$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa File: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (raw, json) Hash identifier: FDWt9q3QAp1ofI7rrAESMwGQ2CDqFlVea3/sU3p0ycs= Subject key identifier: 1E:25:9D:D9:2A:66:83:10:12:DD:F6:C2:98:A0:9E:44:34:C0:74:6C Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0403 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa Signing time: Sun 05 Oct 2025 00:56:45 +0000 ROA not before: Sun 05 Oct 2025 00:56:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132727 IP address blocks: 103.73.228.0/24 maxlen: 24 103.73.229.0/24 maxlen: 24 103.73.230.0/24 maxlen: 24 103.73.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Oct 5 00:56:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1c24d-19ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:d6:d3:e8:90:fe:09:fc:bc:33:3e:a1:95: ff:45:8f:cc:5d:c0:b5:81:f6:82:2a:45:c7:01:62: ac:01:35:2d:76:e4:ad:fc:f3:2a:c9:26:69:26:d0: 91:40:55:7d:3a:c5:57:34:d0:46:da:43:27:34:13: 26:12:d1:ac:f2:5f:49:18:aa:ac:cd:22:90:1b:d8: 7f:74:b2:cd:36:50:13:aa:40:d8:3a:13:8f:84:02: 4b:ef:87:94:0f:3e:57:df:96:05:39:ed:00:6e:e1: ab:06:e1:6a:89:7f:e7:2a:98:ba:13:77:60:ed:91: c8:57:ff:bb:97:d2:5b:f1:d6:2c:0a:4f:77:f1:6e: bc:e3:b0:a5:3c:00:23:11:29:ab:31:b2:8a:94:83: a4:2e:60:d1:77:f4:0b:c3:49:33:b1:c9:6e:fc:4e: 14:f7:12:22:82:e2:0c:3c:ee:63:dc:1a:eb:dc:4a: e9:d7:9a:ef:10:8f:86:31:93:18:7a:86:f9:ac:7c: 44:2c:d8:c4:02:a8:cb:2d:b0:f5:6b:c3:c6:36:4d: c2:4c:e1:9b:69:3b:76:49:35:0e:b9:5d:d0:e4:7d: b6:0c:cc:e1:c3:27:e9:18:36:be:a9:76:e4:a1:12: c2:77:1c:1b:ee:78:5e:2d:29:f7:b5:ad:63:17:05: 3e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:25:9D:D9:2A:66:83:10:12:DD:F6:C2:98:A0:9E:44:34:C0:74:6C X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/6199B5668DE011ECB9F9C06EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.228.0/22 Signature Algorithm: sha256WithRSAEncryption b5:b5:b2:f7:83:dd:9e:aa:b3:29:00:70:85:ba:36:b6:16:12: 4b:00:6d:a0:cf:67:a3:46:f5:8a:38:38:a5:ac:0e:72:a1:da: 13:ce:01:f9:54:15:db:e2:40:04:3a:37:08:40:c0:0d:7c:24: cb:a0:b2:8c:66:93:66:12:4d:54:c7:9b:50:46:10:f1:91:4e: 48:94:62:99:3e:43:f9:89:97:7c:d6:b9:f6:c3:7f:99:14:a0: a9:db:14:4e:c7:df:b5:c3:05:ad:d0:49:79:37:eb:5b:6e:b8: 92:a0:65:6f:01:91:93:12:30:63:d8:fe:5b:e1:84:19:aa:cf: 27:06:a4:b4:ef:8d:a9:c1:ed:63:09:62:26:c9:de:c2:4d:a2: 70:a2:32:c1:ff:ce:12:eb:3a:bd:90:26:30:6d:58:e2:9f:24: 07:a1:6e:2b:73:23:ff:38:62:3f:92:1a:f9:8a:98:30:05:1a: af:c2:0d:45:e1:f5:3e:76:62:c0:a1:67:de:13:cf:0e:d5:98: 3a:61:4a:67:23:b4:69:a4:cf:3d:08:1c:69:bb:4c:15:ef:41: 3a:c2:fa:e3:f5:78:55:b3:71:d0:29:2d:23:fe:75:9a:0f:80: 77:41:4f:04:01:af:0b:2b:f6:76:51:5c:88:27:3c:d7:b6:70: 48:1d:13:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUxMDA1MDA1NjQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYzI0ZC0xOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVfW0+iQ/gn8vDM+oZX/RY/MXcC1gfaCKkXHAWKsATUtduSt/PMqySZpJtCR QFV9OsVXNNBG2kMnNBMmEtGs8l9JGKqszSKQG9h/dLLNNlATqkDYOhOPhAJL74eU Dz5X35YFOe0AbuGrBuFqiX/nKpi6E3dg7ZHIV/+7l9Jb8dYsCk938W6847ClPAAj ESmrMbKKlIOkLmDRd/QLw0kzsclu/E4U9xIiguIMPO5j3Brr3Erp15rvEI+GMZMY eob5rHxELNjEAqjLLbD1a8PGNk3CTOGbaTt2STUOuV3Q5H22DMzhwyfpGDa+qXbk oRLCdxwb7nheLSn3ta1jFwU+lQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4lndkq ZoMQEt32wpignkQ0wHRsMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5NTAvQ0JGMDZGMzA4RERDMTFFQ0ExNDAwQzY5QzRGOUFFMDIvNjE5OUI1NjY4 REUwMTFFQ0I5RjlDMDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSeQwDQYJKoZIhvcNAQELBQADggEBALW1sveD3Z6qsykA cIW6NrYWEksAbaDPZ6NG9Yo4OKWsDnKh2hPOAflUFdviQAQ6NwhAwA18JMugsoxm k2YSTVTHm1BGEPGRTkiUYpk+Q/mJl3zWufbDf5kUoKnbFE7H37XDBa3QSXk361tu uJKgZW8BkZMSMGPY/lvhhBmqzycGpLTvjanB7WMJYibJ3sJNonCiMsH/zhLrOr2Q JjBtWOKfJAehbitzI/84Yj+SGvmKmDAFGq/CDUXh9T52YsChZ94Tzw7VmDphSmcj tGmkzz0IHGm7TBXvQTrC+uP1eFWzcdApLSP+dZoPgHdBTwQBrwsr9nZRXIgnPNe2 cEgdE6I= -----END CERTIFICATE-----Generated at Mon Oct 20 08:04:45 2025 by rpki-client