$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa File: 83EC44C8134C11EF81B18276C4F9AE02.roa (raw, json) Hash identifier: 5ANX4i+xHd73YVIL+MJht9tnmiSuKsVd8JB7ZR2nfCI= Subject key identifier: BB:C2:04:CE:23:88:65:18:FA:23:59:7A:F0:80:CE:D2:16:04:17:A7 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 083F Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:54:00 +0000 ROA not before: Wed 08 Oct 2025 22:54:00 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132825 IP address blocks: 43.252.208.0/24 maxlen: 24 103.228.65.0/24 maxlen: 24 103.234.52.0/24 maxlen: 24 103.234.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:00 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6eb88-79af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:e4:36:18:f2:de:b2:0f:cb:8e:53:68:58: be:b5:8f:cd:32:f0:8e:fe:a3:31:15:cf:58:ab:30: 7d:e5:5c:4b:9f:bf:f6:43:65:ee:74:06:2d:87:92: cf:85:3a:52:39:5a:46:53:d2:1a:43:0e:b8:9d:76: 7e:8a:dd:2e:1d:e7:f6:3a:31:a5:91:26:18:92:ed: bf:88:af:67:8f:72:0c:86:a6:88:40:f0:0e:cf:7e: 70:60:56:3a:dd:8d:f8:86:10:23:67:fe:54:fb:e7: f6:82:2b:48:6c:c5:74:30:9e:43:31:fc:7f:cd:57: bf:61:46:48:40:00:be:0b:89:5c:16:ac:6c:8b:25: df:2b:3a:c7:ef:30:f8:c1:5a:16:e9:42:2e:6f:93: da:ff:08:9a:3c:a1:f0:bb:d5:7b:20:4d:81:0e:75: f3:6c:75:3f:15:c3:2e:c4:be:09:86:0e:03:dd:49: 3e:d9:61:86:19:a8:47:59:cb:33:30:ee:66:ee:c2: 3b:ac:9b:cf:13:03:a4:20:ef:59:07:ba:0d:3e:93: cc:59:b4:0b:1c:bf:88:71:0f:f5:9f:f9:d7:b8:81: 05:b9:75:6e:99:bb:34:81:98:8c:2b:91:5d:01:92: 08:53:d7:1e:67:06:94:a1:b5:00:80:50:d6:29:e3: 06:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C2:04:CE:23:88:65:18:FA:23:59:7A:F0:80:CE:D2:16:04:17:A7 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.208.0/24 103.228.65.0/24 103.234.52.0/24 103.234.55.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:62:35:26:3e:35:94:24:70:b9:65:81:c6:17:7b:6a:1f:24: 3a:0f:00:58:48:4e:f1:7d:4f:80:bf:50:d7:8d:14:9f:8c:06: 2f:de:13:df:56:2b:4d:da:86:97:19:70:67:2c:cc:e9:47:86: df:a9:2e:47:43:36:f6:25:77:9e:6a:87:ec:67:8c:3b:b0:24: d6:76:a5:74:bf:a6:70:a1:e9:e5:fe:5b:02:0c:ab:68:3d:46: b0:c4:02:b5:e6:cd:37:bd:a9:18:e3:23:4a:70:bd:88:38:5e: 76:fd:7f:3b:7d:87:29:2e:6b:3a:a2:14:d7:33:cd:73:c2:b3: 1f:92:b6:6f:33:6d:eb:50:3e:27:4e:25:4d:bb:46:79:5f:35: cc:2a:19:a5:18:3c:b0:bc:18:9e:9d:e6:2d:df:36:3b:eb:13: bd:5d:85:6c:38:aa:13:2c:31:6c:61:e5:18:10:f2:7d:87:c1: 84:e9:52:fc:b3:4b:6e:5e:9a:59:d3:02:cd:08:b4:9d:1f:96: 80:fa:8c:74:9f:b4:c9:61:6c:7d:7b:db:02:05:58:72:5a:2f: 54:01:33:3c:ac:c0:1e:07:39:bd:f5:20:f7:ba:d4:49:4b:ca: 73:ae:be:57:38:c3:7f:5c:dc:3a:9c:ac:45:ed:e2:ea:54:c8: cc:d8:08:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDAwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZWI4OC03OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfvkNhjy3rIPy45TaFi+tY/NMvCO/qMxFc9YqzB95VxLn7/2Q2XudAYth5LP hTpSOVpGU9IaQw64nXZ+it0uHef2OjGlkSYYku2/iK9nj3IMhqaIQPAOz35wYFY6 3Y34hhAjZ/5U++f2gitIbMV0MJ5DMfx/zVe/YUZIQAC+C4lcFqxsiyXfKzrH7zD4 wVoW6UIub5Pa/wiaPKHwu9V7IE2BDnXzbHU/FcMuxL4Jhg4D3Uk+2WGGGahHWcsz MO5m7sI7rJvPEwOkIO9ZB7oNPpPMWbQLHL+IcQ/1n/nXuIEFuXVumbs0gZiMK5Fd AZIIU9ceZwaUobUAgFDWKeMGzQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFLvCBM4j iGUY+iNZevCAztIWBBenMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvODNFQzQ0Qzgx MzRDMTFFRjgxQjE4Mjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr/NADBABn5EEDBABn6jQDBABn6jcwDQYJKoZIhvcNAQEL BQADggEBAExiNSY+NZQkcLllgcYXe2ofJDoPAFhITvF9T4C/UNeNFJ+MBi/eE99W K03ahpcZcGcszOlHht+pLkdDNvYld55qh+xnjDuwJNZ2pXS/pnCh6eX+WwIMq2g9 RrDEArXmzTe9qRjjI0pwvYg4Xnb9fzt9hykuazqiFNczzXPCsx+Stm8zbetQPidO JU27RnlfNcwqGaUYPLC8GJ6d5i3fNjvrE71dhWw4qhMsMWxh5RgQ8n2HwYTpUvyz S25emlnTAs0ItJ0floD6jHSftMlhbH172wIFWHJaL1QBMzyswB4HOb31IPe61ElL ynOuvlc4w39c3DqcrEXt4upUyMzYCFA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:32 2025 by rpki-client