$ rpki-client -vvf rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa File: 8FA6DAE02C5B11E99B8B114EC4F9AE02.roa (raw, json) Hash identifier: ry5r9VBQpqUpGCpT79DKOhsEffaRyQskheEphc6atUA= Subject key identifier: 7C:D6:C8:72:BB:51:11:41:31:7C:AE:C1:67:C3:62:C1:34:44:09:AB Certificate issuer: /CN=A913E05B/serialNumber=5758A413556582F8598E1F45FC633799A7B1D107 Certificate serial: 10ED Authority key identifier: 57:58:A4:13:55:65:82:F8:59:8E:1F:45:FC:63:37:99:A7:B1:D1:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa Signing time: Wed 08 Oct 2025 17:47:15 +0000 ROA not before: Wed 08 Oct 2025 17:47:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136996 IP address blocks: 103.101.192.0/24 maxlen: 24 2001:df2:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.crl rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4333 (0x10ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E05B, serialNumber=5758A413556582F8598E1F45FC633799A7B1D107 Validity Not Before: Oct 8 17:47:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6a3a3-d4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5c:f2:e4:26:04:13:66:4b:94:da:83:99:ea: 52:29:59:34:1c:7f:3a:0c:ad:46:e1:8a:a3:c6:50: 95:53:fc:0b:f7:d9:2a:e0:39:3c:87:a0:88:db:a2: db:97:4b:af:a7:cc:75:10:18:c0:14:60:11:a5:44: 81:d2:78:95:d7:9c:6b:db:52:be:5b:8b:5f:81:72: c4:cd:41:f0:59:7a:2d:48:5f:b2:41:91:1d:e9:af: 32:00:18:bf:02:f7:90:6e:04:91:c3:94:45:b2:5b: 9c:05:42:30:88:86:52:b3:cd:44:75:92:12:ea:fe: e4:0f:2c:92:dc:24:55:69:a4:c1:2c:49:17:2a:46: a2:53:ba:d1:e8:39:c9:cb:50:39:18:1f:b6:36:77: b9:d7:1c:e0:75:61:2a:c2:b0:cf:d2:cb:4e:ba:ad: c0:85:f3:ca:7a:ed:fc:b9:6c:c3:ac:56:fe:4f:93: da:e6:d6:8f:27:20:7f:35:16:d8:b6:43:43:c1:7c: 38:9b:1c:54:9c:09:46:a1:25:50:39:08:40:20:20: 40:ef:e8:9d:30:6a:a6:2c:7b:f3:da:3d:c2:70:f0: 22:bf:88:8c:25:59:e9:74:e2:eb:96:9d:87:eb:46: 45:fc:fe:78:cd:3b:9f:0b:a2:0f:55:34:43:03:64: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D6:C8:72:BB:51:11:41:31:7C:AE:C1:67:C3:62:C1:34:44:09:AB X509v3 Authority Key Identifier: keyid:57:58:A4:13:55:65:82:F8:59:8E:1F:45:FC:63:37:99:A7:B1:D1:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.192.0/24 IPv6: 2001:df2:a700::/48 Signature Algorithm: sha256WithRSAEncryption 41:5c:8b:fb:06:d3:ef:15:d0:96:9b:41:b2:c6:5b:53:88:99: d1:9e:10:6a:38:7f:23:43:50:31:50:56:23:19:6f:9f:d8:6d: 8b:86:3b:74:56:e4:89:39:2d:ff:ae:7c:85:95:16:1d:65:17: 1e:2c:97:31:67:89:94:2c:9a:95:39:a9:ee:80:dc:1c:52:05: 13:d5:48:27:3a:2a:3a:44:32:3a:e2:5d:2e:ff:c8:d1:97:57: 59:9e:9d:56:f7:29:d6:f4:0f:96:6a:f6:ac:2c:b2:a0:e5:7f: 3e:79:53:d1:f8:a9:58:0c:cf:f5:17:09:d5:d2:81:1a:bd:48: 8b:df:35:b6:aa:e2:e1:bc:3b:e1:d0:18:f2:00:0f:3d:87:19: 8d:e1:59:cc:e2:f1:23:9c:04:b7:4f:f7:79:2c:a1:3b:d4:48: 9e:1a:81:1d:a1:90:fc:8e:8b:ae:f6:0a:38:a4:b8:a9:c8:bc: d5:75:80:c0:88:94:23:12:7a:bb:4e:c6:e3:04:b0:30:b5:b2: 65:5a:e4:ce:2f:2e:32:da:22:d2:83:cd:b5:4d:c6:e2:38:7d: 96:89:e7:aa:ba:11:da:50:3a:d6:74:e1:7e:62:83:8d:8a:19: 3d:f3:82:61:cc:e0:1a:1c:55:c0:77:80:00:ff:57:60:35:22: ee:39:1b:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwNUIxMTAvBgNVBAUTKDU3NThBNDEzNTU2NTgyRjg1OThFMUY0NUZDNjMzNzk5 QTdCMUQxMDcwHhcNMjUxMDA4MTc0NzE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YTNhMy1kNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFzy5CYEE2ZLlNqDmepSKVk0HH86DK1G4YqjxlCVU/wL99kq4Dk8h6CI26Lb l0uvp8x1EBjAFGARpUSB0niV15xr21K+W4tfgXLEzUHwWXotSF+yQZEd6a8yABi/ AveQbgSRw5RFslucBUIwiIZSs81EdZIS6v7kDyyS3CRVaaTBLEkXKkaiU7rR6DnJ y1A5GB+2Nne51xzgdWEqwrDP0stOuq3AhfPKeu38uWzDrFb+T5Pa5taPJyB/NRbY tkNDwXw4mxxUnAlGoSVQOQhAICBA7+idMGqmLHvz2j3CcPAiv4iMJVnpdOLrlp2H 60ZF/P54zTufC6IPVTRDA2Sz9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHzWyHK7 URFBMXyuwWfDYsE0RAmrMB8GA1UdIwQYMBaAFFdYpBNVZYL4WY4fRfxjN5mnsdEH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTA1Qi9CMzE5NjZDNDJD NUExMUU5OTQzRTlENENDNEY5QUUwMi9WMWlrRTFWbGd2aFpqaDlGX0dNM21hZXgw UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1YxaWtFMVZsZ3ZoWmpoOUZfR00zbWFleDBRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UwNUIvQjMxOTY2QzQyQzVBMTFFOTk0M0U5RDRDQzRGOUFFMDIvOEZBNkRBRTAy QzVCMTFFOTlCOEIxMTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZcAwDwQCAAIwCQMHACABDfKnADANBgkqhkiG9w0BAQsF AAOCAQEAQVyL+wbT7xXQlptBssZbU4iZ0Z4Qajh/I0NQMVBWIxlvn9hti4Y7dFbk iTkt/658hZUWHWUXHiyXMWeJlCyalTmp7oDcHFIFE9VIJzoqOkQyOuJdLv/I0ZdX WZ6dVvcp1vQPlmr2rCyyoOV/PnlT0fipWAzP9RcJ1dKBGr1Ii981tqri4bw74dAY 8gAPPYcZjeFZzOLxI5wEt0/3eSyhO9RInhqBHaGQ/I6LrvYKOKS4qci81XWAwIiU IxJ6u07G4wSwMLWyZVrkzi8uMtoi0oPNtU3G4jh9lonnqroR2lA61nThfmKDjYoZ PfOCYczgGhxVwHeAAP9XYDUi7jkbMA== -----END CERTIFICATE-----Generated at Mon Oct 20 17:24:19 2025 by rpki-client