$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa File: C3FEC56C855711EB871D267FC4F9AE02.roa (raw, json) Hash identifier: pn41QbwI43rxSeVr0SInvG6/Q6c7Gj04UiR8iNhF0jM= Subject key identifier: 38:AE:05:F4:DC:FF:60:83:A5:71:06:39:12:04:7F:E7:0A:B8:9C:A2 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 0697 Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa Signing time: Thu 04 Sep 2025 23:03:53 +0000 ROA not before: Thu 04 Sep 2025 23:03:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58505 IP address blocks: 43.245.176.0/24 maxlen: 24 43.245.177.0/24 maxlen: 24 43.245.178.0/23 maxlen: 23 103.4.172.0/24 maxlen: 24 103.4.173.0/24 maxlen: 24 103.13.84.0/24 maxlen: 24 103.13.85.0/24 maxlen: 24 2001:df0:26b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Sep 4 23:03:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba1ad9-180e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:65:e1:fc:15:69:90:47:38:4c:dc:ea:2c:4a: 26:41:a0:c5:10:ab:38:46:23:ab:c7:63:bc:6f:61: 4e:88:e0:55:b6:ae:57:de:cd:73:12:7f:b2:fe:cd: 3d:2a:69:4f:3a:70:91:47:85:54:fc:ec:04:2e:8c: 09:5f:ff:b1:07:64:02:ad:94:e3:6f:b8:f6:dc:ce: d9:5b:8c:fd:15:6a:4b:52:d5:2f:19:2b:51:3a:08: 79:f8:56:a7:25:18:2e:be:bc:44:9c:03:1a:87:bf: 70:f0:97:94:42:69:94:30:9c:ac:f7:e0:ac:89:14: c8:cf:89:b9:f3:58:dc:55:d9:2a:0d:d5:cf:ef:fb: 01:52:0c:be:2c:3d:94:a0:ea:8a:4d:ee:07:ba:75: 47:c7:7f:76:6d:0b:3b:0b:cc:44:ab:d0:72:75:55: 77:09:d7:ba:a7:3a:d8:41:fa:7e:a3:27:a8:6e:86: ab:bc:a3:bf:a8:58:c0:55:37:d6:d1:67:e0:45:3f: e8:48:69:9b:19:ec:5b:b4:01:8b:40:5f:3b:e1:3b: c7:5b:3b:f0:82:76:b2:54:c7:02:60:29:2d:22:86: 10:62:35:0c:e4:77:3e:b8:c9:e9:2e:7e:cf:b9:76: ad:8f:ed:55:20:a2:c3:53:5b:15:c3:71:72:47:e6: ab:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AE:05:F4:DC:FF:60:83:A5:71:06:39:12:04:7F:E7:0A:B8:9C:A2 X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.176.0/22 103.4.172.0/23 103.13.84.0/23 IPv6: 2001:df0:26b::/48 Signature Algorithm: sha256WithRSAEncryption b6:bd:ee:52:c6:8b:c4:20:89:88:e4:3a:52:1b:e7:a6:0f:d1: 71:43:25:60:09:52:a2:0f:6f:9a:26:98:00:c1:9c:94:03:37: 9d:57:ff:a5:8c:61:0c:d1:96:43:09:e8:48:4d:8e:4a:b6:9d: 48:b1:06:ca:54:b9:ac:db:d9:a1:c6:51:3a:41:e0:9c:c6:3a: bd:a6:fd:c0:4c:04:41:00:d7:fa:65:2c:89:18:9e:21:b8:02: 67:5d:bc:2d:b1:8f:a7:34:bf:36:25:b8:8d:89:25:a3:1c:01: 36:6d:54:46:58:8a:26:44:5c:6c:66:c7:49:81:2e:eb:93:18: 7b:76:8a:78:7c:0d:84:86:37:04:19:f5:34:94:05:1b:bc:fe: 21:0c:76:69:a7:51:ac:9b:2c:5c:27:3a:c7:90:1e:9d:d3:1a: bb:6f:cb:d5:4a:72:8c:21:25:67:92:aa:54:38:10:10:22:84: 86:32:8a:49:63:a1:58:ed:97:f1:bf:4c:57:4b:56:ee:6a:00: 0f:82:ef:c7:92:89:dc:60:4b:d2:28:1f:c8:02:3e:1c:be:4b: 8a:b4:6d:7b:1d:cf:cf:96:c9:cc:ab:9a:6b:2a:e8:19:2d:a8: 21:a2:a2:06:d7:09:4a:02:78:94:23:fb:51:53:2a:ae:6a:9c: d3:5c:6b:af -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwOTA0MjMwMzUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhMWFkOS0xODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GXh/BVpkEc4TNzqLEomQaDFEKs4RiOrx2O8b2FOiOBVtq5X3s1zEn+y/s09 KmlPOnCRR4VU/OwELowJX/+xB2QCrZTjb7j23M7ZW4z9FWpLUtUvGStROgh5+Fan JRguvrxEnAMah79w8JeUQmmUMJys9+CsiRTIz4m581jcVdkqDdXP7/sBUgy+LD2U oOqKTe4HunVHx392bQs7C8xEq9BydVV3Cde6pzrYQfp+oyeoboarvKO/qFjAVTfW 0WfgRT/oSGmbGexbtAGLQF874TvHWzvwgnayVMcCYCktIoYQYjUM5Hc+uMnpLn7P uXatj+1VIKLDU1sVw3FyR+arEwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFDiuBfTc /2CDpXEGORIEf+cKuJyiMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkwMkUvNTdBRkRCMjg4NTU1MTFFQjk0QzIyMTVGQzRGOUFFMDIvQzNGRUM1NkM4 NTU3MTFFQjg3MUQyNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAIr9bADBAFnBKwDBAFnDVQwDwQCAAIwCQMHACABDfACazAN BgkqhkiG9w0BAQsFAAOCAQEAtr3uUsaLxCCJiOQ6Uhvnpg/RcUMlYAlSog9vmiaY AMGclAM3nVf/pYxhDNGWQwnoSE2OSradSLEGylS5rNvZocZROkHgnMY6vab9wEwE QQDX+mUsiRieIbgCZ128LbGPpzS/NiW4jYkloxwBNm1URliKJkRcbGbHSYEu65MY e3aKeHwNhIY3BBn1NJQFG7z+IQx2aadRrJssXCc6x5AendMau2/L1UpyjCElZ5Kq VDgQECKEhjKKSWOhWO2X8b9MV0tW7moAD4Lvx5KJ3GBL0igfyAI+HL5LirRtex3P z5bJzKuaayroGS2oIaKiBtcJSgJ4lCP7UVMqrmqc01xrrw== -----END CERTIFICATE-----Generated at Mon Oct 20 02:39:01 2025 by rpki-client