$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/F307B7F4912A11F0B418B448C4F9AE02.roa File: F307B7F4912A11F0B418B448C4F9AE02.roa (raw, json) Hash identifier: yjx/NrxzZgDiEgxVTNY6l8PB/PX5P1BrG3zGpxB5GDo= Subject key identifier: DE:CB:9D:94:60:71:1B:22:9E:47:A2:F8:35:E6:C4:05:71:1D:D4:78 Certificate issuer: /CN=A919DB2F/serialNumber=F9C3638059F864E84AE3BF50DAAC079C68463EA7 Certificate serial: 056D Authority key identifier: F9:C3:63:80:59:F8:64:E8:4A:E3:BF:50:DA:AC:07:9C:68:46:3E:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-cNjgFn4ZOhK479Q2qwHnGhGPqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/F307B7F4912A11F0B418B448C4F9AE02.roa Signing time: Fri 19 Sep 2025 00:06:09 +0000 ROA not before: Fri 19 Sep 2025 00:06:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146961 IP address blocks: 103.172.81.0/24 maxlen: 24 2001:df7:6680::/48 maxlen: 48 2400:8da0:ea00::/44 maxlen: 48 2400:8da0:ec00::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/-cNjgFn4ZOhK479Q2qwHnGhGPqc.crl rsync://rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/-cNjgFn4ZOhK479Q2qwHnGhGPqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-cNjgFn4ZOhK479Q2qwHnGhGPqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 01:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DB2F, serialNumber=F9C3638059F864E84AE3BF50DAAC079C68463EA7 Validity Not Before: Sep 19 00:06:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cc9e71-0488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d7:e7:b3:2a:f3:4d:38:14:db:03:74:12:18: 2f:0a:41:c6:ab:c8:68:2c:71:09:77:1b:fe:85:3a: 9d:2f:a4:7a:09:ad:ed:f7:fc:1f:76:70:30:d0:99: 37:5b:7d:07:92:ba:5b:33:bd:5c:cd:5e:c5:a5:64: 48:d4:32:da:92:67:bd:07:d7:98:d2:b3:77:8d:bf: 9b:67:f2:7c:48:a3:4b:2c:40:00:5a:43:67:06:73: b9:e1:98:f3:15:96:8b:9a:a7:18:28:9d:fe:92:ca: 46:fe:2d:58:6e:96:fe:36:d7:04:b9:4e:08:ce:69: d4:eb:2c:20:12:83:1a:27:f4:eb:db:1f:75:68:f4: d8:5d:6c:f9:43:ff:36:75:b9:78:6f:89:a7:1b:6e: 0e:17:d2:0a:cf:90:89:9f:a8:c2:c7:5b:0c:5a:c1: 6d:07:23:7f:ca:a1:92:8e:fe:1b:77:4b:8c:46:dd: 48:5e:f8:cf:cd:8d:e2:e3:7d:ee:29:bc:6f:ac:77: 5b:39:4e:4b:6c:23:42:9e:d9:8a:a7:cf:9b:cf:8f: 60:ee:20:54:2a:c5:ce:20:a2:5e:f3:6a:f5:c3:ac: 84:97:76:d3:dd:6d:f0:ee:e4:ee:d7:01:35:44:c2: a0:02:94:74:fb:20:4a:89:43:2f:8a:0f:b7:cb:76: 8f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CB:9D:94:60:71:1B:22:9E:47:A2:F8:35:E6:C4:05:71:1D:D4:78 X509v3 Authority Key Identifier: keyid:F9:C3:63:80:59:F8:64:E8:4A:E3:BF:50:DA:AC:07:9C:68:46:3E:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/-cNjgFn4ZOhK479Q2qwHnGhGPqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-cNjgFn4ZOhK479Q2qwHnGhGPqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB2F/EF59CEC40ADA11EC95F5F678C4F9AE02/F307B7F4912A11F0B418B448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.81.0/24 IPv6: 2001:df7:6680::/48 2400:8da0:ea00::/44 2400:8da0:ec00::/44 Signature Algorithm: sha256WithRSAEncryption 76:22:e9:61:92:d9:f5:53:46:b9:f8:a5:ee:2a:90:fa:b8:ac: 82:9a:62:c7:4d:3c:d3:2e:67:54:d6:71:94:dd:44:69:2a:85: 37:e3:e1:aa:6e:15:1b:54:17:2e:4b:78:74:6a:cb:20:69:8f: d7:9c:9f:2a:f2:b4:95:1b:d9:fd:08:7e:5b:68:93:30:5f:6c: ee:8f:05:d6:68:9a:af:23:f9:42:88:41:d9:bb:f7:b3:12:8a: 6b:42:f6:4c:7b:c9:d8:6d:86:c5:d9:8b:ea:bf:fc:cc:96:93: e2:b7:ff:54:01:31:a6:4e:42:c0:48:af:70:28:b8:75:9a:aa: e9:34:b8:ba:52:41:b8:01:bb:ef:15:a9:f8:f7:cc:7b:52:22: 18:9d:23:d5:4d:46:e1:d7:4b:da:c7:87:34:bc:5a:6f:f1:67: 4d:27:dc:1e:03:da:6d:f6:50:3d:a1:71:70:c9:cf:49:8a:44: 47:53:38:36:3e:7c:f1:3e:20:80:fd:97:a2:f5:a0:0a:0b:ef: eb:ab:f1:73:e1:fd:4d:4e:21:7e:3f:c7:04:0a:e7:fb:86:97: 73:63:c4:ca:66:47:0f:d0:e4:cc:b9:be:03:da:67:14:03:81: 87:d2:c2:c3:c0:e3:32:22:e3:bc:7c:30:26:53:8e:d7:cd:5c: c5:8c:7b:66 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURCMkYxMTAvBgNVBAUTKEY5QzM2MzgwNTlGODY0RTg0QUUzQkY1MERBQUMwNzlD Njg0NjNFQTcwHhcNMjUwOTE5MDAwNjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjOWU3MS0wNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NfnsyrzTTgU2wN0EhgvCkHGq8hoLHEJdxv+hTqdL6R6Ca3t9/wfdnAw0Jk3 W30HkrpbM71czV7FpWRI1DLakme9B9eY0rN3jb+bZ/J8SKNLLEAAWkNnBnO54Zjz FZaLmqcYKJ3+kspG/i1Ybpb+NtcEuU4IzmnU6ywgEoMaJ/Tr2x91aPTYXWz5Q/82 dbl4b4mnG24OF9IKz5CJn6jCx1sMWsFtByN/yqGSjv4bd0uMRt1IXvjPzY3i433u KbxvrHdbOU5LbCNCntmKp8+bz49g7iBUKsXOIKJe82r1w6yEl3bT3W3w7uTu1wE1 RMKgApR0+yBKiUMvig+3y3aP1QIDAQABo4ICuDCCArQwHQYDVR0OBBYEFN7LnZRg cRsinkei+DXmxAVxHdR4MB8GA1UdIwQYMBaAFPnDY4BZ+GToSuO/UNqsB5xoRj6n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REIyRi9FRjU5Q0VDNDBB REExMUVDOTVGNUY2NzhDNEY5QUUwMi8tY05qZ0ZuNFpPaEs0NzlRMnF3SG5HaEdQ cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1jTmpnRm40Wk9oSzQ3OVEycXdIbkdoR1BxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURCMkYvRUY1OUNFQzQwQURBMTFFQzk1RjVGNjc4QzRGOUFFMDIvRjMwN0I3RjQ5 MTJBMTFGMEI0MThCNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBABnrFEwIQQCAAIwGwMHACABDfdmgAMHBCQAjaDqAAMHBCQA jaDsADANBgkqhkiG9w0BAQsFAAOCAQEAdiLpYZLZ9VNGufil7iqQ+risgppix008 0y5nVNZxlN1EaSqFN+Phqm4VG1QXLkt4dGrLIGmP15yfKvK0lRvZ/Qh+W2iTMF9s 7o8F1miaryP5QohB2bv3sxKKa0L2THvJ2G2GxdmL6r/8zJaT4rf/VAExpk5CwEiv cCi4dZqq6TS4ulJBuAG77xWp+PfMe1IiGJ0j1U1G4ddL2seHNLxab/FnTSfcHgPa bfZQPaFxcMnPSYpER1M4Nj588T4ggP2XovWgCgvv66vxc+H9TU4hfj/HBArn+4aX c2PEymZHD9DkzLm+A9pnFAOBh9LCw8DjMiLjvHwwJlOO181cxYx7Zg== -----END CERTIFICATE-----Generated at Sat Oct 25 19:08:49 2025 by rpki-client