$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/680F0EA2284411EC8826F928C4F9AE02.roa File: 680F0EA2284411EC8826F928C4F9AE02.roa (raw, json) Hash identifier: 3GuUWWSw68MOlVK92wSYlp+NhvzxWsoKxH6173siIPE= Subject key identifier: 4A:D8:81:2D:56:42:95:CB:B5:E2:F6:E6:34:E7:9B:13:8D:65:AD:5A Certificate issuer: /CN=A912A3BE/serialNumber=DE78F43D57C0BE722247432D6BAAF7A27C1A5B9A Certificate serial: 0504 Authority key identifier: DE:78:F4:3D:57:C0:BE:72:22:47:43:2D:6B:AA:F7:A2:7C:1A:5B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3nj0PVfAvnIiR0Mta6r3onwaW5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/680F0EA2284411EC8826F928C4F9AE02.roa Signing time: Thu 25 Sep 2025 00:16:23 +0000 ROA not before: Thu 25 Sep 2025 00:16:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146948 IP address blocks: 103.171.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/3nj0PVfAvnIiR0Mta6r3onwaW5o.crl rsync://rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/3nj0PVfAvnIiR0Mta6r3onwaW5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3nj0PVfAvnIiR0Mta6r3onwaW5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3BE, serialNumber=DE78F43D57C0BE722247432D6BAAF7A27C1A5B9A Validity Not Before: Sep 25 00:16:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d489d7-2265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:08:ea:1d:5b:75:11:54:da:ff:3c:ff:9a:c0: eb:c5:2f:4e:cf:56:94:f7:12:fa:b6:86:d3:eb:bf: f2:66:ab:ed:98:55:4f:ab:44:71:8a:ac:1c:95:97: 11:76:10:a7:ae:6d:fe:9f:06:b6:6e:da:4e:da:e0: 3a:07:e3:41:68:e6:8d:ef:67:cf:a0:54:40:89:a0: 47:52:13:e8:1e:df:d9:9c:1e:ac:41:e1:b5:5d:75: 4d:40:ab:7b:c0:a7:71:16:ad:8d:cf:a1:08:74:9d: 71:a0:e3:88:44:a1:e6:32:cf:af:a7:26:cc:b7:06: 3b:fc:fa:4e:77:15:ea:be:a4:8d:64:c5:37:df:5b: 44:d3:00:66:db:23:ac:31:6c:74:2b:3e:73:e1:6c: 01:55:a6:ea:65:c3:01:92:54:3d:f1:bc:ab:07:4e: 20:d9:b7:a4:2f:b6:76:6d:86:af:6b:c5:a1:c2:06: d6:22:0c:5e:7f:b3:56:1e:15:90:7b:e8:9f:b7:d5: ec:19:b4:e6:58:19:e5:b1:cc:2a:88:13:0b:41:c5: 1f:8e:aa:ee:19:64:8e:48:4f:e0:f4:76:09:25:f4: e8:7e:e0:6f:97:ec:1f:96:16:45:e5:1d:e4:e2:89: e8:14:82:08:bf:7e:99:19:cb:62:6e:4c:ae:6f:70: 77:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D8:81:2D:56:42:95:CB:B5:E2:F6:E6:34:E7:9B:13:8D:65:AD:5A X509v3 Authority Key Identifier: keyid:DE:78:F4:3D:57:C0:BE:72:22:47:43:2D:6B:AA:F7:A2:7C:1A:5B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/3nj0PVfAvnIiR0Mta6r3onwaW5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3nj0PVfAvnIiR0Mta6r3onwaW5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3BE/2E43C3EC284011ECBE216F40C4F9AE02/680F0EA2284411EC8826F928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.249.0/24 Signature Algorithm: sha256WithRSAEncryption 52:f3:8f:fc:92:43:95:f6:10:6c:41:ca:69:af:05:db:98:35: 73:5b:ee:ea:53:35:e5:42:a7:8d:5b:a0:e9:ce:40:39:e7:df: 33:d8:a5:ed:26:88:c2:c4:70:bc:8c:42:0d:74:88:6d:80:b2: 66:40:7a:68:4c:b5:5c:6c:5f:a3:6e:fa:6a:cc:95:84:06:c4: 8f:e5:2f:c9:bc:a7:96:a5:96:79:e2:6d:9c:3e:ba:1f:d6:ec: 89:26:d8:80:77:30:0c:e2:8d:14:cf:46:33:2d:bf:90:40:98: 48:7e:12:4f:e6:7b:17:3c:ad:08:1d:ca:ea:3e:98:5d:15:6f: d2:30:12:af:25:cb:75:84:82:cf:9f:8c:aa:bf:1b:14:e0:0a: 7e:29:f4:00:f3:cb:3c:c7:32:c2:88:81:13:fa:61:8e:f1:00: e5:55:0a:69:74:2f:b7:2f:21:cb:7d:66:e9:42:aa:89:8e:0e: 63:bd:0c:ff:a1:b7:47:59:f7:6a:ea:a5:e5:a1:cc:ee:76:6b: 7b:20:ad:24:19:af:4a:ad:ac:3c:2e:8f:05:55:cb:73:f3:76: fc:75:26:37:6a:24:b1:00:c2:f3:68:91:6f:12:67:98:62:b8: 54:02:31:89:52:e0:e2:2b:76:60:68:83:ca:c1:e8:6c:ea:7e: ba:c8:8a:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQkUxMTAvBgNVBAUTKERFNzhGNDNENTdDMEJFNzIyMjQ3NDMyRDZCQUFGN0Ey N0MxQTVCOUEwHhcNMjUwOTI1MDAxNjIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0ODlkNy0yMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAjqHVt1EVTa/zz/msDrxS9Oz1aU9xL6tobT67/yZqvtmFVPq0RxiqwclZcR dhCnrm3+nwa2btpO2uA6B+NBaOaN72fPoFRAiaBHUhPoHt/ZnB6sQeG1XXVNQKt7 wKdxFq2Nz6EIdJ1xoOOIRKHmMs+vpybMtwY7/PpOdxXqvqSNZMU331tE0wBm2yOs MWx0Kz5z4WwBVabqZcMBklQ98byrB04g2bekL7Z2bYava8WhwgbWIgxef7NWHhWQ e+ift9XsGbTmWBnlscwqiBMLQcUfjqruGWSOSE/g9HYJJfTofuBvl+wflhZF5R3k 4onoFIIIv36ZGctibkyub3B3cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFErYgS1W QpXLteL25jTnmxONZa1aMB8GA1UdIwQYMBaAFN549D1XwL5yIkdDLWuq96J8Glua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNCRS8yRTQzQzNFQzI4 NDAxMUVDQkUyMTZGNDBDNEY5QUUwMi8zbmowUFZmQXZuSWlSME10YTZyM29ud2FX NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNuajBQVmZBdm5JaVIwTXRhNnIzb253YVc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQkUvMkU0M0MzRUMyODQwMTFFQ0JFMjE2RjQwQzRGOUFFMDIvNjgwRjBFQTIy ODQ0MTFFQzg4MjZGOTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnq/kwDQYJKoZIhvcNAQELBQADggEBAFLzj/ySQ5X2EGxB ymmvBduYNXNb7upTNeVCp41boOnOQDnn3zPYpe0miMLEcLyMQg10iG2AsmZAemhM tVxsX6Nu+mrMlYQGxI/lL8m8p5allnnibZw+uh/W7Ikm2IB3MAzijRTPRjMtv5BA mEh+Ek/mexc8rQgdyuo+mF0Vb9IwEq8ly3WEgs+fjKq/GxTgCn4p9ADzyzzHMsKI gRP6YY7xAOVVCml0L7cvIct9ZulCqomODmO9DP+ht0dZ92rqpeWhzO52a3sgrSQZ r0qtrDwujwVVy3Pzdvx1JjdqJLEAwvNokW8SZ5hiuFQCMYlS4OIrdmBog8rB6Gzq frrIilE= -----END CERTIFICATE-----Generated at Tue Oct 21 09:20:03 2025 by rpki-client