$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa File: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (raw, json) Hash identifier: LXTrgQN3T+0OVcDzvaM6T5a0p0NXB+0zRwSrfQRhFSw= Subject key identifier: F0:54:EF:AC:F0:BD:AC:8B:20:10:F3:0A:20:CE:5C:A3:77:11:3E:3B Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0C4B Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa Signing time: Tue 06 May 2025 18:28:22 +0000 ROA not before: Tue 06 May 2025 18:28:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59362 IP address blocks: 103.231.160.0/22 maxlen: 24 110.76.128.0/22 maxlen: 24 2407:5d80::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: May 6 18:28:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681a54c6-bcfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6b:4b:28:f4:3d:3e:2a:fc:b7:e3:43:46:06: 53:30:e0:bf:7f:69:39:ff:3a:b5:22:c2:61:e1:fe: ba:ee:17:f4:c6:6c:33:20:be:04:75:c2:22:06:f0: b7:4e:78:9a:00:c6:16:9b:6b:8c:2a:da:14:81:04: 76:c8:94:32:5e:fe:04:e9:ea:f1:1f:6c:f1:c2:e8: ba:7e:a6:9d:09:d0:dc:50:a6:8c:ec:2d:7a:0d:92: 39:2e:e3:bf:04:e0:3e:ef:03:e0:71:1d:3d:b6:84: f1:23:eb:dc:e4:7b:fd:08:94:bb:4d:44:7e:04:d5: 87:6c:61:82:58:b5:e5:94:87:60:d1:7c:74:0a:a2: e6:9a:76:8c:dc:60:c8:65:2d:eb:fc:62:dd:10:31: df:7a:3f:4a:4e:e1:0d:9b:1d:5b:11:51:44:06:4d: be:c9:54:d0:53:75:6f:bd:11:c9:7b:48:36:52:9a: 61:08:5f:8d:d7:57:5c:84:72:9e:27:1f:39:82:20: a0:70:9c:c5:4f:e5:10:a0:dc:1c:e6:0b:33:83:48: f7:e5:7a:35:ff:0f:af:c3:f8:60:17:58:66:5f:0e: 5d:86:e1:d7:86:94:ef:32:4a:c2:5c:da:a3:b1:af: 54:5d:22:7f:18:ba:fc:86:96:46:ea:13:68:91:96: 67:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:54:EF:AC:F0:BD:AC:8B:20:10:F3:0A:20:CE:5C:A3:77:11:3E:3B X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/9E5B75C0022D11EAAD80DA48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.160.0/22 110.76.128.0/22 IPv6: 2407:5d80::/32 Signature Algorithm: sha256WithRSAEncryption df:54:fb:dc:14:df:cd:38:6d:fd:c3:bd:85:91:a4:3e:61:87: 21:d9:e1:c4:c1:b6:e0:e3:cd:fb:46:a4:f8:cf:45:a1:23:ba: 7a:cc:a9:f7:53:8e:a0:3a:aa:73:5f:89:80:c5:17:13:b8:58: 06:5a:91:fc:72:9f:3e:b7:b3:76:e3:6f:99:45:ce:73:53:11: 6d:b3:85:12:93:20:33:e7:c6:da:4e:59:bf:d4:b1:24:1e:17: 47:e4:1e:56:e6:58:4a:eb:8e:d6:96:95:9b:c8:40:38:75:f0: b5:f2:9d:6f:f5:ad:56:15:eb:4c:6f:3a:c2:4a:a6:b7:0b:86: a3:85:1a:19:ab:63:c6:ac:7a:54:0b:ec:34:d4:f9:f5:98:59: ce:1a:9d:11:33:38:01:0e:48:b6:c6:1e:58:bb:00:b1:50:e6: c3:b7:3a:1c:90:b6:40:14:09:fe:75:6e:bd:70:d8:3e:ae:f3: 14:12:e9:38:bd:4e:b7:69:10:a7:42:8d:4f:45:e1:3c:bd:64: f4:d8:93:6e:9d:ff:e4:27:26:ac:82:7b:e9:b7:16:34:bd:dc: 45:1f:09:85:dc:15:6e:21:b0:8b:5a:66:c6:93:2f:a7:5b:f8: e4:1e:a3:10:ab:a0:3d:84:12:d3:8b:61:38:da:73:70:58:ba: 5d:97:ad:79 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUwNTA2MTgyODIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNTRjNi1iY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWtLKPQ9Pir8t+NDRgZTMOC/f2k5/zq1IsJh4f667hf0xmwzIL4EdcIiBvC3 TniaAMYWm2uMKtoUgQR2yJQyXv4E6erxH2zxwui6fqadCdDcUKaM7C16DZI5LuO/ BOA+7wPgcR09toTxI+vc5Hv9CJS7TUR+BNWHbGGCWLXllIdg0Xx0CqLmmnaM3GDI ZS3r/GLdEDHfej9KTuENmx1bEVFEBk2+yVTQU3VvvRHJe0g2UpphCF+N11dchHKe Jx85giCgcJzFT+UQoNwc5gszg0j35Xo1/w+vw/hgF1hmXw5dhuHXhpTvMkrCXNqj sa9UXSJ/GLr8hpZG6hNokZZnEwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPBU76zw vayLIBDzCiDOXKN3ET47MB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBQzcvQzEzOURBQkEwMjJDMTFFQUJFMUYwQzQ4QzRGOUFFMDIvOUU1Qjc1QzAw MjJEMTFFQUFEODBEQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn56ADBAJuTIAwDQQCAAIwBwMFACQHXYAwDQYJKoZIhvcN AQELBQADggEBAN9U+9wU3804bf3DvYWRpD5hhyHZ4cTBtuDjzftGpPjPRaEjunrM qfdTjqA6qnNfiYDFFxO4WAZakfxynz63s3bjb5lFznNTEW2zhRKTIDPnxtpOWb/U sSQeF0fkHlbmWErrjtaWlZvIQDh18LXynW/1rVYV60xvOsJKprcLhqOFGhmrY8as elQL7DTU+fWYWc4anREzOAEOSLbGHli7ALFQ5sO3OhyQtkAUCf51br1w2D6u8xQS 6Ti9TrdpEKdCjU9F4Ty9ZPTYk26d/+QnJqyCe+m3FjS93EUfCYXcFW4hsItaZsaT L6db+OQeoxCroD2EEtOLYTjac3BYul2XrXk= -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:01 2025 by rpki-client