$ rpki-client -vvf rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa File: 2EF7E9168D2811F0B3A81665C4F9AE02.roa (raw, json) Hash identifier: TgebdhxzVM7AYqc0EgHdQ1SIAvLO4T+iUEvGUkACBiI= Subject key identifier: 1F:1E:E0:B8:89:EC:46:71:5D:A6:19:01:BC:D7:E4:B7:A7:A3:B5:D1 Certificate issuer: /CN=A916732F/serialNumber=1FB4C3C5796F14B39DF51EFBA9DADAFD5CEBD09B Certificate serial: 05EA Authority key identifier: 1F:B4:C3:C5:79:6F:14:B3:9D:F5:1E:FB:A9:DA:DA:FD:5C:EB:D0:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa Signing time: Tue 16 Sep 2025 05:56:55 +0000 ROA not before: Tue 16 Sep 2025 05:56:55 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140068 IP address blocks: 103.148.14.0/24 maxlen: 24 103.148.15.0/24 maxlen: 24 103.161.47.0/24 maxlen: 24 2402:29e0::/32 maxlen: 32 2402:29e0:c010::/48 maxlen: 48 2402:29e0:c011::/48 maxlen: 48 2402:29e0:d010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.crl rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1514 (0x5ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916732F, serialNumber=1FB4C3C5796F14B39DF51EFBA9DADAFD5CEBD09B Validity Not Before: Sep 16 05:56:55 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68c8fc27-3cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:01:56:e7:35:7b:ba:40:11:7b:87:99:9c:a5: 93:c4:38:db:a6:45:29:85:ed:b6:33:a6:b3:0f:0e: b9:2a:b0:47:62:64:28:62:0f:34:e7:a1:a3:42:3f: b5:cf:c8:01:dd:c1:34:be:c3:0c:ac:46:e3:de:b7: 27:a9:a0:4c:3b:3d:77:45:96:7d:bc:e6:04:96:de: dc:29:c9:e0:05:1e:1a:4a:a1:77:b9:01:e7:2e:14: 04:4c:23:37:38:81:65:1c:a0:4c:0d:5b:7d:04:5b: a4:fb:95:f6:0f:b5:bd:38:8e:71:e2:17:f3:0b:17: 17:4c:31:76:4f:e6:1d:c9:36:96:f7:86:fc:c1:76: 81:ac:f3:8a:52:bf:20:81:cc:33:5e:d3:c8:03:83: 0b:d6:79:5b:65:56:8f:c2:9e:0b:f7:49:09:c3:88: e7:6a:22:8f:6f:fc:b2:80:73:6f:51:73:d2:ec:ef: 43:8f:7e:bf:26:bf:9b:cb:ac:95:69:33:5e:b9:93: 43:02:75:b6:70:5b:47:f0:b5:a2:cc:63:90:b3:07: 8a:9c:95:69:a5:1f:4d:2b:bc:84:96:09:31:02:76: de:ce:8f:2e:e3:98:65:f7:9e:ae:0d:35:20:4e:23: d2:54:c0:cf:8e:3a:9f:75:e5:81:b6:60:0a:46:5a: 08:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1E:E0:B8:89:EC:46:71:5D:A6:19:01:BC:D7:E4:B7:A7:A3:B5:D1 X509v3 Authority Key Identifier: keyid:1F:B4:C3:C5:79:6F:14:B3:9D:F5:1E:FB:A9:DA:DA:FD:5C:EB:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.14.0/23 103.161.47.0/24 IPv6: 2402:29e0::/32 Signature Algorithm: sha256WithRSAEncryption a7:e9:c8:23:51:8f:e5:c4:fd:78:28:a3:84:25:fd:03:f6:ff: dd:27:ff:41:83:45:0e:2f:3b:72:24:87:26:60:78:fa:d5:b6: 2f:bf:f9:17:bc:9f:8f:c9:10:1c:fc:f3:e8:ba:95:ae:46:ca: 7c:51:c3:fd:d4:f8:38:ac:8f:3b:65:b0:1d:9c:4d:1e:a2:f8: 82:07:dd:0f:ff:75:bf:c1:8b:af:fc:96:c9:30:b5:83:3c:d1: af:01:5e:08:9c:33:9d:83:04:18:57:05:07:48:47:54:46:cf: ed:e0:dd:48:35:d1:7a:4b:f6:7d:81:45:a4:5f:c8:83:4e:f0: 5a:d3:ef:b5:98:61:8c:4c:59:62:4e:a6:b0:d9:4e:f4:9a:21: f9:6e:fb:a4:86:02:06:44:b5:5a:e0:f9:e8:12:4b:96:11:78: 5d:c5:fe:dc:38:30:d0:94:ea:72:d3:7a:ab:40:75:2e:8d:db: cb:74:a3:98:75:f3:01:2c:43:c1:62:8a:42:cd:0f:71:0f:84: e2:6f:8b:5b:b2:d1:ee:0c:5e:96:22:c3:de:bd:bd:d9:8e:e5: 1a:af:d5:50:b4:1f:3b:43:6a:d5:67:70:cb:8c:d1:f3:60:24: c7:d3:62:98:bb:99:12:b7:b2:0b:63:8c:af:89:b6:07:7f:72: 99:66:54:40 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczMkYxMTAvBgNVBAUTKDFGQjRDM0M1Nzk2RjE0QjM5REY1MUVGQkE5REFEQUZE NUNFQkQwOUIwHhcNMjUwOTE2MDU1NjU1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4ZmMyNy0zY2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QFW5zV7ukARe4eZnKWTxDjbpkUphe22M6azDw65KrBHYmQoYg8056GjQj+1 z8gB3cE0vsMMrEbj3rcnqaBMOz13RZZ9vOYElt7cKcngBR4aSqF3uQHnLhQETCM3 OIFlHKBMDVt9BFuk+5X2D7W9OI5x4hfzCxcXTDF2T+YdyTaW94b8wXaBrPOKUr8g gcwzXtPIA4ML1nlbZVaPwp4L90kJw4jnaiKPb/yygHNvUXPS7O9Dj36/Jr+by6yV aTNeuZNDAnW2cFtH8LWizGOQsweKnJVppR9NK7yElgkxAnbezo8u45hl956uDTUg TiPSVMDPjjqfdeWBtmAKRloISQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB8e4LiJ 7EZxXaYZAbzX5Leno7XRMB8GA1UdIwQYMBaAFB+0w8V5bxSznfUe+6na2v1c69Cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzMyRi8wNkI1NjE1MEQ5 MTcxMUVCODk5MThEN0RDNEY5QUUwMi9IN1REeFhsdkZMT2Q5Ujc3cWRyYV9WenIw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3VER4WGx2RkxPZDlSNzdxZHJhX1Z6cjBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczMkYvMDZCNTYxNTBEOTE3MTFFQjg5OTE4RDdEQzRGOUFFMDIvMkVGN0U5MTY4 RDI4MTFGMEIzQTgxNjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnlA4DBABnoS8wDQQCAAIwBwMFACQCKeAwDQYJKoZIhvcN AQELBQADggEBAKfpyCNRj+XE/Xgoo4Ql/QP2/90n/0GDRQ4vO3IkhyZgePrVti+/ +Re8n4/JEBz88+i6la5GynxRw/3U+DisjztlsB2cTR6i+IIH3Q//db/Bi6/8lskw tYM80a8BXgicM52DBBhXBQdIR1RGz+3g3Ug10XpL9n2BRaRfyINO8FrT77WYYYxM WWJOprDZTvSaIflu+6SGAgZEtVrg+egSS5YReF3F/tw4MNCU6nLTeqtAdS6N28t0 o5h18wEsQ8FiikLND3EPhOJvi1uy0e4MXpYiw969vdmO5Rqv1VC0HztDatVncMuM 0fNgJMfTYpi7mRK3sgtjjK+Jtgd/cplmVEA= -----END CERTIFICATE-----Generated at Mon Oct 20 12:22:49 2025 by rpki-client