$ rpki-client -vvf rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/DE46CA6A97A311F08969C53CC4F9AE02.roa File: DE46CA6A97A311F08969C53CC4F9AE02.roa (raw, json) Hash identifier: 7554mFxBVOIG3xrGK5/XH9r15TjJMKV/ts6aEHUGI6E= Subject key identifier: E6:AA:37:64:45:3B:1B:DA:4E:27:0A:AF:EA:79:04:E6:E1:97:7F:F0 Certificate issuer: /CN=A915D35E/serialNumber=2406208121EBA3FC74361C89E63560B4986DDF08 Certificate serial: 0809 Authority key identifier: 24:06:20:81:21:EB:A3:FC:74:36:1C:89:E6:35:60:B4:98:6D:DF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/DE46CA6A97A311F08969C53CC4F9AE02.roa Signing time: Mon 22 Sep 2025 11:09:29 +0000 ROA not before: Mon 22 Sep 2025 11:09:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 24323 IP address blocks: 103.243.80.0/24 maxlen: 24 103.243.81.0/24 maxlen: 24 103.243.82.0/24 maxlen: 24 103.243.83.0/24 maxlen: 24 116.206.60.0/24 maxlen: 24 116.206.62.0/24 maxlen: 24 116.206.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.crl rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D35E, serialNumber=2406208121EBA3FC74361C89E63560B4986DDF08 Validity Not Before: Sep 22 11:09:29 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68d12e69-db36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4f:cf:b1:4b:c4:be:af:b8:31:cb:2e:b3:3e: c4:16:54:ae:e9:ad:03:07:92:db:29:b4:46:5e:e8: e9:d5:cb:96:b6:2f:e2:da:7d:6c:34:90:9d:b7:e8: 66:65:99:35:5b:4e:06:d3:8c:7c:76:2d:b1:d4:40: 40:36:12:df:6e:f0:1e:dd:03:e8:5a:71:72:41:09: 04:0c:15:12:22:60:56:aa:ca:d6:48:34:35:41:39: 2b:f5:68:b6:bf:29:6f:9f:4f:e4:ba:a1:b3:fd:ce: d2:19:31:dc:7a:c4:d0:e9:0a:4f:88:e2:91:6b:66: d0:d1:46:fc:13:4b:5a:3d:fa:c5:b8:a9:ee:22:a4: 86:f5:13:15:c2:0c:93:72:99:e4:38:08:b4:71:70: 5b:ea:0a:39:ef:53:3e:13:07:9d:1f:c4:62:4f:34: c6:40:cb:1c:e6:de:ee:2a:5d:42:1f:fa:a2:a0:2e: 5d:ca:76:e4:c0:fe:06:1c:df:79:b9:6b:43:ce:64: e6:28:b6:6a:a4:c9:92:cc:5c:af:93:65:0c:59:a3: 76:3d:61:56:18:f6:ad:d4:ce:c0:54:b9:10:9c:1a: 11:25:dd:57:be:bc:2a:ff:6c:0c:6b:bc:7c:59:e9: ff:fa:7d:fa:0c:ce:69:4a:c1:0c:1b:c6:67:94:38: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AA:37:64:45:3B:1B:DA:4E:27:0A:AF:EA:79:04:E6:E1:97:7F:F0 X509v3 Authority Key Identifier: keyid:24:06:20:81:21:EB:A3:FC:74:36:1C:89:E6:35:60:B4:98:6D:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/JAYggSHro_x0NhyJ5jVgtJht3wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JAYggSHro_x0NhyJ5jVgtJht3wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D35E/7D394C6A016D11EB8DD2C259C4F9AE02/DE46CA6A97A311F08969C53CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.80.0/22 116.206.60.0/24 116.206.62.0/23 Signature Algorithm: sha256WithRSAEncryption 59:07:6e:26:80:8d:1a:e5:5f:84:f3:6c:a0:57:e6:91:59:80: 58:8c:b3:f4:25:18:10:48:20:d3:70:87:bd:2a:ff:7b:91:b1: fa:4e:6f:cc:73:14:d1:9f:09:b2:72:7e:80:bc:88:0a:5d:a8: 8d:24:3b:f2:17:a9:0e:bc:31:72:87:91:62:b7:1a:32:49:09: 0f:1f:5d:0a:74:f9:d1:29:47:3c:60:7f:44:e5:88:e2:9e:05: 58:99:1b:20:60:77:47:a6:bc:12:9c:c4:d5:81:9e:47:28:56: ab:57:b5:65:b1:ca:56:9d:00:45:40:32:4f:ff:5f:33:da:92: 51:eb:18:ac:c4:62:fb:0d:a0:0f:22:5a:71:f4:06:e1:ca:87: 50:3f:b4:d3:ff:ec:94:7c:60:e7:f1:dd:fd:a2:d4:50:0c:2e: 2c:1f:73:df:96:03:86:08:7e:6d:9e:1d:3a:59:14:59:29:72: 4b:15:60:38:3b:5c:26:31:32:fa:79:85:17:61:09:c7:24:1b: 8f:d5:69:44:25:90:6c:42:7f:0e:90:29:2e:57:65:44:61:d1: d6:44:fd:70:af:6c:b3:d4:b3:53:a0:d0:d4:50:2a:36:c6:3f: b4:fd:92:b4:09:51:e9:ab:48:9f:5d:ca:71:90:86:cb:29:db: aa:22:57:5b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzNUUxMTAvBgNVBAUTKDI0MDYyMDgxMjFFQkEzRkM3NDM2MUM4OUU2MzU2MEI0 OTg2RERGMDgwHhcNMjUwOTIyMTEwOTI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxMmU2OS1kYjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk/PsUvEvq+4Mcsusz7EFlSu6a0DB5LbKbRGXujp1cuWti/i2n1sNJCdt+hm ZZk1W04G04x8di2x1EBANhLfbvAe3QPoWnFyQQkEDBUSImBWqsrWSDQ1QTkr9Wi2 vylvn0/kuqGz/c7SGTHcesTQ6QpPiOKRa2bQ0Ub8E0taPfrFuKnuIqSG9RMVwgyT cpnkOAi0cXBb6go571M+EwedH8RiTzTGQMsc5t7uKl1CH/qioC5dynbkwP4GHN95 uWtDzmTmKLZqpMmSzFyvk2UMWaN2PWFWGPat1M7AVLkQnBoRJd1Xvrwq/2wMa7x8 Wen/+n36DM5pSsEMG8ZnlDhAfwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOaqN2RF OxvaTicKr+p5BObhl3/wMB8GA1UdIwQYMBaAFCQGIIEh66P8dDYcieY1YLSYbd8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDM1RS83RDM5NEM2QTAx NkQxMUVCOEREMkMyNTlDNEY5QUUwMi9KQVlnZ1NIcm9feDBOaHlKNWpWZ3RKaHQz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pBWWdnU0hyb194ME5oeUo1alZndEpodDN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzNUUvN0QzOTRDNkEwMTZEMTFFQjhERDJDMjU5QzRGOUFFMDIvREU0NkNBNkE5 N0EzMTFGMDg5NjlDNTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn81ADBAB0zjwDBAF0zj4wDQYJKoZIhvcNAQELBQADggEB AFkHbiaAjRrlX4TzbKBX5pFZgFiMs/QlGBBIINNwh70q/3uRsfpOb8xzFNGfCbJy foC8iApdqI0kO/IXqQ68MXKHkWK3GjJJCQ8fXQp0+dEpRzxgf0TliOKeBViZGyBg d0emvBKcxNWBnkcoVqtXtWWxyladAEVAMk//XzPaklHrGKzEYvsNoA8iWnH0BuHK h1A/tNP/7JR8YOfx3f2i1FAMLiwfc9+WA4YIfm2eHTpZFFkpcksVYDg7XCYxMvp5 hRdhCcckG4/VaUQlkGxCfw6QKS5XZURh0dZE/XCvbLPUs1Og0NRQKjbGP7T9krQJ UemrSJ9dynGQhssp26oiV1s= -----END CERTIFICATE-----Generated at Mon Oct 20 17:52:11 2025 by rpki-client