$ rpki-client -vvf rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/3482BB06AB3E11E7B15D1874C4F9AE02.roa File: 3482BB06AB3E11E7B15D1874C4F9AE02.roa (raw, json) Hash identifier: /VwOxPy2FEOQNfUMBOABEasjuRTnZibdhrvzKrAnN44= Subject key identifier: ED:5D:9D:DC:6F:C1:EF:C2:E4:42:E9:FB:2C:27:30:A0:AC:20:63:90 Certificate issuer: /CN=A914B05F/serialNumber=B883E16BBCD3715B561731316BA1B0EF4053C12E Certificate serial: 188E Authority key identifier: B8:83:E1:6B:BC:D3:71:5B:56:17:31:31:6B:A1:B0:EF:40:53:C1:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIPha7zTcVtWFzExa6Gw70BTwS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/3482BB06AB3E11E7B15D1874C4F9AE02.roa Signing time: Thu 02 Oct 2025 16:45:10 +0000 ROA not before: Thu 02 Oct 2025 16:45:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137004 IP address blocks: 103.101.233.0/24 maxlen: 24 103.113.2.0/24 maxlen: 24 2001:df2:b500::/48 maxlen: 48 2001:df2:b500::/50 maxlen: 50 2001:df2:b500:4000::/50 maxlen: 50 2001:df2:b500:8000::/50 maxlen: 50 2001:df2:b500:c000::/50 maxlen: 50 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/uIPha7zTcVtWFzExa6Gw70BTwS4.crl rsync://rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/uIPha7zTcVtWFzExa6Gw70BTwS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIPha7zTcVtWFzExa6Gw70BTwS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6286 (0x188e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B05F, serialNumber=B883E16BBCD3715B561731316BA1B0EF4053C12E Validity Not Before: Oct 2 16:45:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68deac16-1d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:db:7a:7f:f7:a6:b7:59:c5:24:dd:ab:4b: 6a:1e:b6:21:37:54:50:82:75:d5:2f:b7:90:c7:b9: 75:44:79:54:c2:5a:fd:7e:4d:44:b7:8c:c4:7a:1c: 97:d2:2b:38:12:77:8a:d3:2c:c2:3e:25:2f:cd:8e: 4d:6a:9a:5c:23:a0:bd:ac:1c:d8:5f:da:bf:33:9c: 75:28:1a:fa:a9:11:1c:6a:85:d6:56:1d:3c:57:35: 0a:8c:0b:11:2a:48:9e:53:ae:8d:f3:02:10:fd:8a: c2:4f:b1:9f:07:65:17:d3:eb:34:1d:ab:a1:8d:b6: 03:d0:9a:1d:41:c3:b8:ae:7d:b7:96:74:99:90:53: 58:72:dc:ff:33:cd:8d:93:7d:bb:5d:95:ef:14:73: 9b:6f:11:92:3e:8f:e8:59:be:0b:b0:08:11:68:53: 2a:ca:55:a0:4b:2e:59:f8:09:15:36:68:85:0e:2a: 69:09:9d:5d:48:c3:71:f7:4c:e2:72:48:4a:ed:aa: df:c9:ca:62:9b:ff:b0:14:80:2a:d4:3c:9a:07:87: 8e:7d:88:77:13:da:0d:00:fc:54:68:71:0c:45:28: 9c:84:eb:19:0c:c7:ca:27:af:e4:8b:7a:59:e9:61: a6:77:01:54:41:34:c7:9e:67:f2:76:a1:79:ba:98: 05:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:5D:9D:DC:6F:C1:EF:C2:E4:42:E9:FB:2C:27:30:A0:AC:20:63:90 X509v3 Authority Key Identifier: keyid:B8:83:E1:6B:BC:D3:71:5B:56:17:31:31:6B:A1:B0:EF:40:53:C1:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/uIPha7zTcVtWFzExa6Gw70BTwS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIPha7zTcVtWFzExa6Gw70BTwS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B05F/33512040AB3B11E7BAAB0D6BC4F9AE02/3482BB06AB3E11E7B15D1874C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.233.0/24 103.113.2.0/24 IPv6: 2001:df2:b500::/48 Signature Algorithm: sha256WithRSAEncryption 53:13:75:49:b7:bd:02:d8:43:5b:a4:c8:48:d8:dc:f9:a5:23: fa:41:0d:64:76:0c:5f:a3:13:93:9d:32:20:e3:ef:77:65:37: 9b:8c:fa:79:fb:db:78:76:58:12:24:bb:86:56:5d:f9:3e:ad: 3f:62:75:fc:2f:7b:55:2a:44:a7:e4:7c:a0:fb:92:fd:3b:2a: 61:22:5f:40:18:96:4c:62:aa:15:45:48:3e:b0:ea:e9:14:70: c3:50:14:ca:75:1c:ea:3a:3f:0e:cd:47:0e:72:9a:f6:e0:12: 78:2e:40:4e:1a:4e:9b:5d:07:db:39:93:00:e7:ae:c2:6f:62: b9:55:d4:9c:f0:f6:07:8d:28:a9:e7:ad:f5:1f:13:90:45:1b: ca:80:39:9f:0e:6d:1e:41:dd:4d:30:87:0f:53:19:a1:1c:84: 75:be:49:30:59:d2:e0:eb:28:70:e0:71:4a:d0:ce:42:60:83: e8:47:89:f5:70:a8:18:87:0a:6e:4d:65:3f:12:ef:9a:59:45: 6f:f0:8e:68:f2:93:c0:b0:19:ff:62:c9:50:c9:bf:a3:2a:05: 3e:0c:bf:4a:40:f9:a5:d9:61:ac:cc:e2:74:45:2a:78:3a:dc: 0d:4f:31:10:41:d6:fa:21:b5:dc:23:00:fe:ff:27:8a:ad:e4: 87:c5:bf:f3 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICGI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwNUYxMTAvBgNVBAUTKEI4ODNFMTZCQkNEMzcxNUI1NjE3MzEzMTZCQTFCMEVG NDA1M0MxMkUwHhcNMjUxMDAyMTY0NTEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYWMxNi0xZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumTben/3prdZxSTdq0tqHrYhN1RQgnXVL7eQx7l1RHlUwlr9fk1Et4zEehyX 0is4EneK0yzCPiUvzY5NappcI6C9rBzYX9q/M5x1KBr6qREcaoXWVh08VzUKjAsR KkieU66N8wIQ/YrCT7GfB2UX0+s0HauhjbYD0JodQcO4rn23lnSZkFNYctz/M82N k327XZXvFHObbxGSPo/oWb4LsAgRaFMqylWgSy5Z+AkVNmiFDippCZ1dSMNx90zi ckhK7arfycpim/+wFIAq1DyaB4eOfYh3E9oNAPxUaHEMRSichOsZDMfKJ6/ki3pZ 6WGmdwFUQTTHnmfydqF5upgFiwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFO1dndxv we/C5ELp+ywnMKCsIGOQMB8GA1UdIwQYMBaAFLiD4Wu803FbVhcxMWuhsO9AU8Eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjA1Ri8zMzUxMjA0MEFC M0IxMUU3QkFBQjBENkJDNEY5QUUwMi91SVBoYTd6VGNWdFdGekV4YTZHdzcwQlR3 UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VJUGhhN3pUY1Z0V0Z6RXhhNkd3NzBCVHdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIwNUYvMzM1MTIwNDBBQjNCMTFFN0JBQUIwRDZCQzRGOUFFMDIvMzQ4MkJCMDZB QjNFMTFFN0IxNUQxODc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnZekDBABncQIwDwQCAAIwCQMHACABDfK1ADANBgkqhkiG 9w0BAQsFAAOCAQEAUxN1Sbe9AthDW6TISNjc+aUj+kENZHYMX6MTk50yIOPvd2U3 m4z6efvbeHZYEiS7hlZd+T6tP2J1/C97VSpEp+R8oPuS/TsqYSJfQBiWTGKqFUVI PrDq6RRww1AUynUc6jo/Ds1HDnKa9uASeC5AThpOm10H2zmTAOeuwm9iuVXUnPD2 B40oqeet9R8TkEUbyoA5nw5tHkHdTTCHD1MZoRyEdb5JMFnS4OsocOBxStDOQmCD 6EeJ9XCoGIcKbk1lPxLvmllFb/COaPKTwLAZ/2LJUMm/oyoFPgy/SkD5pdlhrMzi dEUqeDrcDU8xEEHW+iG13CMA/v8niq3kh8W/8w== -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:37 2025 by rpki-client