$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa File: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (raw, json) Hash identifier: YiqHt1NmkyZeQGkCylb3t5kmyZBllHOZPJhWp7tXWTc= Subject key identifier: 5A:0B:04:A6:8B:F2:3E:6B:CB:9C:AD:5B:DB:6E:B6:26:86:B2:29:B5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0276 Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa Signing time: Fri 17 Oct 2025 04:07:43 +0000 ROA not before: Fri 17 Oct 2025 04:07:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150299 IP address blocks: 103.214.178.0/23 maxlen: 23 103.214.178.0/24 maxlen: 24 103.214.179.0/24 maxlen: 24 2001:df1:3b40::/48 maxlen: 48 2001:df1:3b40::/51 maxlen: 51 2001:df1:3b40:2000::/51 maxlen: 51 2001:df1:3b40:4000::/51 maxlen: 51 2001:df1:3b40:6000::/51 maxlen: 51 2001:df1:3b40:8000::/51 maxlen: 51 2001:df1:3b40:a000::/51 maxlen: 51 2001:df1:3b40:c000::/51 maxlen: 51 2001:df1:3b40:e000::/51 maxlen: 51 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Oct 17 04:07:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f1c10f-8369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:34:af:91:eb:04:df:03:64:68:55:4e:cf:95: 69:16:ad:bf:12:85:26:22:55:09:9e:13:fa:13:8e: 82:38:85:d2:4e:94:a4:c5:9c:52:07:9a:2c:9a:ae: c8:37:ec:47:9d:6a:04:0b:55:5e:ae:ea:b0:d0:dd: 2c:8c:58:14:4c:11:06:8f:cf:34:3f:36:26:bd:c4: 39:99:e6:ac:1c:fd:f2:f8:2a:bb:50:73:ee:58:3f: f8:31:3d:14:b8:be:3f:a4:57:ce:06:41:d9:7d:c5: 04:cf:ff:0d:47:34:4b:ae:d9:fd:5f:53:af:74:11: 38:f1:2c:b7:47:d0:6a:be:b3:3f:b8:5e:7c:b2:d8: 8f:2d:4a:53:22:24:2e:b0:f9:8b:9d:0e:5b:26:c4: 8c:90:37:45:6e:07:cc:5a:73:f4:1e:c6:a0:12:28: 1c:02:7a:10:3d:08:f4:e2:83:fc:21:da:ca:e1:53: aa:f6:f8:14:57:54:71:4b:e7:ed:ee:d3:b5:8c:ef: 06:c5:21:3b:4f:26:aa:0b:c0:2f:e0:b9:fc:c2:f9: b8:ff:54:bc:a1:c9:d1:0e:45:bc:e7:0c:ef:1b:01: 8b:16:21:d8:4a:de:ee:2e:bb:8a:a0:39:d0:cf:e6: 6b:a1:ea:91:23:89:21:58:fe:ad:28:3f:a9:e5:cb: 0e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0B:04:A6:8B:F2:3E:6B:CB:9C:AD:5B:DB:6E:B6:26:86:B2:29:B5 X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.178.0/23 IPv6: 2001:df1:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 72:62:f0:d8:05:66:57:28:e2:7a:46:1c:6e:c6:e9:96:7a:f5: db:f0:a2:33:f6:92:6e:1f:f4:76:f2:78:91:f2:6e:40:9c:28: dc:f0:40:21:10:68:b6:89:9f:75:5b:19:6f:c7:5f:62:d8:02: c5:70:1e:d1:c4:53:77:cb:91:b7:18:d2:a3:01:40:47:2b:1e: 61:ee:8e:ee:18:e0:de:8e:a0:15:96:25:55:76:8d:92:1e:53: 89:b1:18:6c:10:80:28:e0:47:6a:dc:6b:a2:1f:08:78:ec:04: ec:c7:33:1c:6e:2c:b1:e0:27:09:e6:4a:57:df:e8:fb:b1:4d: de:c2:16:9c:46:c8:50:34:d5:c9:c5:78:83:62:8c:cb:58:18: f7:7c:7d:e8:df:65:21:e4:bf:a1:0d:20:eb:9d:2b:5a:47:af: a7:20:9c:a7:cb:7a:50:c2:b7:94:21:e8:6d:76:c9:6c:ef:63: bd:64:2a:12:9d:86:ed:7e:43:04:83:34:12:84:d3:e2:09:2b: 53:79:7a:95:01:82:55:50:81:b1:79:72:43:b3:27:8c:3a:9f: f1:2a:44:f7:95:12:c6:3f:dc:d0:0a:7c:b5:d8:f3:f0:38:2c: aa:7b:b1:d1:d4:46:8d:c2:6a:95:1c:f4:b3:ca:47:19:dd:9f: ff:61:2f:51 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUxMDE3MDQwNzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxYzEwZi04MzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zSvkesE3wNkaFVOz5VpFq2/EoUmIlUJnhP6E46COIXSTpSkxZxSB5osmq7I N+xHnWoEC1Veruqw0N0sjFgUTBEGj880PzYmvcQ5measHP3y+Cq7UHPuWD/4MT0U uL4/pFfOBkHZfcUEz/8NRzRLrtn9X1OvdBE48Sy3R9BqvrM/uF58stiPLUpTIiQu sPmLnQ5bJsSMkDdFbgfMWnP0HsagEigcAnoQPQj04oP8IdrK4VOq9vgUV1RxS+ft 7tO1jO8GxSE7TyaqC8Av4Ln8wvm4/1S8ocnRDkW85wzvGwGLFiHYSt7uLruKoDnQ z+ZroeqRI4khWP6tKD+p5csODwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFoLBKaL 8j5ry5ytW9tutiaGsim1MB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU3NTgvNzFFQkU3QzIyQ0Q3MTFFREIwMkIxRDE5QzRGOUFFMDIvMTE3MzAwQjYy Q0RCMTFFREIyRTFERDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn1rIwDwQCAAIwCQMHACABDfE7QDANBgkqhkiG9w0BAQsF AAOCAQEAcmLw2AVmVyjiekYcbsbplnr12/CiM/aSbh/0dvJ4kfJuQJwo3PBAIRBo tomfdVsZb8dfYtgCxXAe0cRTd8uRtxjSowFARyseYe6O7hjg3o6gFZYlVXaNkh5T ibEYbBCAKOBHatxroh8IeOwE7MczHG4sseAnCeZKV9/o+7FN3sIWnEbIUDTVycV4 g2KMy1gY93x96N9lIeS/oQ0g650rWkevpyCcp8t6UMK3lCHobXbJbO9jvWQqEp2G 7X5DBIM0EoTT4gkrU3l6lQGCVVCBsXlyQ7MnjDqf8SpE95USxj/c0Ap8tdjz8Dgs qnux0dRGjcJqlRz0s8pHGd2f/2EvUQ== -----END CERTIFICATE-----Generated at Tue Oct 21 09:57:17 2025 by rpki-client