$ rpki-client -vvf rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/6A13CBAC04D711F0BC472C19C4F9AE02.roa File: 6A13CBAC04D711F0BC472C19C4F9AE02.roa (raw, json) Hash identifier: tPnvgW2NJ2kvYvePvVVOfaSsSJ4uwKNN1OhAz0FZQf4= Subject key identifier: 34:01:AD:49:E9:94:87:A1:98:CE:30:40:56:DC:47:9B:70:1E:DE:12 Certificate issuer: /CN=A912F76A/serialNumber=118B8361E44D50525CB61350B2526B59F6DE2DCD Certificate serial: 01A2 Authority key identifier: 11:8B:83:61:E4:4D:50:52:5C:B6:13:50:B2:52:6B:59:F6:DE:2D:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EYuDYeRNUFJcthNQslJrWfbeLc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/6A13CBAC04D711F0BC472C19C4F9AE02.roa Signing time: Sun 31 Aug 2025 04:21:28 +0000 ROA not before: Sun 31 Aug 2025 04:21:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151476 IP address blocks: 103.231.34.0/23 maxlen: 23 103.231.34.0/24 maxlen: 24 103.231.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/EYuDYeRNUFJcthNQslJrWfbeLc0.crl rsync://rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/EYuDYeRNUFJcthNQslJrWfbeLc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EYuDYeRNUFJcthNQslJrWfbeLc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F76A, serialNumber=118B8361E44D50525CB61350B2526B59F6DE2DCD Validity Not Before: Aug 31 04:21:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b3cdc8-cd2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:50:4d:98:4c:43:18:1a:d7:66:37:d1:5c: 36:27:c0:29:15:30:0b:61:be:ec:3c:4e:34:73:a9: f0:7f:f0:67:72:b4:76:18:3c:f5:9d:6a:36:b9:9d: 8a:9d:1e:d6:ee:e9:61:0c:f0:3d:75:02:e0:bf:05: 3c:7f:e6:93:50:09:27:69:e5:85:12:62:25:3b:ea: 1d:a3:12:a4:4d:66:36:f6:bd:4a:b6:63:3d:3c:c0: 6a:36:90:d6:fb:9b:ae:39:8d:d2:fb:4d:db:7e:35: c4:fc:19:8d:1f:85:6a:7e:5d:8b:bc:c8:80:cf:fb: 5d:04:1a:07:2b:99:4b:3c:71:72:db:ea:2e:e8:a8: 77:58:33:ef:19:ba:15:07:f7:5f:a6:dc:c5:c2:64: c4:88:4c:73:01:16:0e:f5:96:d1:dd:2d:d2:4b:44: b1:94:4d:3a:05:03:b1:ab:d7:d0:1b:5e:fc:c3:41: e4:1a:0b:c5:35:69:dd:a0:1e:12:28:39:a1:1e:17: fa:5c:5a:ba:e5:f8:62:b8:d6:0f:da:14:ea:fd:15: 0d:fe:31:bb:0c:90:49:02:65:fa:07:47:9e:53:cf: 7b:3c:df:eb:85:a3:b8:7b:4c:1f:cd:b3:7c:38:d3: ce:78:30:ff:76:9a:b3:0c:0d:f9:db:cd:7f:44:58: 46:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:01:AD:49:E9:94:87:A1:98:CE:30:40:56:DC:47:9B:70:1E:DE:12 X509v3 Authority Key Identifier: keyid:11:8B:83:61:E4:4D:50:52:5C:B6:13:50:B2:52:6B:59:F6:DE:2D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/EYuDYeRNUFJcthNQslJrWfbeLc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EYuDYeRNUFJcthNQslJrWfbeLc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F76A/2FBA8BFE196E11EEAB45DB54C4F9AE02/6A13CBAC04D711F0BC472C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.34.0/23 Signature Algorithm: sha256WithRSAEncryption 23:ce:aa:07:ba:8f:6c:9f:02:ce:a3:b7:39:24:1b:61:5a:05: 69:29:58:d7:e6:c2:8c:20:3a:d7:ca:7c:49:40:e6:fc:f3:10: 1a:36:bc:85:95:bc:d8:26:3f:e0:91:00:28:68:42:44:12:3d: ed:44:c9:d8:6f:fc:e3:06:61:57:a1:85:fb:c1:45:db:6b:64: b2:57:85:4c:24:da:1c:2d:cf:3c:66:e5:ba:73:47:14:9a:fc: db:4c:ff:39:ba:a6:79:a6:06:cf:7f:97:0b:6d:bf:da:aa:2b: 8f:66:46:ad:87:e7:04:ee:f0:d3:b8:ae:98:aa:4e:8f:68:1a: 17:04:a4:17:6a:5f:35:e3:65:79:6f:4a:8c:a7:a7:c1:40:75: 88:81:9a:2b:40:34:5d:d1:30:41:b2:6d:1b:3e:f4:c3:70:ba: ea:bd:fc:78:da:da:00:0d:63:9e:19:62:d7:9e:b8:9a:af:b8: de:8e:1e:2f:cd:99:e5:f0:a3:a7:ca:4d:91:64:e9:2a:10:01: 0d:af:36:17:c4:ac:46:10:9a:18:87:e3:ec:69:1d:c9:5e:bd: af:60:3b:50:57:bf:a0:ac:45:6a:44:ef:e7:c0:7c:d4:09:18: b1:e8:df:b0:94:b0:10:b6:fb:c8:09:d7:07:96:b6:5e:57:78: 64:fa:4c:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY3NkExMTAvBgNVBAUTKDExOEI4MzYxRTQ0RDUwNTI1Q0I2MTM1MEIyNTI2QjU5 RjZERTJEQ0QwHhcNMjUwODMxMDQyMTI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzY2RjOC1jZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn1QTZhMQxga12Y30Vw2J8ApFTALYb7sPE40c6nwf/BncrR2GDz1nWo2uZ2K nR7W7ulhDPA9dQLgvwU8f+aTUAknaeWFEmIlO+odoxKkTWY29r1KtmM9PMBqNpDW +5uuOY3S+03bfjXE/BmNH4Vqfl2LvMiAz/tdBBoHK5lLPHFy2+ou6Kh3WDPvGboV B/dfptzFwmTEiExzARYO9ZbR3S3SS0SxlE06BQOxq9fQG178w0HkGgvFNWndoB4S KDmhHhf6XFq65fhiuNYP2hTq/RUN/jG7DJBJAmX6B0eeU897PN/rhaO4e0wfzbN8 ONPOeDD/dpqzDA35281/RFhG2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDQBrUnp lIehmM4wQFbcR5twHt4SMB8GA1UdIwQYMBaAFBGLg2HkTVBSXLYTULJSa1n23i3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjc2QS8yRkJBOEJGRTE5 NkUxMUVFQUI0NURCNTRDNEY5QUUwMi9FWXVEWWVSTlVGSmN0aE5Rc2xKcldmYmVM YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZdURZZVJOVUZKY3RoTlFzbEpyV2ZiZUxjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY3NkEvMkZCQThCRkUxOTZFMTFFRUFCNDVEQjU0QzRGOUFFMDIvNkExM0NCQUMw NEQ3MTFGMEJDNDcyQzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5yIwDQYJKoZIhvcNAQELBQADggEBACPOqge6j2yfAs6j tzkkG2FaBWkpWNfmwowgOtfKfElA5vzzEBo2vIWVvNgmP+CRAChoQkQSPe1Eydhv /OMGYVehhfvBRdtrZLJXhUwk2hwtzzxm5bpzRxSa/NtM/zm6pnmmBs9/lwttv9qq K49mRq2H5wTu8NO4rpiqTo9oGhcEpBdqXzXjZXlvSoynp8FAdYiBmitANF3RMEGy bRs+9MNwuuq9/Hja2gANY54ZYteeuJqvuN6OHi/NmeXwo6fKTZFk6SoQAQ2vNhfE rEYQmhiH4+xpHcleva9gO1BXv6CsRWpE7+fAfNQJGLHo37CUsBC2+8gJ1weWtl5X eGT6THs= -----END CERTIFICATE-----Generated at Tue Oct 21 09:56:21 2025 by rpki-client