$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa File: D11B9044112011EDAC1D3B15C4F9AE02.roa (raw, json) Hash identifier: 61pm0oZ7VjxdVmZL23S60F3P/HQj2IC3SS8pznvYZ9k= Subject key identifier: 1E:D3:4E:B4:4F:B1:26:FB:A6:86:91:3E:64:45:07:C2:92:F5:72:2F Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 02B4 Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa Signing time: Sat 27 Sep 2025 02:00:17 +0000 ROA not before: Sat 27 Sep 2025 02:00:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132161 IP address blocks: 103.14.216.0/23 maxlen: 23 103.14.218.0/23 maxlen: 23 203.190.208.0/22 maxlen: 22 203.190.212.0/23 maxlen: 23 203.190.212.0/24 maxlen: 24 203.190.213.0/24 maxlen: 24 203.190.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Sep 27 02:00:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d74531-d6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:74:cd:53:87:3d:eb:1a:26:3a:8e:ba:75: 65:ce:ef:e2:e4:40:4a:10:2a:a4:dc:87:9b:e5:b9: ad:c5:7f:f2:5e:01:45:36:d5:7f:c1:2d:8c:f0:38: ed:d8:c4:26:9d:b4:fc:e3:51:50:c4:0b:93:47:2f: 5d:89:03:92:af:bf:a0:d6:20:64:6a:67:c3:7f:b9: 3c:2b:5e:d3:10:aa:ed:bd:ac:4b:f2:22:17:9d:24: 7b:34:f9:7a:a1:c4:0b:42:c5:81:5b:0a:40:31:9b: 9c:d1:77:03:e1:e4:61:5a:ec:3b:44:11:e0:50:af: 1d:31:3d:02:fa:36:b0:eb:6f:cb:72:ef:c9:6b:1f: 4e:92:ed:a7:1b:a1:c0:26:9a:4f:b4:a4:eb:f4:b8: 3f:38:ee:6a:40:73:58:95:0f:8c:a2:19:84:50:01: eb:19:2f:e4:19:2d:7f:e4:1d:0d:e1:89:2b:aa:b0: 4b:8f:16:15:8d:17:a2:53:fd:15:a3:6c:a0:b0:35: a9:e6:29:a1:77:0e:e8:74:50:8b:ef:68:ce:0a:16: 86:56:29:8c:c5:47:07:21:44:ad:41:34:ff:ab:dc: 12:cd:28:0d:bd:6d:1c:0d:2b:77:fb:a8:e2:8d:e4: cd:98:59:c5:41:ae:87:e2:22:dc:07:1d:67:cf:7b: 95:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D3:4E:B4:4F:B1:26:FB:A6:86:91:3E:64:45:07:C2:92:F5:72:2F X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.216.0/22 203.190.208.0/21 Signature Algorithm: sha256WithRSAEncryption 0e:b7:6c:54:ab:6c:5b:29:84:71:b7:73:2c:d4:79:f3:f1:e6: 06:e0:d7:90:86:fe:a3:4a:dd:32:49:97:07:bc:8e:dd:d3:0e: ed:1b:c4:11:7f:dc:b0:42:af:d1:22:06:89:93:3a:ba:25:85: 69:88:d2:0a:e9:e8:fd:90:6b:ee:54:82:63:0a:12:2c:ca:26: 1e:e1:a6:8f:70:e8:14:d0:9f:61:e2:27:a4:f4:c4:2d:ae:60: a8:d0:05:87:6c:44:eb:f7:4e:90:dc:99:36:d0:76:44:1a:5a: c4:b1:52:76:4f:02:03:b3:2c:3e:28:17:6e:7b:eb:cb:b5:dc: 50:ce:6d:76:1c:b0:c5:3c:30:44:b4:e3:70:1b:4f:8e:cc:71: 9b:82:e1:a6:78:68:19:f9:ef:86:6a:4f:6f:27:e2:78:7d:ef: 2f:ea:63:01:a2:10:c2:06:7a:42:fd:c8:e6:f3:a8:2d:ec:f2: 7a:f4:d4:4a:16:31:39:5e:70:cd:28:76:6a:89:0a:0e:08:3d: 94:1a:d0:ef:71:7d:07:7c:0b:50:c3:21:a0:48:9e:1c:38:05: 27:ea:da:e2:34:3c:ba:9f:e8:8c:ce:f1:eb:4d:df:4f:c7:50: 69:69:47:91:12:c4:e4:03:65:b3:07:08:b1:ca:15:e7:b9:8d: de:f7:65:13 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUwOTI3MDIwMDE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3NDUzMS1kNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsax0zVOHPesaJjqOunVlzu/i5EBKECqk3Ieb5bmtxX/yXgFFNtV/wS2M8Djt 2MQmnbT841FQxAuTRy9diQOSr7+g1iBkamfDf7k8K17TEKrtvaxL8iIXnSR7NPl6 ocQLQsWBWwpAMZuc0XcD4eRhWuw7RBHgUK8dMT0C+jaw62/Lcu/Jax9Oku2nG6HA JppPtKTr9Lg/OO5qQHNYlQ+MohmEUAHrGS/kGS1/5B0N4YkrqrBLjxYVjReiU/0V o2ygsDWp5imhdw7odFCL72jOChaGVimMxUcHIUStQTT/q9wSzSgNvW0cDSt3+6ji jeTNmFnFQa6H4iLcBx1nz3uVmQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB7TTrRP sSb7poaRPmRFB8KS9XIvMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOUQvRDI2OTVEREUxMTFFMTFFRDlCNThGRDE0QzRGOUFFMDIvRDExQjkwNDQx MTIwMTFFREFDMUQzQjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnDtgDBAPLvtAwDQYJKoZIhvcNAQELBQADggEBAA63bFSr bFsphHG3cyzUefPx5gbg15CG/qNK3TJJlwe8jt3TDu0bxBF/3LBCr9EiBomTOrol hWmI0grp6P2Qa+5UgmMKEizKJh7hpo9w6BTQn2HiJ6T0xC2uYKjQBYdsROv3TpDc mTbQdkQaWsSxUnZPAgOzLD4oF25768u13FDObXYcsMU8MES043AbT47McZuC4aZ4 aBn574ZqT28n4nh97y/qYwGiEMIGekL9yObzqC3s8nr01EoWMTlecM0odmqJCg4I PZQa0O9xfQd8C1DDIaBInhw4BSfq2uI0PLqf6IzO8etN30/HUGlpR5ESxOQDZbMH CLHKFee5jd73ZRM= -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:40 2025 by rpki-client