$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/021496F2A4EC11F0A8EB5F7EC4F9AE02.roa File: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (raw, json) Hash identifier: k+6bL1sigdhJhsvVBlCJkl8BzQ8/uafB/3pyO3zl0nM= Subject key identifier: 73:E6:21:D3:48:DC:8D:25:41:9B:33:29:EA:02:5F:02:98:3A:FC:E0 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C1D Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/021496F2A4EC11F0A8EB5F7EC4F9AE02.roa Signing time: Thu 09 Oct 2025 08:43:21 +0000 ROA not before: Thu 09 Oct 2025 08:43:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135386 IP address blocks: 45.248.68.0/22 maxlen: 24 103.9.192.0/22 maxlen: 24 103.73.96.0/22 maxlen: 24 103.216.216.0/22 maxlen: 24 2404:f880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3101 (0xc1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Oct 9 08:43:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e775a8-fb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:1c:74:9d:de:44:3f:da:21:30:19:05:ce: 74:bd:07:b9:0a:46:8a:03:7e:6a:8c:4f:af:16:24: 69:ef:78:29:23:bf:c0:33:7b:a2:bb:1f:b2:0c:5e: 0a:bc:3a:cf:bd:dc:cb:1b:80:38:da:1e:6d:e9:00: 45:36:a4:3e:cd:83:d5:2e:ef:02:11:44:5d:b1:ef: 53:49:be:66:74:da:15:67:e8:f9:b3:f3:54:cd:52: 60:d8:ad:5f:3e:84:01:84:e4:c6:f4:b0:87:48:f9: 74:7b:d3:f6:fa:55:58:c2:72:91:e0:6d:49:47:69: df:ff:db:db:49:e4:75:a0:6f:ed:9b:83:f5:08:75: 9c:a5:9d:97:44:76:93:67:1b:16:3a:8c:79:01:6e: 32:2b:59:bd:82:87:76:87:fe:dd:bd:ef:c8:ce:0d: b3:0f:70:31:aa:e5:0b:1e:97:3b:c8:49:25:12:8f: 5e:d5:3b:0f:71:08:6c:fd:a7:14:62:58:05:55:aa: 02:a0:05:a6:b1:43:8a:4f:7c:e7:01:a8:5f:e7:0e: e3:02:17:4f:c9:60:e1:78:7d:cc:dd:18:cf:18:96: f6:73:d5:fb:13:20:08:a2:eb:7a:ef:98:27:d0:9f: 13:10:56:0c:08:99:43:80:94:8e:63:bd:d4:cb:96: df:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E6:21:D3:48:DC:8D:25:41:9B:33:29:EA:02:5F:02:98:3A:FC:E0 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/021496F2A4EC11F0A8EB5F7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.68.0/22 103.9.192.0/22 103.73.96.0/22 103.216.216.0/22 IPv6: 2404:f880::/32 Signature Algorithm: sha256WithRSAEncryption 94:36:14:5e:4d:09:2f:b7:44:8e:35:ad:4c:de:5d:f0:1c:8a: b0:95:01:e2:91:b0:ee:d6:ab:2b:a6:5d:af:66:c9:77:93:ec: c8:b5:4c:0b:33:c7:f8:fb:9a:12:d3:ec:6e:9e:40:0a:d7:bc: 79:48:c3:cf:35:05:0b:c8:ae:f4:8b:00:66:e6:1c:74:76:67: 83:b2:42:f6:ed:ee:0f:6f:4d:cf:4e:a5:9a:54:e5:9a:01:fc: df:bc:14:b7:88:08:04:34:4e:89:84:83:f4:8c:43:e9:ef:33: 90:1f:69:a3:d1:e3:eb:1c:7e:1c:9c:46:a9:b9:21:05:fb:14: 9c:5b:3f:1c:2f:34:3a:7d:ef:b7:9d:58:fa:35:11:76:85:6c: 15:88:d9:a8:0f:15:c0:33:61:08:13:7e:03:29:49:a9:dd:71: 29:56:cf:41:4b:b8:07:ee:f8:d7:6a:17:5e:78:8f:0d:80:fb: 5a:86:17:f7:f4:ee:1e:45:86:e3:81:ae:ac:36:d5:af:c0:02: 83:42:fe:9c:86:89:34:37:bb:3f:77:0d:6f:5f:3f:be:a8:58: bd:a2:6d:69:58:20:c7:18:72:ed:8e:8b:56:eb:f5:a5:20:d6: 1a:12:f8:28:f3:f1:cc:22:b9:b1:fe:3e:70:37:9f:b4:f7:80: b1:b6:cf:20 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICDB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjUxMDA5MDg0MzIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NzVhOC1mYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk0cdJ3eRD/aITAZBc50vQe5CkaKA35qjE+vFiRp73gpI7/AM3uiux+yDF4K vDrPvdzLG4A42h5t6QBFNqQ+zYPVLu8CEURdse9TSb5mdNoVZ+j5s/NUzVJg2K1f PoQBhOTG9LCHSPl0e9P2+lVYwnKR4G1JR2nf/9vbSeR1oG/tm4P1CHWcpZ2XRHaT ZxsWOox5AW4yK1m9god2h/7dve/Izg2zD3AxquULHpc7yEklEo9e1TsPcQhs/acU YlgFVaoCoAWmsUOKT3znAahf5w7jAhdPyWDheH3M3RjPGJb2c9X7EyAIout675gn 0J8TEFYMCJlDgJSOY73Uy5bflQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHPmIdNI 3I0lQZszKeoCXwKYOvzgMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEFFMjIvQjE3ODQzOUUxQkJGMTFFQUI2QTc0RjcxQzRGOUFFMDIvMDIxNDk2RjJB NEVDMTFGMEE4RUI1RjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIt+EQDBAJnCcADBAJnSWADBAJn2NgwDQQCAAIwBwMFACQE +IAwDQYJKoZIhvcNAQELBQADggEBAJQ2FF5NCS+3RI41rUzeXfAcirCVAeKRsO7W qyumXa9myXeT7Mi1TAszx/j7mhLT7G6eQArXvHlIw881BQvIrvSLAGbmHHR2Z4Oy Qvbt7g9vTc9OpZpU5ZoB/N+8FLeICAQ0TomEg/SMQ+nvM5AfaaPR4+scfhycRqm5 IQX7FJxbPxwvNDp977edWPo1EXaFbBWI2agPFcAzYQgTfgMpSandcSlWz0FLuAfu +NdqF154jw2A+1qGF/f07h5FhuOBrqw21a/AAoNC/pyGiTQ3uz93DW9fP76oWL2i bWlYIMcYcu2Oi1br9aUg1hoS+Cjz8cwiubH+PnA3n7T3gLG2zyA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:18:36 2025 by rpki-client