$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/596841CCA54D11F0BDA77C83C4F9AE02.roa File: 596841CCA54D11F0BDA77C83C4F9AE02.roa (raw, json) Hash identifier: WOumHbGuRSNgmsYtI00tvSXAxwcM6RyoYIB+0smW1tg= Subject key identifier: CF:96:BB:39:18:63:A6:1A:D5:70:4B:6B:37:A0:33:EC:38:65:FF:EA Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 01B8 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/596841CCA54D11F0BDA77C83C4F9AE02.roa Signing time: Thu 09 Oct 2025 20:20:08 +0000 ROA not before: Thu 09 Oct 2025 20:20:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151473 IP address blocks: 103.229.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Oct 9 20:20:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68e818f8-0ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4f:df:2b:83:c7:70:b3:43:1e:5a:03:94:79: 91:23:af:46:42:cf:ab:c6:31:00:56:c8:d8:21:81: 3c:12:5b:53:73:42:06:13:72:20:d8:e7:8d:7c:ff: ba:d0:d2:ca:63:82:80:21:a4:c0:51:53:93:10:7c: 73:e9:47:49:8a:d4:ef:4b:b5:83:0f:9f:5b:21:c6: cc:cb:27:c6:7b:28:b1:f7:25:d4:ca:99:2d:ea:a6: 1a:a4:88:1e:99:70:18:8c:61:7f:7b:35:53:97:5e: 33:90:62:7c:2f:9b:8d:37:33:84:05:e2:dc:37:79: a1:cd:f0:bb:8a:fa:d7:d7:d5:c9:f7:a5:1c:9e:32: f4:7b:7a:e6:c6:71:c5:4f:d6:ef:68:8e:e2:f6:28: 47:ec:14:92:89:cc:d2:a5:bb:2e:43:2c:e7:0e:ea: cf:e7:71:60:b6:9e:1a:2e:55:ae:0d:90:bc:7d:41: 7f:ea:3f:d7:26:7a:05:b3:1c:73:5b:e1:65:75:b7: 52:4b:46:64:9e:aa:37:88:11:16:65:30:94:ef:ad: d7:ef:64:7c:3d:a2:5d:d4:a9:cc:56:9c:7e:77:a9: 45:61:93:c6:92:c8:5c:bf:06:45:ef:7f:78:7c:cb: 68:af:48:6b:df:71:8d:70:f5:09:52:e5:2f:9b:74: 02:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:96:BB:39:18:63:A6:1A:D5:70:4B:6B:37:A0:33:EC:38:65:FF:EA X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/596841CCA54D11F0BDA77C83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.253.0/24 Signature Algorithm: sha256WithRSAEncryption 94:42:01:24:95:af:65:b7:f2:cf:45:95:7f:21:ca:3d:77:36: ef:19:cb:b8:41:7b:5d:b2:64:5a:64:1b:3a:d9:27:fc:c1:95: 8d:be:c3:48:44:73:02:77:9d:b5:f8:ce:c9:f2:b7:ab:67:96: 85:94:13:ea:a9:4d:1f:eb:28:72:f6:50:24:1a:ee:6e:7d:30: c7:33:b6:27:2e:71:37:bb:36:ee:db:33:e0:75:3d:2d:4f:08: 60:e0:d3:60:f2:0f:9a:1e:21:b2:75:11:50:eb:2f:d2:0d:0f: e9:05:62:f3:3e:91:d0:cd:fc:78:68:16:a0:5b:af:c1:33:cc: a2:18:2f:87:6a:85:4e:6f:f3:07:c4:f1:8e:1e:12:48:86:b0: bf:f6:c2:8e:c5:b1:d1:dc:25:c0:a9:88:39:04:bb:43:35:92: 89:0b:b2:3e:73:69:4c:8d:bd:46:e0:ec:95:96:94:4e:45:7b: de:3c:0e:fc:df:26:38:e6:c8:26:36:d3:19:76:da:dd:16:ea: 3f:b8:d3:9c:42:6e:c4:45:ee:ae:c1:0b:5b:4f:43:20:b5:8a: fe:e0:bc:90:18:a6:42:10:3c:03:4f:a5:16:f6:90:38:f9:95: 55:47:06:8c:9e:88:83:7d:34:14:89:6f:d7:4d:4c:3b:28:3a: a7:ae:72:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUxMDA5MjAyMDA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU4MThmOC0wZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3k/fK4PHcLNDHloDlHmRI69GQs+rxjEAVsjYIYE8EltTc0IGE3Ig2OeNfP+6 0NLKY4KAIaTAUVOTEHxz6UdJitTvS7WDD59bIcbMyyfGeyix9yXUypkt6qYapIge mXAYjGF/ezVTl14zkGJ8L5uNNzOEBeLcN3mhzfC7ivrX19XJ96UcnjL0e3rmxnHF T9bvaI7i9ihH7BSSiczSpbsuQyznDurP53Fgtp4aLlWuDZC8fUF/6j/XJnoFsxxz W+FldbdSS0Zknqo3iBEWZTCU763X72R8PaJd1KnMVpx+d6lFYZPGkshcvwZF7394 fMtor0hr33GNcPUJUuUvm3QCmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM+WuzkY Y6Ya1XBLazegM+w4Zf/qMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNCN0QvQjJCM0Q3N0MxQjQ0MTFFRUEzNTc4RTI5QzRGOUFFMDIvNTk2ODQxQ0NB NTREMTFGMEJEQTc3QzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5f0wDQYJKoZIhvcNAQELBQADggEBAJRCASSVr2W38s9F lX8hyj13Nu8Zy7hBe12yZFpkGzrZJ/zBlY2+w0hEcwJ3nbX4zsnyt6tnloWUE+qp TR/rKHL2UCQa7m59MMczticucTe7Nu7bM+B1PS1PCGDg02DyD5oeIbJ1EVDrL9IN D+kFYvM+kdDN/HhoFqBbr8EzzKIYL4dqhU5v8wfE8Y4eEkiGsL/2wo7FsdHcJcCp iDkEu0M1kokLsj5zaUyNvUbg7JWWlE5Fe948DvzfJjjmyCY20xl22t0W6j+405xC bsRF7q7BC1tPQyC1iv7gvJAYpkIQPANPpRb2kDj5lVVHBoyeiIN9NBSJb9dNTDso OqeuctY= -----END CERTIFICATE-----Generated at Mon Oct 20 19:51:15 2025 by rpki-client