$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/2C5C63329E5311EE8D49694BC4F9AE02.roa File: 2C5C63329E5311EE8D49694BC4F9AE02.roa (raw, json) Hash identifier: YAG2MNWzPx3qv2gqkqHL4HomQQn9WRVJ3LMr6N4DzO8= Subject key identifier: 0F:12:91:B3:FB:FB:AF:AC:DE:0D:66:5E:A4:8F:00:7D:05:2B:72:E1 Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Certificate serial: 0230 Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/2C5C63329E5311EE8D49694BC4F9AE02.roa Signing time: Wed 01 Oct 2025 03:30:18 +0000 ROA not before: Wed 01 Oct 2025 03:30:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 32402 IP address blocks: 103.71.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116DDB, serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Validity Not Before: Oct 1 03:30:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dca04a-f92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:8f:46:e0:41:e4:70:05:b7:8b:f2:a6:6d: 59:e3:af:cd:81:fc:f3:e2:2e:03:f3:87:5a:9f:46: 4c:b9:b1:af:05:7c:8b:59:88:a6:7b:71:45:20:5f: 2f:2b:0b:fc:be:0f:f5:0e:cb:bd:3a:00:b9:80:c3: 49:1f:3a:0a:33:20:76:e6:3d:02:b5:b5:21:23:db: 0c:3f:a7:4a:f3:bd:f8:34:07:37:8a:8a:20:84:2c: ca:a0:21:85:91:8a:21:43:11:d6:ff:26:cd:56:45: c3:c8:df:da:76:16:1f:87:14:e9:76:0b:3e:1a:d3: 92:70:87:c0:6a:44:bc:f3:dd:66:c3:b5:75:d2:81: 16:79:ff:60:57:8a:04:88:38:3c:a6:f2:83:42:32: d9:57:31:2c:8c:9e:73:44:e9:07:2e:79:8d:e6:a9: ba:73:cc:15:9e:c6:57:a3:8b:74:5b:6b:a7:e7:fd: 78:45:8d:fd:55:1f:d2:7e:1d:5a:df:92:d2:ab:8d: 22:4c:ef:3f:5c:17:62:1e:76:53:6d:35:f5:34:bd: bf:5a:f3:7b:1a:fd:8b:36:b7:fc:4b:a7:f2:6e:ff: 19:85:c7:61:24:93:4d:c7:91:89:a0:dd:6e:a7:65: b1:56:93:56:12:e6:63:5a:34:f6:ce:09:b3:ac:c5: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:12:91:B3:FB:FB:AF:AC:DE:0D:66:5E:A4:8F:00:7D:05:2B:72:E1 X509v3 Authority Key Identifier: keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/2C5C63329E5311EE8D49694BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.92.0/24 Signature Algorithm: sha256WithRSAEncryption 65:5a:90:74:79:c5:3b:33:73:2d:07:3c:7a:5d:7b:73:6a:a5: ce:ad:0f:c9:13:e9:fe:f8:9a:bf:d1:ab:1b:70:72:90:e0:68: 63:c4:27:10:15:79:bd:06:02:8d:f2:98:ae:cf:2c:c6:4a:aa: 54:1a:75:11:9c:2b:bd:03:f1:0e:5a:81:f2:1a:b5:d8:0c:53: a7:6e:fe:b1:93:9a:c2:90:97:45:85:91:b2:7d:f5:f6:d3:f5: f8:ab:65:57:23:38:64:1e:1d:99:75:6d:85:0c:75:51:e8:90: 39:f4:4a:ed:9c:31:85:3e:07:66:d8:0d:f0:95:fb:76:3a:b7: 9e:3d:37:c7:f4:42:30:f1:0d:29:85:1e:bc:d5:f0:78:5e:bc: 59:b1:b8:2b:f2:0f:74:6e:c1:82:e1:09:44:2a:d6:10:52:0c: 1e:b8:05:ca:0e:a8:8b:05:bc:74:5a:4a:98:36:76:2a:72:5f: 9b:29:92:25:a9:30:ce:82:3f:79:77:29:2a:98:68:b5:86:b9: 48:84:b3:22:55:3a:42:30:c3:f2:ae:5f:12:d5:b6:57:05:b8: 5c:08:74:96:bf:db:65:8b:9f:92:99:d9:47:af:a1:8b:28:e9: 4a:2d:f1:1c:12:87:27:78:14:08:bb:d2:38:3c:38:e3:75:a4: 61:35:10:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZEREIxMTAvBgNVBAUTKDBDNzY5REE0NDk4MkY2MTY1MDM2Mjk0M0U2REZFRjk1 MUI5Nzc3RkEwHhcNMjUxMDAxMDMzMDE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYTA0YS1mOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FOPRuBB5HAFt4vypm1Z46/Ngfzz4i4D84dan0ZMubGvBXyLWYime3FFIF8v Kwv8vg/1Dsu9OgC5gMNJHzoKMyB25j0CtbUhI9sMP6dK8734NAc3iooghCzKoCGF kYohQxHW/ybNVkXDyN/adhYfhxTpdgs+GtOScIfAakS8891mw7V10oEWef9gV4oE iDg8pvKDQjLZVzEsjJ5zROkHLnmN5qm6c8wVnsZXo4t0W2un5/14RY39VR/Sfh1a 35LSq40iTO8/XBdiHnZTbTX1NL2/WvN7Gv2LNrf8S6fybv8ZhcdhJJNNx5GJoN1u p2WxVpNWEuZjWjT2zgmzrMV3ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFA8SkbP7 +6+s3g1mXqSPAH0FK3LhMB8GA1UdIwQYMBaAFAx2naRJgvYWUDYpQ+bf75Ubl3f6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkREQi9FMUNEQ0REMkJF MUIxMUVEQTYxQUNEODRDNEY5QUUwMi9ESGFkcEVtQzloWlFOaWxENXRfdmxSdVhk X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIYWRwRW1DOWhaUU5pbEQ1dF92bFJ1WGRfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZEREIvRTFDRENERDJCRTFCMTFFREE2MUFDRDg0QzRGOUFFMDIvMkM1QzYzMzI5 RTUzMTFFRThENDk2OTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnR1wwDQYJKoZIhvcNAQELBQADggEBAGVakHR5xTszcy0H PHpde3Nqpc6tD8kT6f74mr/RqxtwcpDgaGPEJxAVeb0GAo3ymK7PLMZKqlQadRGc K70D8Q5agfIatdgMU6du/rGTmsKQl0WFkbJ99fbT9firZVcjOGQeHZl1bYUMdVHo kDn0Su2cMYU+B2bYDfCV+3Y6t549N8f0QjDxDSmFHrzV8HhevFmxuCvyD3RuwYLh CUQq1hBSDB64BcoOqIsFvHRaSpg2dipyX5spkiWpMM6CP3l3KSqYaLWGuUiEsyJV OkIww/KuXxLVtlcFuFwIdJa/22WLn5KZ2UevoYso6Uot8RwShyd4FAi70jg8OON1 pGE1EMU= -----END CERTIFICATE-----Generated at Tue Oct 21 02:34:16 2025 by rpki-client