$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/B70A38DCABD111F08E516516C4F9AE02.roa File: B70A38DCABD111F08E516516C4F9AE02.roa (raw, json) Hash identifier: 6f4F+XIwA2rHEPqEklnobgdqYhNbXAFCeGr2CJ6y/cI= Subject key identifier: A6:9E:A7:B3:85:DE:9A:90:F4:F3:EF:22:5E:5C:8B:C4:BD:78:63:69 Certificate issuer: /CN=A9114D4F/serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Certificate serial: E1 Authority key identifier: 68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/B70A38DCABD111F08E516516C4F9AE02.roa Signing time: Sat 18 Oct 2025 03:22:46 +0000 ROA not before: Sat 18 Oct 2025 03:22:46 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.205.0.0/22 maxlen: 24 203.76.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D4F, serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Validity Not Before: Oct 18 03:22:46 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68f30805-b72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c5:60:41:ed:87:bb:73:5a:cd:5c:64:4f:62: 3f:5e:ee:bb:19:29:58:95:bb:41:9f:5a:27:ee:b8: 8e:49:ff:f5:58:f9:c9:9b:86:b9:bb:f6:7a:5c:5a: d9:23:5c:65:da:5b:e4:b4:02:68:b8:49:c8:90:d4: 6a:9a:da:bf:02:3f:ae:ac:40:5d:7c:ed:91:df:f0: 21:be:59:af:96:75:69:64:9f:d4:67:59:b0:82:7b: ef:ab:b2:4a:83:96:39:5b:53:70:6f:42:49:e9:63: 54:bd:8e:ff:82:17:03:56:aa:24:63:16:a0:88:87: 3c:51:f9:81:11:19:8f:a7:c2:3f:1b:98:12:b7:36: b8:98:0f:80:67:41:27:66:b7:5d:04:3d:0c:0b:f3: 86:8a:d5:de:68:d4:62:61:8d:d7:9c:f4:21:02:da: 8b:e2:a3:bb:91:d4:dd:75:ce:54:09:f5:b1:40:5c: a0:1e:c5:76:c6:60:1b:8c:ed:bd:1a:b9:39:84:a0: b0:82:1a:b6:da:1f:4c:2e:7c:d0:55:40:8b:ed:6a: ec:62:eb:09:d7:4d:f0:0e:07:28:20:8b:9e:7e:cb: 71:ce:5f:28:88:59:3f:47:60:a8:95:5e:a6:38:64: 45:eb:25:f1:91:51:50:a1:c1:0b:47:5a:db:8c:7a: 16:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9E:A7:B3:85:DE:9A:90:F4:F3:EF:22:5E:5C:8B:C4:BD:78:63:69 X509v3 Authority Key Identifier: keyid:68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/B70A38DCABD111F08E516516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.0.0/22 203.76.236.0/22 Signature Algorithm: sha256WithRSAEncryption 84:d5:98:29:df:b1:1f:c8:4b:5d:02:06:ad:d0:f3:8e:94:b3: 37:63:0a:6a:5c:4f:b2:83:83:f5:fd:7e:84:46:9e:5b:93:24: d9:9b:17:bd:92:2c:43:de:d4:fc:b3:1f:5e:bb:6f:06:33:66: f8:9e:9c:89:d3:63:c1:43:4a:bd:8a:ea:34:b7:44:47:b9:0e: 71:a7:84:1d:bc:12:25:7a:41:12:fd:c7:5d:75:4b:b2:28:6e: 12:db:bf:2b:68:64:44:65:f5:a2:d7:7a:c0:b5:af:81:bf:98: 85:5c:4b:7d:33:81:54:a8:86:87:cb:11:50:b2:d6:8e:c8:33: 79:03:4c:5c:5f:16:3f:94:06:c4:68:57:db:59:19:79:05:f0: ce:45:bd:cc:96:93:2d:c9:8c:1e:98:2c:6d:b3:f6:a5:93:6c: 11:c2:8c:8c:b2:de:d8:df:0d:70:aa:ff:d3:66:ca:b0:28:9c: 0e:ce:90:75:49:63:ca:29:57:5a:a3:4a:d2:68:8a:fc:0a:cb: 71:c2:dd:5f:c8:c7:0c:35:7a:9f:c7:02:44:50:7e:26:de:9c: c5:3a:4d:87:72:d2:34:5c:d6:8f:1a:39:c1:8f:b2:cc:f6:7e: b4:77:c2:30:9f:cc:16:12:fe:d3:ef:c1:77:ec:06:56:aa:43: 47:42:08:4a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRENEYxMTAvBgNVBAUTKDY4Nzc0MURFMTVDRDg4M0MxMEREQkM0RkMzQTJEQ0Y1 NDg1RTdERjMwHhcNMjUxMDE4MDMyMjQ2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDgwNS1iNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMVgQe2Hu3NazVxkT2I/Xu67GSlYlbtBn1on7riOSf/1WPnJm4a5u/Z6XFrZ I1xl2lvktAJouEnIkNRqmtq/Aj+urEBdfO2R3/AhvlmvlnVpZJ/UZ1mwgnvvq7JK g5Y5W1Nwb0JJ6WNUvY7/ghcDVqokYxagiIc8UfmBERmPp8I/G5gStza4mA+AZ0En ZrddBD0MC/OGitXeaNRiYY3XnPQhAtqL4qO7kdTddc5UCfWxQFygHsV2xmAbjO29 Grk5hKCwghq22h9MLnzQVUCL7WrsYusJ103wDgcoIIuefstxzl8oiFk/R2ColV6m OGRF6yXxkVFQocELR1rbjHoWlwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKaep7OF 3pqQ9PPvIl5ci8S9eGNpMB8GA1UdIwQYMBaAFGh3Qd4VzYg8EN28T8Oi3PVIXn3z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQ0Ri8wRTNBQ0NGQzVC OUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi9hSGRCM2hYTmlEd1EzYnhQdzZMYzlVaGVm Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIZEIzaFhOaUR3UTNieFB3NkxjOVVoZWZmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRENEYvMEUzQUNDRkM1QjlDMTFFRjlCMTU0OTQ0QzRGOUFFMDIvQjcwQTM4RENB QkQxMTFGMDhFNTE2NTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnzQADBALLTOwwDQYJKoZIhvcNAQELBQADggEBAITVmCnf sR/IS10CBq3Q846UszdjCmpcT7KDg/X9foRGnluTJNmbF72SLEPe1PyzH167bwYz ZvienInTY8FDSr2K6jS3REe5DnGnhB28EiV6QRL9x111S7IobhLbvytoZERl9aLX esC1r4G/mIVcS30zgVSohofLEVCy1o7IM3kDTFxfFj+UBsRoV9tZGXkF8M5FvcyW ky3JjB6YLG2z9qWTbBHCjIyy3tjfDXCq/9NmyrAonA7OkHVJY8opV1qjStJoivwK y3HC3V/Ixww1ep/HAkRQfibenMU6TYdy0jRc1o8aOcGPssz2frR3wjCfzBYS/tPv wXfsBlaqQ0dCCEo= -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:40 2025 by rpki-client