$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa File: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (raw, json) Hash identifier: 759eVfeplnxkWNaLr3cFwL2y/eV2CJBpdnC5ec+BIG8= Subject key identifier: F6:67:D8:8E:30:98:BB:4A:29:A8:7C:00:3C:14:B8:1F:BD:91:BE:93 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 8D Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa Signing time: Wed 08 Oct 2025 00:59:27 +0000 ROA not before: Wed 08 Oct 2025 00:59:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132257 IP address blocks: 103.8.236.0/23 maxlen: 24 2001:df0:2b1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: Oct 8 00:59:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e5b76f-c7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fd:38:b9:1f:0d:d0:67:27:be:aa:d5:6d:28: e5:a2:78:59:71:c5:7d:48:79:5e:dd:9f:50:66:29: c5:ed:da:19:52:04:43:46:23:0b:95:41:9b:2c:c7: 67:bd:b3:b3:4f:c1:65:1d:32:b4:ab:46:c7:98:54: 4e:d5:3c:9c:c6:30:e5:22:95:78:db:e1:f6:f2:f6: bb:a5:73:49:da:fb:ca:a8:d4:a9:c2:bd:d4:b7:df: e8:22:29:5d:eb:0b:68:31:e1:52:70:81:38:e8:1a: 03:14:16:c1:0e:c6:ed:ea:2e:81:3d:c1:6e:56:fa: 92:27:6f:4a:b2:95:63:9a:a6:52:9d:42:55:31:d1: 2c:79:0b:c1:a5:e6:90:16:ed:b3:ba:24:fb:f4:05: 7f:93:66:12:6d:f4:ab:74:68:0b:00:03:03:47:22: f0:25:22:0e:f0:9d:36:92:c2:0b:b6:18:d8:be:1c: b9:34:ed:d7:b1:ab:7f:9e:08:b0:fe:bd:42:bf:15: 60:07:82:ba:32:31:8c:a6:c3:8c:dd:c2:f3:e5:a8: 78:79:81:a4:da:20:c5:92:53:92:27:69:74:c8:f1: 3e:f0:99:c5:70:df:a8:f4:a1:a8:fe:04:ce:f6:e3: 73:cf:9d:82:24:1f:e5:d2:37:f3:13:e0:e2:24:7c: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:67:D8:8E:30:98:BB:4A:29:A8:7C:00:3C:14:B8:1F:BD:91:BE:93 X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/D7BBDE18D3AB11EFB022202CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.236.0/23 IPv6: 2001:df0:2b1::/48 Signature Algorithm: sha256WithRSAEncryption 5d:3f:e7:f8:29:5a:d6:c2:d7:3b:c1:f3:e1:f8:f6:da:30:c1: 14:57:91:8c:2e:81:61:24:2e:c1:21:d4:cc:54:56:4b:2c:b2: e3:b9:89:16:40:ae:26:b8:97:18:01:99:f2:0d:92:8b:65:f2: 15:8c:2e:56:9c:cc:f8:10:91:ca:8b:19:81:73:b9:6e:3a:6c: 3b:52:f2:bd:b7:d0:56:e1:03:2b:06:00:0d:5e:7a:a9:2d:bc: 03:1e:b4:78:7a:a3:9b:f9:e8:cb:dc:a8:fd:1f:56:d2:c8:ad: 90:ef:ef:ee:eb:3d:6c:d6:99:79:2f:d2:29:89:f6:be:ef:c8: 1d:3e:6b:3f:6f:e8:e9:2d:4b:41:4f:b1:a8:c7:ea:39:ca:35: 62:a3:a1:1e:8a:16:f7:60:3a:7d:5e:10:bc:bf:5d:6b:c0:84: 0b:0d:42:91:01:32:ee:8f:6c:ad:a6:6e:4b:d4:94:6a:82:4d: 37:11:7a:1b:d2:c3:b2:09:3c:5c:09:c9:e6:fc:bb:4b:4f:71: 32:e3:12:85:46:95:7b:01:05:8f:99:ff:06:b7:aa:2e:6d:cd: 21:e0:e4:f4:92:24:30:f1:98:8e:2b:64:2e:d7:c8:ab:95:e2: 5a:80:e8:85:ad:3a:e9:60:01:1b:61:2a:bb:25:5c:c0:bf:7e: a9:cf:e3:ba -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MDQxMTAvBgNVBAUTKDlEQ0NEMDgwRjA3MkRFMjRFRjg0MkM2QUEyOTI0OTlF RjEzNjlCRjQwHhcNMjUxMDA4MDA1OTI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU1Yjc2Zi1jN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8v04uR8N0GcnvqrVbSjlonhZccV9SHle3Z9QZinF7doZUgRDRiMLlUGbLMdn vbOzT8FlHTK0q0bHmFRO1TycxjDlIpV42+H28va7pXNJ2vvKqNSpwr3Ut9/oIild 6wtoMeFScIE46BoDFBbBDsbt6i6BPcFuVvqSJ29KspVjmqZSnUJVMdEseQvBpeaQ Fu2zuiT79AV/k2YSbfSrdGgLAAMDRyLwJSIO8J02ksILthjYvhy5NO3Xsat/ngiw /r1CvxVgB4K6MjGMpsOM3cLz5ah4eYGk2iDFklOSJ2l0yPE+8JnFcN+o9KGo/gTO 9uNzz52CJB/l0jfzE+DiJHysqwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPZn2I4w mLtKKah8ADwUuB+9kb6TMB8GA1UdIwQYMBaAFJ3M0IDwct4k74QsaqKSSZ7xNpv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUwNC8zMjFCQzQ4Q0Qz QUIxMUVGOEVCRDBDMkJDNEY5QUUwMi9uY3pRZ1BCeTNpVHZoQ3hxb3BKSm52RTJt X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE1MDQvMzIxQkM0OENEM0FCMTFFRjhFQkQwQzJCQzRGOUFFMDIvRDdCQkRFMThE M0FCMTFFRkIwMjIyMDJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnCOwwDwQCAAIwCQMHACABDfACsTANBgkqhkiG9w0BAQsF AAOCAQEAXT/n+Cla1sLXO8Hz4fj22jDBFFeRjC6BYSQuwSHUzFRWSyyy47mJFkCu JriXGAGZ8g2Si2XyFYwuVpzM+BCRyosZgXO5bjpsO1LyvbfQVuEDKwYADV56qS28 Ax60eHqjm/noy9yo/R9W0sitkO/v7us9bNaZeS/SKYn2vu/IHT5rP2/o6S1LQU+x qMfqOco1YqOhHooW92A6fV4QvL9da8CECw1CkQEy7o9sraZuS9SUaoJNNxF6G9LD sgk8XAnJ5vy7S09xMuMShUaVewEFj5n/BreqLm3NIeDk9JIkMPGYjitkLtfIq5Xi WoDoha066WABG2EquyVcwL9+qc/jug== -----END CERTIFICATE-----Generated at Mon Oct 20 22:57:37 2025 by rpki-client