$ rpki-client -vvf rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/B3DED21C86C911F0BAF28043C4F9AE02.roa File: B3DED21C86C911F0BAF28043C4F9AE02.roa (raw, json) Hash identifier: CocTAGyUcSYA6MVP0olvSXDiZcQTc7S0RwIMK0ei44s= Subject key identifier: BA:BA:0C:E2:71:93:B7:09:B6:15:3A:08:B2:4F:39:54:44:8C:B5:FE Certificate issuer: /CN=A911F92A/serialNumber=B82A9CF6F9CC803C6A6B70662D807EC51D82DBDD Certificate serial: 02 Authority key identifier: B8:2A:9C:F6:F9:CC:80:3C:6A:6B:70:66:2D:80:7E:C5:1D:82:DB:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/B3DED21C86C911F0BAF28043C4F9AE02.roa Signing time: Mon 01 Sep 2025 00:22:11 +0000 ROA not before: Mon 01 Sep 2025 00:22:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140051 IP address blocks: 103.199.82.0/23 maxlen: 24 203.80.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.crl rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F92A, serialNumber=B82A9CF6F9CC803C6A6B70662D807EC51D82DBDD Validity Not Before: Sep 1 00:22:11 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68b4e733-195d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:d8:4c:7c:26:3e:97:7f:e2:e7:8e:e7:61: 02:0a:c7:ea:50:10:2f:ae:7b:4d:26:fd:cd:ee:54: 65:e2:e0:b4:31:03:0f:85:4e:98:d2:bd:66:e8:5f: bc:a4:6d:98:1e:2f:01:3f:4c:7f:c7:ac:ee:a9:d4: eb:6c:8e:0d:e2:86:74:4a:b5:af:1a:f4:bb:63:96: a1:2e:dd:d0:a0:cf:fd:eb:59:2b:cc:78:b9:ed:ea: 09:28:44:21:2d:80:2d:44:8d:79:04:8a:5c:49:a4: 46:f3:33:af:a0:b8:55:42:18:e8:15:a1:82:2d:3c: 57:ce:c9:8a:84:1c:20:85:5b:f1:7b:05:79:89:7f: d1:75:ed:15:62:f5:91:09:de:83:75:e5:c9:7b:17: 5f:ee:24:d9:5a:d7:02:d4:53:bb:e6:c6:a0:5e:57: 8f:5d:d0:4d:b6:85:f9:09:31:f0:c3:b5:b5:30:ad: f9:79:3b:a0:2c:9a:b1:49:3c:d9:9a:b3:59:ba:f7: d6:f3:47:ba:72:51:62:8c:3c:f4:8b:3d:78:4b:c9: cf:dd:12:b1:d8:cb:e3:4c:f4:cc:c0:37:27:be:9d: ab:34:05:a2:1d:40:d4:73:7a:da:51:d3:b3:f4:0a: 92:3f:48:cc:77:37:a9:c0:2b:ce:58:95:7f:49:f4: e5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BA:0C:E2:71:93:B7:09:B6:15:3A:08:B2:4F:39:54:44:8C:B5:FE X509v3 Authority Key Identifier: keyid:B8:2A:9C:F6:F9:CC:80:3C:6A:6B:70:66:2D:80:7E:C5:1D:82:DB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/B3DED21C86C911F0BAF28043C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.82.0/23 203.80.131.0/24 Signature Algorithm: sha256WithRSAEncryption 35:f3:45:f1:ca:ef:34:c4:ed:16:bc:54:75:3c:e0:08:4a:0c: 27:e5:57:b3:b0:c2:39:74:5f:70:4e:ea:ca:7d:cf:3b:bb:a2: 7d:0e:df:bc:ab:41:53:cb:78:27:48:ff:b9:1a:0a:38:7c:75: cb:ff:50:75:d9:0f:49:fc:b4:4a:29:3a:ac:4c:83:8a:b2:b6: c4:ee:41:e5:c7:17:a4:0a:5e:7c:b7:8a:d9:66:14:31:d0:52: 37:e4:8e:19:cd:75:ee:fc:6b:a9:f3:95:2a:34:36:10:fc:de: a7:ca:a6:d5:99:8e:b5:a6:f9:3f:c7:b7:52:1e:0b:11:2f:86: e1:77:ff:f0:a4:6e:bc:94:f3:52:65:f6:1f:bc:5b:e9:f4:d4: 18:15:93:55:6d:cc:05:b0:3e:65:28:91:4c:92:f0:7d:b2:44: b4:1f:10:3d:2a:e5:c1:1e:75:0d:26:42:90:a4:06:16:07:7c: 07:1d:58:25:96:26:03:04:3d:e8:07:eb:5a:fc:40:99:45:6e: af:43:80:71:1a:94:ed:8e:89:b5:13:d1:c1:cb:c1:ff:97:ad: 09:c7:b0:2d:15:4d:b5:65:f3:82:6d:70:04:9f:6e:82:f7:dd: 22:ab:3f:9c:99:ac:fe:00:e1:f2:d3:44:2c:15:b3:7b:ca:e8: a9:c7:82:1f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjkyQTExMC8GA1UEBRMoQjgyQTlDRjZGOUNDODAzQzZBNkI3MDY2MkQ4MDdFQzUx RDgyREJERDAeFw0yNTA5MDEwMDIyMTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjRlNzMzLTE5NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsT9hMfCY+l3/i547nYQIKx+pQEC+ue00m/c3uVGXi4LQxAw+FTpjSvWboX7yk bZgeLwE/TH/HrO6p1Otsjg3ihnRKta8a9LtjlqEu3dCgz/3rWSvMeLnt6gkoRCEt gC1EjXkEilxJpEbzM6+guFVCGOgVoYItPFfOyYqEHCCFW/F7BXmJf9F17RVi9ZEJ 3oN15cl7F1/uJNla1wLUU7vmxqBeV49d0E22hfkJMfDDtbUwrfl5O6AsmrFJPNma s1m699bzR7pyUWKMPPSLPXhLyc/dErHYy+NM9MzANye+nas0BaIdQNRzetpR07P0 CpI/SMx3N6nAK85YlX9J9OVLAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUuroM4nGT twm2FToIsk85VESMtf4wHwYDVR0jBBgwFoAUuCqc9vnMgDxqa3BmLYB+xR2C290w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGOTJBLzI2NjAzNzgyODZD OTExRjA4NzJGOUQyRkM0RjlBRTAyL3VDcWM5dm5NZ0R4cWEzQm1MWUIteFIyQzI5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdUNxYzl2bk1nRHhxYTNCbUxZQi14UjJDMjkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjkyQS8yNjYwMzc4Mjg2QzkxMUYwODcyRjlEMkZDNEY5QUUwMi9CM0RFRDIxQzg2 QzkxMUYwQkFGMjgwNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWfHUgMEAMtQgzANBgkqhkiG9w0BAQsFAAOCAQEANfNF8crv NMTtFrxUdTzgCEoMJ+VXs7DCOXRfcE7qyn3PO7uifQ7fvKtBU8t4J0j/uRoKOHx1 y/9QddkPSfy0Sik6rEyDirK2xO5B5ccXpApefLeK2WYUMdBSN+SOGc117vxrqfOV KjQ2EPzep8qm1ZmOtab5P8e3Uh4LES+G4Xf/8KRuvJTzUmX2H7xb6fTUGBWTVW3M BbA+ZSiRTJLwfbJEtB8QPSrlwR51DSZCkKQGFgd8Bx1YJZYmAwQ96AfrWvxAmUVu r0OAcRqU7Y6JtRPRwcvB/5etCcewLRVNtWXzgm1wBJ9ugvfdIqs/nJms/gDh8tNE LBWze8roqceCHw== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:19 2025 by rpki-client