$ rpki-client -vvf rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa File: A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa (raw, json) Hash identifier: xZ7a43he46yBIpdPfo3VUuRojtSoHm3dh9Gg3MtbJcM= Subject key identifier: D6:40:3A:AE:E8:C3:9E:32:98:90:8E:3F:32:9B:B8:BF:C8:8D:BB:AE Certificate issuer: /CN=A911C18F/serialNumber=3F149CB2481071F143F8D15608279AAFC71D115C Certificate serial: 1F2C Authority key identifier: 3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa Signing time: Thu 02 Oct 2025 16:14:20 +0000 ROA not before: Thu 02 Oct 2025 16:14:20 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132089 IP address blocks: 103.70.78.0/24 maxlen: 24 103.70.78.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7980 (0x1f2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C18F, serialNumber=3F149CB2481071F143F8D15608279AAFC71D115C Validity Not Before: Oct 2 16:14:20 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68dea4db-079d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:93:eb:a5:51:be:b9:71:54:c3:a0:a5:2e:01: b9:7c:18:d0:ee:03:af:d6:1b:89:b9:1a:d5:68:c5: 7b:dd:9e:62:80:f3:5c:91:7d:d7:19:00:7a:43:82: 36:cb:67:93:60:8f:b9:bf:40:21:fd:d2:b2:64:95: 5c:aa:8a:82:64:d9:4d:88:88:32:86:32:79:5b:d7: c6:03:b4:40:df:ad:35:ea:3a:c4:e8:ea:53:14:4f: 18:47:76:bb:0c:dc:aa:a2:36:e0:d2:bc:d2:04:51: 3c:71:cd:76:8f:d4:69:6b:93:03:8e:88:18:66:6f: 27:de:54:4a:38:83:37:5d:6d:7c:64:35:42:11:85: bd:8e:49:3f:b4:26:f1:66:85:03:f0:4f:c9:c0:5a: 31:37:fe:34:8d:2c:80:14:e2:64:16:f7:05:1c:bd: 19:da:35:4b:82:bb:b2:eb:62:3c:55:5b:43:cf:f6: b0:15:a4:29:22:96:2b:2f:83:7b:ee:6c:a9:98:ae: e3:b4:c9:2c:d4:d0:03:af:1c:db:7d:a5:38:1d:24: 96:88:46:44:69:c0:8c:37:62:80:e0:77:e7:2e:f0: 88:c5:f2:ad:1c:d7:bb:a6:ed:ad:6c:21:d8:94:f5: 90:59:48:c4:20:7a:62:45:ad:34:db:38:fd:b2:28: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:40:3A:AE:E8:C3:9E:32:98:90:8E:3F:32:9B:B8:BF:C8:8D:BB:AE X509v3 Authority Key Identifier: keyid:3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.78.0/24 Signature Algorithm: sha256WithRSAEncryption 75:43:3a:24:64:25:14:e4:8d:5a:cf:37:0a:23:09:1f:cf:5c: fa:fc:07:02:2f:fe:6f:7b:d1:7e:4a:af:6e:22:9d:49:15:d8: 27:36:4c:5b:5b:81:d0:53:af:eb:f7:90:11:dd:78:c4:0b:be: 1d:b9:2f:9b:b5:3b:75:74:7c:ef:ea:5f:d0:60:d2:21:6d:92: 93:00:69:00:82:71:5d:17:9a:6d:c2:7d:b1:cc:8c:bb:4c:2b: 86:91:a6:92:df:83:c6:05:b3:66:18:03:91:58:f7:bd:90:e0: a7:11:a7:17:65:b8:98:1d:3c:4b:c4:5d:45:c0:ff:ed:be:3f: bd:45:68:e1:89:26:92:6a:58:cc:90:87:32:36:fe:f6:a7:b8: 36:3d:32:0e:a1:96:dc:0b:19:27:db:cf:d5:e0:22:c6:64:2e: e6:af:b6:ab:7f:d0:83:f8:06:ed:0a:0c:b9:ab:0c:67:64:06: 7d:51:d2:3b:b4:db:39:e2:e7:93:cb:9b:65:c0:e2:c5:28:37: 39:1b:b6:0b:0a:5c:18:9c:86:b6:60:2b:fb:68:70:ee:d4:0c: e1:d6:51:ee:73:78:55:b7:7e:16:02:1b:fe:7e:5c:a0:30:31: f8:35:e3:40:03:5e:67:ed:0e:5a:91:7f:0d:41:aa:db:9e:0a: 56:6e:39:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMxOEYxMTAvBgNVBAUTKDNGMTQ5Q0IyNDgxMDcxRjE0M0Y4RDE1NjA4Mjc5QUFG QzcxRDExNUMwHhcNMjUxMDAyMTYxNDIwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYTRkYi0wNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJPrpVG+uXFUw6ClLgG5fBjQ7gOv1huJuRrVaMV73Z5igPNckX3XGQB6Q4I2 y2eTYI+5v0Ah/dKyZJVcqoqCZNlNiIgyhjJ5W9fGA7RA36016jrE6OpTFE8YR3a7 DNyqojbg0rzSBFE8cc12j9Rpa5MDjogYZm8n3lRKOIM3XW18ZDVCEYW9jkk/tCbx ZoUD8E/JwFoxN/40jSyAFOJkFvcFHL0Z2jVLgruy62I8VVtDz/awFaQpIpYrL4N7 7mypmK7jtMks1NADrxzbfaU4HSSWiEZEacCMN2KA4HfnLvCIxfKtHNe7pu2tbCHY lPWQWUjEIHpiRa002zj9sijwCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNZAOq7o w54ymJCOPzKbuL/IjbuuMB8GA1UdIwQYMBaAFD8UnLJIEHHxQ/jRVggnmq/HHRFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzE4Ri84RTdBOUJBQzVF MTgxMUU2QUM2NkM1NTlDNEY5QUUwMi9QeFNjc2tnUWNmRkQtTkZXQ0NlYXI4Y2RF VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B4U2Nza2dRY2ZGRC1ORldDQ2VhcjhjZEVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMxOEYvOEU3QTlCQUM1RTE4MTFFNkFDNjZDNTU5QzRGOUFFMDIvQTlGQUU3RkE1 RTE5MTFFNkI4Q0U5QzVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRk4wDQYJKoZIhvcNAQELBQADggEBAHVDOiRkJRTkjVrP NwojCR/PXPr8BwIv/m970X5Kr24inUkV2Cc2TFtbgdBTr+v3kBHdeMQLvh25L5u1 O3V0fO/qX9Bg0iFtkpMAaQCCcV0Xmm3CfbHMjLtMK4aRppLfg8YFs2YYA5FY972Q 4KcRpxdluJgdPEvEXUXA/+2+P71FaOGJJpJqWMyQhzI2/vanuDY9Mg6hltwLGSfb z9XgIsZkLuavtqt/0IP4Bu0KDLmrDGdkBn1R0ju02zni55PLm2XA4sUoNzkbtgsK XBichrZgK/tocO7UDOHWUe5zeFW3fhYCG/5+XKAwMfg140ADXmftDlqRfw1Bqtue ClZuOWE= -----END CERTIFICATE-----Generated at Mon Oct 20 10:18:11 2025 by rpki-client