$ rpki-client -vvf rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/E3D2704667FC11F0AC42A91FC4F9AE02.roa File: E3D2704667FC11F0AC42A91FC4F9AE02.roa (raw, json) Hash identifier: PqNSkqyewmKuXRkADPgSAahXx6Qh7/X+wfZVSlj+tc8= Subject key identifier: 0E:C7:BB:5D:D6:74:8A:68:BC:01:D9:09:EC:15:E8:52:84:FF:51:ED Certificate issuer: /CN=A912994F/serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Certificate serial: 3522 Authority key identifier: 4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/E3D2704667FC11F0AC42A91FC4F9AE02.roa Signing time: Tue 14 Oct 2025 05:07:01 +0000 ROA not before: Tue 14 Oct 2025 05:07:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151472 IP address blocks: 43.225.205.0/24 maxlen: 24 103.9.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912994F, serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Validity Not Before: Oct 14 05:07:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68edda75-7ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:12:40:41:eb:f7:87:c7:9d:f6:6d:0d:72: d1:39:11:5c:71:f0:80:89:a2:42:64:1e:33:b0:d2: d3:f6:0a:3c:7a:26:a0:f2:af:a1:cd:ad:7c:a0:6c: 64:bb:b1:f9:12:84:52:ad:95:84:e9:70:fd:3c:4d: ce:2d:18:6e:4e:a0:78:6d:ac:48:c7:ae:18:50:68: 5c:6d:b6:0c:65:ac:77:ff:0e:91:50:e4:5a:0f:17: 2f:c0:5c:03:3b:9c:e2:a9:f6:30:10:95:c7:9b:3f: 52:49:5d:0c:b1:a2:80:e3:1e:2f:26:ab:27:7b:95: 42:bf:6c:0e:84:ae:3c:25:79:0a:cd:df:dd:19:19: a4:1c:b1:23:97:12:31:06:e9:01:1b:05:e7:9c:76: 48:b1:8c:80:05:36:99:3f:f0:4a:5f:f6:b4:88:40: 9f:87:a7:86:99:1f:3f:47:7c:32:7d:c0:9d:01:44: f3:ec:d5:30:73:09:e7:26:4a:cb:66:f2:04:c9:77: 45:d7:a9:23:4b:6a:6a:d0:e7:5e:58:e7:2d:62:13: 05:3b:d8:e5:df:94:81:44:05:5a:0d:2c:4a:3a:ea: 43:d3:73:5f:34:59:48:75:b6:63:ed:54:92:a2:57: d2:58:ef:9a:5a:ad:8d:b5:4d:c1:cf:35:af:45:a4: 33:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C7:BB:5D:D6:74:8A:68:BC:01:D9:09:EC:15:E8:52:84:FF:51:ED X509v3 Authority Key Identifier: keyid:4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/E3D2704667FC11F0AC42A91FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.205.0/24 103.9.105.0/24 Signature Algorithm: sha256WithRSAEncryption ad:ad:d0:df:a2:c7:83:d0:52:13:f5:9a:b0:20:d7:7f:c1:68: 0b:56:0d:ad:9a:68:13:42:2f:89:a5:86:83:1b:64:67:a8:e7: 91:d1:d5:3f:23:9e:6a:a4:4a:da:c4:a9:05:e5:1e:4f:51:f7: 26:bb:1e:8d:69:8d:c4:db:19:0a:b7:d9:c0:a0:01:9c:c6:4b: 65:27:b3:74:89:82:d8:41:fd:3f:1c:6d:53:c7:c6:91:ae:1b: b3:53:dc:c6:63:0a:e1:7a:91:fd:03:16:5c:a4:b0:de:4c:db: 6a:d9:23:de:eb:0b:86:b6:4b:8a:6c:e9:94:d7:ed:bf:37:16: 0a:6d:24:4d:d3:7e:4d:4e:98:b1:37:6c:62:9a:8c:d1:22:50: cd:62:a9:d8:d9:65:05:78:20:4b:81:52:cc:a6:df:3a:f8:1b: 44:db:c7:44:34:88:3c:ea:6b:9f:90:20:8b:45:f1:1c:52:d0: 9c:ff:2f:6b:08:aa:d9:83:65:d5:e4:0a:97:9a:98:ca:0a:b8: dd:05:33:d9:01:bd:3a:85:1f:8e:5b:2f:72:14:a8:2d:2c:a1: 25:91:c4:da:20:7b:1b:56:ea:e2:4f:35:35:95:cc:a7:09:e8: 2a:e9:52:9c:2b:51:18:2b:81:7b:01:81:03:61:26:2e:78:de: 9e:b3:4a:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NEYxMTAvBgNVBAUTKDRCRUQ1OEJDNDU0NEU3RTNCNUU5Nzg5QzY3QzYzQkVD OTFDMjdDREQwHhcNMjUxMDE0MDUwNzAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVkZGE3NS03YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJcSQEHr94fHnfZtDXLRORFccfCAiaJCZB4zsNLT9go8eiag8q+hza18oGxk u7H5EoRSrZWE6XD9PE3OLRhuTqB4baxIx64YUGhcbbYMZax3/w6RUORaDxcvwFwD O5ziqfYwEJXHmz9SSV0MsaKA4x4vJqsne5VCv2wOhK48JXkKzd/dGRmkHLEjlxIx BukBGwXnnHZIsYyABTaZP/BKX/a0iECfh6eGmR8/R3wyfcCdAUTz7NUwcwnnJkrL ZvIEyXdF16kjS2pq0OdeWOctYhMFO9jl35SBRAVaDSxKOupD03NfNFlIdbZj7VSS olfSWO+aWq2NtU3BzzWvRaQzXQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA7Hu13W dIpovAHZCewV6FKE/1HtMB8GA1UdIwQYMBaAFEvtWLxFROfjtel4nGfGO+yRwnzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk0Ri9BMDI5QTUyNjFE QUExMUUyOUJGQzY3QTYwOEIwMkNEMi9TLTFZdkVWRTUtTzE2WGljWjhZNzdKSENm TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MtMVl2RVZFNS1PMTZYaWNaOFk3N0pIQ2ZOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NEYvQTAyOUE1MjYxREFBMTFFMjlCRkM2N0E2MDhCMDJDRDIvRTNEMjcwNDY2 N0ZDMTFGMEFDNDJBOTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4c0DBABnCWkwDQYJKoZIhvcNAQELBQADggEBAK2t0N+i x4PQUhP1mrAg13/BaAtWDa2aaBNCL4mlhoMbZGeo55HR1T8jnmqkStrEqQXlHk9R 9ya7Ho1pjcTbGQq32cCgAZzGS2Uns3SJgthB/T8cbVPHxpGuG7NT3MZjCuF6kf0D FlyksN5M22rZI97rC4a2S4ps6ZTX7b83FgptJE3Tfk1OmLE3bGKajNEiUM1iqdjZ ZQV4IEuBUsym3zr4G0Tbx0Q0iDzqa5+QIItF8RxS0Jz/L2sIqtmDZdXkCpeamMoK uN0FM9kBvTqFH45bL3IUqC0soSWRxNogextW6uJPNTWVzKcJ6CrpUpwrURgrgXsB gQNhJi543p6zSgA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:34:28 2025 by rpki-client