv6: 2001:df4:4480::/48 Signature Algorithm: sha256WithRSAEncryption 4d:57:6b:73:f4:b9:0f:02:0f:fe:b0:69:03:83:89:87:4a:ce: 5e:19:ff:e1:87:cb:2e:3e:f0:2e:40:21:00:4c:62:d8:08:5d: ba:01:6e:37:8d:d6:88:74:54:76:b0:b0:3f:ec:ef:ae:66:10: 54:37:49:78:d3:db:bb:b5:10:6a:e1:87:23:46:99:14:a3:8b: cb:16:0e:61:e0:2e:e9:d4:4d:9d:ce:c5:d9:bc:56:33:9b:c1: 13:5b:41:c7:71:99:f2:b3:32:bb:84:98:d6:fd:88:fa:3c:38: aa:aa:43:a3:84:6c:dd:64:44:e8:40:31:81:b5:53:40:a3:1a: cb:95:91:13:de:b0:cb:38:8d:94:3d:3c:84:27:27:0e:8b:e8: 79:3b:48:59:a2:30:de:fe:70:23:64:61:b2:f7:4a:61:2d:9b: 0d:ce:c4:be:5a:c4:21:67:e4:f0:f0:73:62:86:ce:d8:c6:6f: 8e:1a:f4:d7:48:48:4e:6c:8c:f0:b1:26:cd:ae:06:a7:09:e4: be:8f:22:76:13:2f:3e:44:aa:1a:f5:cb:5c:9c:62:29:12:99: fb:6a:88:98:43:d7:7a:3f:bd:2b:be:ab:7c:06:eb:e2:f4:18: 80:1e:ad:de:77:d1:e7:73:63:52:cc:2c:13:6d:f4:ec:16:ad: 68:10:29:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGOTYxMTAvBgNVBAUTKDgwOUI3RTZERERFNDJGMDYyNzg0M0RCNTlGQTQxQUZB N0YzQjdDM0IwHhcNMjUwOTAyMjE0MTM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NjQ4ZS01YjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAkk5aNo4l7IoGXkx9p5zMfpPclnZaALrzfHkTxZcMYA7klfCZxmHs+3GonJ wv3BOXPe4rFbj1GYTGbNdSAGDUeOD+7LL/L+9xGtKdw553gZO4/LIQcJkPKQJXxy J63ElYIRuLEZqeE/UF6/21OB2nLwj/Xlyt19MbW2/YzaIfA/q564T5O5sTG3gZm/ RDNw64qpTIg6U2C3+oHWc85+CT7KEh52Yd1sz1hvo5FPk0CwqTzWhcVEiZ2zS5gw h6QjcL4kfZQIu6PSp7gOWrCtZpvFpUrWrZ/0DNBqynf0pm5JMqjapqELYvg8KTtE Uao1iJyRwcgoFH0xZiXLzz3PlwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGjmBaKK G+NDh4gsl1xeV0/kyzGFMB8GA1UdIwQYMBaAFICbfm3d5C8GJ4Q9tZ+kGvp/O3w7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUY5Ni8wRjg2RTYwRTA2 Q0QxMUVCOUYwMEFGMTFDNEY5QUUwMi9nSnQtYmQza0x3WW5oRDIxbjZRYS1uODdm RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKdC1iZDNrTHdZbmhEMjFuNlFhLW44N2ZEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VGOTYvMEY4NkU2MEUwNkNEMTFFQjlGMDBBRjExQzRGOUFFMDIvRTMzMUU4MzIw NkNEMTFFQkE2QTkxNjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmXYwDwQCAAIwCQMHACABDfREgDANBgkqhkiG9w0BAQsF AAOCAQEATVdrc/S5DwIP/rBpA4OJh0rOXhn/4YfLLj7wLkAhAExi2AhdugFuN43W iHRUdrCwP+zvrmYQVDdJeNPbu7UQauGHI0aZFKOLyxYOYeAu6dRNnc7F2bxWM5vB E1tBx3GZ8rMyu4SY1v2I+jw4qqpDo4Rs3WRE6EAxgbVTQKMay5WRE96wyziNlD08 hCcnDovoeTtIWaIw3v5wI2RhsvdKYS2bDc7EvlrEIWfk8PBzYobO2MZvjhr010hI TmyM8LEmza4Gpwnkvo8idhMvPkSqGvXLXJxiKRKZ+2qImEPXej+9K76rfAbr4vQY gB6t3nfR53NjUswsE2307BataBApeQ== -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:24 2025 by rpki-client