$ rpki-client -vvf rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/BF685A9E232E11F0B8BD6F6AC4F9AE02.roa File: BF685A9E232E11F0B8BD6F6AC4F9AE02.roa (raw, json) Hash identifier: 2j8iHRJYXJmCGizWbVLt4sqtXFvaUv3FR/z4mF6gpbA= Subject key identifier: 69:A1:F2:14:98:28:0A:5A:67:C3:A7:33:DB:89:DE:1E:5C:8C:B1:24 Certificate issuer: /CN=A916A763/serialNumber=A55D3FF8A85BE103B583750D77943F47C976F5B3 Certificate serial: 0198 Authority key identifier: A5:5D:3F:F8:A8:5B:E1:03:B5:83:75:0D:77:94:3F:47:C9:76:F5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pV0_-Khb4QO1g3UNd5Q_R8l29bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/BF685A9E232E11F0B8BD6F6AC4F9AE02.roa Signing time: Tue 23 Sep 2025 04:23:14 +0000 ROA not before: Tue 23 Sep 2025 04:23:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153800 IP address blocks: 103.6.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/pV0_-Khb4QO1g3UNd5Q_R8l29bM.crl rsync://rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/pV0_-Khb4QO1g3UNd5Q_R8l29bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pV0_-Khb4QO1g3UNd5Q_R8l29bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A763, serialNumber=A55D3FF8A85BE103B583750D77943F47C976F5B3 Validity Not Before: Sep 23 04:23:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d220b1-cf85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:b0:e9:29:08:59:d3:13:f6:85:43:28:05: a3:00:82:47:88:1b:29:b6:76:5f:4c:cf:50:d3:ae: 56:94:db:fd:8e:a9:0d:a1:8d:57:ac:05:58:fb:9b: 1d:03:8c:15:61:1e:3b:e2:32:99:19:79:30:ff:90: 23:e2:7a:47:15:ea:da:d7:5a:99:0b:d8:2f:f4:8e: 80:23:2b:66:b7:5a:01:0c:70:b3:dc:26:c7:1f:c5: 65:e4:b2:a4:91:50:91:ed:f6:ac:af:ff:b7:90:a8: b2:db:53:25:93:50:fb:40:63:5a:d7:f6:2e:b6:43: 18:33:7e:cb:e5:7c:64:be:b3:3c:01:ab:35:cf:1d: 23:79:4a:9f:e4:23:23:ac:e5:34:3b:ac:06:b5:3b: 93:76:aa:8f:8d:99:ed:0f:10:c6:cf:2a:c6:d7:04: 22:be:0c:3c:c3:09:ad:68:95:ec:81:fd:49:ce:22: a9:d0:df:1d:09:76:1c:f6:07:df:13:1e:63:3a:cf: 39:0d:92:1a:86:a3:8c:95:81:08:c0:52:fa:ae:2d: 73:c6:f4:35:93:6c:fd:24:b6:16:df:34:4e:26:29: 26:25:3d:ab:f0:1c:7d:d3:10:97:8e:3d:cf:1a:8c: 5d:b2:d3:73:3f:15:4c:a1:1d:f5:aa:3a:02:2b:b1: 89:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A1:F2:14:98:28:0A:5A:67:C3:A7:33:DB:89:DE:1E:5C:8C:B1:24 X509v3 Authority Key Identifier: keyid:A5:5D:3F:F8:A8:5B:E1:03:B5:83:75:0D:77:94:3F:47:C9:76:F5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/pV0_-Khb4QO1g3UNd5Q_R8l29bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pV0_-Khb4QO1g3UNd5Q_R8l29bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A763/71F79C1C424211EEA7F2CA12C4F9AE02/BF685A9E232E11F0B8BD6F6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.123.0/24 Signature Algorithm: sha256WithRSAEncryption 48:d6:16:88:88:4b:83:6e:ae:bd:00:28:ec:df:35:ee:74:73: 9c:3f:21:09:d8:07:6b:d8:55:58:d8:78:e7:6f:0c:16:8a:ed: aa:b8:6a:11:1d:eb:a6:6a:b8:f7:a2:99:bd:9e:58:a0:90:7d: ba:48:a1:51:3b:8b:71:a6:dd:83:8f:3a:ff:23:5d:2a:f6:a0: 80:17:76:35:7b:04:27:1e:c8:4c:ac:03:91:a6:da:72:4e:a7: 74:92:be:f8:e9:ac:22:5c:72:1b:f3:9b:10:07:65:4a:7e:d9: 2a:72:cc:e0:21:e9:df:31:0e:83:a9:6a:b7:55:22:9a:d5:4a: 55:b5:22:2f:7c:c4:23:af:cd:4a:70:28:9a:5e:65:1b:54:17: 31:d1:6b:9f:a7:46:8c:8b:c2:0a:cc:55:50:e1:25:57:ce:65: 68:4b:ea:0d:0d:2c:e3:54:bb:2b:63:08:26:50:67:1a:bb:8d: 23:9d:99:47:b7:45:eb:dd:17:ab:e7:c4:2b:25:6f:5d:a0:29: 2a:08:09:79:01:cd:60:7a:da:0d:79:58:9f:ac:86:96:e1:84: 09:b5:5d:d3:2e:61:8c:ea:13:c6:ed:1a:ff:ac:e7:e6:0a:90: 53:48:44:da:0d:10:95:87:a2:f2:ce:2a:08:4b:b3:f8:fc:28: 98:55:a1:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE3NjMxMTAvBgNVBAUTKEE1NUQzRkY4QTg1QkUxMDNCNTgzNzUwRDc3OTQzRjQ3 Qzk3NkY1QjMwHhcNMjUwOTIzMDQyMzE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyMjBiMS1jZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04iw6SkIWdMT9oVDKAWjAIJHiBsptnZfTM9Q065WlNv9jqkNoY1XrAVY+5sd A4wVYR474jKZGXkw/5Aj4npHFera11qZC9gv9I6AIytmt1oBDHCz3CbHH8Vl5LKk kVCR7fasr/+3kKiy21Mlk1D7QGNa1/YutkMYM37L5XxkvrM8Aas1zx0jeUqf5CMj rOU0O6wGtTuTdqqPjZntDxDGzyrG1wQivgw8wwmtaJXsgf1JziKp0N8dCXYc9gff Ex5jOs85DZIahqOMlYEIwFL6ri1zxvQ1k2z9JLYW3zROJikmJT2r8Bx90xCXjj3P GoxdstNzPxVMoR31qjoCK7GJkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGmh8hSY KApaZ8OnM9uJ3h5cjLEkMB8GA1UdIwQYMBaAFKVdP/ioW+EDtYN1DXeUP0fJdvWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTc2My83MUY3OUMxQzQy NDIxMUVFQTdGMkNBMTJDNEY5QUUwMi9wVjBfLUtoYjRRTzFnM1VOZDVRX1I4bDI5 Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWMF8tS2hiNFFPMWczVU5kNVFfUjhsMjliTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE3NjMvNzFGNzlDMUM0MjQyMTFFRUE3RjJDQTEyQzRGOUFFMDIvQkY2ODVBOUUy MzJFMTFGMEI4QkQ2RjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBnswDQYJKoZIhvcNAQELBQADggEBAEjWFoiIS4Nurr0A KOzfNe50c5w/IQnYB2vYVVjYeOdvDBaK7aq4ahEd66ZquPeimb2eWKCQfbpIoVE7 i3Gm3YOPOv8jXSr2oIAXdjV7BCceyEysA5Gm2nJOp3SSvvjprCJcchvzmxAHZUp+ 2SpyzOAh6d8xDoOpardVIprVSlW1Ii98xCOvzUpwKJpeZRtUFzHRa5+nRoyLwgrM VVDhJVfOZWhL6g0NLONUuytjCCZQZxq7jSOdmUe3RevdF6vnxCslb12gKSoICXkB zWB62g15WJ+shpbhhAm1XdMuYYzqE8btGv+s5+YKkFNIRNoNEJWHovLOKghLs/j8 KJhVoZ8= -----END CERTIFICATE-----Generated at Mon Oct 20 05:48:57 2025 by rpki-client