$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa File: F8E58782A10C11EFA3C0F375C4F9AE02.roa (raw, json) Hash identifier: YmetKHnU5ANrgA6cs+nuZb/Ddq+jw2xRjEtksMKjh6c= Subject key identifier: F7:C7:A3:6C:BE:D3:C1:D8:B4:28:B6:77:6C:4D:96:85:7B:D1:81:83 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 34F0 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa Signing time: Mon 22 Sep 2025 14:30:11 +0000 ROA not before: Mon 22 Sep 2025 14:30:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136030 IP address blocks: 103.255.150.0/24 maxlen: 24 180.149.214.0/24 maxlen: 24 180.149.215.0/24 maxlen: 24 180.149.216.0/24 maxlen: 24 180.149.217.0/24 maxlen: 24 180.149.218.0/24 maxlen: 24 180.149.219.0/24 maxlen: 24 180.149.220.0/24 maxlen: 24 180.149.221.0/24 maxlen: 24 180.149.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Sep 22 14:30:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d15d73-bafc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8f:9e:20:c2:1b:f0:f5:21:81:a1:9c:7a:c2: 79:89:79:bc:d2:a7:83:d6:fa:c7:c4:4a:ab:c6:82: 0b:3f:7c:33:4d:27:10:ef:cc:d5:bd:c8:58:5c:2d: ba:7f:2c:c3:0f:6c:1c:19:81:ac:a0:11:e6:73:26: 59:aa:6c:64:3d:c8:e4:05:fe:49:13:ae:0f:4f:07: fe:10:1a:2e:8d:56:56:70:26:57:0e:e7:27:e5:39: 6e:e3:66:84:55:65:e1:49:30:32:8c:28:33:5b:d9: 76:6e:17:42:d0:eb:1a:c7:d9:ae:cd:25:0d:6b:41: d8:3b:b6:24:00:eb:78:5f:1a:1f:75:06:5d:24:43: 99:aa:6b:39:cc:b1:51:9c:68:22:d9:65:4a:11:04: d7:00:b8:6b:20:b9:3d:78:3e:09:15:0c:8f:58:26: fd:82:34:39:94:9f:a4:15:64:3d:28:c9:5f:56:e3: a9:b6:4c:bf:b1:fa:e2:f8:52:41:d1:b8:54:c6:d4: f5:b0:63:5a:e8:49:7f:e7:b1:be:d7:e0:ac:77:45: c3:03:f1:b8:5e:a3:bb:d2:bc:fc:04:2a:28:d2:5c: f1:7a:6b:02:db:df:f4:b4:10:4e:94:8f:27:7a:86: e7:5e:9b:2b:16:0c:78:0f:d6:1c:f9:93:26:60:f1: 20:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C7:A3:6C:BE:D3:C1:D8:B4:28:B6:77:6C:4D:96:85:7B:D1:81:83 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.150.0/24 180.149.214.0-180.149.222.255 Signature Algorithm: sha256WithRSAEncryption 04:b9:30:c2:a4:a7:b4:75:7d:84:23:48:f6:9c:e3:1c:fb:9f: fc:e1:a5:67:ad:a2:a8:a6:4a:af:94:42:81:01:1b:c2:c9:fe: 78:ff:c9:f5:9e:de:e9:f6:22:f7:0f:3b:96:0e:39:59:45:dd: 92:da:2a:a3:45:f1:9a:69:4b:19:a8:42:19:fc:1a:a4:97:b7: 9f:a1:5b:b0:cf:b4:cb:5b:71:bb:46:c4:22:14:7e:3c:15:a6: 0b:ae:72:29:8d:d9:c1:80:a4:e7:a1:2e:9b:e9:45:b2:3f:a0: da:0b:df:24:04:39:b2:ef:4a:ca:ac:be:27:8e:38:3f:47:06: 77:d4:1c:1e:4e:dc:9c:84:0d:4c:87:69:08:96:e3:8f:b1:9e: d1:9e:ed:31:57:bc:4d:f5:0c:0a:78:ab:ac:54:c2:4e:4c:86: d8:7c:14:00:d1:a9:03:0b:f4:7e:5b:a1:f2:54:51:1a:21:5e: 89:b5:94:7c:78:db:28:ce:75:06:5d:00:cf:05:f9:e3:b4:bf: e5:ca:96:84:ec:94:de:f3:93:0a:4e:20:d6:9c:c4:76:f5:fe: 1b:10:82:80:ce:37:79:64:3b:00:d2:61:e6:56:76:b5:3d:13: 13:76:31:e3:9e:cd:df:60:b7:b9:ec:66:f7:a6:d3:09:ab:3c: d3:31:3c:7c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjUwOTIyMTQzMDExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxNWQ3My1iYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo+eIMIb8PUhgaGcesJ5iXm80qeD1vrHxEqrxoILP3wzTScQ78zVvchYXC26 fyzDD2wcGYGsoBHmcyZZqmxkPcjkBf5JE64PTwf+EBoujVZWcCZXDucn5Tlu42aE VWXhSTAyjCgzW9l2bhdC0Osax9muzSUNa0HYO7YkAOt4XxofdQZdJEOZqms5zLFR nGgi2WVKEQTXALhrILk9eD4JFQyPWCb9gjQ5lJ+kFWQ9KMlfVuOptky/sfri+FJB 0bhUxtT1sGNa6El/57G+1+Csd0XDA/G4XqO70rz8BCoo0lzxemsC29/0tBBOlI8n eobnXpsrFgx4D9Yc+ZMmYPEgWQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPfHo2y+ 08HYtCi2d2xNloV70YGDMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2NEQvRDkzMzNGRTQxRDZFMTFFMkE4NTA4MEIwMDhCMDJDRDIvRjhFNTg3ODJB MTBDMTFFRkEzQzBGMzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABn/5YwDAMEAbSV1gMEALSV3jANBgkqhkiG9w0BAQsFAAOC AQEABLkwwqSntHV9hCNI9pzjHPuf/OGlZ62iqKZKr5RCgQEbwsn+eP/J9Z7e6fYi 9w87lg45WUXdktoqo0XxmmlLGahCGfwapJe3n6FbsM+0y1txu0bEIhR+PBWmC65y KY3ZwYCk56Eum+lFsj+g2gvfJAQ5su9Kyqy+J444P0cGd9QcHk7cnIQNTIdpCJbj j7Ge0Z7tMVe8TfUMCnirrFTCTkyG2HwUANGpAwv0fluh8lRRGiFeibWUfHjbKM51 Bl0AzwX547S/5cqWhOyU3vOTCk4g1pzEdvX+GxCCgM43eWQ7ANJh5lZ2tT0TE3Yx 457N32C3uexm96bTCas80zE8fA== -----END CERTIFICATE-----Generated at Wed Oct 22 20:08:59 2025 by rpki-client